Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft
File: tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft (raw, json)
Hash identifier: gSSr0gey35pfuWp6xqxqAilYuBAUaiIzVCUiw5/t8BY=
Subject key identifier: C6:92:13:E3:E1:4D:3E:FB:51:1B:75:CC:86:F2:82:92:A4:A5:8E:4A
Authority key identifier: B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE
Certificate issuer: /CN=A91FD38A/serialNumber=B620A9C4963766CC3C58060694922E9F678811DE
Certificate serial: 0C2A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft
Manifest number: 0C21
Signing time: Fri 28 Mar 2025 18:41:47 +0000
Manifest this update: Fri 28 Mar 2025 18:41:46 +0000
Manifest next update: Fri 04 Apr 2025 18:41:46 +0000
Files and hashes: 1: tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl (hash: YY55jiQAmmHSQk+9v5OKNcv17ZlexThRuFENb37KKCM=)
2: AA5D86B2381311EA998E103FC4F9AE02.roa (hash: SvZjqtxcRIhPhrqiLm27nklXEkCJpvMYZMwhSGgkVOM=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3114 (0xc2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FD38A
Validity
Not Before: Mar 28 18:41:46 2025 GMT
Not After : Apr 4 18:41:46 2025 GMT
Subject: CN=67e6ed6a-dad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:98:50:30:8e:57:5a:8e:a2:e6:12:89:25:11:
d6:ef:b2:98:38:88:5d:07:f2:56:e2:0c:af:0e:52:
6e:1c:9c:1e:dc:b7:20:83:8f:29:93:3f:64:ab:a0:
c2:91:b5:62:96:e0:e7:92:ea:1e:47:8f:13:84:39:
61:09:c6:7b:88:2a:77:d8:70:9c:fa:c9:68:10:94:
75:1c:1c:f1:e7:64:40:8f:1a:0d:12:7d:c8:30:3c:
f5:4c:7d:9d:c7:b0:28:1c:b2:f5:66:2d:01:60:a9:
c5:c0:c9:54:a6:c3:0f:c2:1a:7b:db:30:58:08:ba:
da:b6:2c:ee:3d:b7:20:3b:89:3f:d2:2a:40:c0:d4:
42:14:af:5c:48:05:8b:17:0e:d2:87:f8:18:c0:ad:
1a:91:32:65:38:64:14:59:b7:34:e7:e1:a7:7d:fd:
62:73:8b:58:8f:e8:0b:87:92:7b:d4:91:f7:48:60:
7b:c7:8e:e9:0a:17:16:ee:70:e8:f3:5a:e9:cc:7e:
1d:8d:6b:2d:32:be:8d:4c:67:03:c4:92:47:ce:e2:
42:08:d9:b3:8a:43:11:f4:ad:dd:b4:6a:0d:54:78:
29:d2:26:50:94:9b:fd:4a:41:60:f6:49:62:5b:44:
fb:7d:9a:21:c9:ab:99:6c:43:e3:4e:f0:b0:99:1d:
e2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:92:13:E3:E1:4D:3E:FB:51:1B:75:CC:86:F2:82:92:A4:A5:8E:4A
X509v3 Authority Key Identifier:
keyid:B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
21:4c:93:53:19:e5:b8:80:98:fe:56:02:3d:9c:68:59:86:b3:
d9:68:ad:7a:89:7f:9e:a0:fa:51:99:fe:e3:7b:93:e1:59:ca:
b3:f7:74:e6:cb:8d:1f:09:88:cb:66:af:9c:13:da:49:ca:7a:
6b:7c:be:64:7d:85:49:8d:05:93:12:cc:3f:88:61:2b:a1:9d:
04:45:7e:b0:77:44:68:d9:c1:dd:f5:68:6c:40:63:ec:6a:56:
95:b7:c2:de:fc:bf:75:bd:2c:08:9f:30:c8:2a:eb:76:9a:30:
05:17:b8:b5:e4:31:bc:96:af:56:69:b9:f5:d3:76:08:19:d4:
07:35:18:f6:a9:e5:b3:e2:87:25:b5:00:02:8d:81:cd:b3:4f:
29:41:27:22:12:03:ed:b7:e1:9f:86:12:52:a6:41:d2:2f:4f:
f2:2b:36:83:35:36:7a:ce:b4:76:56:cd:f1:77:a2:93:77:b3:
08:01:c0:97:d3:d2:96:90:11:a4:03:a3:07:54:69:24:a2:e1:
5a:e1:01:ab:06:09:a4:a8:9f:0d:dd:0f:a0:73:5d:a9:1a:ac:
40:c1:5d:93:50:cc:47:f4:b9:60:fb:2e:b8:07:1d:94:25:c5:
b9:b5:fa:7a:f4:57:96:66:26:ec:c9:15:47:87:b9:06:34:11:
14:12:6e:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:24:49 2025 by rpki-client