Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft
File: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft (raw, json)
Hash identifier: dw1NmzSC5E7k6DybCf231ujwX2YCPadbKpaw2T67SZw=
Subject key identifier: 67:EA:49:35:53:EA:BE:6A:6D:98:DF:56:3B:C7:6B:CE:FF:FF:BC:29
Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49
Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49
Certificate serial: 0F93
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft
Manifest number: 0F2A
Signing time: Fri 28 Mar 2025 17:46:48 +0000
Manifest this update: Fri 28 Mar 2025 17:46:48 +0000
Manifest next update: Fri 04 Apr 2025 17:46:48 +0000
Files and hashes: 1: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl (hash: w1PbMX9Woj9jXDedPBTLX5Xl6ZUPJiC3hr92UfjLS9w=)
2: 931E0F7681C911EFA5B1D80BC4F9AE02.roa (hash: 3+LMg/UqEn9I3nJe/StT1XRQjadAQ+o1wAjq5EdYwx0=)
3: B35E5B46334111EF9770A542C4F9AE02.roa (hash: POv6am3kG0Q+Q6wUXCA7wbkvozTpMjE+VV+U9mmfNA0=)
4: B1F39E9C334111EF9770A542C4F9AE02.roa (hash: o5RIBT+FmS+BivBjv2JSc02ogBWHDPfxehOosN6/sX4=)
5: 6AB0F2A2892611EEB5E27D69C4F9AE02.roa (hash: XBeLByasLFAR8do7tNTxhh0jQtZtivMveMhhIQYYpGw=)
6: B2A71CE2334111EF9770A542C4F9AE02.roa (hash: 2b7V4cYLeCzYjzBXZFvQMUaMHyWPksazIYG9zve5Hx8=)
7: B431D7F0334111EF9770A542C4F9AE02.roa (hash: Xr2vVZFsdoKESdLFd5/aMVSCMJCON8AUPU5aD5Gvk7Y=)
8: 7BD12E3A480811EE8C512B0DC4F9AE02.roa (hash: xDNVgmjN9DxZxjXVEWTQzbIsIGQRcVSh7mJ/JhS9bSU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3987 (0xf93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C2CC7
Validity
Not Before: Mar 28 17:46:48 2025 GMT
Not After : Apr 4 17:46:48 2025 GMT
Subject: CN=67e6e088-d5b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0a:b5:76:9d:12:69:0b:f2:96:d0:62:54:b7:
22:9b:ff:2c:61:44:f6:e0:03:cc:6d:d0:ae:3f:d8:
71:ca:6b:b9:b9:89:2e:e4:17:df:33:d1:e5:b9:8e:
5c:71:23:87:10:a6:41:77:ab:d7:a3:3d:e4:6f:c9:
b6:bd:87:87:1f:1a:c3:df:6a:a1:8c:64:51:77:6e:
a1:53:0b:ac:e7:b1:df:51:78:12:84:36:d4:90:df:
fa:91:02:93:6f:cf:6c:0b:3c:f3:fe:80:03:5e:7a:
b7:3f:35:24:54:fc:58:df:16:99:7a:95:04:97:fb:
1d:e2:26:02:46:0e:0b:f8:5d:19:b3:b1:28:bd:17:
6d:15:6c:d9:62:e1:9a:1d:78:3c:c4:a6:67:41:7c:
98:72:c4:6b:ef:6d:84:9e:ef:00:0a:fb:ae:63:d3:
ca:bf:6b:12:41:ae:62:1e:de:ee:f6:9c:d9:0f:e4:
09:96:69:b6:dc:11:67:c7:bd:92:e6:fa:24:d6:75:
b0:4c:64:79:e0:af:20:65:d3:a1:31:a1:42:2e:fa:
28:42:27:2c:2d:4c:16:23:3c:3c:3a:cd:2a:42:d4:
67:ad:f9:eb:43:de:4d:c3:d1:60:a6:83:fa:8f:85:
45:eb:18:b1:bc:e6:30:70:9b:dd:61:07:fa:01:fa:
69:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:EA:49:35:53:EA:BE:6A:6D:98:DF:56:3B:C7:6B:CE:FF:FF:BC:29
X509v3 Authority Key Identifier:
keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
72:04:89:5d:b4:13:6e:97:db:c4:91:fe:6b:7a:b9:c6:c7:63:
89:e4:5f:a1:d4:23:f1:32:36:c1:78:86:86:8a:04:76:2c:6a:
85:21:d5:2d:69:f8:2c:73:68:bb:1d:40:f5:4d:ba:dc:56:de:
9f:b1:37:fa:95:69:19:c3:af:d3:04:63:e3:7f:08:cb:73:1e:
78:63:07:9b:59:8c:37:03:c3:82:fa:e5:b4:42:55:e7:da:6d:
af:97:ab:e4:c7:fe:a5:65:9e:44:be:1d:f3:84:b0:01:15:a8:
5a:0c:de:c2:36:f6:8f:9b:57:59:d2:3c:ad:35:f7:9f:1c:36:
e8:3c:ed:4c:06:81:a5:f2:ed:33:3e:a2:cb:11:74:d3:e3:37:
c4:c9:02:8c:b8:8a:47:2e:ac:66:61:cb:c1:d4:e7:ed:8f:d8:
3b:8c:b4:23:a2:2c:8c:06:78:b9:73:c2:48:ad:ae:c0:87:84:
b1:40:50:b0:99:c2:91:d7:be:75:e7:96:22:22:49:ea:c0:01:
bc:10:7d:cb:7f:9f:81:6f:37:d7:0e:01:94:43:d3:f1:e4:c4:
90:59:d1:1d:23:c0:ae:b5:d9:e5:3c:4c:bf:f6:aa:59:42:fe:
b3:55:f0:e8:77:09:79:79:1c:86:60:58:aa:83:f8:fd:2f:ba:
a9:a7:f8:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:35:52 2025 by rpki-client