Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft
File: MoI4D1fWFw9Fz1IOeywaPNovyq0.mft (raw, json)
Hash identifier: hIlMWub7GoYAg27c81b47b9a4bifEMpjkmR31BpQ3Pw=
Subject key identifier: B2:26:A5:F2:8F:88:2B:D4:63:C9:B5:55:A4:20:1D:EE:50:53:B7:38
Authority key identifier: 32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD
Certificate issuer: /CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD
Certificate serial: 02A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft
Manifest number: 02A0
Signing time: Sat 29 Mar 2025 01:46:16 +0000
Manifest this update: Sat 29 Mar 2025 01:46:15 +0000
Manifest next update: Sat 05 Apr 2025 01:46:15 +0000
Files and hashes: 1: MoI4D1fWFw9Fz1IOeywaPNovyq0.crl (hash: gCjIl4iZ2mQfOVMUzJcRYldD0oG6riRvcu/x/+PBJpg=)
2: 7D857A30F11811EC86D3AD4BC4F9AE02.roa (hash: RY7IQ05ThI/6GtkKfLwI0St2mmRdLcPJ0ecThYjAydU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 677 (0x2a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EE1DD
Validity
Not Before: Mar 29 01:46:15 2025 GMT
Not After : Apr 5 01:46:15 2025 GMT
Subject: CN=67e750e8-cdc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9f:39:15:e3:8c:61:3c:9d:51:45:ee:ad:61:
a6:70:df:5d:dd:e3:0f:9e:90:36:6d:26:f7:58:2a:
2a:c1:45:92:14:8e:31:6a:60:63:70:e7:aa:5a:75:
73:40:da:59:19:4f:2e:71:13:76:54:4c:33:42:66:
99:b1:8b:0d:b0:7c:10:2c:75:a1:8c:c5:17:9c:76:
ac:c0:67:9c:97:36:2c:0e:f8:57:5b:41:bc:38:a4:
b0:33:f2:cf:a0:ff:c7:e5:c2:7b:1e:50:e8:c0:97:
41:63:24:7b:12:8f:c9:b2:a1:d2:4d:46:1e:96:bc:
13:14:96:c3:a3:8a:67:a6:42:76:16:96:68:a1:99:
cb:98:cc:8b:c4:03:ef:aa:a4:c2:00:91:89:60:a2:
01:de:4a:df:e4:31:52:55:c8:a4:ef:9c:a3:d3:7a:
a6:a9:d1:8f:a4:39:f7:8d:de:ed:ce:a8:1f:53:7b:
ab:59:4e:46:78:c1:3c:35:9d:f9:9e:04:62:ab:1d:
07:97:40:b0:6d:4f:77:ed:61:16:0c:09:47:c4:66:
ff:b2:88:a8:95:a8:41:6a:9f:03:ef:bd:75:39:56:
32:98:5a:af:b1:ce:ed:67:ec:d6:31:6a:f8:10:bd:
60:02:94:9c:2a:a6:bd:7c:bf:40:34:e7:14:5e:45:
2a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:26:A5:F2:8F:88:2B:D4:63:C9:B5:55:A4:20:1D:EE:50:53:B7:38
X509v3 Authority Key Identifier:
keyid:32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
95:75:54:74:c2:5c:af:83:f3:98:6a:fb:2d:bc:a2:28:4e:10:
bf:32:46:e4:da:67:02:18:46:2b:ca:85:d1:00:31:49:f3:e1:
80:9f:31:5a:f7:f5:72:63:fe:9b:ce:26:4b:d0:84:9c:ce:e0:
87:37:08:e9:f2:7c:69:2e:4e:f0:1a:16:88:3e:d0:af:0c:aa:
07:26:8c:14:18:2e:f1:07:91:d4:1a:fd:cd:22:04:f5:33:d9:
62:2a:d4:fd:55:87:f4:f3:fa:93:18:db:8e:c0:a9:ff:d7:6b:
21:0e:0f:b9:5a:02:8e:af:6a:c8:23:b0:08:5e:e7:6b:dd:b1:
7d:8b:d7:bf:96:45:6f:ee:c2:1f:1e:5a:3a:b7:70:62:71:a2:
1d:05:08:56:75:9d:3a:25:fc:26:75:9c:ef:91:4e:f7:12:7f:
74:ec:bf:e4:ab:35:d9:21:d0:2c:66:82:e8:b9:43:ee:3f:48:
90:70:02:60:9c:e7:91:78:d8:a7:99:5a:b7:d7:b2:95:a7:20:
f8:80:05:dc:7a:f3:1f:1a:53:4b:87:d5:5c:d9:57:c7:13:37:
1d:df:ce:0a:5e:12:ef:cb:38:7a:54:93:da:49:13:5e:aa:72:
36:21:40:b1:32:d7:ce:4b:b9:59:94:d7:bb:68:d0:a1:b5:e8:
4c:ee:22:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:49:22 2025 by rpki-client