Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft
File: IjvhmJLm5stAbl-plW3bzqlcu0Y.mft (raw, json)
Hash identifier: XOZxbyD2Xe90KfZF7LP4ulo27y61EL3D96UGMUGSQps=
Subject key identifier: A1:35:39:75:00:9F:4F:85:3F:54:4B:6F:95:8C:DE:C1:63:7C:E8:C0
Authority key identifier: 22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46
Certificate issuer: /CN=A918E6B7/serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46
Certificate serial: 0FF7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft
Manifest number: 0FED
Signing time: Fri 28 Mar 2025 17:34:25 +0000
Manifest this update: Fri 28 Mar 2025 17:34:25 +0000
Manifest next update: Fri 04 Apr 2025 17:34:25 +0000
Files and hashes: 1: IjvhmJLm5stAbl-plW3bzqlcu0Y.crl (hash: GTLXrUNw09L1mvz1zfAsSip/MXSsx982FxfxU/sMyp0=)
2: 42CBE6BE29F111EEAECAED6FC4F9AE02.roa (hash: Mc3Q9wmukgUIJT3q9J5EygK6/IHcoyR/RZQ0Eut8nLU=)
3: 608836D046B111E98B793856C4F9AE02.roa (hash: rltN2xhTkn/8LBf4ssPkcwToahSO3m8NAPpsxdmLbos=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4087 (0xff7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918E6B7
Validity
Not Before: Mar 28 17:34:25 2025 GMT
Not After : Apr 4 17:34:25 2025 GMT
Subject: CN=67e6dda1-2ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:84:69:d5:58:45:de:43:2b:09:ff:cb:e3:0a:
c9:a6:70:ef:90:fa:49:f8:7b:1e:cb:c1:15:dc:c5:
4d:6b:74:52:20:2b:a6:0f:79:8d:1d:d5:93:47:f8:
a2:f9:f7:a3:ee:88:47:12:07:94:64:ff:74:eb:ab:
07:e2:37:7e:da:c4:16:b9:6d:13:24:90:b0:26:89:
84:84:5b:5c:6a:00:70:ae:a0:0f:da:31:65:99:f8:
80:42:2a:61:86:06:c9:d8:f8:68:34:67:86:72:51:
62:17:07:61:c7:51:5b:d0:ab:c3:bc:32:da:dd:06:
98:04:80:44:b4:45:1b:db:fa:f7:2a:e9:0e:59:84:
33:e1:a0:30:e6:29:63:34:85:33:2d:67:e4:6a:77:
c0:6f:23:3f:16:b3:ce:b9:ef:98:2f:a0:84:17:90:
ae:56:7d:82:e2:f8:5a:0c:63:55:c8:e3:2d:38:c6:
a0:28:f0:87:71:63:c8:a3:49:31:57:ca:4d:5f:4c:
1a:5e:c1:07:e7:83:a9:52:7b:7f:e1:34:66:6d:77:
c1:9e:be:12:46:f7:39:b8:09:92:4a:0f:54:f4:04:
e5:05:b7:08:5c:95:47:5e:eb:01:45:a4:8d:7d:24:
1f:14:67:47:2b:92:1d:04:af:03:a3:a4:cc:2f:bd:
c8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:35:39:75:00:9F:4F:85:3F:54:4B:6F:95:8C:DE:C1:63:7C:E8:C0
X509v3 Authority Key Identifier:
keyid:22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a6:eb:4d:6b:c4:f9:94:14:84:f4:00:1b:d2:15:19:a1:25:eb:
fa:4a:7a:4a:5b:eb:2f:3f:11:8d:0c:41:f9:fb:2a:f5:b8:75:
ef:96:38:c4:bb:a3:58:6b:60:92:69:c2:b5:e3:cc:c9:24:af:
76:03:be:0c:dd:54:48:71:89:c1:7e:5b:4c:4e:64:2b:f4:68:
a1:d1:7e:da:8f:b5:68:60:b4:fa:4a:bb:43:64:b9:cc:69:0d:
54:ab:91:b5:ae:8c:a4:64:1f:13:6b:c8:f0:c8:60:72:f9:37:
1e:d4:99:b8:f5:c8:2a:00:51:34:d8:bd:2e:bb:44:4e:48:6f:
1b:12:17:0b:34:2d:79:52:c0:2a:d2:b5:38:90:ff:e8:e0:72:
3d:4f:14:63:d4:58:2f:08:fd:b2:80:76:c9:e4:cd:be:19:7e:
48:ee:58:45:e7:ac:0d:1e:46:f0:15:0d:ea:7e:0c:fe:08:1c:
c9:30:29:51:88:10:e4:a2:d6:de:37:06:1e:ab:04:95:57:95:
e9:80:6a:ef:a7:54:9a:c3:c3:94:0f:fc:82:0b:c4:c3:d5:3e:
10:fd:2f:dd:cf:43:da:13:3d:d1:05:af:3a:74:0d:9c:6b:34:
0f:19:c8:66:cb:74:8f:d0:7b:55:68:fe:c2:4d:0b:82:3b:ef:
70:17:ba:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:27:04 2025 by rpki-client