Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft
File: 72i9vAcsq0VbbaMWDt-PtsSI3RU.mft (raw, json)
Hash identifier: 3ljnZea169eInPzxR3TEn0wJzYHYuyl1h41bkT6g/BE=
Subject key identifier: 74:FE:E1:78:AF:CE:C2:B9:8D:06:25:74:FE:E4:81:62:07:22:6E:E2
Authority key identifier: EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15
Certificate issuer: /CN=A91A4B9D/serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15
Certificate serial: 348B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft
Manifest number: 3481
Signing time: Fri 28 Mar 2025 15:06:19 +0000
Manifest this update: Fri 28 Mar 2025 15:06:19 +0000
Manifest next update: Fri 04 Apr 2025 15:06:19 +0000
Files and hashes: 1: 72i9vAcsq0VbbaMWDt-PtsSI3RU.crl (hash: 00bA27zN5l411GJxaKlhXoZoIMEypu8ZtWnQMGf24zw=)
2: 43BD42D8C6FA11EEB1BFF11FC4F9AE02.roa (hash: +Z1Ldyuz4HB0yeC9kiN8GX7/0TnuMGaHDVLqOr783Qw=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13451 (0x348b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4B9D
Validity
Not Before: Mar 28 15:06:19 2025 GMT
Not After : Apr 4 15:06:19 2025 GMT
Subject: CN=67e6baeb-0c6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:53:71:0f:30:37:a0:45:a4:9c:91:66:c0:60:
c6:ae:2f:f0:01:a1:93:5d:f8:a0:af:5f:e1:f8:0c:
84:35:9f:f2:a0:4c:8b:87:33:98:67:b3:22:59:75:
fd:33:48:d4:71:9a:e9:69:2f:c9:0b:1b:41:ef:04:
bb:80:96:b7:d4:67:56:d2:2b:8b:0b:0a:7e:8d:15:
41:2e:e0:37:f4:a4:a8:f8:ca:92:26:a3:32:84:84:
a2:1b:df:9e:0a:bd:4a:4b:7b:24:55:bb:b4:72:12:
f2:63:3c:99:69:f9:f9:36:28:3d:60:52:3b:f5:58:
00:74:32:bb:ee:c4:36:61:45:f5:e5:5c:f4:42:7d:
0e:90:23:e1:a9:d6:53:e5:a1:4a:67:48:8c:b5:b1:
85:ad:dd:1c:41:36:eb:e0:65:e8:42:7d:4a:02:32:
cc:5f:55:78:d8:8a:1e:5b:7b:a2:54:ed:b8:57:fd:
7e:d3:52:18:b9:e5:ce:ec:b8:88:c0:a1:31:db:0f:
7c:aa:67:57:a5:03:97:7a:05:f0:b7:76:32:e0:67:
19:ad:d4:d7:59:c4:f3:f5:af:7d:20:fb:cb:8d:7f:
b1:77:01:dd:dc:0d:8b:bb:f1:a4:4c:07:41:27:0e:
c8:93:54:f9:62:a4:a3:67:46:e8:6f:23:e9:b9:ed:
4f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:FE:E1:78:AF:CE:C2:B9:8D:06:25:74:FE:E4:81:62:07:22:6E:E2
X509v3 Authority Key Identifier:
keyid:EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b9:2e:30:fc:b9:ab:5e:a2:da:d2:00:0e:cc:12:34:2c:27:e9:
ef:da:41:ac:8a:75:1e:c4:e3:49:bd:01:1e:52:4f:8a:de:b9:
6c:0c:f2:56:98:bc:c0:96:03:fb:89:9f:74:21:76:62:6d:68:
da:a6:d3:da:38:0b:00:d1:79:e8:0a:d5:d3:04:c3:75:41:d3:
1c:3c:db:b7:30:08:4b:b1:00:17:d8:fe:1d:8a:3e:4a:fe:ab:
2b:66:23:01:7b:02:1b:b4:a9:6a:7f:bd:1e:a7:d8:13:6f:b5:
67:34:67:d4:67:ec:16:41:27:6c:6e:21:cc:02:11:05:2a:d6:
9e:f1:72:32:91:f4:4b:37:15:30:c1:33:dd:7c:f4:13:20:29:
71:17:dd:ff:af:8d:38:78:13:58:5b:ab:7e:6b:c0:70:3b:6a:
9d:85:eb:93:f7:bc:71:eb:25:42:b5:81:d6:15:c0:90:f0:d7:
ab:eb:2f:e4:14:23:88:72:70:90:52:ad:81:da:07:fa:d8:51:
a5:7f:34:fa:5f:dc:dc:e3:9c:d8:ea:a5:38:29:e4:15:85:7f:
b3:ab:19:60:2a:db:ab:f5:3e:20:e2:86:35:7c:c0:5b:84:0a:
08:e2:01:b9:bf:37:b1:40:72:d0:99:ba:7c:d3:3a:14:36:0a:
5a:de:ef:02
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICNIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTRCOUQxMTAvBgNVBAUTKEVGNjhCREJDMDcyQ0FCNDU1QjZEQTMxNjBFREY4RkI2
QzQ4OEREMTUwHhcNMjUwMzI4MTUwNjE5WhcNMjUwNDA0MTUwNjE5WjAYMRYwFAYD
VQQDEw02N2U2YmFlYi0wYzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyFNxDzA3oEWknJFmwGDGri/wAaGTXfigr1/h+AyENZ/yoEyLhzOYZ7MiWXX9
M0jUcZrpaS/JCxtB7wS7gJa31GdW0iuLCwp+jRVBLuA39KSo+MqSJqMyhISiG9+e
Cr1KS3skVbu0chLyYzyZafn5Nig9YFI79VgAdDK77sQ2YUX15Vz0Qn0OkCPhqdZT
5aFKZ0iMtbGFrd0cQTbr4GXoQn1KAjLMX1V42IoeW3uiVO24V/1+01IYueXO7LiI
wKEx2w98qmdXpQOXegXwt3Yy4GcZrdTXWcTz9a99IPvLjX+xdwHd3A2Lu/GkTAdB
Jw7Ik1T5YqSjZ0bobyPpue1PnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHT+4Xiv
zsK5jQYldP7kgWIHIm7iMB8GA1UdIwQYMBaAFO9ovbwHLKtFW22jFg7fj7bEiN0V
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEI5RC85NUFEMDM4ODFE
OUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3EwVmJiYU1XRHQtUHRzU0kz
UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzcyaTl2QWNzcTBWYmJhTVdEdC1QdHNTSTNSVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
NEI5RC85NUFEMDM4ODFEOUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3Ew
VmJiYU1XRHQtUHRzU0kzUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQC5LjD8uateotrSAA7MEjQsJ+nv2kGsinUexONJvQEeUk+K3rlsDPJW
mLzAlgP7iZ90IXZibWjaptPaOAsA0XnoCtXTBMN1QdMcPNu3MAhLsQAX2P4dij5K
/qsrZiMBewIbtKlqf70ep9gTb7VnNGfUZ+wWQSdsbiHMAhEFKtae8XIykfRLNxUw
wTPdfPQTIClxF93/r404eBNYW6t+a8BwO2qdheuT97xx6yVCtYHWFcCQ8Ner6y/k
FCOIcnCQUq2B2gf62FGlfzT6X9zc45zY6qU4KeQVhX+zqxlgKtur9T4g4oY1fMBb
hAoI4gG5vzexQHLQmbp80zoUNgpa3u8C
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:24:50 2025 by rpki-client