Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft
File: x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft (raw, json)
Hash identifier: LOKK9fAmH751TEF6fALPs5YBPiUK5tINH23eW1l4794=
Subject key identifier: FA:28:95:8E:45:12:71:59:1E:35:55:95:5E:E7:E2:DE:BE:24:F6:D1
Authority key identifier: C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9
Certificate issuer: /CN=A91E01B2/serialNumber=C7E5790B05E0D4D209DB43DC680FB788279814A9
Certificate serial: 0343
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft
Manifest number: 0339
Signing time: Sat 29 Mar 2025 01:19:31 +0000
Manifest this update: Sat 29 Mar 2025 01:19:31 +0000
Manifest next update: Sat 05 Apr 2025 01:19:31 +0000
Files and hashes: 1: x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl (hash: vUJiy1gzSbYUa6gtkwq+2MtdQIZedx+mGwL7EwSx4UM=)
2: A8E34E9CB66611ECAF76DA4CC4F9AE02.roa (hash: 3ltUc1MRVqJi3SEeMGw79iaqCBtkg84cqJVUr/o1VYA=)
3: A9906244B66611ECAF76DA4CC4F9AE02.roa (hash: Amk0fNoLVyq/V0Aumz+LOy4QbvlRWTIXw8dCA9q0zmk=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 835 (0x343)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E01B2
Validity
Not Before: Mar 29 01:19:31 2025 GMT
Not After : Apr 5 01:19:31 2025 GMT
Subject: CN=67e74aa3-1225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:24:01:83:9b:72:c6:e8:4f:91:ea:ba:89:76:
51:36:41:31:f3:0c:cf:78:2d:18:96:a1:c9:dc:b1:
1d:d5:0c:00:43:04:5e:c3:4e:bc:bd:44:60:f7:68:
68:cb:82:c6:7e:08:ab:ba:6d:27:cb:18:20:cc:3f:
de:cf:69:cf:72:7f:d3:b0:9c:ab:b4:2f:c0:97:8e:
18:ba:85:58:e3:b7:fd:ff:0c:7b:c9:7d:7c:99:b1:
0d:73:90:70:50:6b:f5:bd:de:3e:b5:7d:43:92:03:
c0:91:05:45:ce:b0:ad:bb:63:87:d1:48:16:c7:c1:
8f:6b:61:63:f4:33:48:89:c3:e1:7b:05:a4:83:97:
54:67:75:19:e8:a2:7e:a8:17:3d:71:19:3b:5c:78:
c5:b7:91:40:e3:4d:e7:a5:9f:8e:6e:15:a1:46:58:
c2:c3:8d:98:79:b8:71:f1:98:35:4a:7e:40:22:43:
42:c8:f1:50:4f:97:dc:a1:ad:30:3d:b1:bb:eb:88:
b4:ed:88:f4:b7:1b:f0:23:67:1c:71:7a:fa:ff:d5:
ef:50:50:61:21:db:2b:92:f7:cf:f8:91:22:4c:73:
0c:74:bb:5e:63:6c:1e:ec:b2:0a:67:e1:e6:6a:ef:
f2:d8:c6:f2:a8:46:1d:29:24:22:eb:75:8b:be:7e:
25:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:28:95:8E:45:12:71:59:1E:35:55:95:5E:E7:E2:DE:BE:24:F6:D1
X509v3 Authority Key Identifier:
keyid:C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
40:c5:9a:cd:e6:c0:fa:46:df:96:42:5e:a1:a8:77:f7:a4:ee:
d3:06:20:00:05:0f:6d:71:68:8d:c5:be:51:cc:b9:b1:af:55:
3a:7e:78:2b:3f:7e:4b:f8:8d:fb:82:6c:c7:0c:5f:bf:ff:06:
f3:2b:e5:60:04:f5:f7:5d:ec:50:af:a4:ae:d0:3b:f9:de:96:
05:c0:92:e9:e4:78:ee:1e:ed:d1:d8:f2:8c:c8:6b:ec:c0:85:
ba:e7:4b:83:93:e7:0f:70:50:88:70:ed:fb:b7:02:39:6f:ad:
bf:35:15:26:91:7d:c9:ca:ea:bc:50:e4:07:72:59:b5:f0:43:
1e:e4:6b:25:57:18:a3:9f:c7:55:bb:18:55:55:2f:53:f3:36:
41:a2:6f:2d:cf:16:bf:ea:b7:82:3e:1d:27:7a:b6:bc:c0:1d:
11:0a:b1:72:33:17:6c:c6:ff:04:5e:e0:8f:1f:8c:fd:d9:a6:
fd:fc:de:7c:5d:3c:c4:a7:eb:52:02:07:13:91:a5:3a:bc:f8:
8b:68:e6:c5:bb:fb:b6:7a:77:71:f5:89:0d:43:90:be:d3:30:
8b:3f:61:8e:cf:18:cb:f4:c8:aa:d8:e1:f1:6f:06:4e:7e:89:
64:b1:82:51:59:a8:45:f3:f3:73:2f:1e:5e:8a:00:ba:13:56:
68:2f:36:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:50:21 2025 by rpki-client