Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft
File: 7TaUIY3LHq89GvXGq8Axptt-bOU.mft (raw, json)
Hash identifier: Alw/Nm4lddnl0aOEYaDylbFEwILLE/RrTFpoLTtROrU=
Subject key identifier: A5:FF:0C:62:96:6D:3F:14:87:8A:F4:D4:B0:BB:67:60:FE:02:45:88
Authority key identifier: ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5
Certificate issuer: /CN=A919EAF3/serialNumber=ED3694218DCB1EAF3D1AF5C6ABC031A6DB7E6CE5
Certificate serial: 196F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft
Manifest number: 1963
Signing time: Fri 28 Mar 2025 16:31:12 +0000
Manifest this update: Fri 28 Mar 2025 16:31:12 +0000
Manifest next update: Fri 04 Apr 2025 16:31:12 +0000
Files and hashes: 1: 7TaUIY3LHq89GvXGq8Axptt-bOU.crl (hash: DV8/cNPSSAh9RK/tXkEvPYOfXQVYHI2qwgTpKuf7epQ=)
2: 2958A208394011EF8BFF2329C4F9AE02.roa (hash: Rgcy8bLfZuMZaK0O0JgH1tVB2CHU0nZokr3ybevC1XM=)
3: 545743246D1911E7A4448D81C4F9AE02.roa (hash: 1AEdA1dYtxSEeV6/iG9fPyT5XqCCH+yVS2KSQ0ngLNo=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6511 (0x196f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919EAF3
Validity
Not Before: Mar 28 16:31:12 2025 GMT
Not After : Apr 4 16:31:12 2025 GMT
Subject: CN=67e6ced0-9958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:40:20:92:41:f0:99:ee:7c:b8:e6:b2:10:41:
78:be:fe:44:b5:44:92:0b:ab:ae:64:9e:9e:39:db:
4f:31:27:02:c0:7a:02:0e:89:55:8e:20:c8:33:91:
a7:7c:d4:4f:1a:c6:d1:cd:86:ca:c5:61:d4:32:35:
60:18:7b:df:e9:49:aa:d5:c8:30:38:1f:c1:98:7c:
a5:58:64:eb:3b:2d:c1:26:a2:1a:94:16:97:b9:70:
69:02:b2:b9:25:2b:54:a2:86:e0:16:ea:53:d5:a8:
f2:cf:55:64:f1:28:05:50:e9:09:05:a1:da:38:d4:
0b:01:07:da:4a:68:c5:a2:ca:89:8d:5c:b8:fb:16:
6b:4f:12:0b:9f:0b:c5:1a:34:06:da:80:40:97:71:
d9:9f:81:e1:84:ae:63:c4:e4:29:d9:ec:c4:26:dd:
36:02:70:07:89:1a:31:22:65:bc:5e:05:53:e3:1f:
d5:93:5c:14:ee:ab:5a:d8:aa:e7:62:6d:a3:7b:e4:
4f:4c:46:93:c3:8b:d9:d6:b2:ee:ed:58:11:1f:e0:
65:ab:85:24:eb:10:a7:8d:1d:c0:55:67:fb:d5:ce:
8f:ca:dc:d3:fd:dc:29:94:ed:df:66:dd:31:d6:70:
2c:d4:35:14:83:86:ee:e8:2c:d1:33:70:3b:8c:26:
97:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:FF:0C:62:96:6D:3F:14:87:8A:F4:D4:B0:BB:67:60:FE:02:45:88
X509v3 Authority Key Identifier:
keyid:ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
68:ec:70:1b:9d:86:4f:c9:7e:d0:97:8b:7c:62:6c:f6:8f:13:
0a:ec:1c:e7:f0:3f:45:d4:c9:e5:0d:0d:e5:e8:5f:f1:c0:c5:
34:dc:c6:8e:43:ab:10:e1:8f:00:07:3b:2e:c1:0e:1d:61:a2:
06:78:4b:72:fa:99:7e:ea:36:52:04:a5:71:84:58:66:d6:36:
48:db:c7:db:0a:32:18:c3:d9:07:67:92:5a:41:f1:14:cd:50:
50:47:43:bd:ad:03:96:0d:86:46:0b:cd:ef:83:01:e1:0e:a9:
90:07:17:7a:93:96:30:2c:e8:81:c6:08:79:36:72:bb:25:19:
89:7a:f4:68:4a:78:57:52:ef:25:59:e1:6a:ab:e0:69:87:06:
69:2d:87:50:19:2f:e8:36:bd:d4:b4:90:b3:92:7c:5f:a1:0b:
03:73:9c:be:a1:86:6a:44:f2:42:d5:43:a7:55:0b:a0:96:76:
28:2e:e4:c0:f1:cc:e8:b8:03:31:0a:0d:79:b3:4c:ae:1b:b9:
47:14:c3:e9:7c:ea:30:31:57:3b:ab:33:a6:d1:15:79:5c:16:
f4:18:72:06:4f:a1:db:b7:7c:03:5e:29:01:db:de:44:e9:0d:
60:b1:5b:3f:ef:14:9b:26:fa:f2:00:cc:2b:c3:1a:20:77:da:
ec:21:fb:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:13:34 2025 by rpki-client