Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft
File: G5HVFg99VrcFqFFsahz0L0ln71Y.mft (raw, json)
Hash identifier: qgSEudLw6HmL+zOz5KYdmRfe/ajWUnKyHWAQaCXRJzI=
Subject key identifier: 78:A0:4B:CC:CC:C7:EE:80:F1:3C:96:7A:1D:E4:3D:ED:05:92:03:66
Authority key identifier: 1B:91:D5:16:0F:7D:56:B7:05:A8:51:6C:6A:1C:F4:2F:49:67:EF:56
Certificate issuer: /CN=A91EF554/serialNumber=1B91D5160F7D56B705A8516C6A1CF42F4967EF56
Certificate serial: 091C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G5HVFg99VrcFqFFsahz0L0ln71Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft
Manifest number: 0915
Signing time: Fri 28 Mar 2025 20:35:28 +0000
Manifest this update: Fri 28 Mar 2025 20:35:28 +0000
Manifest next update: Fri 04 Apr 2025 20:35:28 +0000
Files and hashes: 1: G5HVFg99VrcFqFFsahz0L0ln71Y.crl (hash: I55wSa8zZ4hd8AyR0SwmZa0h8ZLsh/tSgkrXix29kBs=)
2: 156CEB62DC6011ECB2698C14C4F9AE02.roa (hash: oKOcbNnwPGTy3q5emliwbRxX0Ls/8MFVWMAhcz5HBKI=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2332 (0x91c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EF554
Validity
Not Before: Mar 28 20:35:28 2025 GMT
Not After : Apr 4 20:35:28 2025 GMT
Subject: CN=67e70810-2261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:ec:17:31:1c:79:18:0b:83:7f:78:e0:4f:56:
0a:83:3d:87:ba:21:fe:b1:c8:58:e0:e6:81:da:c5:
bd:e8:c5:bd:81:63:c7:42:92:ea:ee:fc:92:37:7e:
09:29:9d:48:9a:7d:a2:89:d6:eb:34:bf:c3:47:61:
61:3b:d4:5d:a3:a2:90:ec:02:94:18:98:06:ed:38:
50:ac:55:f4:b2:50:f0:11:52:5a:e7:57:bb:ea:c4:
61:cf:cf:fd:0d:d1:89:c2:f6:ac:44:98:97:e0:9b:
56:1b:be:a6:b0:39:65:d4:df:5d:56:47:5b:42:34:
3d:09:02:e4:bb:4b:5e:75:5d:1f:2b:4c:30:9c:bf:
1e:bc:8e:65:ed:9c:2f:28:ad:cc:a7:1f:c2:bd:cd:
8e:80:8f:c0:2a:3a:7e:68:04:32:81:2a:df:ca:f3:
1d:f9:29:15:3a:86:12:5c:ca:35:6d:44:d2:5a:e6:
9c:29:01:d5:b3:26:03:53:15:7c:f0:9c:5d:6f:04:
96:af:d5:b0:42:5c:40:e4:f6:fa:9c:1f:5d:93:c4:
3c:2e:4e:4c:08:e4:5e:af:76:4a:f7:44:ff:25:49:
13:d8:4e:86:43:a3:51:dc:eb:b7:59:2b:c8:04:9a:
37:40:8c:59:89:31:91:47:8a:19:41:8e:92:af:41:
19:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A0:4B:CC:CC:C7:EE:80:F1:3C:96:7A:1D:E4:3D:ED:05:92:03:66
X509v3 Authority Key Identifier:
keyid:1B:91:D5:16:0F:7D:56:B7:05:A8:51:6C:6A:1C:F4:2F:49:67:EF:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G5HVFg99VrcFqFFsahz0L0ln71Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
12:81:07:3f:bb:38:cc:fd:18:23:81:87:f2:fb:2e:45:34:0b:
4c:dd:99:f0:94:5b:59:ea:ae:ae:54:5e:18:bf:14:3a:81:66:
3b:c0:4c:de:95:ea:91:c4:8b:c6:5e:7d:ae:ae:b7:95:3c:94:
57:8b:7e:f1:b5:95:23:f6:17:db:5c:be:12:7b:dd:c2:1f:11:
a5:c6:62:36:2e:60:38:dd:6f:af:83:df:26:41:d4:6a:9c:84:
21:24:92:0c:8e:19:69:15:0a:1e:7b:97:80:27:42:09:e1:e3:
0f:e5:ac:c6:d9:12:30:99:2f:61:18:30:39:4b:25:92:85:3b:
db:0a:ef:d8:55:29:6a:68:37:a0:b4:89:99:89:92:22:bc:8a:
43:28:84:26:cf:b3:47:94:ca:ed:6d:b0:db:76:81:c1:0b:07:
b0:9a:bd:a0:32:f6:2a:2d:e8:76:52:0b:1e:b2:9a:f1:23:ef:
3a:a4:93:2d:1f:f6:18:ab:1a:c3:a2:e7:09:cb:ef:a3:35:b3:
48:75:5b:04:ef:d3:55:6c:2a:47:00:06:cd:a6:a8:44:45:cc:
0d:35:12:3d:ab:c2:4a:2c:1e:8c:00:4f:2a:02:8d:c9:40:54:
7b:81:e1:0a:67:ff:2b:34:ea:d2:e9:82:72:a0:47:3c:16:02:
36:c9:79:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:19:53 2025 by rpki-client