Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A96/909D74901DA311E2A00B069908B02CD2/msqKXCR04g_6ZzTz9yVL__GFE_4.mft
File: msqKXCR04g_6ZzTz9yVL__GFE_4.mft (raw, json)
Hash identifier: kCs5UW5TB1578FWrFxbQjl9aeVtNgORScwInuWVAMBA=
Subject key identifier: 96:A0:5A:FF:55:49:57:95:1D:0F:AC:33:0C:F5:E8:A7:2D:77:B2:A6
Authority key identifier: 9A:CA:8A:5C:24:74:E2:0F:FA:67:34:F3:F7:25:4B:FF:F1:85:13:FE
Certificate issuer: /CN=A91A8A96/serialNumber=9ACA8A5C2474E20FFA6734F3F7254BFFF18513FE
Certificate serial: 345F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/msqKXCR04g_6ZzTz9yVL__GFE_4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A96/909D74901DA311E2A00B069908B02CD2/msqKXCR04g_6ZzTz9yVL__GFE_4.mft
Manifest number: 345F
Signing time: Fri 28 Mar 2025 15:13:55 +0000
Manifest this update: Fri 28 Mar 2025 15:13:54 +0000
Manifest next update: Fri 04 Apr 2025 15:13:54 +0000
Files and hashes: 1: msqKXCR04g_6ZzTz9yVL__GFE_4.crl (hash: susFx0vybDjJlpXV2CT/ZvOdblpFaTrU/D7tOGHCTpY=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13407 (0x345f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A8A96
Validity
Not Before: Mar 28 15:13:54 2025 GMT
Not After : Apr 4 15:13:54 2025 GMT
Subject: CN=67e6bcb2-57a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ff:be:7f:e9:2d:31:a2:ee:22:77:45:3d:87:
07:72:c5:9e:b2:3a:1c:c3:b8:8d:74:93:94:89:05:
24:68:24:68:4c:c0:ac:d7:2d:02:b9:58:27:e3:25:
cb:83:d1:11:41:9d:ec:ea:34:d6:ec:87:f9:04:2f:
67:e9:74:84:10:4c:1b:6c:6b:8b:e2:5e:6b:86:a1:
0d:b0:64:f9:6d:24:90:7b:d3:0a:90:1d:80:61:27:
73:01:69:b9:54:72:b4:5d:2f:88:ee:4b:17:eb:3b:
33:14:7f:64:1d:8f:09:37:f0:2d:3f:9a:3c:af:d2:
c8:9b:98:fb:3c:45:2c:eb:69:e9:b8:fc:22:b2:b2:
eb:3f:c6:5a:aa:95:b8:4b:e2:54:96:68:a3:62:08:
1c:91:20:73:ec:b9:55:ff:33:7b:7c:ba:a3:c7:02:
93:9a:8c:80:11:c8:d2:89:8b:7a:30:c3:da:21:2a:
39:80:74:ee:9e:24:83:39:ac:8c:5a:96:8b:ec:6b:
ac:1d:6d:dc:6f:5d:ca:17:e5:6d:e0:f5:5a:5c:f0:
b8:3a:4d:cb:18:1f:bf:01:45:e8:29:68:79:06:26:
49:6c:d8:87:d3:73:96:97:64:7d:c3:93:65:ef:62:
ac:97:63:6d:99:ba:80:54:41:aa:ff:c5:4a:45:4e:
1c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:A0:5A:FF:55:49:57:95:1D:0F:AC:33:0C:F5:E8:A7:2D:77:B2:A6
X509v3 Authority Key Identifier:
keyid:9A:CA:8A:5C:24:74:E2:0F:FA:67:34:F3:F7:25:4B:FF:F1:85:13:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A8A96/909D74901DA311E2A00B069908B02CD2/msqKXCR04g_6ZzTz9yVL__GFE_4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/msqKXCR04g_6ZzTz9yVL__GFE_4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A96/909D74901DA311E2A00B069908B02CD2/msqKXCR04g_6ZzTz9yVL__GFE_4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
51:3c:af:aa:08:6c:e9:0b:64:70:22:a4:6a:e4:1d:a6:76:29:
66:45:ff:81:0f:81:cc:0f:8a:79:66:b2:ad:24:0f:b1:c7:59:
0b:cb:a0:fc:74:24:17:6d:dd:9e:65:85:68:ae:d8:64:7b:91:
7a:e4:bf:8c:86:24:7b:9c:54:04:e2:d4:ab:9e:d3:73:1e:4a:
55:01:53:c0:42:42:ce:b9:2a:0e:96:04:19:46:81:d7:85:75:
62:a0:64:3d:b9:3c:0d:ea:3d:4b:7f:29:b7:8e:0c:4e:ce:95:
60:55:db:e5:1c:97:f6:03:8a:a4:01:4f:b1:44:b1:f8:e0:9d:
3c:c2:78:59:7c:ab:8f:cb:1c:20:e7:4d:4c:73:b6:6e:41:09:
6b:e0:70:39:d0:25:a7:1c:69:e9:d4:13:a8:90:e3:8e:ee:61:
87:06:3c:da:b3:8d:b7:6b:49:87:9f:8e:44:e4:0a:dc:aa:c6:
ec:ce:be:fb:63:58:75:d1:fc:2d:03:51:88:c1:ec:57:41:cf:
37:8c:db:e5:34:ce:44:5f:43:db:65:8f:98:59:32:54:31:a6:
8e:06:8b:e8:20:b3:ea:30:79:99:4e:df:d0:80:52:91:95:e9:
df:e0:e4:11:f8:17:4c:53:b5:77:bd:c0:8a:ab:cd:b8:c5:f0:
54:d9:2c:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:23:01 2025 by rpki-client