Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft
File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json)
Hash identifier: aS7xONQjmHtJK+rBGqPo0Y1EVVhEPDLg59Y12DqvGjE=
Subject key identifier: 59:85:D1:38:C9:1D:21:75:C2:F1:F6:82:3E:0B:98:DC:D2:25:D2:CF
Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A
Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A
Certificate serial: 0BE8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft
Manifest number: 0BDA
Signing time: Fri 28 Mar 2025 19:00:32 +0000
Manifest this update: Fri 28 Mar 2025 19:00:31 +0000
Manifest next update: Fri 04 Apr 2025 19:00:31 +0000
Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: UzE9YarRyhwV4jWeUewv/vhCF5sEsORQOV2WzT092tI=)
2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: o7cey+AS0R8fVuMf4POftZacKVzAhG2qKeR3u+WEUgU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3048 (0xbe8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918D0DE
Validity
Not Before: Mar 28 19:00:31 2025 GMT
Not After : Apr 4 19:00:31 2025 GMT
Subject: CN=67e6f1cf-04d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:34:9e:65:ab:0b:42:62:50:22:4d:97:95:9c:
41:40:4f:3a:8c:60:ba:7d:e9:44:87:02:ee:6c:e9:
0d:71:bd:28:4a:a6:87:fc:09:2a:56:19:e9:e7:6c:
82:d0:5e:68:ae:27:f1:a4:5a:b0:04:8a:ef:f7:bc:
53:93:3b:26:8d:0e:99:75:2d:45:0b:41:80:f2:02:
7b:a8:58:72:ae:50:20:71:e8:6c:4b:a2:1b:51:74:
5d:cc:7c:27:d2:fb:79:81:0a:10:30:88:a7:77:5b:
18:5b:36:07:61:dd:7b:73:1e:31:72:9a:57:41:f2:
9f:cb:53:88:0b:93:b0:d5:dc:74:3b:b8:ba:b0:71:
97:3c:82:ed:ae:f3:16:7e:ff:d7:28:bc:eb:3c:d8:
17:48:83:6d:12:1b:55:80:b3:6b:88:e5:f7:dc:8f:
ab:9c:b2:ba:51:ce:37:46:c5:cf:ce:19:69:4a:39:
7b:50:4b:d9:13:fc:2a:6b:dd:71:6a:63:80:ce:02:
74:8d:16:94:6a:c1:fa:12:5a:8b:89:3b:f4:55:28:
53:ed:eb:c1:71:d9:be:82:09:4a:02:10:ef:67:9f:
57:d5:b2:b7:95:5f:cc:f1:53:e7:e0:f7:86:63:8d:
72:ee:39:05:f9:40:24:3f:f6:9f:94:fa:22:c8:36:
59:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:85:D1:38:C9:1D:21:75:C2:F1:F6:82:3E:0B:98:DC:D2:25:D2:CF
X509v3 Authority Key Identifier:
keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ae:e5:64:f6:7b:68:80:7f:3f:98:02:5b:7b:5e:01:92:fa:e5:
43:97:6d:9e:45:c1:d0:5d:07:f4:4b:20:f5:96:15:86:db:c5:
96:ca:ff:6f:74:da:e4:47:e2:5a:24:b3:a6:a8:38:6a:e1:2b:
73:11:02:b1:d3:ff:7d:7f:0b:18:34:48:8a:92:7a:17:e4:0d:
7f:8b:5b:df:ce:e3:93:4b:07:e7:cd:18:0d:6a:b0:0c:56:4d:
f7:d3:f0:6e:cd:da:f5:c6:5f:77:99:ec:f8:19:19:60:01:24:
16:d3:77:58:64:44:51:0e:29:1c:62:da:02:fd:2b:66:52:19:
c4:78:af:80:bb:d1:fd:fa:84:b3:54:b9:c1:95:d7:fc:cc:55:
c0:11:b9:ee:df:6b:fd:3c:f3:f6:f3:9c:09:04:c5:40:d0:93:
d6:97:9e:fe:cc:9c:80:c4:69:42:54:e3:46:04:47:ab:12:fd:
b6:1b:17:32:08:1b:a2:fa:c1:44:fa:51:7f:23:27:b5:b1:0c:
fe:7b:dd:7d:32:3a:af:a3:41:10:85:38:24:33:46:1f:61:40:
78:c3:44:a1:af:e9:f0:cc:6c:a0:f5:0f:b4:ef:59:01:27:1a:
92:20:3b:7f:49:2b:cd:b4:3a:02:52:eb:c9:e3:0a:1f:7f:57:
c9:38:54:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:10:54 2025 by rpki-client