Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft
File: tBFqjm2pkf3PcWJue-oR_2nLqEY.mft (raw, json)
Hash identifier: xZA+O0o7tSMBTD6iL2xcysRh8ZTtZ6MQAzdKP+y9cxA=
Subject key identifier: 5F:8A:A9:8C:70:49:69:B8:82:0B:CF:F7:5B:69:61:52:40:F3:80:B4
Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46
Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846
Certificate serial: 0B8E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft
Manifest number: 0B45
Signing time: Fri 28 Mar 2025 19:27:33 +0000
Manifest this update: Fri 28 Mar 2025 19:27:33 +0000
Manifest next update: Fri 04 Apr 2025 19:27:33 +0000
Files and hashes: 1: tBFqjm2pkf3PcWJue-oR_2nLqEY.crl (hash: cb2buHvgsXXjsaC5+DegFDkqMFmBW6OBIISB/B89H0I=)
2: 6CAE0142092E11F094B4703FC4F9AE02.roa (hash: faSDNRU0hXKNrR2l02iczi8DzVKYeoGayKWE+F//TSo=)
3: 7A35195A0A1811F0ADFE8D2DC4F9AE02.roa (hash: MQwql/DunjJKbcqz7WPYMhFINci5OhdMcQBkCx0F6BU=)
4: 33136310086F11F088067839C4F9AE02.roa (hash: T6TzoH13idGKn8oy/DhDX7WyaXhh+fmMhq+FDNN5wpM=)
5: 7D5E5872086E11F089914338C4F9AE02.roa (hash: RqWOXlkWz5bSgHQgCwaw6UldUlcXorjTOj0ajLG6Zfw=)
6: BDC7EB220B7E11F08FB54C56C4F9AE02.roa (hash: s8dJr8TGwi7WJXa0Nbblauyl5b8GFvvcKZKS4ZGoDvA=)
7: 9584CC888FD611ECB5BAF00AC4F9AE02.roa (hash: zOSU8HWzTX62npxk0Z0KI/TANc0CI5bXMVq+SzVjDCo=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2958 (0xb8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4402
Validity
Not Before: Mar 28 19:27:33 2025 GMT
Not After : Apr 4 19:27:33 2025 GMT
Subject: CN=67e6f825-ef82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:48:4e:45:5a:b2:b9:e8:60:cc:36:80:2f:86:
84:04:69:e1:a6:42:8e:e3:3b:68:6f:35:13:61:7a:
4d:d8:43:6e:bb:0b:4f:fd:7f:af:40:e7:95:33:72:
3f:ae:e0:c3:06:c0:94:e2:8d:8e:9d:47:de:dc:0d:
96:f9:d0:55:a6:96:25:1f:f7:46:51:32:5e:47:01:
64:af:7e:a0:36:91:5c:75:b2:1d:ee:79:81:8e:82:
2e:cc:e4:47:48:a6:2f:23:07:01:9e:28:55:ef:cb:
d2:34:e5:6e:61:e8:26:d6:fe:95:f8:71:46:0a:8b:
1f:3e:57:75:3a:74:7e:a3:bc:87:3c:da:c4:69:9f:
fb:25:91:fe:99:c3:26:22:2c:9a:39:3f:e7:d1:08:
10:85:bf:9b:9b:26:e3:ec:ca:83:a1:2e:cc:c4:5f:
27:3d:52:00:e5:71:d5:bc:37:1e:54:a7:f1:52:c4:
1a:92:f1:65:ee:b9:67:f6:cb:c8:ee:48:85:05:01:
e6:e6:29:bd:c5:97:d7:a9:a4:79:bf:26:1b:15:81:
e3:ec:38:93:22:51:4b:4a:24:41:09:68:2a:4b:d1:
e9:6f:67:e5:ff:eb:ce:ac:c2:35:c9:38:5f:da:42:
e5:0b:75:68:b6:84:b8:ae:d9:ef:17:2b:17:f5:19:
b3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:8A:A9:8C:70:49:69:B8:82:0B:CF:F7:5B:69:61:52:40:F3:80:B4
X509v3 Authority Key Identifier:
keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2f:3a:a4:c0:b9:63:4b:b1:95:a7:9a:dd:9e:71:61:f1:b5:9c:
6c:ea:b5:fc:1f:19:f0:d0:e3:c9:97:15:37:ce:21:af:9d:3d:
c8:95:fe:8a:14:4b:29:3a:57:1f:ec:39:36:a0:61:a4:1f:82:
fc:77:5a:f5:b9:4d:3f:58:80:08:11:65:fb:41:31:6c:d0:26:
54:29:ae:a6:d9:e8:32:46:e8:e1:4b:d7:11:81:c3:2e:19:81:
c9:54:b5:a5:72:9f:00:74:fc:be:db:6c:eb:62:08:69:b0:71:
21:67:35:6b:d9:c8:c5:a5:99:5b:3b:72:1a:8c:d3:3b:a4:c2:
51:8e:ba:59:24:53:01:22:a1:f7:95:f0:24:bc:9b:cc:f4:6e:
95:99:47:6b:3f:de:aa:0d:34:f2:68:61:6e:c5:53:ac:9b:bc:
9f:38:2c:00:69:3f:09:fa:91:91:3b:cb:1e:38:0d:72:6f:0c:
61:42:20:b7:6c:49:62:47:76:c2:7f:d3:41:36:6c:15:51:81:
02:13:a2:28:87:8c:78:d3:9c:66:57:b3:c4:e6:ff:c1:20:79:
c7:d9:22:63:6c:15:98:94:c7:b7:e0:a2:29:54:6d:18:40:71:
9a:bc:15:06:c7:2e:8d:23:ae:b8:d7:10:58:55:3e:97:f8:89:
f1:09:b1:9c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICC44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG
NjlDQkE4NDYwHhcNMjUwMzI4MTkyNzMzWhcNMjUwNDA0MTkyNzMzWjAYMRYwFAYD
VQQDEw02N2U2ZjgyNS1lZjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAskhORVqyuehgzDaAL4aEBGnhpkKO4ztobzUTYXpN2ENuuwtP/X+vQOeVM3I/
ruDDBsCU4o2OnUfe3A2W+dBVppYlH/dGUTJeRwFkr36gNpFcdbId7nmBjoIuzORH
SKYvIwcBnihV78vSNOVuYegm1v6V+HFGCosfPld1OnR+o7yHPNrEaZ/7JZH+mcMm
IiyaOT/n0QgQhb+bmybj7MqDoS7MxF8nPVIA5XHVvDceVKfxUsQakvFl7rln9svI
7kiFBQHm5im9xZfXqaR5vyYbFYHj7DiTIlFLSiRBCWgqS9Hpb2fl/+vOrMI1yThf
2kLlC3VotoS4rtnvFysX9RmzgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+KqYxw
SWm4ggvP91tpYVJA84C0MB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE
OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx
RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
NDQwMi9GREJGRDAyMDNEOTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtm
M1BjV0p1ZS1vUl8ybkxxRVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAvOqTAuWNLsZWnmt2ecWHxtZxs6rX8Hxnw0OPJlxU3ziGvnT3Ilf6K
FEspOlcf7Dk2oGGkH4L8d1r1uU0/WIAIEWX7QTFs0CZUKa6m2egyRujhS9cRgcMu
GYHJVLWlcp8AdPy+22zrYghpsHEhZzVr2cjFpZlbO3IajNM7pMJRjrpZJFMBIqH3
lfAkvJvM9G6VmUdrP96qDTTyaGFuxVOsm7yfOCwAaT8J+pGRO8seOA1ybwxhQiC3
bEliR3bCf9NBNmwVUYECE6Ioh4x405xmV7PE5v/BIHnH2SJjbBWYlMe34KIpVG0Y
QHGavBUGxy6NI6641xBYVT6X+InxCbGc
-----END CERTIFICATE-----
Generated at Fri Apr 4 21:54:08 2025 by rpki-client