Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft
File: vIYhQTCXFsDk3Dff_zPlqwxVStA.mft (raw, json)
Hash identifier: zoDB+C/gmraHlleA4P2cFBw8FmGbsKcJwzdRB39CDqI=
Subject key identifier: 4E:1A:DA:20:13:59:F6:B2:BB:CB:52:6A:DB:0B:6D:56:28:78:FD:9C
Authority key identifier: BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0
Certificate issuer: /CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0
Certificate serial: 01D9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft
Manifest number: 01D2
Signing time: Sat 29 Mar 2025 02:24:25 +0000
Manifest this update: Sat 29 Mar 2025 02:24:25 +0000
Manifest next update: Sat 05 Apr 2025 02:24:25 +0000
Files and hashes: 1: vIYhQTCXFsDk3Dff_zPlqwxVStA.crl (hash: 3kof+MbkFPOZkzWPRXyviJMe+0h43e3F3qrM4G11Sng=)
2: 3DE0E9065F0811EDB42DC97FC4F9AE02.roa (hash: MoE7MEPCOyGB/9EMlTXV0tN9ZG/UinteAkee65hBGJ0=)
3: 3F2E65045F0811EDB42DC97FC4F9AE02.roa (hash: IgAv5ZJEhwoH7uEYAUCxosir/fX/9UUdUT7CtlM0EKU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 473 (0x1d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911EA27
Validity
Not Before: Mar 29 02:24:25 2025 GMT
Not After : Apr 5 02:24:25 2025 GMT
Subject: CN=67e759d9-459f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2f:1e:82:46:ef:fd:40:f1:3a:e4:f1:3f:ed:
74:7c:c3:17:6c:40:3e:64:58:72:d1:85:82:b1:85:
ce:f1:3c:d9:02:29:23:4c:45:b4:c8:d2:e9:60:1f:
ba:cf:d0:8b:b2:75:5b:a2:39:0b:a9:78:b6:86:01:
e5:2e:db:0e:53:3c:fd:01:77:a2:f1:0a:83:f9:fe:
bb:e9:a7:61:e0:ec:4b:dc:e1:e9:b6:0d:70:62:4e:
20:2f:df:52:1b:ba:69:14:98:88:69:c7:1a:8b:cf:
6e:8f:cb:75:97:26:27:6c:63:66:e4:dc:79:1e:fe:
77:cb:26:fc:8e:3c:9b:9a:22:7d:40:9b:5d:4e:f1:
4a:32:f8:2d:7a:8e:88:ad:02:c1:40:9f:68:94:4d:
50:e6:67:24:cc:35:11:04:2f:52:b8:ca:58:bc:88:
f7:fd:5b:14:cd:04:51:04:08:73:a9:4b:ff:74:9d:
87:45:85:b5:ec:42:9b:59:27:de:7b:f1:0c:c2:9c:
49:15:65:82:3f:9e:0d:10:e5:4d:6c:20:46:b1:0e:
30:29:ce:93:b8:7a:1e:a2:41:a3:e1:d1:67:76:8d:
a3:ee:18:84:82:2f:34:5c:1a:9c:36:eb:b8:4d:55:
91:e6:1e:db:54:e8:3e:77:c1:ca:18:41:e3:59:e5:
47:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:1A:DA:20:13:59:F6:B2:BB:CB:52:6A:DB:0B:6D:56:28:78:FD:9C
X509v3 Authority Key Identifier:
keyid:BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
28:f1:73:28:20:e3:ad:da:8a:15:be:90:fc:f1:83:63:42:b5:
6c:03:da:4c:37:c0:0f:52:90:d3:95:fb:db:20:13:9e:40:6e:
bd:37:e6:51:1a:82:52:24:73:c2:17:ef:65:5f:be:0f:d5:c4:
ee:88:dc:fb:a1:ec:c5:78:f8:aa:b1:1b:b0:ac:00:a4:17:af:
ea:71:0f:5e:ef:7a:53:a9:c4:23:06:26:45:d6:19:8c:4b:d2:
fd:f2:a7:5e:6c:1c:9d:d1:0f:eb:a1:f9:c0:f2:6f:a3:bc:c1:
b0:96:31:c6:25:3e:3d:32:ab:db:db:4d:8d:24:d1:79:01:3d:
a0:c3:6d:97:7e:97:ca:8f:34:44:97:e7:3e:91:4f:3c:27:8d:
6d:db:37:03:23:bb:93:7d:9c:06:e6:31:1c:1d:32:0e:10:61:
68:74:39:13:00:bf:29:fc:43:01:da:26:18:4a:8f:a3:00:de:
7f:08:58:22:22:80:ab:f7:f3:49:26:74:22:93:96:fa:3d:fa:
f0:4c:28:9e:c6:ea:e1:ac:dc:88:1f:a3:5e:d1:10:96:4a:21:
13:fe:60:d5:97:34:a7:41:d1:7f:cf:60:04:8c:47:c1:ad:62:
58:be:eb:a0:c5:d0:cc:26:5e:c1:97:b6:0d:b3:a8:f5:5d:0d:
31:e7:06:97
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUVBMjcxMTAvBgNVBAUTKEJDODYyMTQxMzA5NzE2QzBFNERDMzdERkZGMzNFNUFC
MEM1NTRBRDAwHhcNMjUwMzI5MDIyNDI1WhcNMjUwNDA1MDIyNDI1WjAYMRYwFAYD
VQQDEw02N2U3NTlkOS00NTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAry8egkbv/UDxOuTxP+10fMMXbEA+ZFhy0YWCsYXO8TzZAikjTEW0yNLpYB+6
z9CLsnVbojkLqXi2hgHlLtsOUzz9AXei8QqD+f676adh4OxL3OHptg1wYk4gL99S
G7ppFJiIaccai89uj8t1lyYnbGNm5Nx5Hv53yyb8jjybmiJ9QJtdTvFKMvgteo6I
rQLBQJ9olE1Q5mckzDURBC9SuMpYvIj3/VsUzQRRBAhzqUv/dJ2HRYW17EKbWSfe
e/EMwpxJFWWCP54NEOVNbCBGsQ4wKc6TuHoeokGj4dFndo2j7hiEgi80XBqcNuu4
TVWR5h7bVOg+d8HKGEHjWeVHwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4a2iAT
Wfayu8tSatsLbVYoeP2cMB8GA1UdIwQYMBaAFLyGIUEwlxbA5Nw33/8z5asMVUrQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUEyNy82QThCRDA4QzQ0
NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZzRGszRGZmX3pQbHF3eFZT
dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3ZJWWhRVENYRnNEazNEZmZfelBscXd4VlN0QS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
RUEyNy82QThCRDA4QzQ0NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZz
RGszRGZmX3pQbHF3eFZTdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAo8XMoIOOt2ooVvpD88YNjQrVsA9pMN8APUpDTlfvbIBOeQG69N+ZR
GoJSJHPCF+9lX74P1cTuiNz7oezFePiqsRuwrACkF6/qcQ9e73pTqcQjBiZF1hmM
S9L98qdebByd0Q/rofnA8m+jvMGwljHGJT49Mqvb202NJNF5AT2gw22XfpfKjzRE
l+c+kU88J41t2zcDI7uTfZwG5jEcHTIOEGFodDkTAL8p/EMB2iYYSo+jAN5/CFgi
IoCr9/NJJnQik5b6PfrwTCiexurhrNyIH6Ne0RCWSiET/mDVlzSnQdF/z2AEjEfB
rWJYvuugxdDMJl7Bl7YNs6j1XQ0x5waX
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:54:03 2025 by rpki-client