Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft
File: DfmeMksOOlPo5W1wIP9vvFvxywI.mft (raw, json)
Hash identifier: tEyvw3Hx/QcykgJ1kXQLC0R8doHjHNik2h6HrRSFyjo=
Subject key identifier: 49:B9:50:2E:F6:E5:EC:63:B2:F7:FD:7B:1B:1A:60:70:95:43:2F:84
Authority key identifier: 0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02
Certificate issuer: /CN=A91D72CC/serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02
Certificate serial: 0DD5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft
Manifest number: 0DF7
Signing time: Fri 28 Mar 2025 18:02:07 +0000
Manifest this update: Fri 28 Mar 2025 18:02:07 +0000
Manifest next update: Fri 04 Apr 2025 18:02:07 +0000
Files and hashes: 1: DfmeMksOOlPo5W1wIP9vvFvxywI.crl (hash: J4ZKlH65ANOB1QRA6vh75edYfNdDsbaLp6Eyo/yqOL4=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3541 (0xdd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D72CC
Validity
Not Before: Mar 28 18:02:07 2025 GMT
Not After : Apr 4 18:02:07 2025 GMT
Subject: CN=67e6e41f-bfd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:fd:c9:19:a1:9b:69:f1:03:d0:37:c3:a6:e4:
96:89:a5:8b:52:27:ed:23:d9:5c:14:3e:c1:e6:e7:
b6:1a:71:06:c0:22:65:1e:e6:f6:5f:08:3b:ce:18:
d7:1d:05:14:4e:1c:23:ef:d0:39:2b:2c:d7:c8:26:
2d:ea:7b:10:97:de:0a:97:45:ba:e9:1e:c7:ee:e4:
99:7b:e7:9a:a9:86:ab:46:d5:65:95:c0:73:d8:04:
f8:58:c2:8f:a4:fe:d9:5c:f2:3d:c8:29:27:bf:21:
3b:1c:43:5d:06:bc:bf:98:03:3f:cc:4a:a3:8d:96:
98:cd:ea:51:69:87:f8:1a:43:dc:be:fc:53:f4:de:
c6:38:b2:61:0c:80:08:f7:d2:26:2d:05:e8:0e:cd:
26:10:f2:6f:2b:3e:81:b2:3b:ff:90:44:05:c0:2e:
57:1f:51:b6:8c:c1:37:08:33:68:43:94:21:27:e2:
c0:cf:0e:f6:6c:eb:98:f9:c2:ec:61:75:d8:cc:b4:
9a:3f:da:70:87:88:e4:b8:df:7a:12:2a:c7:cf:ff:
12:4b:ed:18:ba:1c:7a:6f:37:24:16:a4:2e:97:0c:
70:d0:91:19:b0:1b:ef:a0:97:73:78:19:58:12:23:
b2:a7:c6:e2:28:0c:60:0c:f1:bb:52:55:0b:99:6d:
4b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:B9:50:2E:F6:E5:EC:63:B2:F7:FD:7B:1B:1A:60:70:95:43:2F:84
X509v3 Authority Key Identifier:
keyid:0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
66:ef:e5:f6:df:4c:be:28:50:aa:b4:7f:34:42:79:17:0f:21:
2d:34:b4:55:c6:55:c1:46:20:cb:8d:9b:a6:47:7a:79:30:b3:
a8:4e:ea:f6:e3:94:93:83:76:a2:67:6e:fc:1f:22:0b:ad:c4:
c5:40:97:9d:c1:a9:92:7a:c1:33:15:83:2e:b4:81:82:de:98:
9c:13:8b:51:be:08:fa:89:df:49:47:1f:e8:62:2b:54:46:71:
2e:65:9e:d0:56:32:c8:c9:2b:8c:55:4a:3c:07:ce:d6:6f:a1:
6b:5e:20:77:55:0a:b3:24:3c:95:28:2e:69:81:10:09:93:2f:
22:6a:d4:10:7d:10:3c:0c:7d:e1:91:d0:5b:7a:af:49:fb:22:
47:54:0a:33:d1:66:6b:74:6f:f2:4b:96:42:6e:48:c5:a5:40:
c5:50:a9:12:a6:38:24:20:cd:d6:bb:4d:c0:d8:01:ea:6f:34:
24:86:94:68:55:59:69:c6:cd:e3:3a:02:1d:c9:ee:8f:6a:10:
4d:45:5a:78:ef:98:58:ce:fa:f1:e5:b6:b8:58:2f:7a:29:ff:
d5:25:7d:c3:8a:98:9d:43:b5:ac:df:7a:b7:8d:d6:fa:8f:2c:
59:39:c7:a8:ec:7a:63:b7:56:28:9d:28:37:77:67:ed:94:1e:
91:6e:b9:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:00:47 2025 by rpki-client