Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft
File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json)
Hash identifier: TUPum9IQT8Iqaz/6gX3JBC0p01xCJ3i8rzehWEvu0EQ=
Subject key identifier: 46:35:60:4C:AB:79:D7:02:92:EB:22:CD:F2:0A:6F:6E:90:0A:77:15
Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42
Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642
Certificate serial: 2C1A
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft
Manifest number: 2C17
Signing time: Fri 28 Mar 2025 14:26:20 +0000
Manifest this update: Fri 28 Mar 2025 14:26:19 +0000
Manifest next update: Fri 04 Apr 2025 14:26:19 +0000
Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: gDqQ84oSGOpp4OTJ1CsBbQm3h5p9tcajbqZUTgJsyMQ=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11290 (0x2c1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9117E4D
Validity
Not Before: Mar 28 14:26:19 2025 GMT
Not After : Apr 4 14:26:19 2025 GMT
Subject: CN=67e6b18c-1cb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:18:5e:ea:d9:17:33:80:e8:c8:8d:35:09:93:
89:71:96:6a:37:60:df:51:8f:2e:3e:6c:83:6b:df:
ce:50:6f:12:bf:f1:23:2b:e7:19:a4:07:97:9a:f2:
79:a9:58:51:ab:12:87:5f:ad:d8:c1:0f:06:cc:f2:
be:0b:0d:50:66:a7:c3:87:84:9c:07:ee:72:b8:83:
56:be:bc:d5:ce:05:7d:00:5c:75:7d:b6:cb:d2:01:
d9:a8:55:3a:2d:c6:11:1e:90:ab:50:3a:8e:9e:b2:
06:dc:24:73:bd:2d:8d:73:e3:60:2c:c9:04:99:90:
52:44:3c:f5:79:09:f6:d6:2e:16:a8:31:e7:3e:53:
db:6e:37:18:8e:5c:5b:8c:c5:92:25:95:cc:c4:de:
4d:17:df:73:1f:d8:f7:e5:ec:cf:af:33:ed:81:f6:
79:52:e2:de:17:80:cd:0d:a7:21:26:b5:e9:44:0f:
94:60:5b:fb:d9:46:f4:cc:88:73:6a:60:23:ee:31:
79:11:d0:f8:11:1a:42:f1:63:fe:35:40:86:e1:fb:
cf:39:5b:12:17:df:34:31:fd:f0:01:6c:37:92:09:
9f:4c:39:57:30:a7:dc:0c:d8:8e:e6:11:16:a3:e8:
55:37:34:6a:0d:e3:99:68:8c:e6:d9:0e:48:7d:1e:
6c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:35:60:4C:AB:79:D7:02:92:EB:22:CD:F2:0A:6F:6E:90:0A:77:15
X509v3 Authority Key Identifier:
keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9b:81:3e:6c:bf:b2:90:f6:82:cd:10:c7:95:11:a6:96:8c:3e:
14:66:56:1a:dd:67:1a:19:2b:6f:8b:67:72:cb:d9:db:59:44:
2a:fa:4e:3c:eb:80:84:09:4e:f2:e2:cd:9a:83:54:01:4f:44:
69:c0:0b:cf:74:a2:17:40:ea:18:17:d8:ec:d2:6b:70:36:8f:
a8:7e:e3:74:e0:65:59:43:fa:2b:8d:f1:8d:e7:cd:ab:3c:ab:
4d:4f:fc:58:9d:47:5c:5f:c9:4d:4f:92:a3:11:e6:cc:29:9c:
7c:d5:f6:b5:e9:80:0c:96:14:cd:3c:e3:14:85:42:7c:bb:76:
33:b2:ce:dd:e0:7d:f7:0c:1c:1f:a2:8e:bf:e0:d3:13:d0:b2:
26:5e:5c:74:8a:5a:4e:a5:8a:d0:db:c4:d6:3f:2d:41:c9:cc:
85:61:64:f9:6c:f7:dd:38:f2:f9:11:67:e8:85:48:f7:c1:a0:
81:18:d6:98:66:04:a2:5f:d4:8f:db:3f:a7:fd:a1:a4:36:7f:
56:27:1d:f3:1b:a6:49:7e:82:61:11:ac:f2:f8:20:23:c1:3e:
40:79:fb:ee:90:5a:9f:75:71:a4:71:5e:8d:01:a3:fc:a7:30:
4b:5e:f7:92:fb:e6:39:fd:0c:be:b0:67:04:bc:65:7a:7b:bb:
9e:51:18:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:00:30 2025 by rpki-client