Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft
File: tksRCOmO7If7awwovgFkXHCLSsU.mft (raw, json)
Hash identifier: bple2JEAIW20U7TnPzmLcr6XMUEkmmQv+oecmgOtkkI=
Subject key identifier: DA:7C:33:E0:D0:61:44:36:33:38:DE:C1:4E:25:48:D7:50:15:DD:49
Authority key identifier: B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5
Certificate issuer: /CN=A91BAE17/serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5
Certificate serial: 2938
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft
Manifest number: 2923
Signing time: Fri 28 Mar 2025 15:41:59 +0000
Manifest this update: Fri 28 Mar 2025 15:41:59 +0000
Manifest next update: Fri 04 Apr 2025 15:41:59 +0000
Files and hashes: 1: tksRCOmO7If7awwovgFkXHCLSsU.crl (hash: FtiwFLuT/2LSQ717k22eRTUoa3r6u2XJKJcqjpOc3/M=)
2: 98845C5C54EC11E791C3F825C4F9AE02.roa (hash: XWmzI2yeMf3apt5DHsKgv60jONcTAI6E+TZgl5OMpW8=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10552 (0x2938)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BAE17
Validity
Not Before: Mar 28 15:41:59 2025 GMT
Not After : Apr 4 15:41:59 2025 GMT
Subject: CN=67e6c347-774c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a9:9e:a5:bc:47:c2:10:ce:77:08:44:b4:7c:
79:68:16:04:c9:36:fb:86:19:0b:3e:01:02:4a:d0:
de:b7:18:ee:23:86:66:d7:b3:36:74:86:88:b2:28:
ff:07:e5:07:2e:70:88:b0:1e:ef:1e:44:24:6b:04:
b5:ee:89:30:4f:df:3d:00:58:06:46:f3:99:10:ed:
fd:cf:cf:f9:4c:ac:f7:f7:4d:2b:cc:25:9d:6d:f8:
03:86:8f:42:ec:e3:78:3a:d8:0d:6b:0e:83:90:24:
a1:39:71:d9:8f:d2:67:ea:e8:00:eb:2b:52:29:ae:
5a:c2:53:84:b9:0c:40:7c:59:b5:ec:de:a1:a1:86:
72:1f:e0:bb:0f:ad:5f:63:c2:8d:ca:46:9b:2e:c2:
8e:38:02:75:2e:55:03:4b:e2:68:fe:3e:ae:f0:e4:
19:5e:32:ba:2d:7f:02:62:a5:9b:7b:0f:f8:9f:4e:
46:26:94:4e:76:5c:11:f2:20:61:04:a5:10:5d:f3:
b5:c2:93:5a:a3:dd:8d:ec:6a:d5:a7:a4:c6:2a:1a:
cd:79:22:5a:94:33:44:86:dd:60:0c:18:95:5b:16:
c6:0b:ef:97:0e:3f:14:c3:f9:01:cc:66:d3:52:3b:
ec:26:b8:a4:61:45:63:f0:01:8d:bc:83:44:bd:98:
9b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:7C:33:E0:D0:61:44:36:33:38:DE:C1:4E:25:48:D7:50:15:DD:49
X509v3 Authority Key Identifier:
keyid:B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
53:3d:81:ae:cb:d8:1b:54:f0:65:7b:b5:18:c3:fa:84:a7:b7:
5c:e4:26:3c:5b:3a:82:40:93:44:fd:b6:b8:74:35:14:18:e5:
02:7f:36:03:34:a2:55:ba:ca:f1:53:6b:88:d6:5d:b9:96:f7:
8d:c7:65:a4:01:e5:b6:22:0c:20:20:e5:14:05:ef:f1:a9:0d:
04:f6:62:4a:06:88:a1:dd:07:08:19:05:ab:fe:d0:15:df:33:
68:e7:13:f0:12:48:13:c6:d9:24:7f:a1:20:9b:9c:df:62:69:
13:3b:c7:42:38:bb:97:49:4f:01:a5:7f:5f:40:db:a3:bd:43:
37:5a:92:26:c3:05:2a:30:c0:b3:5b:48:18:db:c1:14:05:2f:
2a:18:38:8c:ba:be:fa:8c:b9:43:2d:07:dd:8b:8b:c4:58:d5:
9a:fb:f2:04:e6:8c:66:32:f7:bc:8c:e5:d2:4f:f0:b5:9f:de:
b9:ba:87:62:3b:a4:2c:37:08:07:52:94:8f:28:e2:17:8f:f5:
79:c8:b1:d0:ba:3a:b8:7a:63:83:2a:e5:68:a7:d6:dd:58:8f:
af:fd:2a:17:6b:d2:49:bd:a7:08:1e:19:38:c2:98:50:27:b3:
7f:55:52:97:ed:27:62:74:36:2d:2b:12:1a:06:88:14:14:de:
10:6a:de:69
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICKTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QkFFMTcxMTAvBgNVBAUTKEI2NEIxMTA4RTk4RUVDODdGQjZCMEMyOEJFMDE2NDVD
NzA4QjRBQzUwHhcNMjUwMzI4MTU0MTU5WhcNMjUwNDA0MTU0MTU5WjAYMRYwFAYD
VQQDEw02N2U2YzM0Ny03NzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsamepbxHwhDOdwhEtHx5aBYEyTb7hhkLPgECStDetxjuI4Zm17M2dIaIsij/
B+UHLnCIsB7vHkQkawS17okwT989AFgGRvOZEO39z8/5TKz3900rzCWdbfgDho9C
7ON4OtgNaw6DkCShOXHZj9Jn6ugA6ytSKa5awlOEuQxAfFm17N6hoYZyH+C7D61f
Y8KNykabLsKOOAJ1LlUDS+Jo/j6u8OQZXjK6LX8CYqWbew/4n05GJpROdlwR8iBh
BKUQXfO1wpNao92N7GrVp6TGKhrNeSJalDNEht1gDBiVWxbGC++XDj8Uw/kBzGbT
UjvsJrikYUVj8AGNvINEvZibkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNp8M+DQ
YUQ2MzjewU4lSNdQFd1JMB8GA1UdIwQYMBaAFLZLEQjpjuyH+2sMKL4BZFxwi0rF
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUxNy80NDVFRTA5NDU4
QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJZjdhd3dvdmdGa1hIQ0xT
c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3Rrc1JDT21PN0lmN2F3d292Z0ZrWEhDTFNzVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
QUUxNy80NDVFRTA5NDU4QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJ
Zjdhd3dvdmdGa1hIQ0xTc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBTPYGuy9gbVPBle7UYw/qEp7dc5CY8WzqCQJNE/ba4dDUUGOUCfzYD
NKJVusrxU2uI1l25lveNx2WkAeW2IgwgIOUUBe/xqQ0E9mJKBoih3QcIGQWr/tAV
3zNo5xPwEkgTxtkkf6Egm5zfYmkTO8dCOLuXSU8BpX9fQNujvUM3WpImwwUqMMCz
W0gY28EUBS8qGDiMur76jLlDLQfdi4vEWNWa+/IE5oxmMve8jOXST/C1n965uodi
O6QsNwgHUpSPKOIXj/V5yLHQujq4emODKuVop9bdWI+v/SoXa9JJvacIHhk4wphQ
J7N/VVKX7SdidDYtKxIaBogUFN4Qat5p
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:17:50 2025 by rpki-client