Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft
File: nhw1MdAEXqOJtoz_koagj7y72L0.mft (raw, json)
Hash identifier: EZHnrGzWVwGAcV7OXcfNB4+HwTT9pyvrugBCEmxJ26Y=
Subject key identifier: 75:59:92:2A:60:C4:A0:77:FF:CB:53:B1:81:DB:9A:49:AE:1E:BE:C2
Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD
Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD
Certificate serial: 1EAD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft
Manifest number: 1DE5
Signing time: Fri 28 Mar 2025 16:15:05 +0000
Manifest this update: Fri 28 Mar 2025 16:15:04 +0000
Manifest next update: Fri 04 Apr 2025 16:15:04 +0000
Files and hashes: 1: nhw1MdAEXqOJtoz_koagj7y72L0.crl (hash: wk1RlLe5xqV1HVPWItuB0PuXTzOfdRBGZTj7yWs+/zE=)
2: EE375CF036BD11E7B9B7251EC4F9AE02.roa (hash: WQm0NEP8l4u4Yk4c6maTYK0oUZXH3BQgntJOjnk6iyg=)
3: 36D3DC38AA9311ECB5C88036C4F9AE02.roa (hash: 6AyDnzx5A4AjZFDON1usGiiqlcfarAtQyPrblWg9aSI=)
4: C81AC00EB14111EB959D4D3CC4F9AE02.roa (hash: PPz+jo2ZglJLUOgv0BMC7+AH2ZHmEK5hCIx98WW3CQI=)
5: 192418F6AA1811EA97BC574CC4F9AE02.roa (hash: 4Dc1oS3vBOdBKhpzJ5GcqMibvt3dJikIqEqGVS8Tn9g=)
6: AB549D62125711EF94D14874C4F9AE02.roa (hash: Q15x41gulDIattvR5E6BjIkzM60ANGTWvCg3RJWxG8c=)
7: FA4555AA93DC11EEB00AF628C4F9AE02.roa (hash: B0CVo9ry++sVZy/2rBP2AlbhG4hjHy12hERvlOOeEZ8=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7853 (0x1ead)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EA198
Validity
Not Before: Mar 28 16:15:04 2025 GMT
Not After : Apr 4 16:15:04 2025 GMT
Subject: CN=67e6cb09-d055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d8:78:be:6a:a5:a7:67:3f:ed:5e:50:75:dc:
6f:f5:ef:bf:d8:85:96:cc:83:ef:1f:61:e3:5c:e1:
45:fb:e9:37:a2:a5:f5:ab:48:14:8a:c9:6b:ce:ec:
54:de:13:48:65:b4:73:70:a6:ae:71:08:71:37:b4:
d0:82:8f:ff:c1:4b:18:9f:4a:ce:2f:8d:92:7c:05:
14:2d:c5:a5:8f:4c:fd:ae:ac:00:fc:97:a4:3a:24:
f0:35:0e:e3:24:dd:5f:72:5a:ad:47:6d:96:5b:47:
b6:d0:69:fa:89:d9:fb:1c:a0:fd:cd:b4:40:a7:68:
dc:51:da:b3:ff:77:ea:d2:a8:df:8e:b2:f4:86:58:
d7:54:ef:68:29:0b:3a:f8:47:c7:ba:30:9d:4f:cd:
a4:bd:33:55:55:d9:0a:1d:83:7d:1d:d5:1f:9f:ee:
a8:ca:75:3a:aa:37:e8:08:96:9d:a3:bb:62:56:c5:
6f:15:ae:2a:c2:27:ac:db:6b:d5:66:8f:66:a8:a1:
67:d2:ec:3f:2d:18:dc:47:f3:42:61:a2:15:28:07:
8c:6c:10:6b:80:94:43:ea:04:da:5a:26:ae:7e:93:
1b:6d:b9:64:22:fa:f9:15:41:6e:b0:6d:af:2e:43:
1c:46:b1:56:cc:89:25:d1:8a:6c:ae:23:6b:f0:aa:
7f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:59:92:2A:60:C4:A0:77:FF:CB:53:B1:81:DB:9A:49:AE:1E:BE:C2
X509v3 Authority Key Identifier:
keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8a:93:39:5e:f5:40:ae:32:ad:80:c2:d8:bc:ce:a5:56:f1:c9:
ec:bb:02:7c:f1:92:c8:66:41:71:0e:78:6a:21:48:be:3a:36:
ae:f0:54:46:6e:35:88:55:36:fd:75:2e:c1:c4:fe:e8:4c:61:
85:b6:c0:d3:4f:99:12:e4:e2:52:40:2a:e9:16:50:10:4e:cd:
ee:25:5f:03:7a:3b:51:13:4e:4e:f4:93:c6:a5:d3:a7:59:29:
ac:91:44:7a:88:b6:fc:a7:cf:25:d7:2d:54:42:c5:97:e1:e9:
10:5f:ed:3f:1a:4e:4d:95:94:39:35:14:92:95:a7:8d:12:12:
82:d9:58:36:bf:44:55:80:90:f7:7e:b7:56:8f:2b:ef:5e:2f:
01:b6:07:0c:3e:45:3a:1c:3d:4d:56:9e:a1:3a:19:76:3d:dc:
b1:16:ad:69:00:7d:87:02:a2:90:6e:a0:95:59:41:08:36:de:
d6:4c:69:f2:a9:8b:01:7d:ef:fb:32:14:07:40:77:f7:b7:3c:
87:df:44:57:e6:e5:6f:d4:f6:ae:1b:c8:ab:4f:7a:1a:74:72:
6f:3e:a5:71:78:a3:d8:2d:01:69:30:1a:05:8d:e8:38:6c:82:
39:d9:1c:43:d8:bd:9a:f2:fa:45:a0:16:25:d8:15:d3:92:1c:
ec:6f:b2:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:35:59 2025 by rpki-client