Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft
File: OPsGr2SfQA9ROZSTW-335JJwyKo.mft (raw, json)
Hash identifier: Izg/o5d8OTyYzLPcjEvz9VXgpfFGz1rxIQOjT3jTXyg=
Subject key identifier: E7:63:19:BD:D8:DC:49:3D:E9:8B:C1:8C:77:FA:50:8C:71:5A:59:0E
Authority key identifier: 38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA
Certificate issuer: /CN=A9198267/serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA
Certificate serial: 09E6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft
Manifest number: 09D8
Signing time: Fri 28 Mar 2025 20:10:47 +0000
Manifest this update: Fri 28 Mar 2025 20:10:46 +0000
Manifest next update: Fri 04 Apr 2025 20:10:46 +0000
Files and hashes: 1: OPsGr2SfQA9ROZSTW-335JJwyKo.crl (hash: deUS6lL9oNQlKWiB/xkPs70Ha7ZKiWdYAOatDhMwZds=)
2: 2F43EE7278CC11EAB69DAC75C4F9AE02.roa (hash: Ppkzsr60oRdN5wiOLOk9zEX5+OsQNQur5z6iE1GywgI=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2534 (0x9e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9198267
Validity
Not Before: Mar 28 20:10:46 2025 GMT
Not After : Apr 4 20:10:46 2025 GMT
Subject: CN=67e70247-d7da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f9:ba:49:36:df:2e:ae:d5:b2:07:13:52:fc:
1b:58:8f:57:5d:e2:a7:e7:71:aa:f0:95:5b:07:06:
43:19:f2:3a:f5:22:b9:0d:4e:be:52:f0:3b:2a:79:
fa:b6:b3:28:44:d6:70:ee:b7:69:2b:b2:40:9e:24:
dd:33:e7:67:1b:e6:73:70:36:b9:1b:31:3e:9f:cf:
21:3e:ea:5a:1d:2b:93:f1:ac:08:32:17:fe:ab:d6:
31:c1:27:2d:78:0f:7c:64:ea:5b:c6:5b:a2:48:48:
34:e0:fe:9a:36:97:e0:45:85:1a:47:7d:ba:d1:66:
d2:ae:33:b3:e7:e1:7f:42:30:c3:8c:ac:ad:85:3e:
59:37:56:90:de:de:40:45:d0:8d:6f:43:7b:75:17:
e9:05:b4:06:ea:b4:b3:8a:05:23:1f:10:68:9c:18:
a8:a5:e4:58:08:36:2f:08:f8:46:22:fc:f2:29:64:
25:e3:b7:6d:16:0c:a7:71:1d:ee:fc:94:03:54:d1:
81:aa:24:75:40:43:82:d8:78:72:b7:c6:a0:7f:cd:
1e:c7:c6:32:48:09:df:cb:d8:72:fe:e1:3c:1e:44:
44:d2:ce:d6:a8:15:d3:7b:c3:a7:0b:c8:96:93:54:
95:5e:af:1d:e1:aa:b5:cb:4f:36:d5:64:81:86:5f:
c0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:63:19:BD:D8:DC:49:3D:E9:8B:C1:8C:77:FA:50:8C:71:5A:59:0E
X509v3 Authority Key Identifier:
keyid:38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
af:14:1f:b5:a1:cb:03:d2:ab:3a:e1:b0:e6:d6:51:6c:72:5e:
72:03:e8:56:6c:d8:81:51:32:3c:c7:74:e9:e4:b4:10:de:60:
06:49:4f:aa:61:38:c8:e1:0d:9f:ab:99:45:a2:49:43:2a:13:
12:7b:53:e4:56:2c:52:d5:16:59:2f:61:3d:c9:6f:fc:89:2d:
fa:5f:d6:5a:9a:a9:29:8f:74:06:a4:c4:ff:ce:47:fb:68:21:
c9:e5:23:36:68:53:35:3e:a5:93:c0:85:e3:79:0a:5f:73:c3:
48:49:d8:4c:14:ac:5a:9f:e1:3f:98:3b:3c:b9:f8:db:d7:ce:
c6:00:12:2e:67:c2:65:0a:a3:32:90:2b:5c:95:4e:5a:f0:05:
ae:c4:49:db:8e:fa:93:53:27:73:7f:6c:d7:b4:7f:e0:49:b8:
a0:dd:02:56:54:41:b6:26:ba:73:bd:71:63:fc:45:bb:68:eb:
a3:c5:d8:9b:73:ea:25:f0:74:66:97:17:b2:02:ef:50:dc:c2:
43:af:2f:dc:71:00:56:1e:95:32:a5:51:3f:f5:e1:d3:50:7d:
75:ff:30:c5:3b:31:f7:eb:6d:ce:59:12:93:fb:9c:39:c3:34:
eb:ad:09:e0:c5:90:f8:42:e9:51:d2:1e:c9:fa:88:c5:e4:66:
8b:46:e1:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:34:39 2025 by rpki-client