Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.mft
File: KMruhJZWnFc8PlsYkMWhs0z8jjA.mft (raw, json)
Hash identifier: g4hnd1MqWuL3bS+r0kzsvWDYnviifoROP3fVWFxFwjU=
Subject key identifier: 3F:18:DB:BF:C7:FD:2B:E1:A6:27:52:8B:59:05:42:7B:2C:02:1A:33
Authority key identifier: 28:CA:EE:84:96:56:9C:57:3C:3E:5B:18:90:C5:A1:B3:4C:FC:8E:30
Certificate issuer: /CN=A91E4EF6/serialNumber=28CAEE8496569C573C3E5B1890C5A1B34CFC8E30
Certificate serial: 06CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMruhJZWnFc8PlsYkMWhs0z8jjA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.mft
Manifest number: 1107
Signing time: Fri 28 Mar 2025 19:54:05 +0000
Manifest this update: Fri 28 Mar 2025 19:54:05 +0000
Manifest next update: Fri 04 Apr 2025 19:54:05 +0000
Files and hashes: 1: KMruhJZWnFc8PlsYkMWhs0z8jjA.crl (hash: fNwCK9bydFYGffFuI08ESlm/weDMOKECe3rCUlkvxEY=)
2: 377B6620506B11EBAD849641C4F9AE02.roa (hash: kG/awft1YnlMUcGo/TLCAbm8s2p3POH5kub747SVbDc=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1740 (0x6cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E4EF6
Validity
Not Before: Mar 28 19:54:05 2025 GMT
Not After : Apr 4 19:54:05 2025 GMT
Subject: CN=67e6fe5d-9460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b9:d3:56:76:8d:76:90:e9:9f:e5:37:c7:87:
06:89:72:ea:e1:23:29:36:58:bc:12:16:e9:02:e8:
d2:e0:13:f8:c5:78:61:00:d5:83:c6:a1:13:0c:18:
58:b8:2f:02:7a:61:44:72:8d:c4:e8:30:8e:e9:57:
56:9e:a1:95:eb:e7:61:e2:68:ba:76:37:af:74:93:
ed:f4:77:fa:92:99:0e:95:88:50:df:aa:69:93:0b:
35:ab:d2:2d:44:21:59:c8:20:a1:63:f5:e5:49:02:
e1:bf:e4:7f:19:96:ef:ca:4d:77:1d:25:90:ea:3d:
c6:b4:bb:a8:36:a4:1a:2a:e9:53:e5:24:37:94:74:
c4:4f:89:6a:8d:2a:81:9a:32:d2:cd:46:bd:c0:ac:
08:dd:80:eb:52:af:b8:7c:9d:d4:ec:56:1b:b4:6a:
20:08:17:b9:86:34:8e:60:bd:90:fe:d9:1e:e8:a2:
cc:e1:44:0a:2d:25:74:fb:fb:c2:97:e2:19:3c:f8:
04:72:1c:f9:bd:a8:2a:6e:66:1d:ac:7c:ae:50:11:
b3:a1:84:34:c1:7c:03:af:dd:4f:75:73:1a:e1:a0:
f7:2d:a0:bd:58:e9:d3:7d:c0:c9:cd:35:e9:d2:22:
db:a1:c1:5d:a6:70:61:7d:e6:9b:d5:8c:e8:45:a8:
eb:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:18:DB:BF:C7:FD:2B:E1:A6:27:52:8B:59:05:42:7B:2C:02:1A:33
X509v3 Authority Key Identifier:
keyid:28:CA:EE:84:96:56:9C:57:3C:3E:5B:18:90:C5:A1:B3:4C:FC:8E:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMruhJZWnFc8PlsYkMWhs0z8jjA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
02:7b:21:0c:42:8e:89:c0:54:6c:9b:fd:97:96:e6:f1:b6:f0:
bc:3f:a6:d1:b6:95:bb:1f:57:27:aa:fa:58:05:26:98:d0:e5:
84:c9:95:65:64:01:b2:70:8a:7d:b6:9d:78:83:e6:e8:af:8d:
8c:bc:52:3e:ac:49:c7:e8:b0:e3:8c:bd:71:df:e8:e7:54:94:
a5:fb:0b:d9:71:9a:b9:6c:71:ed:61:9a:d8:2b:9b:3b:df:ca:
65:e5:c0:9b:6f:a8:d8:bc:a0:10:54:ab:d1:22:85:3e:8f:78:
55:56:6b:e4:8a:80:ce:ee:4b:b7:3a:12:97:1c:ad:02:a1:bd:
3b:0f:11:e5:7a:c5:84:05:8d:aa:78:9c:bc:fa:68:10:03:4e:
58:2d:c0:58:33:29:3e:a6:d0:b5:e1:51:cf:46:5f:d5:fc:d3:
5a:b7:f6:57:de:5c:f0:08:f2:84:70:4e:36:bf:e6:27:fc:4c:
e0:e8:9e:36:20:e5:a7:ce:cd:4f:7b:73:ea:93:88:ed:74:16:
8a:94:8c:82:bb:ac:29:a5:28:21:d3:1d:70:f1:ce:24:4b:15:
98:ae:bb:65:d4:7d:f8:d1:2d:64:a3:4a:be:68:b6:40:79:6b:
de:94:83:23:04:35:f0:26:c3:55:7c:bc:2b:66:a1:dd:b3:aa:
29:f7:35:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:15:38 2025 by rpki-client