Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft
File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json)
Hash identifier: ehMoianUF4P4R66PPRM57wE3AeK4pVox0JTmTTfIKHc=
Subject key identifier: E8:14:A0:ED:59:10:90:1C:8D:CA:68:5A:FE:E0:99:CB:31:04:9C:F0
Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6
Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6
Certificate serial: 21E7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft
Manifest number: 21BA
Signing time: Fri 28 Mar 2025 15:58:54 +0000
Manifest this update: Fri 28 Mar 2025 15:58:53 +0000
Manifest next update: Fri 04 Apr 2025 15:58:53 +0000
Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: mTwEVYVctOzywBl3ZYbHWAFHdIWyZP0OxmabKd9T2rU=)
2: F9BC88C6F38311EF90CAA20AC4F9AE02.roa (hash: fb84lPls0wjQ0oNDS58EpVom+5LQYW23G3f1sIUbG5I=)
3: 1DE1EBA25F0E11EF88D4A280C4F9AE02.roa (hash: CHZ8BUCP+ogBpGKfLieugzwCJ7wbfBVhmhSN5UggfIs=)
4: 756C3370F38611EFBF7CEF35C4F9AE02.roa (hash: du5SamzGoud2VmU4jSD3B3FaKaAiMGpYcMTILdk3Bb0=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8679 (0x21e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E4845
Validity
Not Before: Mar 28 15:58:53 2025 GMT
Not After : Apr 4 15:58:53 2025 GMT
Subject: CN=67e6c73e-123e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f0:8f:ce:ee:49:27:85:bb:3b:61:f5:ee:2d:
56:a0:4c:69:1a:4f:80:e9:10:fd:b5:b2:88:e8:17:
a1:f9:9d:d1:4b:7d:36:a9:d6:8a:e6:3b:96:2e:89:
e1:85:e0:4d:56:0a:bb:11:7b:da:65:fa:c1:03:af:
9f:8c:b4:95:9e:18:15:e1:34:ee:c6:ec:c0:60:44:
5c:53:90:a4:19:1a:34:3b:de:e0:7e:01:f3:26:7f:
34:c9:05:18:e6:1f:69:c8:13:22:c9:ab:9d:f2:dc:
90:1a:e4:f0:05:77:dd:ea:d3:9e:9e:d9:69:c9:13:
be:43:11:cc:3d:d4:8d:a8:18:2e:78:bb:87:c7:8c:
02:f0:3e:0b:b1:a3:13:85:a2:65:7f:6a:63:8f:e7:
d5:be:87:99:fb:12:08:04:97:3c:b5:97:c9:ce:e9:
4c:e1:f1:2d:01:98:4e:e3:10:43:93:38:79:43:ae:
62:93:89:c7:d2:de:32:37:58:0c:f1:8c:7b:77:22:
fe:cb:4c:95:29:3c:85:3f:2a:15:82:e2:44:44:ef:
9e:b3:da:24:bd:22:c0:57:b0:3b:d5:2e:46:21:db:
3a:86:ac:aa:4e:e3:41:61:2e:b4:9d:11:eb:88:7e:
2c:e9:d1:8c:48:b7:0d:70:7d:ae:ee:7a:a5:fa:7d:
e8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:14:A0:ED:59:10:90:1C:8D:CA:68:5A:FE:E0:99:CB:31:04:9C:F0
X509v3 Authority Key Identifier:
keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
72:46:70:c0:52:c8:28:9d:9e:41:88:63:df:62:0a:95:45:fa:
69:a0:d1:a6:d7:64:ec:e7:cf:70:95:4e:da:52:2c:f8:df:46:
07:92:5f:f6:2f:4f:fd:62:9d:77:a6:29:9b:95:dc:79:75:e2:
a7:6a:e2:99:22:7d:aa:e8:e1:b8:44:59:e2:7c:56:54:01:1c:
a3:59:95:0d:aa:7a:ad:e6:41:a2:ab:c7:27:1d:43:dd:cb:7d:
ac:af:83:93:4f:60:1b:b1:b2:86:b0:23:6f:6d:63:83:15:7d:
8a:62:22:0c:87:41:71:10:97:76:ec:64:45:23:b1:fa:04:1d:
67:3c:d3:a4:64:93:b5:a1:31:c9:64:b3:6a:f9:65:c7:25:f2:
06:1c:a8:f9:ca:45:6a:28:d5:e1:b1:23:34:54:d6:6a:b6:f6:
5a:97:5c:dd:69:6f:86:05:4d:59:b5:5b:48:2a:11:d1:9f:f4:
59:88:12:57:e2:9f:9d:fd:1e:e0:50:a2:f8:ab:db:31:80:35:
e3:d2:07:1d:37:64:a3:1e:11:a8:8f:7c:d4:56:d6:7c:3a:31:
db:c7:1d:89:c0:80:a5:08:90:78:08:3f:14:64:50:6a:d7:7f:
ea:37:51:e1:c0:60:9e:67:92:35:c0:ed:e2:f9:95:88:f6:d4:
87:57:71:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:06:48 2025 by rpki-client