Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft
File: oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft (raw, json)
Hash identifier: bt7RTncV9MGcwq0Tu0Xs66OoXkJG9BzWBLRL6KGEibY=
Subject key identifier: D6:0C:87:EB:05:E5:B1:03:5C:72:64:C5:63:11:C9:84:51:D1:6D:A6
Authority key identifier: A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02
Certificate issuer: /CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02
Certificate serial: 0A80
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft
Manifest number: 0A77
Signing time: Fri 28 Mar 2025 19:50:14 +0000
Manifest this update: Fri 28 Mar 2025 19:50:14 +0000
Manifest next update: Fri 04 Apr 2025 19:50:13 +0000
Files and hashes: 1: oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl (hash: ZZA3vFsNnKj3/Myohk/voGLSdvNI30GzeW+mWCMril4=)
2: 52F59E403B4111ECABFD2186C4F9AE02.roa (hash: wEPT/JxoXR8vXmErciWYLyiDrtNHIrJoWWSk93OARbU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2688 (0xa80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4ED0
Validity
Not Before: Mar 28 19:50:14 2025 GMT
Not After : Apr 4 19:50:13 2025 GMT
Subject: CN=67e6fd76-4a3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:34:af:72:9a:0d:b3:04:a9:6b:ec:06:1f:d8:
ed:db:26:cc:90:98:cd:d5:fa:0c:23:87:80:c8:40:
42:88:36:73:3a:cd:ff:b5:09:2e:20:fb:99:d7:30:
f3:5e:9e:fd:02:8c:f3:dc:f2:b8:71:70:ea:dc:f1:
19:c6:88:35:69:a3:58:59:bc:96:74:e6:83:66:70:
ef:71:e8:bf:20:4d:99:b3:9f:59:39:4c:57:10:49:
53:bd:38:a6:f8:eb:97:9f:58:64:ba:6f:3e:55:5c:
01:09:b2:30:57:7a:df:d1:2c:2b:89:28:95:e4:dc:
a1:cd:82:e7:f8:de:41:48:c2:bf:9c:2e:26:44:a6:
7d:66:57:8c:9c:05:30:a8:ca:23:cd:b1:e6:b6:ed:
72:8e:58:b1:d2:94:d8:26:51:2f:10:42:92:9c:66:
f9:e8:8e:4a:c2:d6:98:c4:ab:45:a9:3f:d8:0e:7d:
73:d5:13:09:5a:a2:8e:72:fc:ee:93:7b:49:63:d6:
77:90:63:05:42:33:d5:93:8b:09:51:5b:3e:b0:6a:
df:4c:d3:54:64:8c:65:70:91:aa:b7:a1:77:74:95:
c3:83:d5:e4:8e:55:33:45:b7:56:d7:11:bc:a8:c0:
4c:92:e0:32:93:98:cc:d3:29:e3:90:68:0a:84:73:
ee:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:0C:87:EB:05:E5:B1:03:5C:72:64:C5:63:11:C9:84:51:D1:6D:A6
X509v3 Authority Key Identifier:
keyid:A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
84:4e:83:ff:4e:f9:54:f4:45:97:ad:b8:41:b2:73:d1:56:15:
cf:ad:15:e4:b2:fd:b0:7e:b3:d8:86:f6:09:59:96:85:73:15:
a8:60:5a:69:fa:e3:46:02:74:72:50:7e:f5:c0:0e:d6:72:6f:
19:6c:59:96:10:f4:91:2b:ce:00:1e:e2:f9:9c:65:e5:c9:19:
94:79:c9:6f:a7:d8:e0:4e:f1:ab:d1:8a:ab:e9:d1:fc:13:c9:
85:1c:cc:25:50:14:29:0c:51:ad:56:49:37:f1:31:b3:a1:fe:
0d:03:98:43:ef:6f:b9:3c:01:70:5f:46:2b:dc:21:71:f7:d9:
0c:9f:ca:3d:9b:26:58:10:c3:ec:dc:6c:3b:46:52:2c:72:7c:
9f:fb:35:e3:56:a5:f6:73:5d:d1:76:ec:51:4d:78:a9:d7:b1:
08:1f:b2:77:eb:8f:43:bc:5a:06:1a:e6:11:ef:ae:44:cf:ef:
0b:e2:03:f1:d1:f6:07:3f:dd:6f:f7:f3:28:77:98:b0:50:ac:
e4:78:1e:6b:7f:9e:33:3b:32:fd:41:ca:db:85:b9:b1:a6:19:
dd:e4:83:14:67:74:58:a5:f5:e6:63:85:14:79:eb:28:aa:07:
fd:48:c1:23:9d:1d:38:e2:e8:7a:df:51:58:56:32:95:64:68:
31:dd:11:1d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTRFRDAxMTAvBgNVBAUTKEEwOUNBMkQzMUIxNkJGQTU4NEE3NThDM0E3RDUxRkFD
RDIxNTFCMDIwHhcNMjUwMzI4MTk1MDE0WhcNMjUwNDA0MTk1MDEzWjAYMRYwFAYD
VQQDEw02N2U2ZmQ3Ni00YTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzjSvcpoNswSpa+wGH9jt2ybMkJjN1foMI4eAyEBCiDZzOs3/tQkuIPuZ1zDz
Xp79Aozz3PK4cXDq3PEZxog1aaNYWbyWdOaDZnDvcei/IE2Zs59ZOUxXEElTvTim
+OuXn1hkum8+VVwBCbIwV3rf0SwriSiV5NyhzYLn+N5BSMK/nC4mRKZ9ZleMnAUw
qMojzbHmtu1yjlix0pTYJlEvEEKSnGb56I5KwtaYxKtFqT/YDn1z1RMJWqKOcvzu
k3tJY9Z3kGMFQjPVk4sJUVs+sGrfTNNUZIxlcJGqt6F3dJXDg9XkjlUzRbdW1xG8
qMBMkuAyk5jM0ynjkGgKhHPu9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYMh+sF
5bEDXHJkxWMRyYRR0W2mMB8GA1UdIwQYMBaAFKCcotMbFr+lhKdYw6fVH6zSFRsC
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVEMC85MkIzQ0Q1QTU4
Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2V0VwMWpEcDlVZnJOSVZH
d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL29KeWkweHNXdjZXRXAxakRwOVVmck5JVkd3SS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
NEVEMC85MkIzQ0Q1QTU4Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2
V0VwMWpEcDlVZnJOSVZHd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCEToP/TvlU9EWXrbhBsnPRVhXPrRXksv2wfrPYhvYJWZaFcxWoYFpp
+uNGAnRyUH71wA7Wcm8ZbFmWEPSRK84AHuL5nGXlyRmUeclvp9jgTvGr0Yqr6dH8
E8mFHMwlUBQpDFGtVkk38TGzof4NA5hD72+5PAFwX0Yr3CFx99kMn8o9myZYEMPs
3Gw7RlIscnyf+zXjVqX2c13RduxRTXip17EIH7J3649DvFoGGuYR765Ez+8L4gPx
0fYHP91v9/Mod5iwUKzkeB5rf54zOzL9Qcrbhbmxphnd5IMUZ3RYpfXmY4UUeeso
qgf9SMEjnR044uh631FYVjKVZGgx3REd
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:10:33 2025 by rpki-client