Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft
File: 7LIDs03q4KEdAVCjDvK0opkdepg.mft (raw, json)
Hash identifier: xxDfp2e3RF3IeLnfR2fEho9VX/Mu5mqfKxgUoM8s8LQ=
Subject key identifier: 64:76:F6:EB:EC:17:CB:CA:24:21:A2:C2:F5:6D:88:3C:C8:9C:57:24
Authority key identifier: EC:B2:03:B3:4D:EA:E0:A1:1D:01:50:A3:0E:F2:B4:A2:99:1D:7A:98
Certificate issuer: /CN=A9189529/serialNumber=ECB203B34DEAE0A11D0150A30EF2B4A2991D7A98
Certificate serial: 19A7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft
Manifest number: 19A7
Signing time: Fri 28 Mar 2025 16:30:38 +0000
Manifest this update: Fri 28 Mar 2025 16:30:37 +0000
Manifest next update: Fri 04 Apr 2025 16:30:37 +0000
Files and hashes: 1: 7LIDs03q4KEdAVCjDvK0opkdepg.crl (hash: iVNL28oLmZxu71LC/2NWV/dIscLz++kBI7lSRwTEtUU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6567 (0x19a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9189529
Validity
Not Before: Mar 28 16:30:37 2025 GMT
Not After : Apr 4 16:30:37 2025 GMT
Subject: CN=67e6cead-acd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:98:81:8f:99:63:10:2c:4b:c1:ef:77:c1:ce:
2e:59:f6:1b:48:6a:64:ad:79:56:24:f1:a7:16:78:
1c:51:9c:b2:0c:88:f5:95:6a:dd:36:0e:0b:cb:97:
a7:61:db:e0:04:bf:c9:e3:6c:7b:84:fd:07:84:fc:
d9:a1:dc:6a:b8:3d:fe:3f:d7:f2:5f:1e:1c:b4:c9:
b3:f4:1e:0e:d9:08:83:4a:bb:9f:3c:fd:fa:3b:1d:
db:14:ff:90:fa:11:82:bc:b5:e5:b2:5c:91:a4:73:
6d:18:46:63:66:b2:e3:0f:de:d1:e4:b9:01:b0:8b:
ce:36:4b:77:f9:26:3a:fc:09:07:af:dd:ab:e1:70:
bf:ff:b9:57:ee:69:ff:e3:d1:58:a9:18:0a:2d:76:
a6:6d:d3:a4:de:8f:f9:0c:0c:0f:3c:41:30:48:c6:
0d:09:f7:6b:c7:77:95:27:56:61:0d:b1:41:26:3c:
e0:0d:c2:ad:b9:81:9a:b0:76:7d:0b:c8:87:85:2c:
1b:b4:98:2e:5f:63:7b:45:f4:94:c6:95:ff:04:e7:
b7:f8:45:87:6d:ad:c7:0d:4d:6a:39:85:f3:25:5d:
f4:b6:03:ec:27:47:c6:d9:ff:54:7b:f4:99:64:f0:
1a:06:98:47:4a:2b:7f:58:81:5a:29:0d:01:f3:e7:
c2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:76:F6:EB:EC:17:CB:CA:24:21:A2:C2:F5:6D:88:3C:C8:9C:57:24
X509v3 Authority Key Identifier:
keyid:EC:B2:03:B3:4D:EA:E0:A1:1D:01:50:A3:0E:F2:B4:A2:99:1D:7A:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b8:10:d5:fc:b9:66:2a:88:eb:08:2b:a8:c6:df:ce:46:71:ad:
be:06:6e:be:53:a7:2c:ca:5f:39:ac:27:cb:f4:c0:05:b2:a4:
5e:ec:4b:a4:79:be:c5:29:7d:ef:92:91:d6:91:1b:e2:24:9e:
8d:73:71:d3:84:ae:5b:c7:e6:95:16:b4:81:45:cb:5a:9a:f0:
f7:cb:ef:d4:2e:ed:8c:f8:97:f9:05:15:5d:67:0c:30:7f:2e:
8f:71:1b:99:bd:cc:c0:a0:f3:e7:7a:d4:f3:96:5a:4e:40:da:
4a:65:5b:ab:cd:c2:ea:f0:79:11:08:a9:d6:9e:f3:09:93:49:
c7:20:25:37:02:f5:72:2a:6f:47:85:67:39:ba:a4:54:8d:3e:
6b:25:d2:63:dc:b1:22:d8:93:3b:ee:9a:b8:08:2a:9b:85:f2:
5d:ad:48:22:5e:0a:c1:d0:2a:b8:a7:b8:57:6d:df:1d:f1:07:
2e:ca:d7:ee:e6:dd:7b:81:8d:ee:f8:cb:bb:62:0a:9a:49:a1:
23:4d:4c:88:07:21:5c:e7:ac:11:18:9c:65:73:28:67:d3:c0:
9b:3a:5a:08:9d:96:57:38:53:6d:43:19:72:d6:fc:f0:d1:08:
11:bd:fd:00:4b:85:3a:37:7e:54:56:66:fc:08:64:0e:16:c5:
db:c1:f7:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:40:12 2025 by rpki-client