Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft
File: i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft (raw, json)
Hash identifier: ao/IJ08YmUIswpIVQQBMHAAipP4HH0AoyJxcPv6safU=
Subject key identifier: 06:B9:F8:21:74:34:C9:9E:1F:72:4D:7C:70:C2:29:F5:AE:DA:59:6C
Authority key identifier: 8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D
Certificate issuer: /CN=A91D37E4/serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D
Certificate serial: 074D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft
Manifest number: 0742
Signing time: Fri 28 Mar 2025 21:57:50 +0000
Manifest this update: Fri 28 Mar 2025 21:57:49 +0000
Manifest next update: Fri 04 Apr 2025 21:57:49 +0000
Files and hashes: 1: i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl (hash: kSqi4sXaGNLkgep191b7W+liuzKkWzQ4Qj6T4R+FP8w=)
2: D933655E23B511EBA7BDD50FC4F9AE02.roa (hash: 54RasFpInkk46NqANXGRnQQRyrIL2lzCqTjJuJoAKLM=)
3: BD764EAE1D5B11EBAB008D19C4F9AE02.roa (hash: eITJ7zYLAhKWDtK1wNVCYFqUDK3lmpweT8MrA45hMHY=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1869 (0x74d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D37E4
Validity
Not Before: Mar 28 21:57:49 2025 GMT
Not After : Apr 4 21:57:49 2025 GMT
Subject: CN=67e71b5d-9d90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:26:7f:3e:82:cc:44:d3:fc:43:04:6f:72:6b:
c5:91:57:52:e3:68:9b:61:6d:c4:2d:0f:31:14:00:
65:8e:a3:19:30:bd:f8:e1:24:4c:76:fa:d0:92:aa:
91:aa:cc:98:ae:22:47:82:9b:e7:13:42:6c:e0:b8:
6d:48:9a:a6:95:0d:73:d3:42:b9:4a:ed:2d:40:8a:
7a:1e:f5:32:61:17:c3:b4:86:74:bd:c5:90:e7:15:
32:71:85:d8:98:f6:1b:9d:dc:43:a6:89:ee:36:88:
79:b1:5b:81:a9:9f:f5:6e:dd:ca:92:00:24:6c:b1:
ac:bd:03:d5:42:5c:11:18:0a:41:ec:04:ca:e3:6b:
de:e7:13:1d:67:b2:92:a8:42:8d:30:f3:f5:95:f3:
d3:14:44:d7:1c:09:2d:db:43:98:7f:c2:64:7a:66:
03:93:26:68:4e:5d:08:f0:46:f9:d7:cd:20:30:cc:
c6:e1:9e:d2:2e:3d:d0:e5:e0:8f:d9:cc:12:6c:8e:
6e:84:f7:8e:e8:15:20:c0:45:9f:57:7f:a1:11:43:
d9:e7:95:1b:57:53:28:9f:42:d9:1d:54:02:45:88:
89:d8:07:d8:df:79:da:3b:ba:ba:41:b2:d9:65:b4:
62:a6:6b:42:d4:c2:8d:a5:8a:5a:ab:76:01:e4:9a:
9b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:B9:F8:21:74:34:C9:9E:1F:72:4D:7C:70:C2:29:F5:AE:DA:59:6C
X509v3 Authority Key Identifier:
keyid:8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6b:07:43:5e:18:85:40:99:58:b3:42:ac:98:54:ea:78:91:02:
b8:c6:54:f8:11:c6:79:86:6f:b8:51:f1:02:8f:c9:8f:d8:3e:
d4:c1:a1:cf:18:2c:7d:03:74:0f:d0:27:70:a5:bf:8d:b3:84:
fd:05:e5:9b:ed:aa:64:fe:5e:f3:ac:27:51:7e:0c:83:9c:bd:
54:bf:e2:6e:26:70:df:e2:d7:16:1d:84:e7:03:83:ab:b6:2f:
1b:40:5e:91:a9:cc:e9:e6:98:a6:03:1f:54:d8:e0:98:8f:10:
50:42:6d:8b:5e:af:fa:3c:f5:e4:d6:86:5c:86:7a:ca:e7:80:
1f:87:60:9c:23:62:87:89:55:4e:66:fd:0e:9a:9d:70:38:99:
d1:f8:b3:6a:d8:59:5b:17:92:be:78:a9:ae:60:7c:2d:76:65:
33:b1:8d:a2:3e:0e:c9:fe:f9:c1:2d:48:6d:03:ec:32:39:3e:
2e:c8:6c:9e:a1:ae:a3:dd:4f:9b:ad:5b:27:60:96:d1:16:53:
35:0d:57:44:de:26:26:9a:b6:94:93:e4:8c:e5:33:68:a2:18:
5a:ef:ea:e6:19:8c:40:7d:43:a0:74:49:bd:b3:0b:c3:da:20:
72:ee:39:6e:a4:c0:c9:99:c0:1b:54:de:e3:46:aa:bb:95:7c:
d4:59:85:83
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICB00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDM3RTQxMTAvBgNVBAUTKDhCREE4QTFGRTA3QjQ2QzMzMDYzMDQ2QTcyNUVBQjg1
NjQyQjlDMkQwHhcNMjUwMzI4MjE1NzQ5WhcNMjUwNDA0MjE1NzQ5WjAYMRYwFAYD
VQQDEw02N2U3MWI1ZC05ZDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArCZ/PoLMRNP8QwRvcmvFkVdS42ibYW3ELQ8xFABljqMZML344SRMdvrQkqqR
qsyYriJHgpvnE0Js4LhtSJqmlQ1z00K5Su0tQIp6HvUyYRfDtIZ0vcWQ5xUycYXY
mPYbndxDponuNoh5sVuBqZ/1bt3KkgAkbLGsvQPVQlwRGApB7ATK42ve5xMdZ7KS
qEKNMPP1lfPTFETXHAkt20OYf8JkemYDkyZoTl0I8Eb5180gMMzG4Z7SLj3Q5eCP
2cwSbI5uhPeO6BUgwEWfV3+hEUPZ55UbV1Mon0LZHVQCRYiJ2AfY33naO7q6QbLZ
ZbRipmtC1MKNpYpaq3YB5JqbVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAa5+CF0
NMmeH3JNfHDCKfWu2llsMB8GA1UdIwQYMBaAFIvaih/ge0bDMGMEanJeq4VkK5wt
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzdFNC8zNkZCMTE0NDFE
NUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1JzTXdZd1JxY2w2cmhXUXJu
QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2k5cUtILUI3UnNNd1l3UnFjbDZyaFdRcm5DMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
MzdFNC8zNkZCMTE0NDFENUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1Jz
TXdZd1JxY2w2cmhXUXJuQzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBrB0NeGIVAmVizQqyYVOp4kQK4xlT4EcZ5hm+4UfECj8mP2D7UwaHP
GCx9A3QP0Cdwpb+Ns4T9BeWb7apk/l7zrCdRfgyDnL1Uv+JuJnDf4tcWHYTnA4Or
ti8bQF6Rqczp5pimAx9U2OCYjxBQQm2LXq/6PPXk1oZchnrK54Afh2CcI2KHiVVO
Zv0Omp1wOJnR+LNq2FlbF5K+eKmuYHwtdmUzsY2iPg7J/vnBLUhtA+wyOT4uyGye
oa6j3U+brVsnYJbRFlM1DVdE3iYmmraUk+SM5TNoohha7+rmGYxAfUOgdEm9swvD
2iBy7jlupMDJmcAbVN7jRqq7lXzUWYWD
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:00:38 2025 by rpki-client