Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft
File: MIoPBCNx10Tky2KrUekE9wys03o.mft (raw, json)
Hash identifier: OlMh8Bj5D65KywJ957LC8BwM+HW706jSM5uh0DUoLmw=
Subject key identifier: DF:10:A5:50:6E:9F:E6:D3:C9:A9:58:F6:48:2C:88:B2:15:A8:DE:1D
Authority key identifier: 30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A
Certificate issuer: /CN=A91B2252/serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A
Certificate serial: 07B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft
Manifest number: 07AA
Signing time: Fri 28 Mar 2025 21:27:47 +0000
Manifest this update: Fri 28 Mar 2025 21:27:47 +0000
Manifest next update: Fri 04 Apr 2025 21:27:47 +0000
Files and hashes: 1: MIoPBCNx10Tky2KrUekE9wys03o.crl (hash: tuHvuegFLf5UcUrlti94P7U6UlDWrFJOnaQMyt5mLvg=)
2: 727EECD2678811EF99602F53C4F9AE02.roa (hash: WvAkrs/LiVkRHkVog2xW2/ey9F5S8FH9WKoT4JG9/2M=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1972 (0x7b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B2252
Validity
Not Before: Mar 28 21:27:47 2025 GMT
Not After : Apr 4 21:27:47 2025 GMT
Subject: CN=67e71453-82c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bd:a0:de:c7:0a:25:79:f5:42:f2:2e:f7:d2:
a9:86:3e:65:40:d6:78:22:7d:51:ac:41:cd:c3:26:
9a:44:02:a3:61:ce:b1:79:9b:d1:46:7c:6f:48:cc:
ad:ac:7d:2d:5e:0c:be:d4:64:75:42:63:a2:ee:63:
29:da:fc:85:69:66:f7:b1:c6:bc:6a:40:3c:5b:ed:
cf:72:f6:b5:a0:18:19:56:ca:ef:3b:b2:1e:de:af:
50:79:da:eb:0e:c3:d3:43:8f:d4:a3:ad:98:73:b1:
d0:10:d3:cd:9b:6b:ca:60:50:8e:b1:ce:1d:8e:75:
e4:d9:0e:77:35:18:37:12:98:bd:bc:fc:f1:bb:a6:
29:49:c3:3b:8f:b2:40:e2:0a:b8:54:3f:c6:9a:14:
a5:7e:d9:0d:93:43:f8:52:e1:4e:5d:da:d1:66:d9:
03:d6:81:ed:ce:2d:8b:6b:63:0d:51:4f:f4:21:94:
27:ad:a5:78:b2:3a:e2:e4:d0:2b:de:31:82:1a:07:
12:db:3a:ab:ff:c4:f7:ef:d3:ac:e8:65:ac:71:9d:
d7:01:2c:05:32:b8:bc:a9:45:19:24:1d:9b:f7:3d:
c0:7a:d9:be:86:91:cf:81:31:f4:c7:4d:19:aa:b9:
de:a9:7a:95:52:8e:9c:6f:65:f1:59:dd:d1:8a:9b:
aa:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:10:A5:50:6E:9F:E6:D3:C9:A9:58:F6:48:2C:88:B2:15:A8:DE:1D
X509v3 Authority Key Identifier:
keyid:30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
33:b7:c9:f1:4b:a1:cc:6d:a7:c8:33:ce:e8:b4:63:d5:02:57:
8e:97:b4:a9:c2:4a:98:0a:10:7a:99:7c:af:e8:6a:39:b4:15:
42:0d:20:be:eb:a3:7f:91:59:2c:84:0d:61:b4:8c:26:30:56:
bd:44:b4:bf:bf:57:d0:9a:aa:c4:96:0b:c5:30:f5:ee:9c:7c:
f2:98:3b:b9:67:46:e5:f3:13:11:10:7b:23:85:69:87:79:a4:
29:ce:a2:a0:27:fb:8e:2c:10:d5:f5:e6:e8:f3:60:24:1a:6f:
01:48:c0:76:90:56:aa:04:22:03:da:12:a1:07:6c:50:4a:ef:
95:58:57:a8:d5:0c:fb:79:8e:3c:da:4a:c7:2b:d8:bd:12:e6:
2d:55:af:61:f6:f2:94:7a:82:e3:5c:65:dd:a8:31:3b:32:74:
fa:2c:2c:89:e4:c5:f6:3a:23:d5:98:a8:c9:4e:7d:65:7e:a2:
be:e8:ac:97:a4:cc:30:68:56:cb:2c:0e:20:ec:7f:68:a8:07:
ca:23:28:b3:e1:74:b0:30:61:24:8e:06:29:0e:71:b8:0a:ea:
1a:29:07:dc:8f:d5:4c:a5:5f:fe:d9:08:9b:0b:22:fb:ac:a4:
24:8f:b5:2b:19:93:f4:18:34:84:28:94:87:47:3c:6e:9b:50:
a1:c3:39:8b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICB7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjIyNTIxMTAvBgNVBAUTKDMwOEEwRjA0MjM3MUQ3NDRFNENCNjJBQjUxRTkwNEY3
MENBQ0QzN0EwHhcNMjUwMzI4MjEyNzQ3WhcNMjUwNDA0MjEyNzQ3WjAYMRYwFAYD
VQQDEw02N2U3MTQ1My04MmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvL2g3scKJXn1QvIu99Kphj5lQNZ4In1RrEHNwyaaRAKjYc6xeZvRRnxvSMyt
rH0tXgy+1GR1QmOi7mMp2vyFaWb3sca8akA8W+3Pcva1oBgZVsrvO7Ie3q9Qedrr
DsPTQ4/Uo62Yc7HQENPNm2vKYFCOsc4djnXk2Q53NRg3Epi9vPzxu6YpScM7j7JA
4gq4VD/GmhSlftkNk0P4UuFOXdrRZtkD1oHtzi2La2MNUU/0IZQnraV4sjri5NAr
3jGCGgcS2zqr/8T379Os6GWscZ3XASwFMri8qUUZJB2b9z3Aetm+hpHPgTH0x00Z
qrneqXqVUo6cb2XxWd3RipuqZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8QpVBu
n+bTyalY9kgsiLIVqN4dMB8GA1UdIwQYMBaAFDCKDwQjcddE5Mtiq1HpBPcMrNN6
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjI1Mi9DNThGOEI3QUY2
M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEwVGt5MktyVWVrRTl3eXMw
M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL01Jb1BCQ054MTBUa3kyS3JVZWtFOXd5czAzby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
MjI1Mi9DNThGOEI3QUY2M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEw
VGt5MktyVWVrRTl3eXMwM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAzt8nxS6HMbafIM87otGPVAleOl7SpwkqYChB6mXyv6Go5tBVCDSC+
66N/kVkshA1htIwmMFa9RLS/v1fQmqrElgvFMPXunHzymDu5Z0bl8xMREHsjhWmH
eaQpzqKgJ/uOLBDV9ebo82AkGm8BSMB2kFaqBCID2hKhB2xQSu+VWFeo1Qz7eY48
2krHK9i9EuYtVa9h9vKUeoLjXGXdqDE7MnT6LCyJ5MX2OiPVmKjJTn1lfqK+6KyX
pMwwaFbLLA4g7H9oqAfKIyiz4XSwMGEkjgYpDnG4CuoaKQfcj9VMpV/+2QibCyL7
rKQkj7UrGZP0GDSEKJSHRzxum1ChwzmL
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:13:30 2025 by rpki-client