Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft
File: IIUPxwwl_bFV037LDsOWLGtH_K0.mft (raw, json)
Hash identifier: 0oR7zhMHNkhcBa8ac/1eZi7YHJyTTBqfg2B+q3Kbsn8=
Subject key identifier: 51:07:EC:C6:A4:72:E0:7D:D6:91:4A:1E:F3:8D:6B:4A:27:14:6F:41
Authority key identifier: 20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD
Certificate issuer: /CN=A919D545/serialNumber=20850FC70C25FDB155D37ECB0EC3962C6B47FCAD
Certificate serial: 071F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft
Manifest number: 0718
Signing time: Fri 28 Mar 2025 22:06:50 +0000
Manifest this update: Fri 28 Mar 2025 22:06:49 +0000
Manifest next update: Fri 04 Apr 2025 22:06:49 +0000
Files and hashes: 1: IIUPxwwl_bFV037LDsOWLGtH_K0.crl (hash: yrqXgfc3lRxP+ammTby0dd8CIa/LSRXNRhJHDxzybjs=)
2: 934C22582E1C11EBB3ADE232C4F9AE02.roa (hash: 1Nd3whCoQ3UeAyTbWO/1UHp1zlBom6OZhYQFPq70UDQ=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1823 (0x71f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919D545
Validity
Not Before: Mar 28 22:06:49 2025 GMT
Not After : Apr 4 22:06:49 2025 GMT
Subject: CN=67e71d7a-7812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f8:c2:8b:73:1b:7b:94:0d:9e:d8:2f:18:bd:
eb:bf:9d:d2:05:ff:96:88:00:3d:95:ae:45:c7:63:
1a:c9:f8:92:db:00:21:a7:27:01:fb:85:ca:bb:4b:
be:9e:2a:7a:a9:fc:f8:d1:e4:a4:88:1f:60:89:d7:
96:37:e7:5c:2b:ce:25:61:32:53:97:a9:06:d6:da:
40:2b:90:c4:5e:f8:bc:be:96:0d:6c:9d:24:62:ad:
3f:22:9d:0c:6d:bf:3d:27:32:36:fd:5d:f7:15:c7:
79:eb:6e:bf:bd:a9:06:c3:84:bd:9f:f1:4f:1f:5d:
38:d4:54:74:3e:a3:84:4c:97:db:67:3e:ed:10:66:
61:53:53:b7:46:ef:21:ae:d6:25:a8:64:03:68:18:
bc:6b:7c:17:ff:e3:b4:25:33:7b:f9:e5:1e:85:60:
9c:65:de:fd:71:4f:dc:e5:ab:73:38:36:a8:cd:dc:
6c:99:ee:16:26:3d:67:2a:87:f1:25:a2:e1:cc:c7:
b8:eb:43:6c:df:66:8a:c2:ca:70:25:8b:7b:ac:c4:
9e:4d:09:a1:fa:14:9a:72:2f:c7:5f:60:6b:f9:bc:
c2:2b:c0:6c:22:19:9d:1e:9e:d1:ac:6b:64:cf:47:
58:16:44:da:fb:2f:9c:ae:b2:9d:c8:18:a6:8a:75:
5c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:07:EC:C6:A4:72:E0:7D:D6:91:4A:1E:F3:8D:6B:4A:27:14:6F:41
X509v3 Authority Key Identifier:
keyid:20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ca:50:ac:9d:05:57:7a:c4:91:c5:a0:63:81:3f:3e:3a:3c:6b:
1d:e0:58:30:e8:83:a1:6f:d0:71:78:66:fd:38:aa:0d:01:03:
3e:bb:e7:b9:92:f7:56:56:c5:e1:26:cd:3b:bc:86:cf:12:aa:
f6:e7:0b:fb:4d:1d:95:d1:ed:ac:66:ea:1a:96:c0:47:61:0a:
42:7d:53:08:f9:45:cb:6b:bc:9a:99:3a:4e:2a:28:03:97:7c:
e0:02:bc:65:d1:8e:53:19:56:91:e9:db:10:2e:18:0a:35:d3:
e4:a9:ff:46:6c:ee:e6:21:b7:16:64:da:35:35:88:52:82:c8:
a7:9f:64:07:04:cd:d0:7d:8a:cd:21:ef:7a:26:10:6c:bc:91:
65:cf:53:8c:6c:ba:7e:27:50:4e:32:b8:59:a2:85:18:fe:94:
41:f8:64:cf:dc:9e:03:c5:20:2b:aa:3e:2f:83:ad:31:41:19:
cc:71:81:ef:c5:f9:f3:fe:79:91:18:d8:71:37:2e:25:23:99:
a2:72:b4:d9:d4:ee:c5:1f:7a:69:8a:b1:99:4d:79:59:30:e5:
58:ab:61:16:a0:fc:56:ef:d5:50:f5:9a:6d:38:a9:3e:79:01:
f4:5b:d1:6b:8a:09:bb:57:9a:59:80:f3:28:c5:b3:12:af:21:
54:31:b6:da
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OUQ1NDUxMTAvBgNVBAUTKDIwODUwRkM3MEMyNUZEQjE1NUQzN0VDQjBFQzM5NjJD
NkI0N0ZDQUQwHhcNMjUwMzI4MjIwNjQ5WhcNMjUwNDA0MjIwNjQ5WjAYMRYwFAYD
VQQDEw02N2U3MWQ3YS03ODEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2/jCi3Mbe5QNntgvGL3rv53SBf+WiAA9la5Fx2MayfiS2wAhpycB+4XKu0u+
nip6qfz40eSkiB9gideWN+dcK84lYTJTl6kG1tpAK5DEXvi8vpYNbJ0kYq0/Ip0M
bb89JzI2/V33Fcd5626/vakGw4S9n/FPH1041FR0PqOETJfbZz7tEGZhU1O3Ru8h
rtYlqGQDaBi8a3wX/+O0JTN7+eUehWCcZd79cU/c5atzODaozdxsme4WJj1nKofx
JaLhzMe460Ns32aKwspwJYt7rMSeTQmh+hSaci/HX2Br+bzCK8BsIhmdHp7RrGtk
z0dYFkTa+y+crrKdyBiminVc6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEH7Mak
cuB91pFKHvONa0onFG9BMB8GA1UdIwQYMBaAFCCFD8cMJf2xVdN+yw7DlixrR/yt
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDU0NS9GM0I5NzYwNjJF
MUExMUVCQjIzOURFMzBDNEY5QUUwMi9JSVVQeHd3bF9iRlYwMzdMRHNPV0xHdEhf
SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0lJVVB4d3dsX2JGVjAzN0xEc09XTEd0SF9LMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
RDU0NS9GM0I5NzYwNjJFMUExMUVCQjIzOURFMzBDNEY5QUUwMi9JSVVQeHd3bF9i
RlYwMzdMRHNPV0xHdEhfSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQDKUKydBVd6xJHFoGOBPz46PGsd4Fgw6IOhb9BxeGb9OKoNAQM+u+e5
kvdWVsXhJs07vIbPEqr25wv7TR2V0e2sZuoalsBHYQpCfVMI+UXLa7yamTpOKigD
l3zgArxl0Y5TGVaR6dsQLhgKNdPkqf9GbO7mIbcWZNo1NYhSgsinn2QHBM3QfYrN
Ie96JhBsvJFlz1OMbLp+J1BOMrhZooUY/pRB+GTP3J4DxSArqj4vg60xQRnMcYHv
xfnz/nmRGNhxNy4lI5micrTZ1O7FH3ppirGZTXlZMOVYq2EWoPxW79VQ9ZptOKk+
eQH0W9Frigm7V5pZgPMoxbMSryFUMbba
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:40:17 2025 by rpki-client