Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft
File: 0KCTtlEHkzVIStC6HXZhX1w2aIo.mft (raw, json)
Hash identifier: OV/wwbzx43ML6F/5H2/3rwrR374iKuCUnvzCVU6eeHU=
Subject key identifier: 02:94:37:C9:61:AF:1C:21:DE:E6:54:C2:41:B5:8D:1E:CA:49:6C:FA
Authority key identifier: D0:A0:93:B6:51:07:93:35:48:4A:D0:BA:1D:76:61:5F:5C:36:68:8A
Certificate issuer: /CN=A91E275B/serialNumber=D0A093B651079335484AD0BA1D76615F5C36688A
Certificate serial: 32F9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft
Manifest number: 99C1
Signing time: Fri 28 Mar 2025 15:22:59 +0000
Manifest this update: Fri 28 Mar 2025 15:22:59 +0000
Manifest next update: Fri 04 Apr 2025 15:22:59 +0000
Files and hashes: 1: 0KCTtlEHkzVIStC6HXZhX1w2aIo.crl (hash: ylXFRsVge0qRPUk09oSTWK8rVn9Bvlv0+jxCY61SWb8=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13049 (0x32f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E275B
Validity
Not Before: Mar 28 15:22:59 2025 GMT
Not After : Apr 4 15:22:59 2025 GMT
Subject: CN=67e6bed3-aba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:71:61:00:c8:47:5c:83:27:fd:14:ba:7b:a7:
6f:50:5f:d8:4c:5d:88:d6:8b:5a:b3:de:bb:79:2b:
5a:62:67:96:9d:35:39:4a:e7:71:54:dd:d1:b8:bf:
1a:ac:40:85:ad:4c:dc:d5:24:d6:01:9f:1a:1c:f3:
45:64:9b:fe:b0:76:53:af:6f:c9:a4:c6:9d:86:6b:
da:93:38:c2:16:68:74:86:c4:2b:d9:00:7b:35:f7:
64:62:50:2f:2f:3e:12:47:54:8e:45:94:fc:81:dc:
10:6e:02:66:c5:66:1e:96:c8:60:27:a2:5b:69:d7:
17:36:3a:3a:7d:5d:4d:95:f8:08:f1:33:f1:8d:63:
1e:1b:b7:08:6d:9d:2a:f9:b3:ec:f8:d5:47:79:07:
51:27:3f:2b:82:78:a4:77:83:58:06:40:bf:7f:50:
8c:dd:7d:7a:96:7f:6a:32:4c:60:5a:dc:7f:cc:95:
ca:37:a3:13:01:d3:e1:f9:4f:65:0b:6c:f1:b3:dc:
4b:65:0d:2d:eb:24:00:a2:aa:b8:47:82:b6:56:9d:
05:c1:9c:9e:66:06:62:1c:10:7e:fe:58:9a:86:eb:
92:cf:77:cd:1f:e3:78:83:e1:7d:b7:93:1f:53:2a:
26:02:45:a7:e1:72:32:5f:84:18:87:bd:b3:45:12:
85:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:94:37:C9:61:AF:1C:21:DE:E6:54:C2:41:B5:8D:1E:CA:49:6C:FA
X509v3 Authority Key Identifier:
keyid:D0:A0:93:B6:51:07:93:35:48:4A:D0:BA:1D:76:61:5F:5C:36:68:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
78:3b:75:3e:41:a2:fe:1e:99:b0:54:dc:30:ca:62:1c:b2:37:
9e:c6:8c:f0:68:df:d8:0c:c9:8a:1e:54:5d:04:53:7e:79:ad:
1a:97:49:67:d0:27:8e:ff:64:14:38:eb:4e:28:30:15:36:5f:
75:34:61:c8:d2:07:00:70:3c:ea:2e:d9:c8:e4:1f:80:9c:9f:
48:a7:09:32:86:63:ef:4b:12:82:28:70:aa:40:e3:f1:02:bf:
2a:9e:8a:94:2e:86:27:f7:f8:67:93:39:60:dc:99:52:d6:a4:
24:be:cc:fd:2e:48:12:53:f1:66:39:6a:07:1d:98:fe:3d:ab:
f0:ea:2c:b1:13:06:91:00:bf:a3:a6:13:ed:30:cb:aa:f0:fe:
c5:d4:23:6d:14:43:ee:0d:7a:c9:e9:d0:ce:d1:c5:b9:94:f6:
21:b1:88:07:9e:ee:b7:2f:87:10:3e:d5:e3:8e:34:bb:57:65:
13:7b:0a:60:7c:fb:66:79:f3:52:a2:42:ae:33:8b:54:3d:66:
28:2d:c1:be:2a:d7:25:cb:80:28:1f:1f:9c:49:f8:4a:b0:37:
87:ab:d9:67:86:a4:e5:85:ec:98:a8:80:e8:7d:86:5a:26:14:
ad:ea:16:18:db:e0:53:06:f4:8f:84:f1:55:13:5c:11:29:4a:
e6:10:60:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:35:10 2025 by rpki-client