Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft
File: P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft (raw, json)
Hash identifier: aAE5oWXJLI349/FWtG2+U2bOj+6Ij5V4s0J03hnhisI=
Subject key identifier: F7:E7:B9:2D:39:8C:ED:02:FD:FC:85:2A:83:C2:A6:4C:77:1E:2D:4B
Authority key identifier: 3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37
Certificate issuer: /CN=A919F0DA/serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37
Certificate serial: 346B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft
Manifest number: 5FCF
Signing time: Fri 28 Mar 2025 14:15:27 +0000
Manifest this update: Fri 28 Mar 2025 14:15:26 +0000
Manifest next update: Fri 04 Apr 2025 14:15:26 +0000
Files and hashes: 1: P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl (hash: b/Zuw9itMIkdktLAXdzt78zRwReog3ByxsjK2CfB0dw=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13419 (0x346b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919F0DA
Validity
Not Before: Mar 28 14:15:26 2025 GMT
Not After : Apr 4 14:15:26 2025 GMT
Subject: CN=67e6aefe-c995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ad:ae:2a:1f:6e:e3:21:bf:c1:98:0f:46:d5:
9c:3d:5b:f2:c1:4b:eb:87:0c:98:69:26:70:94:a3:
5f:91:6e:24:66:84:0d:92:c7:be:9b:42:d7:d1:2c:
cb:f8:77:10:69:b7:82:d1:19:45:50:f9:17:95:a1:
1d:85:89:e2:12:6d:8b:a7:e1:b8:cc:41:a4:12:53:
35:52:32:2d:38:27:75:ce:ab:2e:50:9f:c9:4e:55:
68:25:1f:d5:c9:1a:df:98:e5:b9:71:be:c5:ec:d5:
d0:ea:92:81:5e:33:10:00:0d:53:6c:51:a0:8d:bd:
df:e5:c4:cc:9c:f8:c6:83:1a:0d:47:91:14:75:9e:
75:ff:80:d5:40:0a:f3:bb:eb:62:cf:86:fa:d6:ca:
a9:18:0c:d3:76:48:6f:95:c1:21:2f:2f:c4:9c:5a:
09:58:75:e6:1f:2a:ab:a1:ce:0e:23:34:e7:38:3f:
c6:2e:90:4c:67:47:f0:d6:4a:f5:2e:93:b7:eb:2d:
37:0d:ce:d4:9d:30:f7:0e:a2:2a:d2:8e:0e:4a:01:
a9:73:d7:39:4f:50:81:b1:6f:3b:73:84:aa:e8:cd:
0b:91:32:c6:b2:b3:78:ca:74:6e:14:8c:a2:e7:ad:
ff:6b:a2:fa:08:e6:6b:4d:5d:cd:6b:2f:4e:2b:f7:
b9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:E7:B9:2D:39:8C:ED:02:FD:FC:85:2A:83:C2:A6:4C:77:1E:2D:4B
X509v3 Authority Key Identifier:
keyid:3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1e:6e:43:7b:2c:00:ab:fc:39:9b:3b:bd:ab:37:43:3b:31:36:
7f:7a:e7:3a:f7:0d:0e:5d:73:32:9e:e2:8f:9b:e0:04:a2:9d:
17:4d:3f:23:71:df:07:3b:aa:b9:bc:1d:07:e7:bd:7e:fe:41:
75:64:f0:39:2b:4f:a4:3c:9f:4b:1d:92:80:1f:3d:11:f2:d1:
49:e2:2a:73:45:91:ae:44:45:04:9d:26:db:72:28:c1:87:c4:
e5:94:db:08:70:e9:d7:be:c0:e0:5d:a6:35:71:80:a3:c1:2d:
f8:d8:b7:c3:7c:7c:ce:6d:59:36:d4:56:88:29:3b:d4:a8:64:
ef:f1:e1:58:d0:96:61:58:63:e1:dc:c4:a9:f2:19:d4:5d:53:
9b:d2:79:1c:d2:5b:70:d7:13:1d:13:04:82:f8:c6:07:8c:a0:
aa:73:64:ad:4d:94:05:76:4e:e2:9a:42:02:ae:47:72:7f:b2:
cb:0b:1c:56:9c:73:b9:ee:0b:64:7b:2b:f7:6c:23:a7:da:be:
8f:ce:2d:fc:21:92:aa:6b:e0:64:24:dd:29:72:c4:f4:12:c7:
7e:09:ec:e5:1c:14:57:96:e7:ca:96:06:61:02:02:14:fd:e1:
0b:b9:fe:c0:90:15:58:ee:a4:77:eb:4c:12:a3:bf:c8:60:ed:
e9:50:6c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:01:28 2025 by rpki-client