Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft
File: gqha_fMpJW9H4LcAstFHVqEEwRI.mft (raw, json)
Hash identifier: 7SDtS9X9792VCjHZIUcD1doj7cY0+E5SNRtSvQ8nUnc=
Subject key identifier: D9:5E:1F:79:F0:30:40:EC:86:30:00:D6:F0:AD:94:E8:45:C4:2F:2B
Authority key identifier: 82:A8:5A:FD:F3:29:25:6F:47:E0:B7:00:B2:D1:47:56:A1:04:C1:12
Certificate issuer: /CN=A9171C23/serialNumber=82A85AFDF329256F47E0B700B2D14756A104C112
Certificate serial: 0566
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft
Manifest number: 055E
Signing time: Fri 28 Mar 2025 23:39:54 +0000
Manifest this update: Fri 28 Mar 2025 23:39:53 +0000
Manifest next update: Fri 04 Apr 2025 23:39:53 +0000
Files and hashes: 1: gqha_fMpJW9H4LcAstFHVqEEwRI.crl (hash: y/1SWvsRcJNp0ErAC7OFh/IP6+ksEWwc/kbUbdEUc94=)
2: 7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa (hash: eALzuGTBIdO32t7InjPCWdnlihceQ6Ej+q9aOFO73+k=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1382 (0x566)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9171C23
Validity
Not Before: Mar 28 23:39:53 2025 GMT
Not After : Apr 4 23:39:53 2025 GMT
Subject: CN=67e7334a-5f5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:dd:21:f5:18:7f:6a:7c:36:20:4d:83:f6:ed:
25:47:4a:30:50:06:1a:fd:83:c8:9a:de:6d:d3:71:
6d:15:82:15:b7:04:ab:b4:e7:e9:80:3f:ae:a7:d5:
77:12:b2:72:65:36:66:a9:cf:91:55:f4:af:94:e5:
b7:0e:6d:20:2e:f0:83:78:46:41:06:e5:1d:b4:8e:
01:1a:f6:06:03:b7:19:fc:74:5c:70:d3:9c:5c:91:
4a:0f:2f:ba:c0:85:a6:36:e6:c5:c9:e9:c7:13:8d:
3c:2d:bd:cd:06:78:d7:8f:90:d5:91:71:22:76:45:
2b:0a:1b:e3:a6:6f:52:2c:f5:29:61:d3:61:db:a2:
08:d6:80:3b:23:fc:3c:5e:fb:4e:06:30:7b:a6:ea:
49:b0:38:ab:3d:4f:40:f6:03:cd:1b:3a:d5:d3:5a:
8b:a4:57:c7:90:15:92:04:22:6b:9a:56:03:26:3c:
37:b0:70:47:9d:e8:53:75:c9:65:e4:7e:ce:3d:74:
bb:c5:37:93:19:80:63:c5:7c:b6:ef:f3:52:f6:11:
97:9d:c6:49:55:a0:ad:68:08:87:4f:5a:8e:24:da:
0d:02:09:66:64:ff:d8:29:92:e5:e1:d1:14:c2:a3:
9b:77:f8:ed:dd:02:4f:b1:e0:6d:a0:e1:b2:06:cd:
6a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:5E:1F:79:F0:30:40:EC:86:30:00:D6:F0:AD:94:E8:45:C4:2F:2B
X509v3 Authority Key Identifier:
keyid:82:A8:5A:FD:F3:29:25:6F:47:E0:B7:00:B2:D1:47:56:A1:04:C1:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
d0:89:bb:22:c0:d4:84:78:78:08:b6:dc:fa:d2:4b:b2:d5:4b:
36:cb:26:8b:47:06:d3:57:62:df:cf:4f:a8:e6:2c:c3:49:f5:
98:f2:f0:e5:9b:9b:aa:d1:3b:60:59:7d:fb:1b:08:b0:ac:1f:
3b:84:0a:84:10:08:fe:a7:77:3c:d1:2d:30:bb:08:91:4a:96:
e1:a2:7b:71:d5:a0:99:24:13:d6:4b:82:3d:2a:a0:d8:5d:88:
62:2a:29:f4:15:94:8e:42:ef:15:bf:1a:63:88:e2:ed:8d:89:
e0:1c:00:4a:68:1d:33:18:53:cb:35:9a:b1:39:fc:01:f1:21:
49:31:5b:e3:62:1f:35:a0:57:79:03:ff:6d:16:c6:a9:3b:fc:
f0:08:06:87:5b:4d:8d:58:b6:75:d0:c7:a2:63:5f:07:cb:53:
b3:0a:0b:8b:7f:b3:76:fa:ca:63:f9:d8:75:b5:f3:21:74:b3:
6f:ca:b0:13:f9:4e:22:c6:73:3e:84:e2:1f:6e:e5:bc:21:54:
80:02:49:1e:e7:72:e6:00:52:81:45:99:94:dd:03:6a:75:21:
11:2c:58:64:c7:c0:90:34:b7:4f:f6:2c:b8:82:44:00:e0:a6:
f3:f1:f9:cf:62:a3:09:e8:53:76:91:3c:6b:db:25:63:55:9f:
5f:4a:ca:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:59:34 2025 by rpki-client