Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.mft
File: m-KS59FtTo6BYWnDtQLr5O9FwWM.mft (raw, json)
Hash identifier: P9aZqmNCzNIvbVv5Q8gPDbODK/hKllZN0yxBVBi94hg=
Subject key identifier: DD:40:CC:1F:19:96:3E:0F:9C:F0:62:6C:5D:9A:6D:D2:DA:B7:C1:A6
Authority key identifier: 9B:E2:92:E7:D1:6D:4E:8E:81:61:69:C3:B5:02:EB:E4:EF:45:C1:63
Certificate issuer: /CN=A91897B3/serialNumber=9BE292E7D16D4E8E816169C3B502EBE4EF45C163
Certificate serial: 0587
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.mft
Manifest number: 0582
Signing time: Fri 28 Mar 2025 23:33:17 +0000
Manifest this update: Fri 28 Mar 2025 23:33:17 +0000
Manifest next update: Fri 04 Apr 2025 23:33:17 +0000
Files and hashes: 1: m-KS59FtTo6BYWnDtQLr5O9FwWM.crl (hash: 1//YhLdTiI6dTyvw5DYGIn9EUJqY78WUTla2oZEK4ZU=)
2: E3D745E4049C11F0A6EDC22CC4F9AE02.roa (hash: nsBjNc1I4U9F/2q4LQa6FHFw5tY5ObhXTfA8ANwdKOU=)
3: 034BA52C03AE11F0BDE1863DC4F9AE02.roa (hash: ab26F3EYbMgcHX5lgOt6ZwE49tJ4dMZ5pQVz6Dx+1d8=)
4: 6D353E4E97F711EFB3A27D59C4F9AE02.roa (hash: 7fqXwcDMViUGksefOIDEbGFQPWAHlvrlXbc5Ijdn5rA=)
5: 101ED47C04A811F0B2A84883C4F9AE02.roa (hash: UMF6vL/14eo387r7vPb0+tyR8XlL97j8b/ozHXisZRM=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1415 (0x587)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91897B3
Validity
Not Before: Mar 28 23:33:17 2025 GMT
Not After : Apr 4 23:33:17 2025 GMT
Subject: CN=67e731bd-0a21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:05:70:01:5e:1f:f2:ad:f4:06:69:bc:1f:34:
ac:8d:8d:bf:d3:1e:15:e9:44:60:39:b9:90:4b:8f:
51:ed:1f:3c:6a:21:ae:8a:b3:e8:6f:0d:05:a9:b2:
55:b2:a4:4b:6d:15:e1:10:f5:42:f4:e6:c1:a4:da:
f6:10:3b:58:af:7e:1a:12:80:aa:7a:13:14:ec:7c:
23:fc:e9:e1:c6:f2:70:ac:ef:12:35:2e:d6:71:7e:
41:09:47:7e:83:55:b2:2d:b2:da:84:5c:42:24:1a:
e3:b2:ed:6b:ba:75:0c:9b:c3:67:b9:c8:bb:74:62:
6e:55:55:da:33:06:72:e9:e2:43:5e:9d:0f:89:2d:
fe:39:d9:0e:b1:2f:3e:34:84:ce:16:9c:47:f6:b2:
05:da:99:94:4b:82:e9:97:b8:a5:04:63:df:d1:86:
e2:b2:68:09:5e:43:0b:ec:0f:39:da:a8:1e:9e:1a:
c4:07:6e:56:b4:19:b8:ec:6e:b2:58:54:67:0c:f2:
04:54:ba:fa:23:00:c5:45:1f:b2:94:e0:df:a7:d9:
25:81:0f:33:da:14:46:16:a8:23:b0:c8:34:33:24:
5c:bf:01:f2:83:77:c9:99:16:95:44:48:67:64:74:
bf:32:eb:2a:0c:0c:6a:54:d0:58:c1:d7:95:d4:8f:
10:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:40:CC:1F:19:96:3E:0F:9C:F0:62:6C:5D:9A:6D:D2:DA:B7:C1:A6
X509v3 Authority Key Identifier:
keyid:9B:E2:92:E7:D1:6D:4E:8E:81:61:69:C3:B5:02:EB:E4:EF:45:C1:63
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
59:84:11:ff:7e:63:4e:ba:09:3f:9a:e8:ba:56:d9:fc:08:50:
5a:30:22:87:67:b1:12:ac:6a:9b:a3:1d:e7:9d:8a:d0:30:9f:
6d:03:b2:2f:1e:fb:04:42:b0:64:30:d6:23:8c:17:bf:fd:95:
23:34:80:a3:b0:2e:ae:47:8e:0e:27:5c:a9:68:51:8b:bc:aa:
e3:d6:34:2a:c7:ac:5d:18:85:e5:fe:9e:1b:fa:66:df:45:7a:
49:08:96:91:56:0d:51:6b:6c:5f:f9:b7:54:7e:bb:5f:e8:dd:
43:3f:f4:f3:6d:26:91:b1:91:9a:bd:35:5e:86:ee:40:12:bb:
03:a1:e4:57:b6:cb:58:8c:a2:dd:61:85:e8:ac:e9:66:c2:a7:
2d:f5:59:bb:70:0b:21:68:11:de:cf:d5:fe:12:b5:e7:db:00:
be:b4:3d:34:10:1e:0d:b1:ec:55:01:b3:2a:68:30:0f:74:17:
ac:6b:8f:22:b9:67:a1:b8:5d:f0:01:89:7e:4f:11:35:6b:2a:
e3:36:69:42:c3:88:a4:95:2f:3a:9f:4e:47:9e:c8:c7:67:c2:
0a:12:b4:ab:df:e3:7b:a9:ee:2e:88:c7:30:b5:b3:a6:ad:86:
d2:90:1e:75:c6:bc:dc:e2:24:89:a8:98:45:a6:ca:33:4b:fb:
65:34:b0:08
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODk3QjMxMTAvBgNVBAUTKDlCRTI5MkU3RDE2RDRFOEU4MTYxNjlDM0I1MDJFQkU0
RUY0NUMxNjMwHhcNMjUwMzI4MjMzMzE3WhcNMjUwNDA0MjMzMzE3WjAYMRYwFAYD
VQQDEw02N2U3MzFiZC0wYTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtQVwAV4f8q30Bmm8HzSsjY2/0x4V6URgObmQS49R7R88aiGuirPobw0FqbJV
sqRLbRXhEPVC9ObBpNr2EDtYr34aEoCqehMU7Hwj/OnhxvJwrO8SNS7WcX5BCUd+
g1WyLbLahFxCJBrjsu1runUMm8Nnuci7dGJuVVXaMwZy6eJDXp0PiS3+OdkOsS8+
NITOFpxH9rIF2pmUS4Lpl7ilBGPf0YbismgJXkML7A852qgenhrEB25WtBm47G6y
WFRnDPIEVLr6IwDFRR+ylODfp9klgQ8z2hRGFqgjsMg0MyRcvwHyg3fJmRaVREhn
ZHS/MusqDAxqVNBYwdeV1I8Q6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1AzB8Z
lj4PnPBibF2abdLat8GmMB8GA1UdIwQYMBaAFJvikufRbU6OgWFpw7UC6+TvRcFj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCMy82NzIxMkRGRUNF
QTgxMUVCOUE5NjlFMEZDNEY5QUUwMi9tLUtTNTlGdFRvNkJZV25EdFFMcjVPOUZ3
V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL20tS1M1OUZ0VG82QllXbkR0UUxyNU85RndXTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
OTdCMy82NzIxMkRGRUNFQTgxMUVCOUE5NjlFMEZDNEY5QUUwMi9tLUtTNTlGdFRv
NkJZV25EdFFMcjVPOUZ3V00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBZhBH/fmNOugk/mui6Vtn8CFBaMCKHZ7ESrGqbox3nnYrQMJ9tA7Iv
HvsEQrBkMNYjjBe//ZUjNICjsC6uR44OJ1ypaFGLvKrj1jQqx6xdGIXl/p4b+mbf
RXpJCJaRVg1Ra2xf+bdUfrtf6N1DP/TzbSaRsZGavTVehu5AErsDoeRXtstYjKLd
YYXorOlmwqct9Vm7cAshaBHez9X+ErXn2wC+tD00EB4NsexVAbMqaDAPdBesa48i
uWehuF3wAYl+TxE1ayrjNmlCw4iklS86n05HnsjHZ8IKErSr3+N7qe4uiMcwtbOm
rYbSkB51xrzc4iSJqJhFpsozS/tlNLAI
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:58:22 2025 by rpki-client