Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft
File: C7BDH1UIA338kvd-BrSK7JVR9ls.mft (raw, json)
Hash identifier: fWiuvROqDDQZ5fo7Nxt8E790q0+tOnyOzPIEbDsxtOc=
Subject key identifier: 4C:62:ED:38:68:8F:62:D3:C0:ED:5A:16:88:3A:BB:56:64:65:4B:15
Authority key identifier: 0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B
Certificate issuer: /CN=A918C255/serialNumber=0BB0431F5508037DFC92F77E06B48AEC9551F65B
Certificate serial: 1AD3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft
Manifest number: 1ACC
Signing time: Fri 28 Mar 2025 16:25:39 +0000
Manifest this update: Fri 28 Mar 2025 16:25:38 +0000
Manifest next update: Fri 04 Apr 2025 16:25:38 +0000
Files and hashes: 1: C7BDH1UIA338kvd-BrSK7JVR9ls.crl (hash: M1w01DyWTCeBACRKxH1Ys0UP1o6Q0pNOx5zTyBXKBRM=)
2: 8E810FBCD46E11E9B37C0539C4F9AE02.roa (hash: /62jKiDxw2Oukb67ZNvZbycxbr1ec0Y/2pAmP4Kn+R8=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6867 (0x1ad3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918C255
Validity
Not Before: Mar 28 16:25:38 2025 GMT
Not After : Apr 4 16:25:38 2025 GMT
Subject: CN=67e6cd82-abe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ab:09:bb:34:a0:f1:76:b5:43:cc:ae:c4:07:
a1:ed:32:ac:6c:c6:f9:10:d4:28:23:10:cd:90:c8:
fe:44:8d:6d:69:f1:ab:97:ac:fa:36:53:18:f6:5c:
4a:41:35:b3:ad:45:a5:2a:85:00:4d:dd:4d:66:69:
08:61:ae:9a:0b:d2:b9:c7:ff:99:8d:e1:41:df:83:
d1:0c:2d:09:72:42:c0:59:76:fc:27:63:f7:28:47:
0f:a7:a2:3a:15:de:86:72:86:d6:be:98:86:90:b2:
40:71:27:c0:dd:37:4d:e0:99:0a:e3:b5:a7:7c:cd:
05:b2:4e:65:1b:b2:69:50:eb:ed:1b:9b:da:ce:95:
83:7a:8e:55:dc:82:e7:39:79:e4:76:c6:bb:e9:ca:
9e:63:35:1c:8e:16:b1:c2:50:bc:b9:b0:2d:4b:b1:
7a:72:f6:98:02:44:f5:64:bd:33:9a:9b:27:01:d0:
ff:27:7c:bc:e3:75:69:7c:fa:71:6c:ab:89:4b:d6:
85:3e:a9:c4:ad:66:57:99:36:2d:ac:75:95:af:79:
f9:65:27:a1:18:f2:94:79:ca:04:63:01:6e:0d:e8:
38:44:6d:f4:17:74:91:0d:a5:53:30:c6:af:a8:02:
d4:6d:8a:ac:b3:51:ad:02:18:bd:4a:dc:f0:f8:67:
7b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:62:ED:38:68:8F:62:D3:C0:ED:5A:16:88:3A:BB:56:64:65:4B:15
X509v3 Authority Key Identifier:
keyid:0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
54:3a:eb:fd:20:ea:67:56:a2:e1:1b:6b:9a:8a:bd:5c:1c:c9:
26:c9:17:60:be:56:a1:ac:c9:40:fb:01:49:36:18:4a:be:fc:
ef:dc:f2:a1:61:a9:17:01:3c:f4:9e:83:0e:ec:01:36:af:d7:
12:f8:77:c1:56:f8:df:7d:37:05:40:a6:7e:22:7b:1c:0c:c9:
a6:4a:2c:3c:61:14:98:49:f0:60:8c:c4:25:57:e4:ab:cd:f0:
de:63:aa:d9:9b:4f:36:66:9f:22:cb:47:00:30:d3:e1:39:39:
f2:ae:79:3a:be:6e:a7:a3:f6:e2:cc:94:00:a4:2d:6a:5a:86:
87:47:c1:ba:c2:75:88:6b:c6:d0:48:49:a7:24:3d:6f:b6:9b:
5f:2a:ff:25:d6:42:2b:00:75:9e:c1:d1:6f:ac:81:f8:f5:61:
49:72:18:c8:c9:95:11:48:e8:be:aa:5f:9c:6d:8f:b5:ea:d0:
de:9c:36:99:6a:93:31:e8:b3:8b:a4:9a:f0:f1:41:03:29:4a:
0b:80:ad:ee:ac:d3:75:d4:b3:24:71:6a:0e:69:bf:62:b9:ef:
02:76:ca:2f:ac:6b:18:0a:56:4b:88:75:2d:7e:4c:d5:d9:0a:
a5:80:04:5f:e9:45:b4:bd:fa:10:83:94:0e:a2:42:06:30:4e:
cf:40:9c:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:30:51 2025 by rpki-client