Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft
File: s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft (raw, json)
Hash identifier: GtMA/Ed6dDMpXTou6pJ8LQWbAiXYIdLYuZf8O+idaYA=
Subject key identifier: 11:7F:BA:33:88:2F:DC:38:E3:DA:2D:3A:7C:E0:79:49:06:D6:59:77
Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25
Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625
Certificate serial: 362E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft
Manifest number: 355B
Signing time: Fri 28 Mar 2025 14:24:49 +0000
Manifest this update: Fri 28 Mar 2025 14:24:48 +0000
Manifest next update: Fri 04 Apr 2025 14:24:48 +0000
Files and hashes: 1: s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl (hash: MpskzpQrUhlb8SMnoP18kn9QoDz9p8k5RInEIiMqh9k=)
2: B36EA83C70B111E98CFFF710C4F9AE02.roa (hash: YPxJgAFP2pm+e64iG82yJRkFHNHfja4F2rH7VSVuFpA=)
3: 4BE40306048011F0B0453C78C4F9AE02.roa (hash: fE/Qf0AXIHRZf/MqwShJMCoVZerj1KRBAoQYxJ1KSAk=)
4: 160B219870BA11E99E0F6D2DC4F9AE02.roa (hash: 3QqIb/PpEMe7CSOMb9cfzIUcXW1tet3HABkiD8A3zkU=)
5: 26A143C291EB11EF8A024083C4F9AE02.roa (hash: apyNb0gzlP7QIPlzF+1SGVtUOjpAimi2EUrocnrYZRM=)
6: 18F4FD76918111EC93DCA42AC4F9AE02.roa (hash: 8JKaEfgtThOrevd/FI1wUsWQCsjDZCsWDfH4rtPvYOM=)
7: B0EB27B470B811E9B32F6726C4F9AE02.roa (hash: Yn6iyp3sOHzht7NrUVV1K95CTLrIyR+zeCU6DhPlbi0=)
8: 9538F912A09511EE9616A86EC4F9AE02.roa (hash: UIhH1UdXX1/WldxbBw/5eFdUsW8H5rv3xowCVi4x/js=)
9: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (hash: E9Q0DLQxOx2PNLNxJzUPOmEekE0nfR8RNH8+NziMkYc=)
10: 9AF37E96D71B11EA9532F30CC4F9AE02.roa (hash: 6xFx//HoX9CSfFy+iBeZSYBO+hoRtkc5fjd5y3qvsJk=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13870 (0x362e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91964B3
Validity
Not Before: Mar 28 14:24:48 2025 GMT
Not After : Apr 4 14:24:48 2025 GMT
Subject: CN=67e6b130-cce5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ff:39:a0:4e:a2:86:8d:a1:37:f4:bc:74:91:
35:f4:f5:62:6e:82:a9:68:ff:c2:d6:0f:30:5c:15:
a6:e3:78:35:cd:40:02:3e:9a:06:36:31:b5:02:d8:
cb:5b:b9:6a:bf:12:a4:4e:79:8e:a2:85:63:93:19:
3a:f3:a9:70:64:62:6c:79:11:23:8c:db:ba:0d:e6:
34:85:9c:1e:14:f4:76:5e:4d:f6:8a:39:cc:59:22:
29:86:c3:40:b4:1e:b7:fc:76:b3:08:ba:c9:52:ef:
8e:0b:90:d1:45:48:33:83:f8:a4:9c:7c:f3:67:a5:
62:a1:31:61:92:15:b1:f4:83:4b:1a:d9:85:57:47:
80:5b:43:52:92:74:09:2d:f1:0c:5b:06:ae:20:9e:
91:ae:d7:5d:5f:b6:af:ce:44:9e:cb:a7:29:4c:db:
cf:67:f0:8a:5e:3d:a1:72:1e:d3:fa:f1:de:d4:02:
20:f1:d9:c3:e9:3e:8f:34:1c:f0:2f:23:54:41:45:
8c:5d:07:0c:93:0b:64:8f:9a:b8:9a:61:3d:95:74:
87:93:e9:67:72:9e:4e:d4:c5:26:d2:40:16:af:ab:
fb:3b:d1:8c:eb:b0:28:88:7d:60:ca:e8:ec:62:a5:
67:db:95:43:9b:fd:10:a2:2f:f2:fc:18:7b:bd:2b:
ed:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:7F:BA:33:88:2F:DC:38:E3:DA:2D:3A:7C:E0:79:49:06:D6:59:77
X509v3 Authority Key Identifier:
keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
95:ab:9f:00:b9:58:79:a2:9f:cb:28:70:d5:eb:a7:21:de:73:
b0:e5:9a:75:d3:2f:9b:11:02:53:7f:de:da:8b:7d:4f:23:87:
b4:e1:91:e1:0f:7b:79:1f:73:65:61:7c:1f:ac:63:7c:04:7f:
f9:36:87:70:b8:86:3a:45:c5:21:6e:93:40:68:65:06:fc:6f:
04:db:e9:dc:0e:e4:1c:1c:d6:e1:a0:09:8f:0c:ae:a3:42:88:
3b:6d:b6:bc:eb:44:61:4d:2e:37:93:18:98:9d:26:65:fe:0d:
24:52:38:a2:12:b5:09:3b:fa:3e:dd:12:3a:3a:2f:97:7e:4b:
9e:f1:84:95:10:73:a2:2a:82:eb:05:93:9a:5f:8b:4e:05:4b:
16:2e:20:31:aa:8b:2b:51:e5:4c:47:e6:94:b3:f3:8e:87:19:
c2:42:d7:31:54:6a:58:46:a1:3e:0a:0f:8f:6a:98:ea:95:ba:
36:d1:e6:54:43:ce:c8:5b:99:9a:56:0b:7b:91:17:e9:e9:c3:
9a:87:f5:74:f2:2e:23:7c:52:56:32:11:7f:98:7e:06:50:fe:
ea:32:00:94:ce:55:22:3a:f0:b2:4c:90:49:2b:73:40:c6:9c:
63:b6:2b:9f:22:36:12:19:0a:00:3c:7a:70:bc:57:ce:e9:cc:
07:93:de:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:37:27 2025 by rpki-client