Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft
File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json)
Hash identifier: zVQokleyWlA9k0gY4s/9RyqkTl3El/w0whNBPzJiVmM=
Subject key identifier: C5:FA:97:1A:F8:49:EF:9D:FB:0D:54:65:15:87:39:8B:30:96:7A:DC
Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0
Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0
Certificate serial: 35D8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft
Manifest number: 350D
Signing time: Fri 28 Mar 2025 14:29:01 +0000
Manifest this update: Fri 28 Mar 2025 14:29:01 +0000
Manifest next update: Fri 04 Apr 2025 14:29:01 +0000
Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: gZfzuoVjFBGogWTEMqnJ3MYGjUGyBEdVxQRKYNyNKtY=)
2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: 0ae8AXI4ti/g7kjicz0FuqIQr5KuRMl+VwlLXivxPFk=)
3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: ELjtbDvUJdRIE0OkklMq1ckQ7DJ/Pb2ipSH84CeiKCg=)
4: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: 7ydpzn/QoSWEXvjnGZJ1ta2JwlGF9ANK2aScVlru+Tc=)
5: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: YwQuCfTd/qrlJSeamxwuUJ+BvQmXE+p3bNmQY1uUsFo=)
6: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: nr6/7CG6oXudz0l6iz2yM+GZu8wisnZlSv+XVHe+5pE=)
7: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: GEX+sNV+gjoBRlfbvjQXv3uXeYnL4cH1wK1KCC8jYpA=)
8: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: 896PbO0EonUimzXSLkBsI3knk6hd3BAHtAyqYKCmbBE=)
9: 816FA9C0B07611EFA5773917C4F9AE02.roa (hash: Pe6tz3jNRPR6gXfsK8tx8lrjl8rvWTB+EFpcz7nsWc8=)
10: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: R2/SizcxlFy6GiKbWh9BC6IePjx7ZGaL4yUJEBHXwDg=)
11: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: /ugniFpN/rGX8I1uxfmMZJryeFfYuWgB3WroPzoi6qU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13784 (0x35d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E2454
Validity
Not Before: Mar 28 14:29:01 2025 GMT
Not After : Apr 4 14:29:01 2025 GMT
Subject: CN=67e6b22d-b7c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:58:6f:71:86:77:ee:90:5e:17:4e:4f:ae:d0:
c7:09:5e:71:e2:30:55:3f:02:a2:90:0c:d5:92:6f:
b1:25:a9:a9:fa:0b:7c:01:ea:95:e4:7f:35:d4:38:
c4:e1:43:b9:78:64:98:e3:95:0b:ec:aa:33:56:55:
d2:3b:72:2e:24:33:cd:b6:c2:9d:3a:30:f6:55:2b:
3a:01:c6:8c:35:5f:38:09:58:ba:0f:03:1a:99:46:
59:0d:b9:03:6a:88:aa:19:a9:33:d0:5a:69:52:3a:
ee:80:5a:cb:15:62:24:f1:cd:9c:33:28:42:85:42:
9f:5e:71:da:d8:e9:69:fd:33:dc:a0:e4:b3:9f:45:
2c:95:10:69:d8:18:90:8d:41:77:67:4f:68:9f:c2:
ee:97:24:c7:ec:75:61:b8:a6:99:25:b1:51:2c:6a:
58:7a:44:30:c3:bc:80:89:00:a0:7c:13:78:ef:ff:
dd:c7:f4:4f:55:e3:17:ac:c0:03:c1:64:07:87:b1:
e5:76:07:9b:a9:ef:d6:27:50:80:38:38:02:dc:b8:
b8:2e:05:63:72:66:3c:7f:4b:b3:26:b7:8f:ad:1c:
ec:8a:eb:36:72:db:ae:dd:c6:9b:34:b2:f3:21:42:
6c:85:21:b6:08:4c:3a:96:d2:31:aa:e8:74:4f:ab:
05:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:FA:97:1A:F8:49:EF:9D:FB:0D:54:65:15:87:39:8B:30:96:7A:DC
X509v3 Authority Key Identifier:
keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
67:8d:a7:d6:8d:bd:e1:15:89:aa:3b:91:2b:ed:43:a7:e2:74:
a9:f7:fc:52:39:e9:6a:f2:cc:f0:73:05:ec:66:e5:ed:26:fc:
ff:d4:04:a3:2a:49:fd:f0:e8:19:b4:45:7b:1a:cb:85:9f:67:
5a:28:4e:0e:61:81:f1:19:0e:7b:11:9b:57:a3:a9:84:56:03:
d0:3d:0c:aa:45:23:fa:38:67:86:8b:a4:9e:59:87:53:b0:1b:
f7:2c:0f:3a:5f:3f:f1:00:f2:bd:64:3c:8b:2e:b8:62:45:c9:
51:b9:10:ca:ed:70:a9:a5:53:d6:02:76:1b:fb:63:47:80:13:
d0:10:ad:94:f2:0d:99:4d:1e:73:ac:ab:d6:d9:0c:c9:8c:7f:
16:29:e8:38:58:24:4c:7e:9a:5f:4e:87:44:4f:97:c8:52:02:
6e:7b:0c:3d:93:9f:1a:4f:6f:77:38:59:6b:bc:6a:06:f9:f4:
30:57:88:54:6c:9e:11:70:76:30:37:f0:1e:20:a8:e0:b1:54:
3e:52:de:fa:10:b8:dd:ff:6b:22:5a:ec:61:99:ad:83:f8:67:
9a:15:8c:da:87:65:a5:5a:43:0d:f5:94:75:9e:db:b0:33:2e:
f9:39:4a:56:b2:9f:ac:09:be:61:8d:7c:ee:dc:3c:26:c5:8e:
fb:8b:88:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:09:09 2025 by rpki-client