Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.mft
File: gwig5Q7SdrauEaNIK8K70EDlnxo.mft (raw, json)
Hash identifier: B3Dx5XGJLkzthCNh+6ziksm+suIudnBm4izHLEfmAME=
Subject key identifier: 26:FA:5B:F1:2E:59:87:C3:71:91:53:B5:EC:7E:0A:E7:0D:42:9F:8C
Authority key identifier: 83:08:A0:E5:0E:D2:76:B6:AE:11:A3:48:2B:C2:BB:D0:40:E5:9F:1A
Certificate issuer: /CN=A91A45A0/serialNumber=8308A0E50ED276B6AE11A3482BC2BBD040E59F1A
Certificate serial: 0A85
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwig5Q7SdrauEaNIK8K70EDlnxo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.mft
Manifest number: 0A7F
Signing time: Fri 28 Mar 2025 19:48:42 +0000
Manifest this update: Fri 28 Mar 2025 19:48:42 +0000
Manifest next update: Fri 04 Apr 2025 19:48:42 +0000
Files and hashes: 1: gwig5Q7SdrauEaNIK8K70EDlnxo.crl (hash: ToIkKTy5OX2uxw0bP7r4KbtE7COp1Dfr/RS/gYsiqlw=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2693 (0xa85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A45A0
Validity
Not Before: Mar 28 19:48:42 2025 GMT
Not After : Apr 4 19:48:42 2025 GMT
Subject: CN=67e6fd1a-4f3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:40:3a:41:66:77:f6:11:c5:8b:ae:78:a7:50:
97:7e:1b:59:f9:bc:5b:e9:fd:d8:3d:06:d6:01:f6:
fd:e5:cd:d1:68:c9:68:d4:c3:0f:ad:9b:7b:77:98:
6b:6e:d9:63:64:63:eb:c2:97:ed:56:11:32:4f:0a:
84:9a:07:f9:1d:66:2a:5a:02:e0:47:d3:50:d9:96:
76:93:99:89:78:a0:97:35:29:29:fa:7a:3a:bc:96:
00:41:65:77:07:c0:5a:4c:94:43:0e:97:e7:45:42:
7d:19:bd:cd:2c:14:47:00:a5:c5:fd:8b:e6:c7:37:
5b:49:a2:30:ba:c2:82:89:f7:aa:94:e7:2d:62:d1:
27:39:64:b6:74:06:76:45:97:62:42:d7:90:7e:31:
fa:cf:e3:20:24:79:34:4f:65:4b:80:ec:87:3d:e3:
a0:52:93:93:9e:03:80:7e:d4:d3:42:fc:2b:f0:b2:
74:56:c2:73:27:b5:0a:25:1c:68:52:c3:93:75:58:
99:b0:4e:a0:df:50:b4:61:84:3e:12:70:db:8e:94:
7c:61:dd:3b:2b:f7:53:4a:d1:b5:cd:a6:13:96:30:
59:da:05:2d:4a:8d:9f:e5:79:66:18:00:e4:0c:02:
09:60:c5:e5:37:7f:6d:e1:49:c9:f8:08:99:96:bb:
ab:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:FA:5B:F1:2E:59:87:C3:71:91:53:B5:EC:7E:0A:E7:0D:42:9F:8C
X509v3 Authority Key Identifier:
keyid:83:08:A0:E5:0E:D2:76:B6:AE:11:A3:48:2B:C2:BB:D0:40:E5:9F:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwig5Q7SdrauEaNIK8K70EDlnxo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
70:89:a4:5a:e1:93:85:af:90:a5:f2:c6:fc:67:13:a2:f6:13:
93:84:f1:6b:3e:5a:d6:b1:26:22:99:6e:90:4a:7c:70:68:84:
ed:ef:dd:55:e4:82:ed:ad:49:33:ec:9f:63:bc:cc:a3:b6:1b:
76:3e:c6:9c:ba:a3:54:55:7f:9c:e8:b1:b0:bd:53:3a:f1:98:
4b:14:a9:e4:a9:70:33:c3:26:ce:e9:a2:9e:72:3b:11:a0:67:
99:79:54:7e:8a:a8:40:66:ca:6c:97:a7:41:52:b7:ad:89:a4:
c5:75:a6:8b:2b:01:32:f3:7a:54:59:b7:f8:45:fe:9a:6e:ba:
c6:3f:ab:66:20:39:dd:92:cf:91:d3:f0:eb:37:ea:44:2a:8f:
7c:8f:13:95:b5:5c:2a:12:06:1f:37:3d:f0:c9:08:05:f8:88:
ba:34:7a:4d:98:5d:e3:a9:57:99:8d:df:80:c1:25:4b:00:a7:
65:90:35:4a:00:f6:d5:61:0d:0e:a4:41:33:a2:29:e1:79:82:
f9:ae:d5:9b:8d:88:3e:8b:a7:03:14:b5:05:2d:44:80:34:85:
ed:d3:94:3c:80:9e:0c:92:60:93:eb:e5:38:1c:29:ae:a5:ff:
4c:3c:88:7e:7c:17:5e:c9:50:bb:fb:31:b1:5e:fc:69:e2:c2:
46:8d:5b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:09:21 2025 by rpki-client