Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.mft
File: uo1v5dgowFOZs-GqZY_AWIYf3OA.mft (raw, json)
Hash identifier: dkPG22WEtzPX5B2faYs11oKNofU+Lelz4Lyr9TWRrQI=
Subject key identifier: 9C:66:1C:B7:3C:91:60:D2:B9:D6:A2:90:1E:9C:B8:59:76:D5:24:A5
Authority key identifier: BA:8D:6F:E5:D8:28:C0:53:99:B3:E1:AA:65:8F:C0:58:86:1F:DC:E0
Certificate issuer: /CN=A91AAF02/serialNumber=BA8D6FE5D828C05399B3E1AA658FC058861FDCE0
Certificate serial: 0F10
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo1v5dgowFOZs-GqZY_AWIYf3OA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.mft
Manifest number: 0F05
Signing time: Fri 28 Mar 2025 17:45:35 +0000
Manifest this update: Fri 28 Mar 2025 17:45:35 +0000
Manifest next update: Fri 04 Apr 2025 17:45:35 +0000
Files and hashes: 1: uo1v5dgowFOZs-GqZY_AWIYf3OA.crl (hash: b3p4VLDJvHUfP73ZSjVpo+t3fCgLO12o/YC2l+26Z0U=)
2: 7EA856A6C3F511EEB2610F2FC4F9AE02.roa (hash: tn6ujwfx2fxOjVcWSqeXpg3bHl3JICdgt6OHucuWivU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3856 (0xf10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AAF02
Validity
Not Before: Mar 28 17:45:35 2025 GMT
Not After : Apr 4 17:45:35 2025 GMT
Subject: CN=67e6e03f-e5a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ff:db:a0:67:57:63:67:09:f2:ba:2d:a7:52:
3e:49:dd:ac:7a:9e:f7:df:7f:c3:69:e2:f5:04:cc:
c4:27:20:90:cc:56:23:e7:fd:b0:e6:b8:e0:e4:bb:
07:9e:7f:85:f2:46:b0:20:2c:e7:bb:05:6a:03:ca:
de:1f:5d:a6:71:b7:50:48:f7:79:cd:c1:c3:96:ee:
6e:bf:21:fa:19:8d:bc:f7:ad:7a:0e:16:d5:0f:94:
d0:3b:ee:31:34:1b:3e:0f:c0:26:e1:b6:3a:14:ce:
2b:a9:40:73:f5:ea:10:d1:b1:98:5d:de:ee:29:07:
d6:8a:b2:7a:dc:74:77:7f:ba:97:e8:55:4e:4d:4d:
c8:93:73:55:3b:d2:77:59:93:b0:b3:78:22:be:6b:
c5:0e:37:59:4e:3f:48:b3:97:38:b6:61:6d:a4:9d:
fd:3b:c5:43:45:38:07:66:c5:4e:61:7f:7d:98:5b:
d3:8e:fa:7a:64:3e:38:8e:af:3b:31:1e:55:12:e6:
9e:48:fd:97:b1:ee:4a:c6:82:8e:da:ad:2f:28:33:
12:0b:bd:52:8e:e0:a0:84:f3:13:47:d4:7c:87:a2:
08:8d:ae:be:a1:71:8d:e8:61:ad:d7:0e:a6:be:a3:
7e:27:2a:11:66:b7:70:54:19:ce:e1:8f:c5:47:3b:
b5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:66:1C:B7:3C:91:60:D2:B9:D6:A2:90:1E:9C:B8:59:76:D5:24:A5
X509v3 Authority Key Identifier:
keyid:BA:8D:6F:E5:D8:28:C0:53:99:B3:E1:AA:65:8F:C0:58:86:1F:DC:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo1v5dgowFOZs-GqZY_AWIYf3OA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3b:07:aa:cf:5a:65:b7:20:c5:f6:ca:8d:e0:2f:26:45:3c:2c:
d8:f9:c6:a9:16:8a:88:f9:27:f6:3a:98:02:50:60:88:ad:0c:
d5:d9:9d:20:82:ef:a1:65:4b:bb:b2:65:bc:0a:f3:0d:59:0d:
4d:37:25:3e:5c:3b:de:95:fa:da:8f:63:74:e6:a7:7a:04:5d:
e3:a6:e3:30:56:f3:75:f9:4f:3d:9f:f2:05:7c:3e:e9:76:b2:
d2:15:a9:00:cc:f5:59:f4:b3:75:09:f5:8b:ae:69:fa:26:de:
8a:ff:50:0c:97:24:c3:ca:f5:04:be:0e:2e:74:ed:04:5d:85:
84:42:d7:3e:4f:0f:ce:8a:e2:37:23:af:18:68:29:42:d3:cb:
21:65:2f:9c:f9:17:29:f1:2d:1d:6d:d2:4a:4e:93:93:ad:5f:
9a:25:56:e6:71:45:4d:1d:c1:07:40:9f:09:cc:c0:86:56:c4:
dc:a0:00:8f:b1:e8:03:db:b2:60:d1:13:62:d2:48:7c:0e:6c:
67:ad:9b:0e:b9:ef:08:3f:df:75:4f:6b:6a:d0:a8:39:1a:32:
e0:02:55:3c:dc:ba:6a:e1:8f:80:f3:92:82:38:2e:0b:50:2d:
c2:b0:4a:56:2f:90:2c:d7:9e:db:d6:04:96:9f:e2:3e:9f:76:
0c:95:8c:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:50:09 2025 by rpki-client