Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919819A/63EA20921D9E11E2ADB73F8E08B02CD2/NYOZxzbvBV1dWSyrGQFv44FvZgg.mft
File: NYOZxzbvBV1dWSyrGQFv44FvZgg.mft (raw, json)
Hash identifier: K5OntCyOBzatS/HR2fZ1H6mFEJp8CEIqijUHR0+/mnQ=
Subject key identifier: 90:60:28:EF:84:0A:96:A1:92:C9:52:28:E9:BF:1D:43:B7:75:FE:57
Authority key identifier: 35:83:99:C7:36:EF:05:5D:5D:59:2C:AB:19:01:6F:E3:81:6F:66:08
Certificate issuer: /CN=A919819A/serialNumber=358399C736EF055D5D592CAB19016FE3816F6608
Certificate serial: 3486
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYOZxzbvBV1dWSyrGQFv44FvZgg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919819A/63EA20921D9E11E2ADB73F8E08B02CD2/NYOZxzbvBV1dWSyrGQFv44FvZgg.mft
Manifest number: 3479
Signing time: Fri 28 Mar 2025 15:06:03 +0000
Manifest this update: Fri 28 Mar 2025 15:06:02 +0000
Manifest next update: Fri 04 Apr 2025 15:06:02 +0000
Files and hashes: 1: NYOZxzbvBV1dWSyrGQFv44FvZgg.crl (hash: q0u3U1548Uvp699Ect2fH7jWb69kGEYpcBzjFddG6ak=)
2: 73462B74643C11EB9E7DF918C4F9AE02.roa (hash: OiW89qQFovmBoY5voLYQMPJS/gYyS8nvSRtkPJR5YIU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13446 (0x3486)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919819A
Validity
Not Before: Mar 28 15:06:02 2025 GMT
Not After : Apr 4 15:06:02 2025 GMT
Subject: CN=67e6badb-3f12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d9:4e:ae:be:2b:30:74:3d:40:93:80:01:18:
1c:3e:c2:54:95:b2:bc:64:1d:77:44:04:d4:f6:83:
c9:9c:b2:67:ea:b5:ae:1f:ab:f2:92:07:6c:c5:70:
c9:5a:1d:b3:d0:ab:73:57:7a:22:d1:ed:d3:4d:29:
d3:9e:be:2a:c8:57:09:50:30:59:c5:a5:6b:f7:b1:
7d:5b:83:11:e3:84:22:f3:3a:56:74:8f:f1:7e:f1:
eb:87:23:9f:f8:17:51:ae:13:51:55:00:1f:b3:5f:
1b:3e:ca:36:e4:33:f3:6e:21:fa:c2:d6:d8:67:45:
10:72:08:0d:25:d3:08:d6:8d:d2:5d:24:47:47:28:
32:95:90:13:86:64:bb:9b:10:af:d8:5a:4b:47:fb:
94:ad:d2:5d:bb:81:73:66:ef:3d:cf:9b:83:5a:b9:
af:49:3e:c0:ff:f6:cd:6b:6f:10:85:85:6b:e7:24:
7f:65:3f:d5:da:71:b4:92:0d:0b:3c:27:e9:a6:60:
06:67:1a:48:5d:9e:5d:4b:f7:20:39:ed:0c:07:7e:
d4:a7:d0:03:6b:1a:3c:ad:5c:18:f9:34:dc:12:ce:
7c:da:98:61:8e:6c:a9:f4:c0:8e:b9:64:c0:cb:47:
7e:e2:b3:9e:59:cc:a0:19:d6:14:57:cf:58:57:58:
14:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:60:28:EF:84:0A:96:A1:92:C9:52:28:E9:BF:1D:43:B7:75:FE:57
X509v3 Authority Key Identifier:
keyid:35:83:99:C7:36:EF:05:5D:5D:59:2C:AB:19:01:6F:E3:81:6F:66:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919819A/63EA20921D9E11E2ADB73F8E08B02CD2/NYOZxzbvBV1dWSyrGQFv44FvZgg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYOZxzbvBV1dWSyrGQFv44FvZgg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919819A/63EA20921D9E11E2ADB73F8E08B02CD2/NYOZxzbvBV1dWSyrGQFv44FvZgg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
65:72:fe:f8:34:44:3d:84:37:a4:e0:9c:62:c3:1d:b2:f9:34:
83:51:88:42:34:15:95:06:eb:9f:3b:86:2e:f2:6c:f7:6c:19:
de:96:32:c8:e3:0e:ae:22:49:31:cd:fd:5a:17:74:b4:8f:e6:
16:1e:95:66:d4:b2:c4:ef:a3:2d:a2:88:0a:a4:1b:99:c9:0a:
e2:62:87:2f:2b:a8:88:ac:38:61:e6:e4:07:b8:17:33:55:b6:
9f:50:c7:8a:31:23:f8:28:94:65:13:44:63:a8:dd:c9:d6:90:
73:b3:0e:eb:3d:d8:c6:ad:c1:b2:89:a4:ef:2b:3e:98:43:24:
d5:4b:76:a1:b6:5b:42:30:1a:2e:cc:36:e3:c8:af:e1:8a:75:
f6:e4:17:11:94:8e:89:32:3a:d6:95:eb:32:33:08:f8:88:44:
b2:3b:cb:c0:08:f0:04:73:5a:6f:4e:3c:0a:de:83:0e:b5:ed:
de:c1:fb:9e:ff:21:f0:af:52:d1:ba:52:3e:d6:1a:41:0a:05:
e1:de:a9:34:c5:38:a5:a9:21:e6:ad:ac:ae:55:0c:39:ee:fd:
c8:86:99:58:82:ac:fd:5c:99:75:18:ba:22:c3:d6:78:5a:9e:
b5:cc:31:60:e4:60:a7:8a:c9:83:6d:a1:12:4c:c0:82:2e:3b:
5a:b5:7d:08
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICNIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTgxOUExMTAvBgNVBAUTKDM1ODM5OUM3MzZFRjA1NUQ1RDU5MkNBQjE5MDE2RkUz
ODE2RjY2MDgwHhcNMjUwMzI4MTUwNjAyWhcNMjUwNDA0MTUwNjAyWjAYMRYwFAYD
VQQDEw02N2U2YmFkYi0zZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAv9lOrr4rMHQ9QJOAARgcPsJUlbK8ZB13RATU9oPJnLJn6rWuH6vykgdsxXDJ
Wh2z0KtzV3oi0e3TTSnTnr4qyFcJUDBZxaVr97F9W4MR44Qi8zpWdI/xfvHrhyOf
+BdRrhNRVQAfs18bPso25DPzbiH6wtbYZ0UQcggNJdMI1o3SXSRHRygylZAThmS7
mxCv2FpLR/uUrdJdu4FzZu89z5uDWrmvST7A//bNa28QhYVr5yR/ZT/V2nG0kg0L
PCfppmAGZxpIXZ5dS/cgOe0MB37Up9ADaxo8rVwY+TTcEs582phhjmyp9MCOuWTA
y0d+4rOeWcygGdYUV89YV1gUEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBgKO+E
CpahkslSKOm/HUO3df5XMB8GA1UdIwQYMBaAFDWDmcc27wVdXVksqxkBb+OBb2YI
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODE5QS82M0VBMjA5MjFE
OUUxMUUyQURCNzNGOEUwOEIwMkNEMi9OWU9aeHpidkJWMWRXU3lyR1FGdjQ0RnZa
Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL05ZT1p4emJ2QlYxZFdTeXJHUUZ2NDRGdlpnZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
ODE5QS82M0VBMjA5MjFEOUUxMUUyQURCNzNGOEUwOEIwMkNEMi9OWU9aeHpidkJW
MWRXU3lyR1FGdjQ0RnZaZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBlcv74NEQ9hDek4Jxiwx2y+TSDUYhCNBWVBuufO4Yu8mz3bBneljLI
4w6uIkkxzf1aF3S0j+YWHpVm1LLE76MtoogKpBuZyQriYocvK6iIrDhh5uQHuBcz
VbafUMeKMSP4KJRlE0RjqN3J1pBzsw7rPdjGrcGyiaTvKz6YQyTVS3ahtltCMBou
zDbjyK/hinX25BcRlI6JMjrWlesyMwj4iESyO8vACPAEc1pvTjwK3oMOte3ewfue
/yHwr1LRulI+1hpBCgXh3qk0xTilqSHmrayuVQw57v3IhplYgqz9XJl1GLoiw9Z4
Wp61zDFg5GCnismDbaESTMCCLjtatX0I
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:37:30 2025 by rpki-client