Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft
File: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft (raw, json)
Hash identifier: q4Li35bVEIelLrnEjw6knpsO+5tiWRAjDzugIqGtPLI=
Subject key identifier: 22:E4:6A:ED:42:40:AA:4F:F9:C7:6C:78:5F:1E:25:49:EC:1A:AD:83
Authority key identifier: 87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96
Certificate issuer: /CN=A91AEA8C/serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696
Certificate serial: 1D0F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft
Manifest number: 1CF8
Signing time: Fri 28 Mar 2025 16:16:22 +0000
Manifest this update: Fri 28 Mar 2025 16:16:21 +0000
Manifest next update: Fri 04 Apr 2025 16:16:21 +0000
Files and hashes: 1: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl (hash: CYFOYKxQi0zbgQX/s3OO8ZTfkMOJkFpJ5wYIH3Zc9Og=)
2: F959A9A0F11011EB8E63FC73C4F9AE02.roa (hash: hUo9fC/hzy17W76vlbeXm/dftwyddFbiGAwqbp53ZVY=)
3: 2C9502D83C4011EA852C097BC4F9AE02.roa (hash: PqWYELxwluX51eG9Uh24A8xMydgivpkrMXOxcA+zOSQ=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7439 (0x1d0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AEA8C
Validity
Not Before: Mar 28 16:16:21 2025 GMT
Not After : Apr 4 16:16:21 2025 GMT
Subject: CN=67e6cb56-f44b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:af:da:3c:a0:91:c4:30:73:f7:c6:5c:e6:44:
a9:55:01:5f:0c:6d:a3:db:5a:1d:97:97:d2:cf:bd:
61:08:f2:eb:37:5e:cb:79:70:65:6e:40:5e:78:e7:
f0:0e:90:08:6d:0a:82:fd:25:f4:e4:cd:58:db:a9:
eb:cb:d6:09:49:10:7d:a6:42:f7:ce:c4:63:96:94:
1b:ec:fc:2f:a5:e1:27:84:f3:8a:64:5f:0f:e2:08:
17:ca:51:e7:fe:0a:d0:0c:da:76:9f:9b:fd:34:dc:
04:17:b5:e0:38:8e:d4:c4:e1:cf:a8:8f:20:bd:bf:
dc:12:6a:bc:62:e9:b4:45:3c:5c:f6:40:6d:0d:c8:
26:80:8c:76:3e:36:ff:e3:85:8d:16:6e:2a:3e:ca:
b5:57:69:06:76:67:eb:18:64:3a:3d:20:d2:f9:c2:
0e:68:f3:d1:41:12:fb:ac:b9:a3:47:62:e8:67:96:
b5:4c:4d:4c:6d:a1:68:4f:0c:c6:e1:4a:70:5e:57:
7f:8a:f8:41:7c:78:51:4d:cb:f0:71:ca:62:85:67:
d2:69:7b:85:a7:c9:26:ee:0b:bb:17:10:8d:a0:d7:
f4:74:0a:61:70:8b:14:01:b2:11:58:11:b0:56:85:
c9:56:c3:88:2a:31:b3:5e:7c:f3:39:02:62:9e:79:
af:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E4:6A:ED:42:40:AA:4F:F9:C7:6C:78:5F:1E:25:49:EC:1A:AD:83
X509v3 Authority Key Identifier:
keyid:87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
93:20:96:18:2a:a1:6b:d4:b8:40:4e:74:27:45:46:2e:d5:a4:
36:2b:f4:78:1b:12:8a:3d:95:0e:84:9c:cd:94:e8:73:01:51:
a7:f4:ed:d7:0d:8e:20:b0:03:e4:8a:bf:2d:68:4a:be:c3:a9:
87:6e:f9:40:eb:fc:2c:ab:c9:18:2e:38:cb:a7:0d:62:81:3f:
4b:12:56:15:e7:85:32:d8:de:4e:d6:5e:82:2e:59:67:1f:59:
6a:e2:7e:bd:9c:27:83:32:17:9d:ca:37:2a:47:39:19:88:fd:
d1:4e:44:04:a8:27:23:ba:c8:9e:8e:83:da:ef:05:29:c2:cb:
aa:6c:7e:61:6a:b7:df:ff:f2:4c:8c:56:01:59:4b:a2:9b:c7:
b0:e6:6f:ef:b5:a8:4d:3a:d9:e1:d0:74:b5:10:2c:f8:48:68:
2a:c9:5f:49:ef:61:33:11:59:28:91:ea:02:02:5f:5a:4f:5f:
92:21:89:51:f6:fb:76:bc:b5:5f:cf:3e:22:83:64:6a:0a:21:
63:6f:c2:6b:df:58:f7:f3:39:24:2c:38:36:6f:c9:9e:70:5d:
b5:31:27:11:e9:53:be:1e:f2:90:15:18:2b:79:ff:dd:16:65:
ea:8c:1a:5a:b4:f2:12:dd:02:0c:2f:97:b2:78:cd:50:4a:0a:
ce:b7:bf:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:49:13 2025 by rpki-client