Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft
File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json)
Hash identifier: OzkeuGx3y8EV30R2KdYD6oH/mbsHjM3fNBwybceVHN8=
Subject key identifier: EE:7D:13:61:BA:97:0B:57:0A:61:5F:B1:D0:6C:C4:10:51:69:71:7B
Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE
Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE
Certificate serial: 0815
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft
Manifest number: 0800
Signing time: Fri 28 Mar 2025 21:09:38 +0000
Manifest this update: Fri 28 Mar 2025 21:09:38 +0000
Manifest next update: Fri 04 Apr 2025 21:09:38 +0000
Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: yF+Ttn0gq02Br4Ik3gQkTluDGPC60g3QN0PNPDhMP7o=)
2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: ZWM4HJUjC3JgAEYknxCATq6PGI5BXk42LHpdEZQRJ0I=)
3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: oVaIkIIp594wdZKn2XCmHgy069EyuIaCAvG8B279YGo=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2069 (0x815)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9198D02
Validity
Not Before: Mar 28 21:09:38 2025 GMT
Not After : Apr 4 21:09:38 2025 GMT
Subject: CN=67e71012-81f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b4:01:92:65:3e:ba:9a:66:41:f6:85:cc:32:
09:bb:c5:7d:0a:08:30:d5:cb:32:c3:8f:67:ff:ed:
58:68:52:02:20:f4:7c:3e:5b:ba:6f:86:a0:66:5f:
0b:8b:d3:79:f0:b3:e8:87:18:22:d1:a4:f8:2b:95:
f9:06:2c:28:c9:86:69:ed:5a:94:79:ea:83:e0:d0:
17:1f:d0:f9:b0:6d:b7:44:a7:43:1e:a1:a4:7b:ff:
bc:19:75:8e:87:fd:ca:3f:1d:d3:7a:cf:d1:47:91:
e0:9f:eb:10:ba:2f:5c:e9:5d:ee:01:05:d1:6f:b7:
9d:6a:ab:5c:9c:d5:b7:7d:65:6a:78:99:e1:ce:70:
64:e4:70:89:fa:ca:0d:11:76:62:ad:a8:82:90:d2:
e9:bc:14:76:cd:64:ba:a2:d8:7d:e8:ce:d1:49:b1:
ef:1d:68:ef:eb:b5:e2:06:da:f2:cc:9a:87:87:7a:
3d:72:03:28:9d:fd:ff:2f:f0:b3:a5:7d:88:59:b6:
ac:9f:c4:e1:f5:65:c6:22:94:40:c7:be:e2:d0:fb:
4f:af:20:8a:20:fd:ef:7f:39:8e:c8:1b:54:59:a4:
13:8d:71:c4:56:f8:a9:0c:b3:9f:e9:e0:60:79:fa:
a2:b3:f8:ce:85:e9:71:9b:38:cd:6b:c1:d8:65:74:
46:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:7D:13:61:BA:97:0B:57:0A:61:5F:B1:D0:6C:C4:10:51:69:71:7B
X509v3 Authority Key Identifier:
keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
35:be:8c:8a:b5:a9:73:94:b8:84:a2:14:4f:7c:b3:22:55:f9:
1d:7f:d1:3b:79:58:ad:6d:89:aa:eb:5d:1f:3b:61:20:4b:a0:
49:90:ce:12:f6:2b:2a:65:d0:f4:bc:a0:97:9d:29:ea:5f:88:
9c:76:40:83:5f:21:92:dc:c7:85:d6:1c:2a:3c:9f:a1:3f:3d:
80:ef:b6:81:82:a4:f8:ca:3d:35:67:e8:06:ae:b9:3f:51:bd:
b1:8b:9f:87:68:3a:97:bd:58:43:37:9b:9b:6a:a5:10:f0:72:
53:99:c7:d3:20:96:9f:5b:53:13:5f:7e:71:22:72:d1:fa:3d:
03:76:e6:60:30:5e:67:60:97:03:87:f2:61:f2:90:66:a0:76:
42:62:3c:b7:32:52:31:93:0b:f5:10:99:2f:f8:24:bd:c9:90:
29:07:99:53:2b:c3:b6:d4:f8:5c:e5:34:25:cc:06:16:99:aa:
e7:41:9a:9f:fa:b9:c6:37:0e:37:04:d3:e7:d1:74:8d:b2:d5:
e8:82:86:74:5d:68:7b:1a:2b:a9:dd:bb:79:3d:09:db:37:07:
14:c5:4e:4d:db:51:66:4b:90:ae:5d:ce:86:70:08:53:20:db:
67:8c:e1:98:48:a7:67:3d:d7:17:75:62:1b:06:a9:16:33:59:
e6:11:7e:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:34:40 2025 by rpki-client