Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft
File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json)
Hash identifier: Ncwp86VOvpqvSBvbwOxhTYAs8wXFlIhC9V37XLrCilY=
Subject key identifier: 26:94:BD:67:70:76:43:3D:A7:4B:57:C9:11:A0:3B:F5:1E:54:0D:50
Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B
Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B
Certificate serial: 0776
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft
Manifest number: 076B
Signing time: Fri 28 Mar 2025 21:44:43 +0000
Manifest this update: Fri 28 Mar 2025 21:44:43 +0000
Manifest next update: Fri 04 Apr 2025 21:44:43 +0000
Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: rKf41xGY42ZBv4e0X5wRtS2ruRhgeinM+S5ItDMcu+I=)
2: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: TZy3mzqffsTM4n4Rbmohmuv3VCPWE9WJRvRzq53CbvQ=)
3: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: IPmClsdSMbassfXddv44p/mv8kyQ7PdScutwrTiO+q0=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1910 (0x776)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917BB59
Validity
Not Before: Mar 28 21:44:43 2025 GMT
Not After : Apr 4 21:44:43 2025 GMT
Subject: CN=67e7184b-06dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ab:1c:77:4d:8c:c3:09:eb:3c:28:26:bb:9a:
a3:9e:63:78:5f:05:ed:73:cb:1a:17:5e:26:9f:b3:
b3:bb:16:dc:ad:61:9c:b9:92:fc:ff:fa:7f:62:9c:
d1:c5:0d:77:50:0b:82:88:ac:15:07:3a:b8:c1:1f:
bc:6e:3c:58:fa:f7:96:d6:c1:af:18:94:91:34:5a:
47:7f:1c:e2:c4:d7:70:6e:ac:f2:e8:53:c1:56:04:
02:49:aa:40:48:e9:09:b0:54:f6:fc:fa:47:98:20:
cd:c7:c8:07:c0:90:2f:64:32:ac:a4:a7:f7:df:5c:
3c:2d:bb:0e:99:06:5e:40:a0:53:72:50:17:ca:33:
8b:74:8c:75:52:fa:1a:61:be:38:c9:2c:5c:97:cb:
0b:f0:78:be:88:4c:a9:ca:c0:a5:52:20:42:a2:28:
7b:eb:a5:cb:59:3b:ec:2b:f7:4c:39:86:41:0e:b8:
55:4c:e6:b9:45:9c:dd:59:2c:37:c5:c2:44:f2:e5:
99:0c:a9:52:e7:a5:eb:0d:be:dd:88:6f:89:51:3a:
38:5f:07:82:3b:00:0d:bf:5e:e7:76:ed:f0:29:3d:
1b:73:cc:2d:05:2c:37:af:5f:3b:0b:c1:f7:e0:8e:
ef:f1:a7:ff:4d:82:22:b4:11:d2:1b:6f:86:5c:49:
fb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:94:BD:67:70:76:43:3D:A7:4B:57:C9:11:A0:3B:F5:1E:54:0D:50
X509v3 Authority Key Identifier:
keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
59:6d:e7:72:19:54:97:2f:6f:07:8c:6b:50:3d:0e:4c:84:c2:
be:2e:c8:69:3b:f2:6f:39:6d:f7:fe:be:0d:d1:0e:80:c7:95:
45:9a:01:ea:a2:53:70:ee:eb:e8:80:30:bf:ae:c9:e8:57:de:
7e:b0:61:32:5e:3f:e8:b6:c7:ae:ef:7b:22:28:4b:b6:2d:76:
27:03:d7:f7:4b:06:dc:67:76:b5:cc:f3:00:5b:31:ee:4a:80:
a8:e2:8f:6e:61:d1:29:2c:91:96:a9:81:f4:69:3d:04:1a:0b:
24:3e:45:8e:7d:ed:e9:3b:c6:06:5b:39:9c:85:85:58:18:b4:
0d:fc:e0:9c:4a:e4:ca:3e:84:0a:b3:9f:c2:e7:5d:e3:dc:50:
58:a9:11:d5:a2:bd:30:7a:b2:9c:7d:0b:7c:78:b3:5b:42:f3:
5a:99:37:c8:12:2c:0a:ba:0f:c7:7f:bf:3b:41:57:2d:d1:81:
cd:8a:83:6c:5f:84:ae:a3:c0:14:37:f0:e3:f3:b0:49:b6:ed:
5d:82:4a:4f:cb:e0:b4:83:06:26:b1:1c:89:84:7f:1b:fa:6e:
4a:d2:e4:54:76:5b:55:cb:8c:d7:8d:ad:a5:a8:f6:f0:7b:9e:
6c:bb:71:8c:b5:2b:12:d6:9f:98:87:16:73:5a:a3:3e:08:95:
45:c7:28:03
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICB3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG
NkM1MzEzNkIwHhcNMjUwMzI4MjE0NDQzWhcNMjUwNDA0MjE0NDQzWjAYMRYwFAYD
VQQDEw02N2U3MTg0Yi0wNmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAy6scd02MwwnrPCgmu5qjnmN4XwXtc8saF14mn7OzuxbcrWGcuZL8//p/YpzR
xQ13UAuCiKwVBzq4wR+8bjxY+veW1sGvGJSRNFpHfxzixNdwbqzy6FPBVgQCSapA
SOkJsFT2/PpHmCDNx8gHwJAvZDKspKf331w8LbsOmQZeQKBTclAXyjOLdIx1Uvoa
Yb44ySxcl8sL8Hi+iEypysClUiBCoih766XLWTvsK/dMOYZBDrhVTOa5RZzdWSw3
xcJE8uWZDKlS56XrDb7diG+JUTo4XweCOwANv17ndu3wKT0bc8wtBSw3r187C8H3
4I7v8af/TYIitBHSG2+GXEn7QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaUvWdw
dkM9p0tXyRGgO/UeVA1QMB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE
Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF
MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x
cWF4a3o4dGpTMW4yeFRFMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBZbedyGVSXL28HjGtQPQ5MhMK+LshpO/JvOW33/r4N0Q6Ax5VFmgHq
olNw7uvogDC/rsnoV95+sGEyXj/otseu73siKEu2LXYnA9f3SwbcZ3a1zPMAWzHu
SoCo4o9uYdEpLJGWqYH0aT0EGgskPkWOfe3pO8YGWzmchYVYGLQN/OCcSuTKPoQK
s5/C513j3FBYqRHVor0werKcfQt8eLNbQvNamTfIEiwKug/Hf787QVct0YHNioNs
X4Suo8AUN/Dj87BJtu1dgkpPy+C0gwYmsRyJhH8b+m5K0uRUdltVy4zXja2lqPbw
e55su3GMtSsS1p+YhxZzWqM+CJVFxygD
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:17:42 2025 by rpki-client