Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft
File: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft (raw, json)
Hash identifier: R9zmpljGhErOFcw8/V5utRFekpjtiXG7cd820XuOnJI=
Subject key identifier: 3D:EE:EB:CD:08:83:C2:CD:D9:FF:2F:C3:5F:99:92:B4:9A:9A:68:DF
Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52
Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752
Certificate serial: 3541
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft
Manifest number: 34C5
Signing time: Fri 28 Mar 2025 14:24:31 +0000
Manifest this update: Fri 28 Mar 2025 14:24:31 +0000
Manifest next update: Fri 04 Apr 2025 14:24:31 +0000
Files and hashes: 1: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl (hash: yHyOAFJUnvQtV0QMMj0qcXF6W7eVXtAu14nJkrCcvro=)
2: DF8602D05E5B11ED994E491CC4F9AE02.roa (hash: KKCg2NooRoQGuF3KYpzz51c9C/45UUPObnLo2e5njhU=)
3: D0886954188811EC8E86754FC4F9AE02.roa (hash: yPv2xJqSMbxdqO3CUxzFvtSmE89AHilhOo/061TH8FU=)
4: AB9889725E5E11EDB5361D3BC4F9AE02.roa (hash: nfNjfg1IXDDhMM0k16fT6xDTUZvLHRQ/C+xvVXQFUFE=)
5: 99CF729E221011ED980A6F47C4F9AE02.roa (hash: iSQxLeiRN1fYoIns2yWqQhKW9w0d7Bh4Hi7g+FcoiAo=)
6: 491E49AECDCA11ED8F57D386C4F9AE02.roa (hash: GOobL3IcAmOzxEXI8Av9eECmrglVLT+e8Yk36aU9ns8=)
7: 9F3A919468D811EFB2FE405FC4F9AE02.roa (hash: ZaxlSh3XWBv2fOJrVopMAyhJjHEvnP8TGG96c6iuXcg=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13633 (0x3541)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B6F47
Validity
Not Before: Mar 28 14:24:31 2025 GMT
Not After : Apr 4 14:24:31 2025 GMT
Subject: CN=67e6b11f-c8ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:10:8d:d5:82:09:35:fb:28:7f:89:f1:1f:65:
70:f1:d6:97:74:9c:84:6f:b2:f0:c0:07:cb:5c:8f:
0b:8f:17:69:21:0b:48:0d:ff:1b:92:7d:68:7d:0d:
d2:30:82:7f:87:78:47:3f:74:ca:ff:1a:3b:bb:e1:
41:c2:ea:8e:38:3b:48:ea:4d:09:97:cf:55:7f:eb:
ee:40:d4:64:50:62:5e:ef:4d:9d:40:7c:47:ba:80:
00:7a:bb:c4:30:c0:7a:21:49:6e:fb:67:35:4d:96:
9f:57:31:80:4f:70:ff:a7:c3:45:39:96:80:47:4d:
4f:9a:3f:ea:6e:b2:56:00:01:ab:b5:b0:00:e0:d5:
b4:5a:e7:f7:bb:05:01:f8:39:73:77:9c:10:44:94:
3e:3e:d2:d1:a9:bc:54:65:2b:25:cb:a1:7f:af:e4:
b8:a3:01:07:ef:f4:aa:95:6e:80:97:99:4a:c6:fb:
13:20:1b:bd:3f:b1:45:04:df:ee:ea:23:dc:9e:41:
25:b3:cf:80:e2:4c:72:96:26:7c:86:e1:b7:d9:6d:
4c:fa:b3:8a:ba:3d:39:ac:2c:af:3a:88:d6:46:74:
b9:d5:82:44:95:32:c6:1e:0c:a4:ca:d2:0e:5f:63:
b2:a3:5a:e8:da:b7:56:82:43:1e:16:5b:d0:03:27:
6d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:EE:EB:CD:08:83:C2:CD:D9:FF:2F:C3:5F:99:92:B4:9A:9A:68:DF
X509v3 Authority Key Identifier:
keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1a:0f:2f:21:7e:e4:13:0e:c5:4c:de:cc:cf:02:2a:9e:68:90:
e2:53:db:24:45:63:86:b9:33:c6:60:64:35:bb:d3:81:11:f2:
a0:4d:2a:4a:cc:da:0f:95:dc:9e:a6:f2:f3:9d:a1:46:02:4c:
6d:0a:44:46:5c:f2:84:64:bf:36:a5:8e:cc:91:4e:1b:d2:b8:
ba:14:38:83:89:9c:ec:ba:16:b8:5d:80:bc:cd:c4:f3:4f:ea:
3f:94:20:ab:9d:bd:13:10:27:f3:c2:ed:e8:32:a7:5d:48:39:
c5:fe:92:83:d8:07:60:fe:93:32:b2:2d:af:9c:7a:cb:a4:20:
60:c8:e5:62:0b:60:5c:17:91:63:0f:1c:66:5e:21:69:c8:d2:
ba:c6:81:2e:75:9c:85:34:97:db:45:d0:65:08:48:b3:49:10:
8d:bf:72:61:7f:3e:ad:4d:9f:1c:18:e0:e2:34:cb:e5:37:7c:
ea:59:9c:f1:ed:9f:6a:8b:18:c4:3c:a5:2b:b4:ec:0a:14:88:
6f:ef:8e:fe:ad:4f:fe:af:74:a1:76:f1:a0:a4:ef:79:fc:67:
aa:22:e2:3b:b6:29:88:0a:0e:06:a5:00:5c:54:02:cf:f5:8f:
21:9b:63:67:81:0a:3e:99:5e:d6:c4:5e:1b:fb:e4:e3:d4:b4:
dc:0a:6e:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:51:59 2025 by rpki-client