Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft
File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json)
Hash identifier: euDyFO+CXfpavwSn1OIHEqLJfq9vgGOCIYDYocJCvNU=
Subject key identifier: 01:A6:90:EC:36:99:29:6E:31:F2:A9:BF:4B:A1:76:63:FE:1A:73:3F
Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0
Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0
Certificate serial: 2245
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft
Manifest number: 2215
Signing time: Fri 28 Mar 2025 15:57:52 +0000
Manifest this update: Fri 28 Mar 2025 15:57:52 +0000
Manifest next update: Fri 04 Apr 2025 15:57:52 +0000
Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: GFt4AxLdRZJUMQWCbT3tmjv1cAOp1e7vavzoItbWj24=)
2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: LsnjeTUuxOLKtM5budZzebjO2SOXU+50cZfWesTYy6k=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8773 (0x2245)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91238D6
Validity
Not Before: Mar 28 15:57:52 2025 GMT
Not After : Apr 4 15:57:52 2025 GMT
Subject: CN=67e6c700-8792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:37:6a:98:dc:c6:ac:e4:1c:8a:0b:59:0e:da:
d3:de:71:ba:70:ac:71:4e:d1:fd:8d:7a:b0:75:7b:
6c:d2:8e:6d:f0:6f:fa:ba:5c:a8:8e:33:0e:85:6a:
c1:f8:25:94:6a:d4:6f:09:5d:e9:60:12:23:de:c3:
0e:cc:f2:ac:63:fd:b0:a9:1b:18:69:c5:4f:13:10:
3f:a6:72:e0:be:02:85:2b:81:bb:aa:12:4a:fb:d2:
22:9f:87:b6:14:99:c7:8c:08:59:dc:9a:20:1d:9c:
4e:ce:20:cf:8e:fa:91:a1:0f:92:38:07:5e:9a:00:
f0:ae:b6:7b:f0:2a:38:a7:0b:e3:bf:98:46:06:11:
04:8b:b5:9a:99:58:10:af:d5:7c:fc:f3:34:83:90:
18:27:89:ed:29:3b:17:31:0d:d8:bc:b5:d4:31:3a:
68:2c:be:20:85:91:76:fe:64:6e:1e:da:7a:3c:b1:
7f:93:b7:0c:74:56:e7:af:1a:06:3c:1f:df:95:17:
c1:d3:18:71:c4:62:67:e8:23:54:3a:e3:16:ea:af:
f2:5e:68:71:11:d7:42:5b:dc:50:25:42:a9:f2:f9:
20:d2:6e:f4:70:e3:70:66:c7:21:b0:5e:68:30:a4:
aa:f6:96:1c:82:1a:cc:0d:f6:37:a8:35:5c:6c:6f:
88:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A6:90:EC:36:99:29:6E:31:F2:A9:BF:4B:A1:76:63:FE:1A:73:3F
X509v3 Authority Key Identifier:
keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
21:a8:90:b9:84:a5:17:7c:93:a4:3a:bd:92:e5:32:4c:82:25:
23:86:f0:88:72:ff:a7:bc:57:bf:84:d6:e0:0a:8e:05:92:61:
a1:ed:9e:a1:9d:ec:aa:d6:4b:ef:a5:b6:e7:8f:51:c6:c8:40:
76:83:03:0a:82:0f:e1:1d:bb:7e:a8:5a:94:2e:8d:93:91:e8:
58:5b:80:7b:dc:0a:ae:dc:8f:6b:7a:c9:bd:db:80:7e:7b:76:
2d:b4:75:dc:b6:c7:a4:09:f1:db:c3:c0:74:89:58:f4:57:99:
79:84:41:11:cc:2f:12:da:43:01:2a:63:5f:a8:f6:bf:15:11:
8e:0e:be:97:4e:63:47:87:47:02:dc:d8:c6:6f:90:a8:3b:10:
68:02:81:73:fc:ba:c8:11:9e:3a:b4:d2:f3:cf:f6:70:d2:89:
e0:d8:ce:12:29:6c:31:9b:a4:38:a2:c5:22:09:58:9f:50:f3:
b4:87:07:de:ae:f6:47:8a:91:50:92:98:74:8f:31:09:1f:ec:
9b:5a:55:54:15:44:88:2c:a4:20:11:60:84:fd:df:4c:44:3b:
0e:eb:b6:60:e2:8d:60:85:43:79:38:ee:e4:06:df:08:d0:87:
d1:07:aa:33:20:4a:f8:b7:96:9c:50:52:e5:a4:cd:43:74:7b:
be:b5:c8:fe
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICIkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3
QzY2Q0ZBQTAwHhcNMjUwMzI4MTU1NzUyWhcNMjUwNDA0MTU1NzUyWjAYMRYwFAYD
VQQDEw02N2U2YzcwMC04NzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuDdqmNzGrOQcigtZDtrT3nG6cKxxTtH9jXqwdXts0o5t8G/6ulyojjMOhWrB
+CWUatRvCV3pYBIj3sMOzPKsY/2wqRsYacVPExA/pnLgvgKFK4G7qhJK+9Iin4e2
FJnHjAhZ3JogHZxOziDPjvqRoQ+SOAdemgDwrrZ78Co4pwvjv5hGBhEEi7WamVgQ
r9V8/PM0g5AYJ4ntKTsXMQ3YvLXUMTpoLL4ghZF2/mRuHtp6PLF/k7cMdFbnrxoG
PB/flRfB0xhxxGJn6CNUOuMW6q/yXmhxEddCW9xQJUKp8vkg0m70cONwZschsF5o
MKSq9pYcghrMDfY3qDVcbG+IlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGmkOw2
mSluMfKpv0uhdmP+GnM/MB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF
NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt
cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5
UVpjQi10TnlvMHQ4WnMtcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAhqJC5hKUXfJOkOr2S5TJMgiUjhvCIcv+nvFe/hNbgCo4FkmGh7Z6h
neyq1kvvpbbnj1HGyEB2gwMKgg/hHbt+qFqULo2TkehYW4B73Aqu3I9resm924B+
e3YttHXctsekCfHbw8B0iVj0V5l5hEERzC8S2kMBKmNfqPa/FRGODr6XTmNHh0cC
3NjGb5CoOxBoAoFz/LrIEZ46tNLzz/Zw0ong2M4SKWwxm6Q4osUiCVifUPO0hwfe
rvZHipFQkph0jzEJH+ybWlVUFUSILKQgEWCE/d9MRDsO67Zg4o1ghUN5OO7kBt8I
0IfRB6ozIEr4t5acUFLlpM1DdHu+tcj+
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:40:15 2025 by rpki-client