Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft
File: 2dCjxqTde6e0VN6uAa9nryxUxDM.mft (raw, json)
Hash identifier: jf5SWpE7xWoboIPPbmpKEi7IgwI/GFrCX2Eip8v7BdU=
Subject key identifier: 86:B9:E6:D3:07:A4:E3:EF:7F:CE:B6:91:25:C0:F5:86:67:33:05:9D
Authority key identifier: D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33
Certificate issuer: /CN=A915C9B7/serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433
Certificate serial: 07CA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft
Manifest number: 07C0
Signing time: Fri 28 Mar 2025 21:21:43 +0000
Manifest this update: Fri 28 Mar 2025 21:21:43 +0000
Manifest next update: Fri 04 Apr 2025 21:21:43 +0000
Files and hashes: 1: 2dCjxqTde6e0VN6uAa9nryxUxDM.crl (hash: Fy+MCkCHuFYkvSoMBdm0LLPC7CeKVEn+M+n2x53YNxQ=)
2: 12A47D4E9CDB11EF857FB626C4F9AE02.roa (hash: 6+tk9n+mwKmveOFrTOSyNOKqHKQyrXgQ60Gavs+tji8=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1994 (0x7ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915C9B7
Validity
Not Before: Mar 28 21:21:43 2025 GMT
Not After : Apr 4 21:21:43 2025 GMT
Subject: CN=67e712e7-6aef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:22:1c:4c:7e:a2:5b:7d:95:a4:1f:c3:7b:4d:
de:df:ec:66:40:81:30:7f:f8:81:45:61:86:96:10:
41:f5:2c:44:b9:bb:ef:4c:86:d0:40:ae:22:3c:80:
79:15:49:e3:16:99:a7:84:3c:51:84:0e:71:d5:15:
d0:60:3b:f2:77:fa:6e:35:d5:df:d4:ab:26:fc:41:
1f:a3:7a:84:39:6d:cd:d7:35:0b:00:94:53:67:75:
52:76:31:f1:1f:bf:e1:b7:1d:c8:d3:97:a1:2c:fc:
ca:43:4a:9b:20:86:77:2d:b3:47:04:89:01:94:3b:
e2:28:5b:66:e6:d8:6e:c4:7e:09:b1:0f:a9:bc:61:
6a:ae:4e:99:96:77:9e:e8:fd:7a:97:5b:d3:93:df:
bc:3d:db:10:5f:0e:34:53:33:1b:41:2e:4e:51:ed:
81:54:bb:c7:ac:4e:23:c1:61:e1:5d:17:50:7d:ec:
ec:1f:b1:48:b1:5f:76:db:8e:b3:a3:9d:b5:0f:49:
f9:87:e9:c0:5f:86:b4:62:38:7d:a8:42:54:18:a5:
47:78:10:da:e9:6e:43:61:44:62:72:96:9b:8a:fb:
d9:0b:75:68:30:b1:e4:8a:de:07:36:52:58:d9:01:
56:d1:7b:78:1f:82:0e:88:28:96:53:98:e0:c8:7c:
92:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B9:E6:D3:07:A4:E3:EF:7F:CE:B6:91:25:C0:F5:86:67:33:05:9D
X509v3 Authority Key Identifier:
keyid:D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
96:ef:4d:45:5e:30:38:1b:ab:b4:00:30:86:4f:bb:05:70:f0:
cf:c8:74:27:1b:aa:09:a3:8c:a9:37:4f:7f:d7:7d:b6:25:c6:
a7:9f:a9:de:a0:7d:3f:01:f5:af:81:eb:cb:3d:32:99:04:e6:
39:56:4f:eb:cc:64:b3:7f:c4:01:fb:5d:9d:c4:a9:b4:5d:50:
e9:83:be:1b:36:46:06:4a:15:04:14:e0:46:9e:db:0c:f7:27:
c7:ca:16:81:8c:a0:96:bd:b0:0a:e5:90:58:15:7b:4b:6a:92:
6a:5a:71:84:27:b6:eb:74:79:37:c6:1f:25:ba:61:c3:2c:82:
63:02:88:28:b1:b5:0f:aa:ce:b2:b5:75:f8:b5:69:51:db:d6:
d6:9f:7b:1e:ef:39:6f:96:a6:2c:87:2a:57:fc:8b:88:eb:66:
90:32:94:72:5e:41:fd:33:20:56:9e:8d:69:f0:f2:d2:53:4d:
be:dd:1f:d1:fc:48:42:d6:80:66:e2:38:d7:02:fd:d9:9e:a5:
64:c7:d2:55:a0:82:9f:5f:95:b5:2a:90:3c:b3:62:f4:81:f6:
f3:3d:44:b4:65:c7:fe:ff:5a:39:50:d7:f8:79:28:db:3b:e3:
12:82:3f:31:be:71:bb:5b:15:c6:62:ec:ed:cc:be:9b:31:cd:
e7:31:0d:ae
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICB8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NUM5QjcxMTAvBgNVBAUTKEQ5RDBBM0M2QTRERDdCQTdCNDU0REVBRTAxQUY2N0FG
MkM1NEM0MzMwHhcNMjUwMzI4MjEyMTQzWhcNMjUwNDA0MjEyMTQzWjAYMRYwFAYD
VQQDEw02N2U3MTJlNy02YWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1CIcTH6iW32VpB/De03e3+xmQIEwf/iBRWGGlhBB9SxEubvvTIbQQK4iPIB5
FUnjFpmnhDxRhA5x1RXQYDvyd/puNdXf1Ksm/EEfo3qEOW3N1zULAJRTZ3VSdjHx
H7/htx3I05ehLPzKQ0qbIIZ3LbNHBIkBlDviKFtm5thuxH4JsQ+pvGFqrk6Zlnee
6P16l1vTk9+8PdsQXw40UzMbQS5OUe2BVLvHrE4jwWHhXRdQfezsH7FIsV92246z
o521D0n5h+nAX4a0Yjh9qEJUGKVHeBDa6W5DYURicpabivvZC3VoMLHkit4HNlJY
2QFW0Xt4H4IOiCiWU5jgyHySjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIa55tMH
pOPvf862kSXA9YZnMwWdMB8GA1UdIwQYMBaAFNnQo8ak3XuntFTergGvZ68sVMQz
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzlCNy84QzI2NEZEMkVF
NUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2ZTBWTjZ1QWE5bnJ5eFV4
RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJkQ2p4cVRkZTZlMFZONnVBYTlucnl4VXhETS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
QzlCNy84QzI2NEZEMkVFNUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2
ZTBWTjZ1QWE5bnJ5eFV4RE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCW701FXjA4G6u0ADCGT7sFcPDPyHQnG6oJo4ypN09/1322Jcann6ne
oH0/AfWvgevLPTKZBOY5Vk/rzGSzf8QB+12dxKm0XVDpg74bNkYGShUEFOBGntsM
9yfHyhaBjKCWvbAK5ZBYFXtLapJqWnGEJ7brdHk3xh8lumHDLIJjAogosbUPqs6y
tXX4tWlR29bWn3se7zlvlqYshypX/IuI62aQMpRyXkH9MyBWno1p8PLSU02+3R/R
/EhC1oBm4jjXAv3ZnqVkx9JVoIKfX5W1KpA8s2L0gfbzPUS0Zcf+/1o5UNf4eSjb
O+MSgj8xvnG7WxXGYuztzL6bMc3nMQ2u
-----END CERTIFICATE-----
Generated at Fri Apr 4 21:51:58 2025 by rpki-client