Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft
File: VRTBgTfeq40U8RHJD39rfjDQH2Q.mft (raw, json)
Hash identifier: f+SA5ukc9RFO4d/k5CA+OrklZysfgkMlDdMsPTFB3h8=
Subject key identifier: 32:6A:8D:7F:CC:79:B7:D4:82:A2:2D:C7:CF:A1:FF:52:2F:50:37:38
Authority key identifier: 55:14:C1:81:37:DE:AB:8D:14:F1:11:C9:0F:7F:6B:7E:30:D0:1F:64
Certificate issuer: /CN=A916D1DA/serialNumber=5514C18137DEAB8D14F111C90F7F6B7E30D01F64
Certificate serial: 3464
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRTBgTfeq40U8RHJD39rfjDQH2Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft
Manifest number: 3464
Signing time: Fri 28 Mar 2025 15:05:32 +0000
Manifest this update: Fri 28 Mar 2025 15:05:31 +0000
Manifest next update: Fri 04 Apr 2025 15:05:31 +0000
Files and hashes: 1: VRTBgTfeq40U8RHJD39rfjDQH2Q.crl (hash: 7yehY7/slv61ckSDVk/8S8D3OvlXIg6cMDp1nRNHV9E=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13412 (0x3464)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916D1DA
Validity
Not Before: Mar 28 15:05:31 2025 GMT
Not After : Apr 4 15:05:31 2025 GMT
Subject: CN=67e6babc-1893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b2:c0:fd:b6:98:5d:58:15:bf:40:b1:ee:17:
b6:97:cb:9e:73:ee:f1:96:43:89:a9:28:b7:bc:a7:
e5:c3:02:bc:36:f8:98:23:a9:7d:18:55:0e:2f:d6:
56:3e:b8:ec:97:5e:d3:44:c7:7a:7b:e0:37:06:c8:
0d:83:a0:34:1b:eb:f9:4c:44:df:d7:34:5f:8c:26:
3b:d3:a1:68:d7:55:b0:bc:f1:3c:94:26:c0:02:ad:
d1:f1:51:3d:3f:5f:e3:0a:12:65:ff:d7:36:d7:e7:
e5:14:00:ae:34:f6:64:55:5e:c7:c7:03:87:46:3c:
20:c3:96:57:34:c6:a7:93:b3:5c:02:da:dd:8f:a8:
5d:6e:41:91:94:83:3c:8c:14:e8:5b:76:41:64:33:
3a:c5:c2:4f:fd:af:49:01:c0:3d:0d:66:f1:d8:3b:
e2:98:df:12:ea:30:1b:39:04:63:62:1f:3a:56:4b:
67:80:2a:87:f7:7a:f4:93:44:08:2e:97:f1:ce:3d:
63:d3:71:91:7b:72:02:e4:2d:35:97:77:66:57:ca:
f1:24:c8:8f:61:57:f2:d2:fd:8f:4e:73:b1:28:b9:
f5:58:39:f3:70:06:6f:ac:7d:90:16:79:5a:e8:c0:
2a:3a:15:d1:6a:26:35:81:08:fd:a7:2b:00:ed:59:
1f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:6A:8D:7F:CC:79:B7:D4:82:A2:2D:C7:CF:A1:FF:52:2F:50:37:38
X509v3 Authority Key Identifier:
keyid:55:14:C1:81:37:DE:AB:8D:14:F1:11:C9:0F:7F:6B:7E:30:D0:1F:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRTBgTfeq40U8RHJD39rfjDQH2Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
69:c1:bc:d2:15:8c:a9:dc:6c:ed:b9:bc:8a:7f:70:45:27:21:
61:ea:af:f6:a8:0b:3f:43:7d:02:a4:06:cf:a9:61:a7:14:c0:
08:81:2d:a9:b2:6c:5c:a8:64:33:cc:28:12:2b:e3:65:9a:25:
da:22:d5:f7:aa:7c:e1:62:44:44:2b:c0:65:19:0f:fc:cb:ae:
c7:d1:26:22:7e:fe:68:ed:4b:09:ec:06:cc:67:d4:d7:be:3e:
f2:71:f1:c0:5b:9a:79:e1:a3:b9:bc:50:d3:1b:2a:cb:fa:53:
51:be:97:2d:cc:e9:5e:e3:d7:bd:61:41:ec:fb:b0:07:13:d0:
06:40:88:13:4f:77:d2:d7:52:44:a6:a1:f1:f4:93:98:33:29:
67:4b:53:a7:9b:67:62:38:34:4e:ff:f2:2a:e7:ab:f4:ea:a6:
b2:10:66:71:23:e1:75:75:80:12:5e:bc:da:6d:7d:4a:92:19:
14:42:d2:6c:eb:32:93:e3:64:c4:7e:e3:a3:a6:af:a6:ab:29:
51:48:94:87:45:90:8e:ad:02:b8:af:65:7e:93:8a:85:52:66:
79:48:e7:1a:8c:fc:65:93:73:f9:35:29:bd:cf:cd:dd:ce:57:
eb:d8:7a:46:cb:bf:16:a1:dc:47:7c:18:04:0a:5b:16:9a:f1:
b9:e2:72:c3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICNGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NkQxREExMTAvBgNVBAUTKDU1MTRDMTgxMzdERUFCOEQxNEYxMTFDOTBGN0Y2QjdF
MzBEMDFGNjQwHhcNMjUwMzI4MTUwNTMxWhcNMjUwNDA0MTUwNTMxWjAYMRYwFAYD
VQQDEw02N2U2YmFiYy0xODkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAq7LA/baYXVgVv0Cx7he2l8uec+7xlkOJqSi3vKflwwK8NviYI6l9GFUOL9ZW
Prjsl17TRMd6e+A3BsgNg6A0G+v5TETf1zRfjCY706Fo11WwvPE8lCbAAq3R8VE9
P1/jChJl/9c21+flFACuNPZkVV7HxwOHRjwgw5ZXNMank7NcAtrdj6hdbkGRlIM8
jBToW3ZBZDM6xcJP/a9JAcA9DWbx2DvimN8S6jAbOQRjYh86VktngCqH93r0k0QI
Lpfxzj1j03GRe3IC5C01l3dmV8rxJMiPYVfy0v2PTnOxKLn1WDnzcAZvrH2QFnla
6MAqOhXRaiY1gQj9pysA7VkfJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJqjX/M
ebfUgqItx8+h/1IvUDc4MB8GA1UdIwQYMBaAFFUUwYE33quNFPERyQ9/a34w0B9k
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDFEQS8wMDhDRTUyQTFE
OUUxMUUyOTY0Qjk1OEQwOEIwMkNEMi9WUlRCZ1RmZXE0MFU4UkhKRDM5cmZqRFFI
MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1ZSVEJnVGZlcTQwVThSSEpEMzlyZmpEUUgyUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
RDFEQS8wMDhDRTUyQTFEOUUxMUUyOTY0Qjk1OEQwOEIwMkNEMi9WUlRCZ1RmZXE0
MFU4UkhKRDM5cmZqRFFIMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBpwbzSFYyp3GztubyKf3BFJyFh6q/2qAs/Q30CpAbPqWGnFMAIgS2p
smxcqGQzzCgSK+NlmiXaItX3qnzhYkREK8BlGQ/8y67H0SYifv5o7UsJ7AbMZ9TX
vj7ycfHAW5p54aO5vFDTGyrL+lNRvpctzOle49e9YUHs+7AHE9AGQIgTT3fS11JE
pqHx9JOYMylnS1Onm2diODRO//Iq56v06qayEGZxI+F1dYASXrzabX1KkhkUQtJs
6zKT42TEfuOjpq+mqylRSJSHRZCOrQK4r2V+k4qFUmZ5SOcajPxlk3P5NSm9z83d
zlfr2HpGy78WodxHfBgEClsWmvG54nLD
-----END CERTIFICATE-----
Generated at Fri Apr 4 21:47:28 2025 by rpki-client