Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft
File: gDB5urLx9rO5qsQR30qCw_BqZXE.mft (raw, json)
Hash identifier: P1eltw257IuQkYZeLFX2g1g/pPPk8hVX6QyT7kEnCBY=
Subject key identifier: 3E:B7:9E:22:F4:E7:9D:89:4D:17:7B:5B:07:EE:B0:FE:98:2E:AF:8D
Authority key identifier: 80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71
Certificate issuer: /CN=A91E5642/serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571
Certificate serial: 0988
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft
Manifest number: 097C
Signing time: Fri 28 Mar 2025 20:25:23 +0000
Manifest this update: Fri 28 Mar 2025 20:25:22 +0000
Manifest next update: Fri 04 Apr 2025 20:25:22 +0000
Files and hashes: 1: gDB5urLx9rO5qsQR30qCw_BqZXE.crl (hash: jkHZbysmdUF7X6KXowwUPGxwOOZSgh44Meoy4p7Yp0I=)
2: E09840C4D5B511EFB22A647DC4F9AE02.roa (hash: UUua9CtlmlNUMxfEXymhiloAwqTpKtC9fDGIWh1Bzk8=)
3: CFD6E5708AFA11EAAACB392AC4F9AE02.roa (hash: +YzJrYGnbGLCjVsOBK3rhph4HgKiBqVFBpU2hsaMvKk=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2440 (0x988)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E5642
Validity
Not Before: Mar 28 20:25:22 2025 GMT
Not After : Apr 4 20:25:22 2025 GMT
Subject: CN=67e705b3-14cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d0:14:5b:1d:2b:1d:85:6b:2b:0a:7b:bf:9e:
a7:c0:ca:cb:0f:c9:1d:2b:b1:aa:9c:cb:6a:cb:9f:
68:c0:04:bf:cf:3f:4e:1d:05:b5:fc:98:1c:90:66:
00:c9:80:1a:f5:29:5e:9a:4c:f9:e5:16:2a:79:51:
2b:c2:80:04:08:da:93:e6:71:2e:90:25:56:15:64:
09:d0:d6:e1:94:98:b1:7b:83:1b:e2:bd:0a:1c:e2:
c9:0b:01:e8:a5:cb:1a:66:12:7a:61:43:4f:aa:e0:
6d:3d:02:8d:56:45:05:28:a3:63:37:79:98:08:f6:
24:8a:38:bb:f4:2e:7d:90:85:e0:77:54:6c:2f:95:
85:37:c9:eb:05:fa:85:b0:13:e0:9f:68:33:0b:3c:
0b:b4:79:2f:ef:3b:58:f8:81:df:12:83:ae:37:bf:
14:80:93:0e:2a:7b:42:7a:24:68:e9:bb:51:24:7f:
e5:2d:fc:01:63:82:50:84:76:73:2b:8a:39:77:3f:
17:38:4a:49:31:81:7d:d5:94:ef:9f:a7:1d:5b:57:
0e:a2:71:d8:61:af:fd:69:ee:5d:1e:df:2f:ea:4d:
16:76:05:9c:69:74:a5:74:15:d7:fc:81:7c:08:87:
7b:ff:8d:a2:d6:60:3b:ac:6a:e3:41:ca:21:77:76:
4a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B7:9E:22:F4:E7:9D:89:4D:17:7B:5B:07:EE:B0:FE:98:2E:AF:8D
X509v3 Authority Key Identifier:
keyid:80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
81:98:0d:e0:9f:6a:63:ba:f7:b7:48:b4:1c:63:1b:12:1b:fd:
1b:df:f6:8a:59:a8:8a:eb:81:7c:00:0a:28:2f:93:69:28:65:
0f:d8:6e:2a:d1:6d:4f:36:62:05:51:94:b7:93:f5:e0:6f:e3:
16:5e:42:50:41:82:65:34:3e:75:ac:09:03:f7:96:5d:26:9b:
69:4c:59:50:50:3a:80:87:4b:a2:cc:78:61:0c:28:ab:7e:4a:
5b:e4:f9:46:6f:b9:cd:a3:fa:e7:3a:d5:1c:90:2a:51:7a:6c:
e7:e1:ff:bd:42:b7:1f:4d:6a:fc:27:5e:43:21:10:ca:ef:73:
a6:a6:b0:78:97:d3:02:e8:a4:ad:ac:8e:77:75:b7:d8:4e:93:
bd:6e:51:ba:69:a4:a2:92:27:b6:82:dd:bb:07:e9:2b:0b:c4:
c6:81:5a:18:d1:59:fc:57:60:06:cc:ef:0b:78:69:be:d9:83:
24:ca:51:3c:76:de:9e:ea:dc:3f:6b:17:ee:89:ea:96:19:0e:
56:9b:66:b7:f5:e5:98:ee:73:1b:d1:7e:0b:c8:cd:29:d1:ad:
b2:b9:91:04:a4:73:7f:0f:e3:4f:a2:f2:01:35:0a:23:d3:72:
e0:17:db:a6:f5:0a:6d:43:52:6a:57:0f:04:a2:f0:ad:8c:3c:
aa:aa:b3:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:37:03 2025 by rpki-client