Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft
File: 2xy4SFQGnkPKG3JdQuprqbU5gVs.mft (raw, json)
Hash identifier: XDWh0HuJiGKrCGwdXJ6bEsU6oTI5rZBrz6ZO0fey4dU=
Subject key identifier: 19:03:DB:28:8A:10:4A:14:34:F2:9B:2F:FD:79:7E:26:E1:EF:59:A6
Authority key identifier: DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B
Certificate issuer: /CN=A918F88D/serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B
Certificate serial: 0C6F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft
Manifest number: 0C5B
Signing time: Fri 28 Mar 2025 18:33:12 +0000
Manifest this update: Fri 28 Mar 2025 18:33:11 +0000
Manifest next update: Fri 04 Apr 2025 18:33:11 +0000
Files and hashes: 1: 2xy4SFQGnkPKG3JdQuprqbU5gVs.crl (hash: PxwewSTE1wgin5gJjBsW4QDuK+Cq8YMarD1pOkgUg90=)
2: 4BA5EC4293D911EE86212B1DC4F9AE02.roa (hash: KJiTJQnlya7yc1gVeGhk9f8wqpXCXgsDbpb8Ndl9Q5Q=)
3: 18F7410671F311ECBA5DA710C4F9AE02.roa (hash: tIg3kB0f/wtqp+Q6ik7/n7dKrrQEFLMxhaaJzHV4nr8=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918F88D
Validity
Not Before: Mar 28 18:33:11 2025 GMT
Not After : Apr 4 18:33:11 2025 GMT
Subject: CN=67e6eb68-ba1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ed:23:dd:d2:58:e4:1e:95:ac:e4:1c:a7:a3:
aa:d1:9f:da:7b:5d:6f:9e:ad:50:ec:5a:57:73:1c:
12:2d:0b:66:30:6c:64:b1:a3:13:20:2f:d9:54:a1:
5a:94:77:fb:60:10:db:cd:d6:79:90:39:80:2f:fa:
d1:07:a0:a7:76:d3:e6:ef:9f:0d:4c:af:30:22:0a:
7b:f9:0d:d2:b6:c3:7c:59:71:f2:02:5a:e0:4d:f8:
87:07:1c:c1:ba:ab:7a:56:0b:dd:cc:16:a0:86:d9:
c1:f5:5c:ed:37:e5:4a:c8:ad:a9:00:7a:d4:b8:77:
a6:ca:fb:f0:30:b2:08:43:d6:cb:bc:6f:fd:3c:0e:
94:a8:3a:e8:64:64:ec:18:04:3f:c6:94:9d:ff:8f:
7f:37:8b:e4:9d:0f:1b:02:85:40:26:84:4c:0f:b5:
d5:f6:3c:23:28:57:d6:ac:f9:07:58:b4:a5:e9:bc:
9f:5f:5c:e0:97:46:b6:89:79:58:5b:2c:1f:d9:bb:
33:fc:6f:ba:ea:d4:37:f1:00:91:e1:65:e2:59:11:
99:22:9b:30:63:9d:f6:ba:29:e7:bc:61:29:e9:1c:
68:c7:13:76:64:d1:c6:15:e3:20:01:c6:b7:26:3e:
c0:1b:04:65:fd:e9:de:63:08:9a:79:b5:41:34:94:
cb:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:03:DB:28:8A:10:4A:14:34:F2:9B:2F:FD:79:7E:26:E1:EF:59:A6
X509v3 Authority Key Identifier:
keyid:DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
99:5b:c7:22:d6:7b:cf:2f:ba:1a:63:70:59:b1:7b:ac:c4:f4:
ff:e5:4c:a6:9d:3c:0c:06:94:4c:37:b3:10:32:39:a3:f6:b6:
31:ec:ba:e9:2e:a4:b6:0c:7a:97:d6:9e:c2:ed:0a:8c:70:95:
71:7d:43:85:d9:56:28:0b:31:33:ac:3d:bf:87:aa:b9:1f:07:
ef:22:18:b1:04:b4:78:40:76:58:e1:bc:d3:41:12:16:94:11:
a3:69:cb:db:b8:0a:79:6a:93:37:87:05:26:51:3d:55:7f:4c:
ff:aa:78:1d:5d:1a:18:ee:88:58:9b:63:7a:da:f6:6f:98:08:
11:4b:78:5c:1a:e3:1c:62:1b:ec:6a:f5:8d:31:87:2e:7c:8a:
a7:b8:33:0c:a9:62:bc:e9:68:2a:43:ad:11:f8:e2:4a:4f:7a:
5c:32:6a:e5:da:42:83:1f:81:95:46:22:ea:7b:32:d3:f9:d1:
28:9b:86:a8:e4:1d:03:12:e4:23:63:43:b3:c6:8d:65:44:99:
b6:76:2a:cb:41:f2:a1:cf:4b:d7:22:2c:f2:de:10:bb:a3:99:
88:f0:ed:82:22:1a:63:1f:a5:06:c8:1f:8b:c6:ff:00:b9:fc:
7f:02:06:a6:d8:f6:2b:c8:7c:09:e1:57:14:95:0d:48:59:74:
e6:bf:e5:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:34:49 2025 by rpki-client