Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft
File: jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft (raw, json)
Hash identifier: 2B1QsIKGUU/F8T+Gde2Dy5W/wfCw7VBe24wdeAscvs4=
Subject key identifier: 77:F5:1F:F9:2A:50:00:1B:55:EF:87:4A:A7:4C:6C:F9:B2:65:74:63
Authority key identifier: 8C:F4:23:98:0F:D3:A7:F6:7E:C5:F4:A5:43:A2:03:A5:3E:3C:E6:76
Certificate issuer: /CN=A919DD2D/serialNumber=8CF423980FD3A7F67EC5F4A543A203A53E3CE676
Certificate serial: 11D6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft
Manifest number: 11CF
Signing time: Fri 28 Mar 2025 17:17:57 +0000
Manifest this update: Fri 28 Mar 2025 17:17:56 +0000
Manifest next update: Fri 04 Apr 2025 17:17:56 +0000
Files and hashes: 1: jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl (hash: oRXDYGOYpGzHunPlY+fkOpmvC78g8MmWZHWh+wxCW8k=)
2: A295F860E71011E8899C3917C4F9AE02.roa (hash: MpKbuC4p+zIoKJkZfEG3DvMzDY6zY/kK40o2YHQcwMc=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4566 (0x11d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919DD2D
Validity
Not Before: Mar 28 17:17:56 2025 GMT
Not After : Apr 4 17:17:56 2025 GMT
Subject: CN=67e6d9c4-b43c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:96:9e:69:fd:10:52:26:51:ce:2a:fe:d5:b5:
71:9e:50:84:02:91:73:f0:79:23:ec:a9:59:8d:ba:
f2:1d:6b:72:de:14:d7:22:3e:ae:34:6a:6a:b9:4b:
9f:d4:ac:18:c8:5b:0f:93:ae:4a:22:d4:37:4c:b2:
bd:7c:da:9b:62:60:10:52:a2:1e:fb:04:33:9e:05:
19:8d:98:a2:47:f4:f7:8f:e0:14:26:0f:08:27:44:
62:25:5e:d9:97:ec:59:2b:6d:a1:13:95:74:4f:80:
55:23:75:c4:b8:3b:3b:ac:58:f6:f7:14:0a:2c:86:
2e:00:17:51:c1:a5:5a:53:25:f2:86:a6:83:cc:b6:
e2:50:7d:f2:18:f5:60:c1:29:6d:8c:34:9f:fd:c8:
d7:4c:bf:95:9e:2b:2b:88:7a:1b:3c:ce:0e:0a:fd:
0b:8e:28:1c:2c:ca:d6:39:03:fe:86:78:e8:d2:41:
92:47:50:17:62:54:79:93:72:4a:87:64:b7:2a:2d:
07:50:9b:00:e4:ca:5f:98:af:ed:5e:8b:06:86:20:
8e:d9:76:ae:d7:3c:89:8d:da:6f:6c:06:f6:08:88:
6e:82:fb:9c:8c:e0:1e:b5:ce:7b:6d:49:4b:6b:8b:
ce:ab:be:0a:ec:c8:89:70:8f:ea:e8:aa:81:9c:9f:
64:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F5:1F:F9:2A:50:00:1B:55:EF:87:4A:A7:4C:6C:F9:B2:65:74:63
X509v3 Authority Key Identifier:
keyid:8C:F4:23:98:0F:D3:A7:F6:7E:C5:F4:A5:43:A2:03:A5:3E:3C:E6:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
68:57:81:f7:bb:d0:a1:a4:c2:d1:e2:87:fc:4f:cb:30:d2:33:
c6:a0:49:70:51:a7:87:10:91:ef:fc:26:e0:d5:d7:22:8e:db:
d4:c6:d0:29:14:b4:e2:da:c6:bb:55:21:25:e2:94:ee:0e:b1:
0a:62:c0:20:bd:60:d9:98:e6:1a:3d:91:55:d9:50:52:7c:8f:
f0:0b:ca:39:ff:82:2b:34:14:76:47:86:11:4e:ca:53:e2:12:
46:bb:90:d4:be:73:f6:94:dd:de:79:65:53:1f:98:17:ac:ee:
e7:55:74:b0:97:d7:2a:3b:06:1c:59:3a:ff:7a:1d:01:c2:b1:
53:8f:44:9d:3b:7a:22:76:7c:ce:21:15:32:11:05:7b:8b:7a:
35:ef:b7:19:a6:42:e1:97:7a:b7:c4:b1:7c:1e:7b:60:6c:1a:
13:5a:cc:a3:28:74:75:82:e8:e1:21:01:26:50:fa:c9:99:eb:
b8:36:c1:f6:df:23:b3:b9:34:d7:15:4f:dd:ed:44:83:5d:ea:
42:b2:f0:b4:a5:3a:6b:e2:54:25:ae:60:f5:f4:53:87:ce:3d:
be:59:7f:51:c2:a8:f3:51:dc:b1:bc:6f:9b:85:fc:d3:fb:36:
cb:fc:42:a4:18:67:be:bf:37:e2:e2:ea:d5:ab:18:6f:79:85:
3e:14:1b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:13:43 2025 by rpki-client