Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft
File: U4JkLr15mg-ChtBlSCntdoQw-eQ.mft (raw, json)
Hash identifier: dOBkOMo8KjPYcVHI9EyfGGLlB+djXUG9IP14q8QSF8M=
Subject key identifier: 99:67:9A:8D:7A:B5:EB:E0:91:EF:F0:88:B2:79:70:34:8C:35:9B:85
Authority key identifier: 53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4
Certificate issuer: /CN=A91E6856/serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4
Certificate serial: 0E33
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft
Manifest number: 0E2E
Signing time: Fri 28 Mar 2025 17:53:19 +0000
Manifest this update: Fri 28 Mar 2025 17:53:18 +0000
Manifest next update: Fri 04 Apr 2025 17:53:18 +0000
Files and hashes: 1: U4JkLr15mg-ChtBlSCntdoQw-eQ.crl (hash: egQK72rgtbCw4k2ACxmh3UmWJZ5RWB1CO1oVspFBiIM=)
2: 350711FA881211EE9710F928C4F9AE02.roa (hash: /AJd6poS8Ng5rehLy7t+jOBIXVOshJArXBaFYmXY69Y=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3635 (0xe33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6856
Validity
Not Before: Mar 28 17:53:18 2025 GMT
Not After : Apr 4 17:53:18 2025 GMT
Subject: CN=67e6e20e-6852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1b:92:8a:0a:95:9d:15:08:90:42:6f:07:98:
80:40:27:49:b6:08:de:0a:9e:44:74:3c:36:3c:47:
1f:9d:dc:63:74:66:10:36:71:67:05:0e:48:50:76:
42:7e:51:2b:17:76:77:ff:55:a1:83:9d:d5:f3:37:
9d:ad:77:cc:c3:06:b9:23:68:15:c7:60:a3:98:28:
5d:e3:9c:c9:aa:e1:ef:76:81:57:f4:35:97:5a:24:
27:ad:2b:54:44:b9:b2:d1:8a:0c:ab:ff:4c:3e:05:
b9:04:73:3b:89:ba:81:22:34:2e:97:ec:e0:bd:8f:
ea:6c:d5:c6:7a:66:60:28:55:47:12:be:4a:e8:08:
b9:c8:4c:03:cd:c7:43:af:80:8d:7a:41:b2:d7:8b:
f0:58:6d:eb:df:d3:50:db:07:9c:10:e8:8d:0a:a9:
6e:a8:97:4a:1f:44:92:0f:47:be:1a:28:59:a2:c6:
e1:26:20:8b:2e:8f:f1:12:99:32:95:ec:6c:b2:1c:
12:e8:3e:80:4c:b1:06:6c:54:0b:8f:00:64:0f:92:
05:0c:19:a2:c0:8d:99:cf:30:a2:0c:8d:f3:ba:d1:
34:7e:e4:f9:57:54:42:b8:c5:a4:42:84:0d:09:b5:
10:33:65:a2:c6:cd:a8:ae:f7:1c:e1:a3:31:18:7f:
9b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:67:9A:8D:7A:B5:EB:E0:91:EF:F0:88:B2:79:70:34:8C:35:9B:85
X509v3 Authority Key Identifier:
keyid:53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5c:39:1e:a2:d6:30:37:ce:35:f5:cd:53:ed:dd:06:17:53:cf:
ce:02:36:88:ea:78:63:8d:f2:d4:25:01:5c:9c:7c:d6:23:2f:
1e:cd:f4:b5:96:8c:a9:27:9d:8f:80:da:20:ec:bb:27:3b:d6:
e3:96:7b:59:e0:1a:b4:0d:a0:8d:00:5b:c4:6d:20:2d:37:77:
1b:5a:23:9a:ef:c0:36:40:f5:d0:93:59:8c:b5:e3:6a:85:fc:
54:5b:4b:f6:90:f0:d1:9a:80:0d:44:ed:f4:96:82:da:4a:12:
9a:e7:7a:cb:d1:8e:e0:60:a4:42:fb:91:c6:38:db:93:98:92:
33:c3:ea:5f:f4:56:fa:39:86:70:15:e7:20:90:a6:5f:43:f7:
6c:e7:e3:bd:90:47:b2:11:bc:4c:82:f8:dd:be:ea:e6:62:10:
6e:81:1a:72:e4:f3:53:f1:13:ac:0a:a7:7c:23:9d:fb:7a:24:
68:d7:fd:9c:b4:10:08:14:12:15:fc:ef:9f:7b:d7:f9:5f:8c:
f7:8b:5d:9c:e8:e3:75:e6:97:20:46:e1:67:0b:78:18:50:ac:
61:ba:07:94:50:75:73:fa:11:e1:a0:7d:14:73:2e:d3:78:a0:
03:54:3a:85:0a:ac:c5:a5:ac:3c:29:e5:76:b3:da:9c:97:ff:
42:41:cd:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:35:51 2025 by rpki-client