Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft
File: _GUnKrz-olrSH5XhQm4gZ5zfyG4.mft (raw, json)
Hash identifier: 55X2Pi4UiHClYwwf0SxrHcBhrh4n7dQc2mhgc2jArXI=
Subject key identifier: 91:4E:F1:14:96:CB:3D:92:0B:5A:CC:34:32:35:6F:81:A6:EA:B9:AA
Authority key identifier: FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E
Certificate issuer: /CN=A91E5FCD/serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E
Certificate serial: 1925
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft
Manifest number: 1E8B
Signing time: Fri 28 Mar 2025 16:32:18 +0000
Manifest this update: Fri 28 Mar 2025 16:32:17 +0000
Manifest next update: Fri 04 Apr 2025 16:32:17 +0000
Files and hashes: 1: _GUnKrz-olrSH5XhQm4gZ5zfyG4.crl (hash: oEtAMagQlsex/KWiDGkoGF+gqgXf1OOO21pvqIagh94=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6437 (0x1925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E5FCD
Validity
Not Before: Mar 28 16:32:17 2025 GMT
Not After : Apr 4 16:32:17 2025 GMT
Subject: CN=67e6cf11-8c61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ce:1a:71:de:6d:52:d5:f1:f2:dc:71:15:7b:
77:03:88:94:a4:54:42:32:85:78:9c:69:84:fd:79:
41:b5:70:b8:9b:8f:a7:56:f1:bf:fb:ef:45:16:5e:
fd:ff:ea:5b:f3:92:99:da:cf:d7:ff:5c:62:f9:4e:
0f:fa:86:05:da:3b:f9:21:1c:83:ed:4b:2d:d9:f5:
4b:58:e8:de:a1:b0:6b:3d:39:d1:3b:1a:d0:cf:1a:
a8:01:ae:b5:dc:c0:65:56:38:57:40:0f:4f:4b:4f:
20:85:d6:b0:dd:9d:d0:44:9f:73:00:b1:5d:8b:92:
32:31:be:7c:3c:49:3a:03:af:1d:94:19:60:17:56:
89:83:a2:04:f2:bb:c5:db:ea:2a:8e:93:f6:85:79:
f5:d2:ad:0b:56:68:dc:dc:5d:79:b6:9a:09:07:9f:
b0:0a:d1:36:c2:11:2d:67:fc:5e:38:74:09:95:57:
74:ea:23:86:94:14:16:89:71:c8:fc:ad:72:1c:30:
7c:18:37:35:97:9e:4d:be:45:43:73:b3:be:40:0b:
a0:c1:65:b4:99:e7:ec:ef:4e:36:03:8d:40:ff:7b:
94:57:f3:5c:79:59:23:83:46:6f:65:ed:4c:8c:9e:
69:d9:ff:05:12:ee:7c:6a:29:59:c5:55:ae:34:b6:
25:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:4E:F1:14:96:CB:3D:92:0B:5A:CC:34:32:35:6F:81:A6:EA:B9:AA
X509v3 Authority Key Identifier:
keyid:FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
13:72:fb:e3:7a:a1:bf:1f:20:d3:6e:1b:90:c4:c1:d6:bb:f2:
b9:bf:c5:29:c7:15:fb:ca:71:d8:c6:d6:8b:03:16:04:46:4c:
92:25:77:11:17:df:01:05:75:b3:f0:50:8d:71:d9:fb:a7:31:
c7:10:b2:24:9b:3e:f8:78:fe:ea:42:5a:45:e4:78:f8:39:1e:
7c:70:e4:ca:e9:f0:a0:35:5f:c0:60:5c:e6:2a:00:c9:1d:e1:
ff:98:7d:84:0f:eb:69:ef:30:35:16:d1:06:b7:5f:e6:3d:8b:
50:ca:51:d9:8a:4a:87:7b:b2:bf:ec:e7:fa:e5:f0:7f:b2:e1:
e6:02:bc:12:6b:61:67:53:cd:53:ce:8b:c5:b1:f4:d4:52:c1:
a7:9c:41:2d:ed:2b:ec:67:9f:e0:50:d2:36:75:5f:84:8c:4d:
05:5a:b0:29:b5:25:bb:e2:ce:9b:e3:0b:91:89:ad:2f:86:08:
52:9d:3b:4f:62:8e:fa:68:27:ee:c9:2d:70:8e:dd:d6:cc:1d:
e3:6d:ed:79:3d:a0:61:37:65:1b:3b:8e:f1:1b:e0:5f:a4:e0:
7a:6f:d8:7a:67:b2:64:a8:2e:05:9e:59:ef:1b:5b:79:08:3d:
21:52:95:32:6b:0e:38:07:08:9e:31:e2:bc:88:86:09:8a:48:
7d:e9:01:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:09:32 2025 by rpki-client