Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft
File: -BaXnSqJmynqWV8rVO6jmQokNvk.mft (raw, json)
Hash identifier: AT0CoHmigd6/custxoU7Im6rlbRK+mTZiUUD0RvEDes=
Subject key identifier: 1A:59:E6:2A:D4:DB:55:1A:FC:0F:AB:FD:80:86:C9:D1:54:23:5F:3A
Authority key identifier: F8:16:97:9D:2A:89:9B:29:EA:59:5F:2B:54:EE:A3:99:0A:24:36:F9
Certificate issuer: /CN=A91D5DB6/serialNumber=F816979D2A899B29EA595F2B54EEA3990A2436F9
Certificate serial: 15D3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-BaXnSqJmynqWV8rVO6jmQokNvk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft
Manifest number: 15D3
Signing time: Fri 28 Mar 2025 16:52:29 +0000
Manifest this update: Fri 28 Mar 2025 16:52:29 +0000
Manifest next update: Fri 04 Apr 2025 16:52:29 +0000
Files and hashes: 1: -BaXnSqJmynqWV8rVO6jmQokNvk.crl (hash: JUXkeedVwdzn1BabbFEZ+RoL61+ukVzUbiGdJ48NtkI=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5587 (0x15d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D5DB6
Validity
Not Before: Mar 28 16:52:29 2025 GMT
Not After : Apr 4 16:52:29 2025 GMT
Subject: CN=67e6d3cd-2939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:49:76:32:47:7b:45:ad:87:11:81:c9:7f:ee:
7d:dd:b2:3b:26:be:8e:84:b6:04:56:b2:8e:65:82:
5a:24:cd:42:0b:dc:d3:13:63:ff:d5:e4:22:5a:b9:
fb:c1:b2:d4:91:ca:91:cd:80:38:b5:26:11:a4:d2:
17:7e:c9:3b:ff:f9:1f:b6:4b:ed:2e:3d:6c:da:0b:
a0:aa:99:ab:8c:9a:5a:ac:01:fe:5a:37:b4:1b:23:
97:a0:b4:05:fe:6d:4d:4b:b3:b0:da:2c:1d:0a:b6:
2c:92:9d:eb:70:b7:cf:ff:3f:0d:79:be:f7:07:ad:
a1:0d:2f:38:81:71:45:e5:25:57:36:ca:6f:51:a5:
63:be:0a:37:04:3e:41:c9:1d:17:5c:01:ba:f7:a3:
76:a8:53:02:4a:48:b3:20:f3:eb:06:e3:f4:f7:84:
ef:9e:21:bf:17:67:77:7d:b4:e3:30:59:d2:9e:f7:
54:5c:a8:0d:84:b0:d4:13:db:e8:dd:8d:6f:b3:fe:
da:a7:67:9f:fc:17:df:75:48:9c:67:fd:d9:b5:e9:
5f:a2:c5:71:04:4d:03:e7:d2:93:94:b2:f5:b1:a3:
49:b0:e4:71:4d:f4:24:de:90:21:0d:21:1c:80:2f:
8e:88:ec:5b:04:77:e9:c4:0c:e8:87:e0:b5:f6:98:
83:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:59:E6:2A:D4:DB:55:1A:FC:0F:AB:FD:80:86:C9:D1:54:23:5F:3A
X509v3 Authority Key Identifier:
keyid:F8:16:97:9D:2A:89:9B:29:EA:59:5F:2B:54:EE:A3:99:0A:24:36:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-BaXnSqJmynqWV8rVO6jmQokNvk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
d4:c8:cf:f9:a9:91:08:b4:68:01:93:45:f7:df:0f:a2:22:d2:
02:80:7b:e9:ea:67:2f:d7:49:12:40:6a:4f:05:88:b7:72:94:
b4:46:17:81:d3:fa:6c:0a:5b:4f:21:8d:dc:c6:2c:6c:44:1c:
f4:4b:9b:43:cf:6b:87:72:f8:54:b3:0f:d4:bd:ab:dd:5f:ac:
5a:2d:7f:2e:4f:a3:cf:d7:d2:ef:73:33:74:84:09:43:77:f7:
07:bf:f5:89:84:64:d8:a3:b9:de:58:2e:d4:28:8d:d5:e3:33:
a3:16:27:90:01:be:b9:34:04:d3:31:6c:d4:f9:ed:41:ec:d1:
64:94:f7:d4:c9:d2:a0:d6:df:db:6c:ef:0e:ce:9b:54:1b:4f:
b2:7c:b8:43:6d:07:84:b2:9c:b6:fc:d8:fa:9c:36:c1:2d:a7:
8c:32:f5:0d:5c:5d:86:c6:92:50:f2:33:c7:0a:77:01:4a:b6:
4d:15:9b:67:7f:68:8e:9f:d3:69:58:59:bd:35:aa:51:4a:c5:
a8:fa:32:50:92:3e:39:c3:8a:65:e4:e3:fa:ea:05:8a:e4:01:
02:86:d7:f0:3b:ce:27:cb:5a:dd:c0:6d:c2:57:55:f8:41:a6:
1c:a0:d4:59:23:62:ff:de:37:41:93:e3:37:23:c6:0b:df:67:
0e:d2:86:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:10:33 2025 by rpki-client