Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft
File: iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft (raw, json)
Hash identifier: 3h3UPeeBDgtAMboGHqI2QNiDG4znKkhRuo6n9jvG+kw=
Subject key identifier: 5A:1B:C8:D0:AD:15:15:CD:2D:9B:90:80:F8:CE:48:43:E6:E4:E3:1E
Authority key identifier: 8B:26:16:86:BD:92:E2:CF:6B:F5:48:CD:35:59:6D:EA:95:FF:58:33
Certificate issuer: /CN=A91D3078/serialNumber=8B261686BD92E2CF6BF548CD35596DEA95FF5833
Certificate serial: 10FA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft
Manifest number: 10F1
Signing time: Fri 28 Mar 2025 17:25:01 +0000
Manifest this update: Fri 28 Mar 2025 17:25:01 +0000
Manifest next update: Fri 04 Apr 2025 17:25:01 +0000
Files and hashes: 1: iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl (hash: HMLR+xI+knK8GYJtdMPeLBZql7EVyl7nqkaNpk+bBMs=)
2: 6127B9001FE711ECB8454E83C4F9AE02.roa (hash: A18BMNL1z8vEvxNnbAYEfetGV7OdVPlRvhOmRqVb1lw=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4346 (0x10fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D3078
Validity
Not Before: Mar 28 17:25:01 2025 GMT
Not After : Apr 4 17:25:01 2025 GMT
Subject: CN=67e6db6d-c3aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9a:8d:37:e9:57:34:de:52:70:53:c2:0d:b6:
13:c7:ab:70:17:ab:46:f2:04:16:e5:76:c9:c8:66:
61:2b:a6:bb:3b:b8:c4:f7:34:18:12:b9:ae:65:4a:
ff:3d:52:0e:b1:80:33:cc:5b:5f:76:ce:98:3c:a8:
c8:1e:f0:19:65:32:c7:db:b3:47:e6:94:19:7e:f6:
71:2b:78:53:c7:9d:8c:43:2c:3b:a1:3d:47:f9:f6:
64:93:03:12:7d:95:0b:c6:62:b6:21:0f:0c:26:d0:
91:91:10:77:7a:ec:5d:91:06:b9:0a:9e:8b:65:cf:
b5:26:87:52:28:36:ce:97:20:72:47:fe:d8:8c:40:
8f:3f:39:da:dd:f7:c0:c9:6a:91:d1:2a:7b:2d:44:
3d:64:38:1e:21:b9:31:75:18:6d:57:f9:27:e1:01:
f9:e1:c9:f7:ae:92:49:71:a6:80:e8:39:e4:82:3d:
bb:24:4d:d3:46:d7:60:af:2a:5f:9a:2a:dc:32:71:
a7:fc:52:01:b0:c5:7c:51:c2:9f:7e:2f:f3:ee:3b:
af:5c:de:03:24:99:4b:1e:3a:81:d0:27:bf:a5:1d:
c7:fa:0b:21:c1:03:e4:3d:9d:59:41:80:05:03:44:
cf:87:73:4f:8a:36:ce:fb:24:de:d0:70:7d:77:f5:
fb:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:1B:C8:D0:AD:15:15:CD:2D:9B:90:80:F8:CE:48:43:E6:E4:E3:1E
X509v3 Authority Key Identifier:
keyid:8B:26:16:86:BD:92:E2:CF:6B:F5:48:CD:35:59:6D:EA:95:FF:58:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
19:12:91:56:b1:71:fd:5e:de:0e:06:11:f9:d9:c5:99:7c:ec:
e7:36:40:ee:5f:5b:7a:64:55:81:8b:ad:42:58:35:d8:aa:f2:
f9:b3:c1:3c:a1:9d:1f:ce:4e:59:64:1e:c4:04:cd:b6:a5:bf:
61:98:56:ca:09:9e:f9:72:6c:4a:fb:8e:8a:08:1d:3c:10:0f:
1b:36:bd:05:ed:f3:62:94:54:ff:6b:8c:14:32:94:fc:d2:a2:
ca:54:8a:d2:8b:b3:dc:29:c5:18:82:62:5d:4a:6a:0d:67:fe:
78:3d:e6:9a:5a:f7:1e:2c:5f:eb:4e:2d:0f:09:7a:ae:db:83:
43:1f:2b:9d:af:af:d6:d2:ad:76:8e:59:f7:1d:7a:68:a9:f5:
f6:ad:bf:6b:a6:c8:42:bb:bc:3e:d0:00:d7:9e:6e:ce:76:9f:
81:77:41:8f:f0:7e:73:a1:48:a6:8d:61:cf:fd:59:2f:da:cf:
bf:f9:fb:2b:8e:88:a7:d9:db:cc:ce:38:35:bc:82:a0:cf:f2:
c4:36:98:f0:9b:0d:95:13:0b:52:f0:ee:2c:f2:6a:74:56:b0:
1b:7c:b9:59:a1:3c:60:04:c2:ca:35:b2:95:09:ca:ea:43:6d:
3e:b8:ad:b8:ee:31:32:b8:97:cd:10:61:2d:90:ff:49:5a:dc:
4f:6c:19:82
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICEPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDMwNzgxMTAvBgNVBAUTKDhCMjYxNjg2QkQ5MkUyQ0Y2QkY1NDhDRDM1NTk2REVB
OTVGRjU4MzMwHhcNMjUwMzI4MTcyNTAxWhcNMjUwNDA0MTcyNTAxWjAYMRYwFAYD
VQQDEw02N2U2ZGI2ZC1jM2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwJqNN+lXNN5ScFPCDbYTx6twF6tG8gQW5XbJyGZhK6a7O7jE9zQYErmuZUr/
PVIOsYAzzFtfds6YPKjIHvAZZTLH27NH5pQZfvZxK3hTx52MQyw7oT1H+fZkkwMS
fZULxmK2IQ8MJtCRkRB3euxdkQa5Cp6LZc+1JodSKDbOlyByR/7YjECPPzna3ffA
yWqR0Sp7LUQ9ZDgeIbkxdRhtV/kn4QH54cn3rpJJcaaA6Dnkgj27JE3TRtdgrypf
mircMnGn/FIBsMV8UcKffi/z7juvXN4DJJlLHjqB0Ce/pR3H+gshwQPkPZ1ZQYAF
A0TPh3NPijbO+yTe0HB9d/X7twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFobyNCt
FRXNLZuQgPjOSEPm5OMeMB8GA1UdIwQYMBaAFIsmFoa9kuLPa/VIzTVZbeqV/1gz
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzA3OC82NkM4MzAyQzEz
QkMxMUU5OTg3QzQ2NDZDNEY5QUUwMi9peVlXaHIyUzRzOXI5VWpOTlZsdDZwWF9X
RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2l5WVdocjJTNHM5cjlVak5OVmx0NnBYX1dETS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
MzA3OC82NkM4MzAyQzEzQkMxMUU5OTg3QzQ2NDZDNEY5QUUwMi9peVlXaHIyUzRz
OXI5VWpOTlZsdDZwWF9XRE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAZEpFWsXH9Xt4OBhH52cWZfOznNkDuX1t6ZFWBi61CWDXYqvL5s8E8
oZ0fzk5ZZB7EBM22pb9hmFbKCZ75cmxK+46KCB08EA8bNr0F7fNilFT/a4wUMpT8
0qLKVIrSi7PcKcUYgmJdSmoNZ/54PeaaWvceLF/rTi0PCXqu24NDHyudr6/W0q12
jln3HXpoqfX2rb9rpshCu7w+0ADXnm7Odp+Bd0GP8H5zoUimjWHP/Vkv2s+/+fsr
join2dvMzjg1vIKgz/LENpjwmw2VEwtS8O4s8mp0VrAbfLlZoTxgBMLKNbKVCcrq
Q20+uK247jEyuJfNEGEtkP9JWtxPbBmC
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:35:55 2025 by rpki-client