Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft
File: YCgZkDDJlCoUSqFr-zB450H27CM.mft (raw, json)
Hash identifier: oTu917gwpQ6CDOmGQbzflCmvGwbYCELLScjpApdqDCI=
Subject key identifier: F5:52:47:01:57:48:F1:A9:08:F7:8B:48:6F:18:0A:89:EB:24:7D:ED
Authority key identifier: 60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23
Certificate issuer: /CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23
Certificate serial: 09E4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft
Manifest number: 09D6
Signing time: Fri 28 Mar 2025 20:10:05 +0000
Manifest this update: Fri 28 Mar 2025 20:10:03 +0000
Manifest next update: Fri 04 Apr 2025 20:10:03 +0000
Files and hashes: 1: YCgZkDDJlCoUSqFr-zB450H27CM.crl (hash: 9YnMHcqwRy4uZe2lPsFWVbRn2Q242DrIfjxm4cFBVWQ=)
2: 5D2B0616A9C011EABAAB4624C4F9AE02.roa (hash: yiUTn34nFtRxV5JAhkPGjI3Dqg4FJfadYSzxX54DxmU=)
3: 5C1CF19EA9C011EABAAB4624C4F9AE02.roa (hash: z0HhZvByumG+3blwc24Ax6Cba3C3ly99sGI80bagaU0=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2532 (0x9e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9175D4F
Validity
Not Before: Mar 28 20:10:03 2025 GMT
Not After : Apr 4 20:10:03 2025 GMT
Subject: CN=67e7021d-e2a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a0:97:41:c1:d9:eb:43:30:dc:6b:6b:22:db:
2f:18:96:8c:fe:2f:35:e9:ea:5b:c3:da:b8:e0:f9:
18:65:a2:70:a0:7a:98:90:14:5e:29:c0:2c:ad:d4:
3d:8a:6c:7d:8e:e1:37:35:3d:7c:0b:28:9c:18:12:
35:2d:71:ab:1d:3d:b8:18:96:9d:6e:d9:1d:7f:3a:
4b:c6:ef:cd:bd:37:7d:b0:b6:de:c7:63:3d:b2:40:
f7:dc:0a:2c:60:73:cf:27:16:98:dc:81:8c:9c:59:
b2:59:60:7d:2b:ad:92:98:e5:23:5c:18:cd:2c:e9:
31:32:26:2e:5d:a0:c6:67:eb:fe:e9:8d:58:60:ea:
62:21:39:8f:41:e1:33:1e:11:8a:ec:17:7a:f1:41:
f0:80:c3:f1:ef:60:1a:52:ed:9a:2a:c8:f7:61:79:
e6:0f:b2:1c:92:db:be:2a:24:0d:2f:04:b9:50:42:
4e:70:f0:e9:7c:da:c2:9e:9f:4f:09:1b:a6:71:db:
72:3f:4c:b9:a1:36:90:fc:91:ba:d4:67:ba:3d:20:
02:47:c7:fd:dd:ca:bf:bd:cb:aa:10:1b:f9:20:31:
53:ad:de:4e:b0:52:5b:18:0d:3a:e9:f8:30:ea:97:
67:98:9e:0b:7d:af:c7:41:64:3c:07:fc:29:69:69:
a1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:52:47:01:57:48:F1:A9:08:F7:8B:48:6F:18:0A:89:EB:24:7D:ED
X509v3 Authority Key Identifier:
keyid:60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
97:f7:a7:34:a9:4c:1b:bf:5b:4c:77:30:6d:09:5c:b7:c7:11:
5e:32:33:50:51:9e:30:aa:7b:99:0e:00:58:4c:94:c2:c8:b6:
3a:42:bb:f3:10:cb:be:e8:ce:da:42:ca:09:cf:a9:7a:15:44:
f0:53:bd:ce:00:45:d1:7c:7e:1e:ce:62:9a:72:3f:17:a8:ab:
81:40:2d:27:58:ea:47:a1:79:29:47:9f:24:d9:11:6a:4a:f7:
5a:85:d6:13:66:92:0c:f7:27:8d:0b:34:5d:73:d7:2f:0d:a8:
fd:12:3d:ff:2c:dd:f9:3b:ee:13:ba:c0:0b:d1:7d:8a:37:1c:
b6:78:aa:70:94:d2:ac:b3:c3:44:2b:32:e9:3a:3e:79:a1:56:
d6:45:34:44:55:a6:16:1c:3f:ca:13:7a:c6:84:88:be:ce:37:
c6:4e:bf:82:d1:21:b9:e7:8f:27:32:d6:96:ac:fa:65:82:29:
34:e1:0a:67:43:38:9f:d4:99:6d:0b:6d:2b:d9:e4:fd:5c:26:
78:b1:0e:c1:bc:f4:b3:5c:8f:4f:9f:d7:b7:46:43:4e:e5:c3:
9c:2d:24:bc:e2:32:21:61:03:90:07:5f:ba:0e:2c:7d:d2:43:
0c:8d:3f:d6:5b:3c:75:c8:11:ff:fc:5f:a2:d5:73:ce:a2:3b:
2b:39:07:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:17:53 2025 by rpki-client