Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft
File: Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft (raw, json)
Hash identifier: X+vpmp8zbrG+AooxMQ541m+7/xPp4hygnmiBmTHyETk=
Subject key identifier: 8E:1E:07:DC:7B:8D:B5:35:FD:C0:62:6E:D3:0B:64:83:FF:7B:69:10
Authority key identifier: 4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E
Certificate issuer: /CN=A9173C8A/serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E
Certificate serial: 18EA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft
Manifest number: 18DD
Signing time: Fri 28 Mar 2025 16:34:23 +0000
Manifest this update: Fri 28 Mar 2025 16:34:22 +0000
Manifest next update: Fri 04 Apr 2025 16:34:22 +0000
Files and hashes: 1: Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl (hash: X4QkUFeIeyxMpUE5bDqqtcdXkxsbuipOTGh9o4M6YEI=)
2: 9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa (hash: 7Hs9ZZORwzDrkP5Wsr0Azs8K265xvZ4OedgYnSopdc0=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6378 (0x18ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9173C8A
Validity
Not Before: Mar 28 16:34:22 2025 GMT
Not After : Apr 4 16:34:22 2025 GMT
Subject: CN=67e6cf8f-30a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:35:6d:50:e2:69:24:68:c7:08:b0:94:21:f9:
67:59:9e:cc:2e:a3:87:00:93:b0:35:3e:db:a7:9f:
19:bb:13:68:af:56:eb:42:cb:d7:93:89:00:0a:4b:
1d:a1:dc:33:04:45:7e:76:e6:60:32:fb:4d:ce:be:
77:29:54:d7:0b:59:e4:c4:e3:85:9c:1c:e0:8c:71:
f8:fd:3c:07:8f:fa:88:47:46:e3:b9:d2:11:5a:00:
be:f4:3e:47:6c:6d:72:15:3c:8e:58:87:10:6a:57:
2a:d3:7f:48:d2:ac:a3:5c:bc:3b:a1:9f:3a:c1:c5:
4b:c7:e9:cc:a4:96:19:f6:42:34:66:db:18:fa:5d:
2c:22:ef:25:44:b4:9e:b9:87:19:86:2d:01:85:b8:
8b:fe:00:7a:ed:df:35:77:8b:66:2c:03:b6:65:a6:
4f:32:52:da:aa:23:68:19:08:a6:cd:8c:70:fa:58:
30:47:77:5a:92:4f:4e:43:f1:f9:52:83:8b:a8:cd:
5d:b0:78:61:66:8d:9c:f0:61:0c:b9:12:26:72:86:
6e:94:48:02:47:c1:ba:b0:48:a7:da:f3:9c:47:27:
0a:85:d1:2b:0f:a7:8e:a5:47:e0:55:df:d2:97:40:
e7:f8:5d:59:dc:ec:07:7e:ca:47:bd:42:38:1a:e5:
41:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:1E:07:DC:7B:8D:B5:35:FD:C0:62:6E:D3:0B:64:83:FF:7B:69:10
X509v3 Authority Key Identifier:
keyid:4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3d:d5:c0:a4:3f:f1:6a:e0:ed:b5:99:ee:0f:cf:77:a8:87:a2:
8b:b8:52:fa:cd:60:62:39:94:4b:16:b5:98:15:85:8f:01:a6:
37:41:02:64:09:19:bb:ef:80:3e:db:09:95:d4:a9:1c:50:77:
89:ba:84:7b:5c:60:1d:f9:0a:02:d8:49:d0:a5:b6:05:3f:48:
f9:0b:36:67:a3:a3:83:5f:52:c2:2d:8c:27:41:62:c1:ab:02:
6a:11:fa:51:01:75:04:54:08:d7:0b:9e:48:95:b1:0a:3a:47:
eb:77:e5:98:d6:22:b6:bf:06:60:ec:ea:38:fd:f1:77:66:a9:
c0:4d:9b:97:12:7d:91:14:16:8d:18:c8:e4:b3:f9:cc:8f:63:
93:8a:cc:0c:9b:ae:a0:5a:1d:76:9f:19:c1:3e:70:72:8c:68:
24:5c:ab:74:bc:68:5a:2b:bf:6b:25:43:5b:f1:23:68:bf:a1:
dc:5c:b6:09:9a:17:2b:c6:e5:66:0b:1f:33:a3:44:39:1a:4f:
b8:1a:90:84:5d:9d:7e:fd:fe:98:63:f0:2d:18:42:61:f9:9e:
ac:c2:b5:6b:94:02:5a:c0:09:1b:c6:2c:32:7c:5c:0b:8e:43:
98:71:4a:1f:c9:80:e7:e6:f5:38:81:48:fd:ed:f5:25:d6:5f:
96:29:63:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:19:39 2025 by rpki-client