Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft
File: IJOpiw2lSMwNHF-8o9clFG9ETXI.mft (raw, json)
Hash identifier: NHDAs4ifawnsLGvYrHrH4MWZAhIrpYWRW4RQZLIrsZ4=
Subject key identifier: FC:37:DF:86:56:8B:45:7E:8D:99:9A:E4:CA:C3:95:58:63:FF:DF:E3
Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72
Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72
Certificate serial: 34AA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft
Manifest number: 3480
Signing time: Fri 28 Mar 2025 14:19:52 +0000
Manifest this update: Fri 28 Mar 2025 14:19:51 +0000
Manifest next update: Fri 04 Apr 2025 14:19:51 +0000
Files and hashes: 1: IJOpiw2lSMwNHF-8o9clFG9ETXI.crl (hash: 26jm+F1FwGxvqO2tirIPxEsWAdBw4a/efVHCmrElZmw=)
2: EF9395EA6A1511E9808D417CC4F9AE02.roa (hash: T96snG6T3ksqfKF7mowlYs05xmmtsddFbccqyfqSTxQ=)
3: 32509B68EDAE11E595DF6C28C4F9AE02.roa (hash: aiAqLVoZ6cEM6hY/DjBukcfxFi5I+NxU4FFn5k2CPUQ=)
4: E93EEAFCB0F811E595E0F761C4F9AE02.roa (hash: XONO8AScATR8p+dgN33QWapfnhUPZs7VGzeHh0uX4pc=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13482 (0x34aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9154657
Validity
Not Before: Mar 28 14:19:51 2025 GMT
Not After : Apr 4 14:19:51 2025 GMT
Subject: CN=67e6b007-2038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:74:c5:b1:fe:6d:8c:53:2a:9c:65:e1:eb:91:
54:29:84:76:30:35:36:c1:3a:e2:8a:47:5e:9f:55:
7a:50:28:8c:15:4e:af:74:c9:9b:b3:6e:b0:70:f6:
03:5a:98:59:18:9e:c8:e0:42:67:43:87:28:9e:ff:
50:cc:d5:df:4a:97:db:2b:54:71:62:e3:60:55:be:
c8:96:01:91:ad:bb:d5:53:63:50:ac:c9:22:b4:1a:
78:40:10:92:bb:73:78:1a:90:9a:78:fc:22:53:9f:
1e:30:11:aa:68:ec:7c:b5:3a:4b:42:b1:70:89:3e:
c0:0f:b6:ed:1b:21:8b:09:a7:aa:43:c4:92:94:ed:
f7:4b:7b:c3:78:52:95:2c:c1:b7:6e:d1:03:c1:af:
29:92:c4:c0:93:eb:72:b2:30:d3:5d:d3:7e:ef:a2:
3e:ed:e8:08:f0:ce:61:dd:9f:ec:ba:a8:99:cc:89:
16:4d:8d:6c:04:ba:39:c5:43:28:12:64:65:08:e9:
33:b1:f3:8d:d8:6f:53:12:dd:4f:73:6a:03:68:c6:
cf:f6:28:d1:fa:a8:3d:97:f3:7f:6c:00:7a:ea:d6:
f9:b1:41:dc:f4:16:e5:a9:2f:1e:23:c7:1c:55:c0:
77:0a:23:b7:b2:fd:1c:3b:ef:30:b9:76:d6:4c:86:
68:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:37:DF:86:56:8B:45:7E:8D:99:9A:E4:CA:C3:95:58:63:FF:DF:E3
X509v3 Authority Key Identifier:
keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ad:84:9e:ea:c3:a4:52:97:47:bc:b6:24:cf:09:63:52:55:96:
f7:13:9a:b1:5f:8d:27:90:41:cf:ec:e5:4e:26:20:6d:14:ec:
6d:8c:a3:0f:ce:c2:1b:a0:d6:7a:54:38:12:9a:5f:a1:3f:d6:
fd:cf:84:68:5f:2e:6b:03:10:cf:1d:97:a5:84:ce:a1:89:bc:
a4:6e:ca:93:0b:9f:56:31:ce:a8:03:21:ca:43:8a:69:91:5a:
9c:85:61:fa:ab:c8:fe:ad:ec:20:d3:f6:5d:92:7c:95:d3:6a:
0b:b2:42:8c:d9:03:45:1f:15:ec:48:aa:ca:b6:6a:db:4b:e6:
62:24:dc:2e:11:b6:64:ac:8e:f4:00:df:01:d4:7d:0a:f3:9b:
09:6a:bd:8e:39:0f:fd:8a:96:0a:f9:47:56:d8:5d:47:ca:ac:
e4:63:c9:67:11:81:d8:17:61:4c:92:46:5e:75:7e:32:e6:33:
da:08:53:e9:d2:e4:e9:13:35:3d:4a:29:59:31:ec:b3:2b:47:
d3:ed:1f:50:83:04:99:29:45:95:ff:a4:78:fc:dd:4b:41:64:
6d:1c:6e:ba:2d:2f:41:f1:7e:17:b1:1e:36:25:4f:13:90:8f:
41:ef:e1:2f:8a:e5:17:96:c7:8f:55:f9:8f:0b:9e:8a:74:d6:
14:55:6b:f9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICNKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0
NkY0NDRENzIwHhcNMjUwMzI4MTQxOTUxWhcNMjUwNDA0MTQxOTUxWjAYMRYwFAYD
VQQDEw02N2U2YjAwNy0yMDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA23TFsf5tjFMqnGXh65FUKYR2MDU2wTriikden1V6UCiMFU6vdMmbs26wcPYD
WphZGJ7I4EJnQ4conv9QzNXfSpfbK1RxYuNgVb7IlgGRrbvVU2NQrMkitBp4QBCS
u3N4GpCaePwiU58eMBGqaOx8tTpLQrFwiT7AD7btGyGLCaeqQ8SSlO33S3vDeFKV
LMG3btEDwa8pksTAk+tysjDTXdN+76I+7egI8M5h3Z/suqiZzIkWTY1sBLo5xUMo
EmRlCOkzsfON2G9TEt1Pc2oDaMbP9ijR+qg9l/N/bAB66tb5sUHc9BblqS8eI8cc
VcB3CiO3sv0cO+8wuXbWTIZoAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPw334ZW
i0V+jZma5MrDlVhj/9/jMB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE
NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU
WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
NDY1Ny83MTVGMzMzNDFENzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNN
d05IRi04bzljbEZHOUVUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCthJ7qw6RSl0e8tiTPCWNSVZb3E5qxX40nkEHP7OVOJiBtFOxtjKMP
zsIboNZ6VDgSml+hP9b9z4RoXy5rAxDPHZelhM6hibykbsqTC59WMc6oAyHKQ4pp
kVqchWH6q8j+rewg0/ZdknyV02oLskKM2QNFHxXsSKrKtmrbS+ZiJNwuEbZkrI70
AN8B1H0K85sJar2OOQ/9ipYK+UdW2F1HyqzkY8lnEYHYF2FMkkZedX4y5jPaCFPp
0uTpEzU9SilZMeyzK0fT7R9QgwSZKUWV/6R4/N1LQWRtHG66LS9B8X4XsR42JU8T
kI9B7+EviuUXlsePVfmPC56KdNYUVWv5
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:32:05 2025 by rpki-client