Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft
File: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft (raw, json)
Hash identifier: hPOQIVljbLWiW+XXhDX3v+8R4BIwd93UFbXu45e888w=
Subject key identifier: 21:5E:A9:3C:0A:BA:D8:A3:3C:63:DC:76:E0:AD:05:E7:53:C1:85:6F
Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4
Certificate issuer: /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4
Certificate serial: 0B2B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft
Manifest number: 0AD7
Signing time: Fri 28 Mar 2025 19:52:49 +0000
Manifest this update: Fri 28 Mar 2025 19:52:49 +0000
Manifest next update: Fri 04 Apr 2025 19:52:49 +0000
Files and hashes: 1: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl (hash: tKwhbvHAWF0Zz0LogpUdyXX0wbCDnbWnoAY3NwwzP6E=)
2: 9D060E183ED611ED8963B549C4F9AE02.roa (hash: JbOgcVk0SFjuz3pFR2xuSgFphJgl+zaZw80ujiiRGfQ=)
3: 261A2BA2F39611EDA98C5D4DC4F9AE02.roa (hash: cO+lO6yNoyaxQ9zIQdsncGR/46no6uoF1ZfttfCv9RE=)
4: 50448A72911411EF9CAF3E55C4F9AE02.roa (hash: XnoJK+j2aYdpJPJmHEzYHnSl0odvMBBf4WRRJO5tlac=)
5: DCFFE916452611EDA4853E62C4F9AE02.roa (hash: cg0pTB0tQ3lVw+//8QI1VGIKFNM43Q8JPHW5fx5VAek=)
6: 0FB29E462A0811EE9A08C30FC4F9AE02.roa (hash: ZqdtECDRqDG4B5sUURVHvsrynmrQ1unVucYfwH8ae+A=)
7: 305F24342A0811EE9D810010C4F9AE02.roa (hash: e9thDBmL8sJM6wfIji6pTwGCU4p0X8HaVmN0zYAxnPk=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2859 (0xb2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912C8AF
Validity
Not Before: Mar 28 19:52:49 2025 GMT
Not After : Apr 4 19:52:49 2025 GMT
Subject: CN=67e6fe11-08a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a3:8e:06:00:f4:03:72:ce:36:4d:f9:bc:5b:
44:ad:ce:97:98:8b:4b:90:09:fb:12:08:7e:39:c2:
21:05:cc:ab:8e:49:d1:0f:28:64:b1:47:97:ea:c8:
2b:05:98:4c:5b:22:28:5a:58:29:2a:96:45:11:79:
38:d9:24:51:3f:6b:8c:34:3b:11:c4:de:b6:68:29:
20:7e:51:eb:50:82:e8:c2:2b:19:9f:78:79:92:8b:
72:61:ea:f0:06:64:7e:b4:b8:20:46:6c:dd:e4:ec:
0f:7e:4c:65:3c:7a:db:84:ef:c9:05:7a:b0:b1:d5:
03:46:f5:3f:81:34:b9:40:ae:1d:e0:26:36:d0:83:
5a:32:aa:89:62:fa:81:ea:ed:31:f6:e4:6e:89:b3:
f0:94:51:44:f1:f5:09:d1:f0:c9:87:74:86:25:6f:
9c:80:93:7f:d2:ff:3a:5d:79:74:5d:d9:13:02:93:
cf:68:2f:5b:83:9a:af:fd:aa:96:ea:2d:41:e8:87:
c1:07:aa:31:10:45:8e:db:60:3a:c2:83:79:d8:73:
b5:48:76:b9:64:14:78:b5:d4:92:cb:9b:12:ff:28:
03:2f:00:6c:62:1a:fc:59:4b:f8:9e:c7:f7:75:e1:
a5:33:41:5c:1b:c5:bc:2d:87:3e:09:63:19:99:b6:
4e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:5E:A9:3C:0A:BA:D8:A3:3C:63:DC:76:E0:AD:05:E7:53:C1:85:6F
X509v3 Authority Key Identifier:
keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
25:d7:17:78:85:56:e2:9b:b8:a9:27:b5:1e:f9:ad:2f:95:8f:
f4:a8:ef:5b:5d:c3:2c:3e:98:a5:ea:f7:f8:4f:e5:35:4d:e2:
9d:d7:35:70:4e:d6:29:91:ab:5a:72:e4:47:59:82:58:2d:f6:
74:98:39:3f:dc:65:b5:51:1a:bb:18:a9:24:d6:4c:f4:2c:41:
47:08:95:22:57:d3:c7:11:06:7e:2d:b2:81:d8:7f:2c:6a:f7:
ea:c3:9f:13:e8:e3:37:71:bd:c1:bf:7d:8c:33:2c:a5:8b:09:
ed:aa:6b:5c:ef:c2:9a:92:dc:5f:51:28:81:03:bf:0d:6a:cd:
41:da:5b:bd:17:f5:6e:f4:67:9a:2f:55:67:74:66:8d:b5:5b:
00:fd:64:4c:1a:15:3f:1d:ab:ad:fd:b2:1a:21:a1:be:f0:f3:
4f:da:35:38:15:d1:11:d4:d3:e8:d8:6e:10:54:ca:c0:d9:1c:
61:3a:88:0c:6b:91:48:c5:43:be:e9:a7:7a:2e:45:48:2d:bd:
5c:46:f2:3d:fc:fa:98:91:93:48:88:ec:e0:7f:85:ad:b9:c9:
ba:12:95:52:fc:f0:4f:e5:47:f1:e0:32:e3:07:1b:a0:11:eb:
44:6c:df:b9:f5:3b:d3:62:37:1b:44:5f:0f:3f:d1:91:51:d3:
0d:14:1b:1e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MkM4QUYxMTAvBgNVBAUTKDc2M0Y3RkJEOTY0QTFDMzY2ODMwOEM5QTI5RTE1MDI1
QzBEREY5RDQwHhcNMjUwMzI4MTk1MjQ5WhcNMjUwNDA0MTk1MjQ5WjAYMRYwFAYD
VQQDEw02N2U2ZmUxMS0wOGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzaOOBgD0A3LONk35vFtErc6XmItLkAn7Egh+OcIhBcyrjknRDyhksUeX6sgr
BZhMWyIoWlgpKpZFEXk42SRRP2uMNDsRxN62aCkgflHrUILowisZn3h5kotyYerw
BmR+tLggRmzd5OwPfkxlPHrbhO/JBXqwsdUDRvU/gTS5QK4d4CY20INaMqqJYvqB
6u0x9uRuibPwlFFE8fUJ0fDJh3SGJW+cgJN/0v86XXl0XdkTApPPaC9bg5qv/aqW
6i1B6IfBB6oxEEWO22A6woN52HO1SHa5ZBR4tdSSy5sS/ygDLwBsYhr8WUv4nsf3
deGlM0FcG8W8LYc+CWMZmbZO2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFeqTwK
utijPGPcduCtBedTwYVvMB8GA1UdIwQYMBaAFHY/f72WShw2aDCMminhUCXA3fnU
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9EMUY2NEU3MjVF
RUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hEWm9NSXlhS2VGUUpjRGQt
ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2RqOV92WlpLSERab01JeWFLZUZRSmNEZC1kUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
QzhBRi9EMUY2NEU3MjVFRUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hE
Wm9NSXlhS2VGUUpjRGQtZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAl1xd4hVbim7ipJ7Ue+a0vlY/0qO9bXcMsPpil6vf4T+U1TeKd1zVw
TtYpkatacuRHWYJYLfZ0mDk/3GW1URq7GKkk1kz0LEFHCJUiV9PHEQZ+LbKB2H8s
avfqw58T6OM3cb3Bv32MMyyliwntqmtc78KaktxfUSiBA78Nas1B2lu9F/Vu9Gea
L1VndGaNtVsA/WRMGhU/Haut/bIaIaG+8PNP2jU4FdER1NPo2G4QVMrA2RxhOogM
a5FIxUO+6ad6LkVILb1cRvI9/PqYkZNIiOzgf4Wtucm6EpVS/PBP5Ufx4DLjBxug
EetEbN+59TvTYjcbRF8PP9GRUdMNFBse
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:10:53 2025 by rpki-client