Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft
File: 8YaDAEWuVIbpCXNDfanSB6VmhpE.mft (raw, json)
Hash identifier: FaE6Flu3UxbtERwU7F1x5Ce+Q0v2KEer+fJB+lfGZyc=
Subject key identifier: D0:10:F0:4C:0F:41:67:E1:6E:19:3B:47:F0:C3:F1:75:43:1A:A8:53
Authority key identifier: F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91
Certificate issuer: /CN=A91F5AAA/serialNumber=F186830045AE5486E90973437DA9D207A5668691
Certificate serial: 31CA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft
Manifest number: 31CA
Signing time: Fri 28 Mar 2025 15:31:38 +0000
Manifest this update: Fri 28 Mar 2025 15:31:37 +0000
Manifest next update: Fri 04 Apr 2025 15:31:37 +0000
Files and hashes: 1: 8YaDAEWuVIbpCXNDfanSB6VmhpE.crl (hash: o2KNPonmdzjy0RbT+sV5z2awB9TdBp3NJr6XXtejqSg=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12746 (0x31ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F5AAA
Validity
Not Before: Mar 28 15:31:37 2025 GMT
Not After : Apr 4 15:31:37 2025 GMT
Subject: CN=67e6c0d9-91ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9c:1a:62:70:0f:94:d2:a1:de:94:34:f3:82:
80:76:42:80:12:92:a1:9a:0d:9b:c9:a6:6d:1d:e6:
21:0a:20:21:26:36:cf:96:17:9e:49:83:98:4a:ba:
2b:d8:e8:5e:9c:bd:2f:68:de:07:e2:ec:c8:60:e1:
15:68:b2:62:d5:02:3f:71:2b:53:6d:a6:fa:0b:37:
4c:59:32:8d:01:92:ed:fc:fc:ab:a9:0c:b8:3a:02:
1e:0e:ae:29:a4:8b:77:6a:f0:f0:ff:a3:7a:40:6f:
e6:7c:f0:5d:4e:a0:34:d2:ff:f8:85:0d:42:19:bb:
bb:64:2c:3a:fc:eb:81:d5:fa:18:a9:f1:68:ee:f8:
d7:30:4c:ab:f8:83:bf:1a:e0:10:eb:da:c9:69:e4:
3f:79:05:5b:34:53:cd:d7:9b:5e:e7:5e:db:09:b9:
d8:50:1c:ba:a1:42:d6:b1:e3:d7:ce:85:b9:bc:e2:
e4:9a:38:7d:d0:f0:2d:df:da:80:01:a6:a6:37:eb:
25:87:63:d6:99:c9:e3:5e:40:ba:ff:d6:94:fc:e4:
64:4c:b1:42:df:9a:96:16:9c:36:0f:cb:d4:a6:87:
99:36:ee:84:d0:b6:bb:6f:05:7c:58:0a:a6:e2:76:
e1:25:a8:fb:38:78:9e:35:c4:0f:11:57:3d:d0:21:
b1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:10:F0:4C:0F:41:67:E1:6E:19:3B:47:F0:C3:F1:75:43:1A:A8:53
X509v3 Authority Key Identifier:
keyid:F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ac:9f:51:26:19:75:36:e3:52:0f:2e:31:49:5f:0d:e8:b5:31:
75:a2:12:88:5f:80:ed:19:41:7c:d4:25:64:a0:83:c5:4e:30:
27:63:7b:c6:0d:82:37:5a:1a:4f:78:3f:4e:09:11:58:a2:85:
3d:41:37:05:4a:1b:b3:8a:cd:18:a7:fb:fc:2f:6a:98:4c:5a:
1c:a6:1e:59:38:33:c2:b7:52:75:21:43:79:b5:8d:37:d9:51:
08:ee:67:f8:6a:21:5b:d6:27:33:c0:c2:b3:5a:ee:c0:30:2e:
32:9d:30:e5:46:62:29:da:c0:e5:52:6f:50:17:19:5b:9d:c8:
35:76:8c:fb:c1:41:5c:bf:cd:3f:e5:e7:94:79:c8:0f:80:24:
ea:4d:54:c8:70:21:e3:61:06:51:c7:fc:02:03:7b:61:70:d0:
9c:90:9c:1d:96:94:ce:3b:cb:03:f1:c8:0e:9f:d8:ab:53:ec:
89:3b:93:46:01:72:39:6d:27:31:ed:80:5b:0e:11:a0:ea:c8:
b7:ee:2d:c9:34:4b:13:ed:e3:f9:8f:0c:9a:f8:f9:6b:b0:20:
62:5f:94:83:34:55:cd:ec:de:c3:20:69:bf:2a:63:c5:7d:86:
c9:1b:05:b7:76:08:c2:58:3e:aa:ac:61:5d:c9:9a:9c:bd:6e:
34:b7:7c:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:19:53 2025 by rpki-client