Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft
File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json)
Hash identifier: GqIpsVwA6iKqRhOxFHZgXZeZ4/qjeEvMuhXLnYExrKA=
Subject key identifier: B4:D0:B6:F5:EC:47:F0:AF:1A:E6:EB:7C:3F:21:00:33:C6:9F:76:C9
Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A
Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A
Certificate serial: 0AE9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft
Manifest number: 0BA8
Signing time: Fri 28 Mar 2025 19:37:57 +0000
Manifest this update: Fri 28 Mar 2025 19:37:57 +0000
Manifest next update: Fri 04 Apr 2025 19:37:57 +0000
Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: wDcYjKR19QdXomPt3DJVx1AlLFWfFeu88j20ZRpB51Q=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2793 (0xae9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAF4B
Validity
Not Before: Mar 28 19:37:57 2025 GMT
Not After : Apr 4 19:37:57 2025 GMT
Subject: CN=67e6fa95-ad4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:52:d1:c8:11:00:a3:f7:44:cd:e9:0b:61:1c:
a0:93:f1:e3:5c:aa:ee:9e:20:66:38:b9:1b:91:3f:
53:98:8e:ae:4b:eb:71:25:b1:85:90:e1:9d:9c:18:
e8:ae:77:29:0a:41:b2:04:d5:21:71:8e:9a:9f:2d:
84:73:0a:ec:77:50:0d:5d:42:f2:50:6c:52:14:52:
78:d1:2d:11:58:ca:f6:26:57:09:99:b1:e4:76:2f:
81:f8:e5:9f:88:c1:d3:85:28:7e:4b:55:ab:9c:be:
c6:c1:c2:c3:aa:e1:0a:74:44:92:0c:97:bd:bd:5b:
fd:9d:e5:a3:22:72:df:5b:5c:d7:e8:b5:59:09:c8:
44:09:60:4a:78:6e:6e:a5:77:0d:cb:b5:d5:33:2f:
fd:91:9b:b8:5c:05:09:35:0c:02:84:7f:b5:88:d9:
60:c7:ae:02:ba:28:4c:0b:b5:f7:0a:09:23:c5:2d:
42:80:71:76:2f:1b:9f:79:32:35:74:59:09:8a:ec:
cd:bf:b0:eb:46:bb:49:ef:4f:46:8f:62:d9:b4:a1:
3f:11:24:32:50:b4:6f:f5:fd:6a:97:f0:75:2b:d1:
79:6e:8f:1f:ae:a5:44:c1:38:80:d1:f2:f7:1a:6a:
a5:14:8b:d5:7a:76:b1:38:d5:d9:68:01:be:74:30:
99:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D0:B6:F5:EC:47:F0:AF:1A:E6:EB:7C:3F:21:00:33:C6:9F:76:C9
X509v3 Authority Key Identifier:
keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
39:5b:31:c2:41:ed:4a:d9:8a:c5:82:6d:52:43:95:75:52:02:
c2:6f:fc:8a:ed:87:0d:ef:da:aa:06:67:1f:07:e3:f6:d7:55:
83:bd:7b:30:c4:68:66:36:e8:c2:68:fc:ab:7a:21:40:35:2d:
76:16:00:aa:bd:11:24:e8:63:4c:cb:05:bd:8f:94:2a:3a:fe:
db:a8:a7:e0:33:f4:7a:4f:a6:84:9e:63:a5:9b:71:2f:9a:0f:
33:e9:28:5c:19:95:96:f8:8e:ef:22:b2:2f:f1:63:4a:e7:c9:
24:d5:93:ef:be:8f:6b:ee:dd:65:c4:2d:d8:62:be:f0:16:2a:
d0:7b:50:d5:46:eb:95:a3:00:7c:b9:17:25:e6:9c:5a:f6:28:
bd:64:ed:c8:e8:87:aa:ea:35:1f:bc:68:7a:af:56:82:9a:4d:
b5:63:61:50:77:18:f5:55:ce:86:42:22:ab:27:7f:9f:10:f1:
24:47:7c:6b:d2:ad:71:a6:d2:03:59:65:77:cf:63:32:51:90:
79:8f:39:e3:14:cf:4f:29:41:ea:89:71:55:95:ae:90:0f:a4:
f3:e0:b2:1d:a6:61:db:6e:b4:54:48:fe:d3:a4:1e:0a:48:49:
d3:0b:66:38:75:e9:18:18:57:35:fb:be:fe:06:49:ef:77:f7:
3b:19:16:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:30:06 2025 by rpki-client