Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft
File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json)
Hash identifier: 16GOHgSSFpi9im5nSLpb5dHhklXAAHmixPNKAwVtYEI=
Subject key identifier: 51:9D:CB:A3:4D:C0:F6:ED:D8:6B:9C:50:4C:9C:16:44:28:2B:6D:97
Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF
Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF
Certificate serial: 0DF8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft
Manifest number: 0F5C
Signing time: Fri 28 Mar 2025 18:00:44 +0000
Manifest this update: Fri 28 Mar 2025 18:00:44 +0000
Manifest next update: Fri 04 Apr 2025 18:00:44 +0000
Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: P67w0Rhizvxhhg+7302KtWmZqP7/C0TJrtVsoQXy5Ec=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3576 (0xdf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C6BF0
Validity
Not Before: Mar 28 18:00:44 2025 GMT
Not After : Apr 4 18:00:44 2025 GMT
Subject: CN=67e6e3cc-d47d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2b:a7:39:7b:53:80:d8:6e:32:dd:19:a8:90:
fa:ff:77:05:d9:3f:ff:45:57:1c:15:74:37:66:3e:
95:00:f4:fb:52:44:b7:64:e6:42:bd:fc:0c:77:12:
88:9f:13:01:7e:50:e9:18:7a:9d:89:67:fa:b0:10:
73:e8:1b:de:0a:e6:81:fc:19:48:e8:3d:45:f4:dc:
c1:71:b4:95:21:16:18:8d:f8:f7:71:a2:d3:25:08:
c3:28:81:85:82:d5:a5:28:e6:13:e9:f6:b6:55:82:
bb:83:b2:d1:9f:d4:22:92:9e:73:84:33:fa:12:a3:
34:b8:b0:b9:09:e9:9d:f9:d0:3e:dd:61:c3:1f:9e:
40:06:31:be:c4:ab:0f:74:77:4b:25:19:5e:2f:8b:
d7:73:f3:e2:a8:9f:e0:0c:f6:01:8f:bd:e6:59:d7:
b2:48:b8:14:cd:16:cd:a0:6a:c3:bb:88:59:96:b8:
af:37:22:b9:05:bf:9a:3b:38:2e:15:89:6c:f2:f7:
04:7a:1e:41:8a:fe:1e:53:42:82:a1:4a:1e:bc:00:
b0:5a:dc:28:70:99:38:2d:dd:07:fe:bb:48:f1:8e:
57:03:40:e0:7a:2f:0c:56:27:26:58:ae:a6:a6:6a:
0a:26:a2:c0:8b:ff:24:29:88:a2:36:30:33:e2:cc:
1d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:9D:CB:A3:4D:C0:F6:ED:D8:6B:9C:50:4C:9C:16:44:28:2B:6D:97
X509v3 Authority Key Identifier:
keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
30:f3:2b:97:1d:aa:72:81:cb:72:53:67:49:4d:88:ec:fe:64:
ff:b0:56:53:d5:d2:b7:be:6a:d8:54:05:5f:ff:ad:50:20:04:
3d:13:7a:9c:14:15:c0:10:ae:dc:43:30:35:f7:fc:ba:17:47:
d2:06:9b:d4:e8:f6:93:9a:ff:61:02:ab:ea:a1:24:3d:4e:3c:
4e:ab:02:63:90:f9:f4:1f:4c:55:0d:a7:e9:95:da:c3:0f:0e:
5a:e8:c0:d2:bd:01:14:cc:84:a3:89:cb:59:71:02:ae:46:5e:
8e:fa:a2:05:0f:31:39:0f:00:80:a7:26:92:15:75:f9:dd:b5:
a3:a3:cf:de:d9:cb:7a:de:1a:e4:a1:43:0c:5b:69:be:53:07:
e0:44:c3:24:3a:f9:d0:0a:93:50:f9:03:7f:c7:21:51:4f:d3:
fb:2b:7e:5f:5a:eb:70:de:c8:06:bf:1d:e5:52:1a:4a:bd:49:
41:30:18:26:3e:da:59:01:bf:d0:91:15:17:b8:36:8f:e3:8c:
0b:92:78:08:56:af:76:aa:40:60:41:1a:b1:ca:c9:9b:60:5a:
8d:83:26:c1:81:e2:0c:cf:2d:0c:54:fb:a9:9f:4a:46:5a:e4:
ad:47:87:11:a6:af:f5:1e:6e:99:d6:18:3e:75:4a:34:14:8b:
7d:1a:ca:f0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICDfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2
NjE0Rjg0QUYwHhcNMjUwMzI4MTgwMDQ0WhcNMjUwNDA0MTgwMDQ0WjAYMRYwFAYD
VQQDEw02N2U2ZTNjYy1kNDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1SunOXtTgNhuMt0ZqJD6/3cF2T//RVccFXQ3Zj6VAPT7UkS3ZOZCvfwMdxKI
nxMBflDpGHqdiWf6sBBz6BveCuaB/BlI6D1F9NzBcbSVIRYYjfj3caLTJQjDKIGF
gtWlKOYT6fa2VYK7g7LRn9Qikp5zhDP6EqM0uLC5Cemd+dA+3WHDH55ABjG+xKsP
dHdLJRleL4vXc/PiqJ/gDPYBj73mWdeySLgUzRbNoGrDu4hZlrivNyK5Bb+aOzgu
FYls8vcEeh5Biv4eU0KCoUoevACwWtwocJk4Ld0H/rtI8Y5XA0Dgei8MVicmWK6m
pmoKJqLAi/8kKYiiNjAz4swdnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGdy6NN
wPbt2GucUEycFkQoK22XMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF
QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo
SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK
SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAw8yuXHapygctyU2dJTYjs/mT/sFZT1dK3vmrYVAVf/61QIAQ9E3qc
FBXAEK7cQzA19/y6F0fSBpvU6PaTmv9hAqvqoSQ9TjxOqwJjkPn0H0xVDafpldrD
Dw5a6MDSvQEUzISjictZcQKuRl6O+qIFDzE5DwCApyaSFXX53bWjo8/e2ct63hrk
oUMMW2m+UwfgRMMkOvnQCpNQ+QN/xyFRT9P7K35fWutw3sgGvx3lUhpKvUlBMBgm
PtpZAb/QkRUXuDaP44wLkngIVq92qkBgQRqxysmbYFqNgybBgeIMzy0MVPupn0pG
WuStR4cRpq/1Hm6Z1hg+dUo0FIt9Gsrw
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:37:00 2025 by rpki-client