Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft
File: PTiRpGy8urR0eN6kDSkI9nzOOyo.mft (raw, json)
Hash identifier: ojIJtej6NoaBMqGcro6V3Ua5hTGMSiUWeiwlp1MrrRs=
Subject key identifier: FA:6C:C2:3C:71:57:D7:D2:35:2A:2C:FD:DE:D3:01:1D:7A:E4:79:F7
Authority key identifier: 3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A
Certificate issuer: /CN=A91AAEC2/serialNumber=3D3891A46CBCBAB47478DEA40D2908F67CCE3B2A
Certificate serial: 0861
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft
Manifest number: 0859
Signing time: Fri 28 Mar 2025 20:59:20 +0000
Manifest this update: Fri 28 Mar 2025 20:59:20 +0000
Manifest next update: Fri 04 Apr 2025 20:59:20 +0000
Files and hashes: 1: PTiRpGy8urR0eN6kDSkI9nzOOyo.crl (hash: /WXVrRjBSvpVGCVhNCLOxL0WGzLl30boEzv/5f1skIc=)
2: DFEA30745C3011EEB250DE0EC4F9AE02.roa (hash: tsMkLvjKn0Jno43pXfv561BkhcMo5hMdRzf+ZccASKU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2145 (0x861)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AAEC2
Validity
Not Before: Mar 28 20:59:20 2025 GMT
Not After : Apr 4 20:59:20 2025 GMT
Subject: CN=67e70da8-2d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7e:2d:74:07:08:93:01:60:68:4e:33:40:8b:
27:92:ce:cd:7d:7c:69:c6:a8:1a:5c:d8:d9:88:98:
2f:09:f0:8e:0d:8e:ce:65:67:44:d2:5b:42:77:65:
34:fe:98:cb:ed:4a:29:ca:a7:15:d4:72:41:17:28:
a3:94:1e:c8:83:e2:5d:03:a3:76:23:23:27:89:fd:
d3:2f:06:5b:98:96:a8:62:f4:9a:f5:4c:09:7b:3e:
1e:02:06:3b:0a:d9:97:8f:bc:72:eb:7b:e2:e9:ea:
7f:13:ed:0b:2f:c3:14:5b:2f:00:34:46:01:d5:72:
b5:67:76:c7:6d:7b:a5:77:78:64:95:f9:11:47:07:
d0:e0:53:c7:96:39:99:7f:98:9c:dd:c6:76:c6:83:
26:79:79:c3:d8:7a:1c:99:9c:45:46:c0:50:a9:08:
ac:42:62:be:c8:e1:bd:c1:82:fc:ba:f1:b3:70:36:
90:1a:fe:ef:f3:24:df:25:49:62:6f:f8:08:49:83:
2f:84:51:ff:50:b3:0f:ad:24:9a:50:de:a6:41:4a:
d0:32:fb:58:6d:8b:18:23:26:e3:6a:f8:ac:45:08:
11:ca:1e:4b:fe:8a:95:79:04:d4:22:71:dc:80:36:
8f:04:27:8c:88:8b:0a:ab:54:7a:e9:4f:35:f0:a8:
b9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:6C:C2:3C:71:57:D7:D2:35:2A:2C:FD:DE:D3:01:1D:7A:E4:79:F7
X509v3 Authority Key Identifier:
keyid:3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
77:e8:a4:72:53:5a:bb:ef:3b:69:c1:6b:f8:2b:e1:11:c7:eb:
bd:35:02:8e:06:cc:c4:c2:84:2f:f9:9f:b7:8b:71:2f:44:5d:
43:8a:b0:14:02:f4:dc:3d:1c:9d:72:62:a6:f2:29:31:cc:12:
27:1f:a7:ca:c2:ce:72:86:3b:bb:88:b9:c4:87:ba:4b:f0:e1:
ba:4a:e1:be:1c:66:46:07:8f:75:28:71:8e:ef:68:d3:e7:f6:
21:fc:fa:15:47:b5:d4:02:7d:5c:22:18:02:2a:04:25:19:18:
6c:f3:79:fd:53:24:5f:47:b4:4f:c8:af:cd:12:56:1e:6e:bd:
78:33:6e:fe:75:86:a5:ce:f2:e6:2f:b7:51:c3:42:9e:39:ef:
8e:e0:a0:10:5b:1a:96:94:d0:c8:2e:79:75:bd:1a:d5:a4:cd:
ad:0d:41:cc:cb:03:ed:7e:2b:2f:12:c2:73:9c:33:29:e7:b9:
96:f6:42:46:92:05:09:17:09:86:2e:ef:a5:0f:5d:bc:05:19:
aa:06:ff:60:48:37:33:d0:d2:0d:ea:27:c5:23:6e:0b:c8:b0:
09:68:71:74:9e:25:b4:8f:de:cc:c3:2c:1e:31:34:7c:bc:b6:
d1:22:e8:e9:d8:15:3c:44:f7:67:d1:57:77:15:52:f3:d5:cf:
8c:ef:1e:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:00:37 2025 by rpki-client