Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft
File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json)
Hash identifier: scd5AKwbXsEthxZ9tb13ngClawECFQGw3ZSeHV/1SGM=
Subject key identifier: 7E:6F:04:D4:1E:3E:32:90:02:92:B2:69:68:75:E4:6B:BB:56:3E:06
Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1
Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1
Certificate serial: 347C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft
Manifest number: 3473
Signing time: Fri 28 Mar 2025 14:54:27 +0000
Manifest this update: Fri 28 Mar 2025 14:54:26 +0000
Manifest next update: Fri 04 Apr 2025 14:54:26 +0000
Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: mooOfF+effx0CnO6MBB5BmBV2E4n7wHCdXH+bbeA9Bw=)
2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: 4D8Gd5fcPnmWPe8Yaf2DxYR0OtX+KheAxOMoPi97yp8=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13436 (0x347c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A03CB
Validity
Not Before: Mar 28 14:54:26 2025 GMT
Not After : Apr 4 14:54:26 2025 GMT
Subject: CN=67e6b822-4725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c6:6e:ab:18:84:74:34:e0:52:2a:af:8b:30:
e0:03:6f:e2:9f:a3:b0:7f:24:c3:8e:49:a0:5f:61:
25:86:50:f0:14:ac:ce:4f:cc:1e:a6:01:85:59:56:
5b:b3:8d:92:1a:2b:51:6b:f7:ef:fb:fc:97:82:c4:
0a:ec:62:21:b0:6b:cd:dd:61:2d:40:9b:c5:00:06:
40:de:fd:63:cc:f1:53:3f:8a:db:13:31:72:eb:d4:
35:6d:d1:f5:59:86:4e:26:00:a6:25:8d:b8:e9:b6:
2c:3c:79:cb:4f:62:59:7e:47:2a:59:f4:e8:3d:fa:
50:ce:40:f1:9b:ce:6f:19:c4:cd:bc:65:90:1f:bc:
31:2f:b8:72:95:a9:ab:b3:7e:43:a9:71:90:c0:e8:
ed:e7:93:a6:1a:7d:13:e4:cd:20:4a:ad:72:f3:b2:
03:77:21:63:a1:bc:d9:44:cb:a4:6f:3e:20:41:e8:
64:07:a3:f7:13:2d:86:4f:25:32:7c:bd:44:3b:7b:
8b:33:9f:45:ea:9f:a0:39:95:22:29:ea:10:0d:e5:
5d:c4:48:56:5c:58:b4:36:ec:9d:2f:03:ba:ce:f9:
9c:e9:22:36:2b:55:18:e1:f9:a2:8a:ad:97:d7:50:
dc:dd:11:30:2d:fc:7f:f5:19:87:c4:f9:5e:61:10:
17:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:6F:04:D4:1E:3E:32:90:02:92:B2:69:68:75:E4:6B:BB:56:3E:06
X509v3 Authority Key Identifier:
keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
86:7d:b0:6e:fd:02:d8:21:fb:53:02:cd:f8:15:f0:08:09:3c:
86:e7:83:0e:38:bf:2a:f4:67:31:d6:22:7a:f7:7f:53:08:ed:
4d:df:fd:57:2f:0f:37:11:0d:a1:60:c6:b5:09:41:75:3c:a2:
ba:c5:a1:6e:66:bd:19:7a:ec:9f:cd:9c:72:68:38:90:36:9b:
62:b2:ed:dc:06:d1:e7:ce:2c:79:60:be:8f:a3:ee:42:c6:98:
a0:74:90:f4:98:78:8f:6f:96:22:d8:e5:c3:e4:38:9a:7e:dc:
6f:fb:97:ed:48:7b:51:c3:93:a4:c2:71:9d:b5:21:03:40:ca:
00:73:93:f4:40:5f:79:8b:dc:d5:82:20:e5:c9:19:ef:58:9a:
66:91:9a:72:06:5c:d4:c7:47:8d:c3:47:de:fb:ed:4d:7f:fe:
5a:1a:51:a7:1a:d5:cf:bc:fe:45:ee:1b:52:15:f9:28:c2:1e:
65:b0:15:cc:ed:a0:83:0c:f3:5f:5f:ce:07:83:bf:7b:fd:ec:
de:65:cc:c8:26:41:5d:52:b6:32:6a:75:29:4d:4e:d7:af:81:
8d:0e:c7:51:cd:46:a1:9e:4e:d3:5d:f0:d5:9f:23:d3:b6:7c:
32:e1:f1:03:ff:87:53:f7:9f:68:4a:ff:0b:88:6a:77:8b:6b:
b1:a7:24:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:09:33 2025 by rpki-client