Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft
File: BujrLhzBcw8rcm9PAAhEw0U_qlk.mft (raw, json)
Hash identifier: jRtFDyS0+j3pKiMEsOnrWzwOI1GcL2O/215jHjh2Oos=
Subject key identifier: CB:DD:D3:9F:DF:EE:7D:7E:FB:B1:B7:E0:ED:4C:8F:DD:72:D3:AB:E7
Authority key identifier: 06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59
Certificate issuer: /CN=A9177B64/serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59
Certificate serial: 0A92
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft
Manifest number: 0A84
Signing time: Fri 28 Mar 2025 19:48:09 +0000
Manifest this update: Fri 28 Mar 2025 19:48:09 +0000
Manifest next update: Fri 04 Apr 2025 19:48:09 +0000
Files and hashes: 1: BujrLhzBcw8rcm9PAAhEw0U_qlk.crl (hash: GBeNFL4IzGOsUSHRNMYr3u7Snq3U63ODhhBx1flI3hM=)
2: D490B9E456BE11EAA979861EC4F9AE02.roa (hash: in2s5nblYb/tpke9vnRbwWoyZYgNOrnPyRgkXN/g1XA=)
3: D5248EE456BE11EAA979861EC4F9AE02.roa (hash: GEUerLfa8AbS7w95wtfzPXRDAwXXkP8/j2LX+qI6QYw=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2706 (0xa92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9177B64
Validity
Not Before: Mar 28 19:48:09 2025 GMT
Not After : Apr 4 19:48:09 2025 GMT
Subject: CN=67e6fcf9-003e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ce:cb:fa:b8:d8:18:c3:a8:f5:ef:53:53:30:
fa:4c:5a:ee:6e:e6:38:53:ac:ce:e9:99:b7:92:0e:
c9:f6:ba:2d:58:2a:ba:2f:e5:b6:33:00:4d:6e:19:
94:a0:3e:2c:af:b4:a6:69:16:fc:d0:b9:d9:16:92:
84:76:ac:65:8f:08:85:99:47:9f:0a:c9:3a:64:af:
ef:a4:ec:54:c5:09:de:52:82:4b:b6:4f:d8:67:fa:
2d:24:4b:e3:35:10:72:29:cc:36:c4:22:b4:ab:69:
e6:b1:da:c9:90:f6:96:1a:c3:e5:ef:ce:7d:26:3a:
4c:bc:fe:49:f5:c5:b2:ad:47:4b:70:b5:bf:49:67:
fb:90:38:b4:30:e6:16:bf:2f:5f:df:aa:c4:6a:b3:
3e:de:45:a8:14:54:0c:6a:1d:10:a2:3e:f8:c6:0f:
cc:87:28:cc:24:f1:67:6d:9b:27:0f:63:8a:56:fe:
57:a7:80:f5:ce:c6:b9:dd:9e:ae:77:36:0c:f6:2b:
5c:0b:74:91:e3:d9:cf:76:5d:03:0f:e6:78:3e:bc:
4c:db:62:98:24:92:54:22:11:12:d1:a0:a7:5e:90:
b9:84:40:9a:fa:15:83:88:25:bb:14:ec:70:25:66:
23:ae:36:fb:a7:38:9e:43:72:f1:af:a6:ec:dc:a9:
87:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:DD:D3:9F:DF:EE:7D:7E:FB:B1:B7:E0:ED:4C:8F:DD:72:D3:AB:E7
X509v3 Authority Key Identifier:
keyid:06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
26:a6:56:cd:76:30:cb:9a:31:09:ee:47:21:11:4f:3e:9b:6e:
11:e5:41:c0:a0:55:20:ff:4e:ee:c2:37:67:ef:b3:19:d0:01:
54:bf:ea:94:dd:a7:fb:25:a6:7d:88:8f:b9:a8:46:a5:5d:0c:
1d:90:13:69:10:7a:c9:ed:91:ca:de:a8:91:d7:af:ed:10:f7:
fb:ab:55:fc:07:5c:ee:44:4a:ce:1c:d6:79:d3:68:44:7f:19:
39:92:0f:2d:fe:4b:92:be:a4:83:3e:23:1c:c5:cf:05:b2:af:
6e:73:47:3b:d9:a4:1d:25:54:d7:cf:1d:19:d2:33:90:b0:76:
f4:2c:13:14:1a:c3:16:69:89:6c:50:eb:64:67:ff:b2:d5:12:
c0:37:1d:cd:14:ea:5b:05:9e:c6:0e:9f:a5:14:8a:df:25:29:
74:e5:0d:0f:ef:ae:04:db:3a:77:97:d3:5f:c2:1e:51:3d:cd:
75:88:e9:d0:a1:16:1e:2e:d1:6f:01:ac:47:25:1d:02:e0:6b:
63:80:5d:ea:50:bb:e1:b7:bf:c7:e8:b3:e5:43:40:19:a0:c2:
27:ae:3a:e2:c3:9a:10:63:65:98:b8:3d:f3:65:c5:9d:46:dc:
55:63:52:2d:b4:02:be:dc:32:05:6f:29:94:56:77:89:12:3a:
4e:e0:54:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:40:13 2025 by rpki-client