Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft
File: oUnn_U15BvwaY0EphlXagYXykBQ.mft (raw, json)
Hash identifier: rpg80vDcfwYMUCSkqESYtl8bvdeLIGRqSv09cei194Y=
Subject key identifier: 10:A2:55:8B:F5:9E:EC:9E:97:8B:65:AE:AC:F0:74:60:9D:17:B8:F7
Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14
Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014
Certificate serial: 1391
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft
Manifest number: 1387
Signing time: Fri 28 Mar 2025 17:05:28 +0000
Manifest this update: Fri 28 Mar 2025 17:05:28 +0000
Manifest next update: Fri 04 Apr 2025 17:05:28 +0000
Files and hashes: 1: oUnn_U15BvwaY0EphlXagYXykBQ.crl (hash: qoFbCvD2vRX7PDD2FS74gfUFbPkgPbUyc+sg0b9EPxQ=)
2: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (hash: H7cacnsh0VuhyC5itqeb5pDEzr5EF2LWGOPta4fd7j8=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5009 (0x1391)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FF639
Validity
Not Before: Mar 28 17:05:28 2025 GMT
Not After : Apr 4 17:05:28 2025 GMT
Subject: CN=67e6d6d8-d3ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ed:e9:aa:1c:c9:27:5c:5c:24:b1:89:73:45:
11:1a:91:41:41:63:84:c1:e0:bf:a4:50:0f:84:cf:
fe:b1:02:4f:8c:79:21:93:40:bf:d1:35:dc:80:10:
97:98:60:10:36:c2:35:63:46:85:29:3e:77:ec:3f:
70:5c:7a:98:15:a5:dd:4c:48:05:00:8b:00:c4:d9:
50:dc:14:0d:79:9f:92:57:a5:a7:0a:81:c1:d6:63:
dd:25:35:c8:0c:ec:61:57:a4:61:cb:8f:b0:1d:da:
8c:75:c7:f6:e6:ac:8d:88:25:5e:95:3a:91:be:db:
69:ba:03:31:99:24:e6:e0:d9:08:a0:d7:21:44:b4:
26:95:7b:f6:67:ca:7a:cb:c0:75:89:21:32:07:53:
f1:9f:2b:3a:1c:4f:6b:fa:69:b4:fd:78:28:9b:c4:
67:66:07:6a:55:40:b4:9b:72:42:86:af:55:60:97:
54:7f:1b:1a:88:04:40:90:7e:38:bf:87:00:b3:fb:
57:d7:21:a3:ac:b9:2a:6e:61:a3:54:8c:62:7e:8e:
69:f3:e2:e6:05:df:1a:de:a9:21:5a:bb:22:2f:d2:
cd:4f:ce:e3:b9:df:fe:ad:00:a5:39:01:60:d8:f6:
a9:8d:12:aa:8e:da:f8:6f:92:df:d8:d8:14:0a:73:
af:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:A2:55:8B:F5:9E:EC:9E:97:8B:65:AE:AC:F0:74:60:9D:17:B8:F7
X509v3 Authority Key Identifier:
keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5a:a7:80:7f:b0:56:8b:68:ae:0d:2f:a1:13:15:c1:9c:73:78:
6c:5d:8d:fd:31:72:76:1e:7b:a6:c2:61:5c:42:74:4c:b5:13:
ee:54:d6:ca:92:b6:81:ca:e6:50:45:bc:db:9e:1e:b1:18:5f:
94:39:fb:86:a5:5b:c1:52:3c:62:af:6b:c9:84:31:05:62:3c:
dc:5c:36:78:20:06:0a:f4:1c:01:d5:b5:5c:34:5d:43:45:d7:
cc:d4:b7:11:6d:91:5d:1c:95:34:3a:cf:63:66:99:4b:43:99:
58:d4:4d:c3:08:bc:9a:37:f0:d1:0e:6c:0c:1a:78:61:14:62:
60:11:b8:0f:38:58:cf:f0:39:ad:0b:b9:48:b9:28:af:c6:cf:
11:31:d6:7d:0d:11:1c:7f:82:a3:bf:8d:06:dc:2b:f1:45:db:
7d:c4:97:1f:11:9f:3d:28:98:69:5e:38:27:50:bb:19:17:10:
2b:1f:c3:8a:e4:b1:be:0a:b8:66:1b:8a:20:1e:5a:48:f6:6c:
af:7c:c4:38:c2:93:f5:84:55:a7:41:77:20:81:cc:20:97:cb:
cc:77:d9:8d:d5:12:bc:1c:0d:d5:3e:9f:21:81:82:56:a8:ef:
21:88:ec:29:ab:87:4b:35:d8:95:5b:48:39:96:d7:05:e4:f0:
78:39:f2:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:10:54 2025 by rpki-client