Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft
File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json)
Hash identifier: LzDuQ7BpKA53E9duYSZZ80RpjgCYsV2yIQHCHg3N2OI=
Subject key identifier: 30:15:D7:CF:1A:A6:96:C1:B1:57:7D:F4:1C:14:C3:36:FE:92:90:EA
Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A
Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A
Certificate serial: 0C4A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft
Manifest number: 1D40
Signing time: Fri 28 Mar 2025 17:24:28 +0000
Manifest this update: Fri 28 Mar 2025 17:24:27 +0000
Manifest next update: Fri 04 Apr 2025 17:24:27 +0000
Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: s6DVukTao/QI/ORXXXTJ7qPJfMCrLMCccobrBZw0qAU=)
2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: rns6y4xnalGROKJT2q8Fjb3eMxdlbdFZdL9Xn8yjrx4=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3146 (0xc4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F0AF0
Validity
Not Before: Mar 28 17:24:27 2025 GMT
Not After : Apr 4 17:24:27 2025 GMT
Subject: CN=67e6db4c-7a3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fb:c2:ac:ba:59:1a:b9:44:11:9d:cf:08:ae:
8e:57:ee:3d:de:b6:e5:e7:0d:6c:2c:20:3d:81:a4:
1a:47:77:e0:1f:88:3d:dd:42:0c:04:40:07:bb:69:
18:64:92:5c:02:23:ef:6f:12:5a:dd:5c:34:fc:3a:
88:1a:5d:6e:54:0e:11:a9:34:82:51:8f:12:6e:e9:
55:4d:0b:0c:49:e0:b2:4c:a5:50:8f:24:63:25:30:
a3:e5:5d:88:0c:59:bd:57:d4:b4:de:5b:89:f1:65:
41:8e:eb:6e:a8:b5:f7:87:5f:37:4a:5f:04:7b:bb:
0a:41:ec:9b:ea:b3:9a:19:11:7a:97:5e:c9:f3:2d:
87:ac:00:8a:f2:17:7d:95:7e:65:9b:b4:7a:df:04:
e5:e0:8e:ff:ce:d3:c1:73:3f:62:13:80:ef:c2:ed:
84:40:7c:6c:db:25:95:18:f8:6e:11:a2:45:a1:d0:
d0:13:90:3f:c9:0d:ac:e9:90:b0:5d:3d:85:9d:d8:
64:dd:37:d0:4a:76:01:99:e9:95:8b:73:a0:f1:81:
71:f0:f7:26:5e:05:97:ff:64:62:d5:69:ad:d0:42:
8a:91:80:49:1c:aa:69:0b:76:0e:85:67:d6:91:48:
14:29:e3:32:9c:5b:bb:5b:87:07:da:25:de:49:1f:
71:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:15:D7:CF:1A:A6:96:C1:B1:57:7D:F4:1C:14:C3:36:FE:92:90:EA
X509v3 Authority Key Identifier:
keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
be:bc:59:89:6a:13:d0:be:d6:a5:f9:eb:8a:30:24:55:4e:36:
74:f1:ee:06:11:e2:b9:d0:9e:fa:40:cc:5a:c4:04:25:e0:36:
9c:5c:2d:79:c9:93:cd:ea:b2:a9:eb:8e:50:69:05:6e:0f:8a:
75:b6:5c:3b:02:8a:85:39:5c:e5:c5:c9:ca:14:5a:89:04:9c:
27:a2:10:bb:d6:d1:ed:c9:06:a1:08:4b:0d:83:3e:85:b7:76:
28:e2:43:f5:9c:6e:81:2e:58:75:be:7b:77:c9:1b:d1:d2:13:
1a:50:19:a1:d4:1b:a8:d9:15:9c:86:e2:7c:82:fb:66:41:7b:
9c:32:f9:8b:81:37:19:a7:d1:5b:9e:34:6d:6b:ad:27:11:cc:
6f:cb:ce:80:4a:c4:31:9e:3d:b5:07:2d:fa:a1:15:83:04:bb:
dc:ad:e8:3a:bb:39:38:80:91:d9:70:51:78:d3:ee:63:93:b6:
7d:c0:8a:02:93:8b:42:77:1b:77:5d:00:5e:43:a0:0a:37:3a:
a5:ff:e9:de:51:a0:71:52:5b:f4:54:01:0c:5c:13:91:db:09:
79:4d:7c:99:4d:96:eb:41:9e:b9:31:5d:ec:e6:00:f6:3e:d7:
5d:1a:f6:0d:4a:c0:74:2e:f1:50:13:2a:b8:41:54:fd:07:1a:
e3:79:72:cd
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICDEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG
REE4NEMwN0EwHhcNMjUwMzI4MTcyNDI3WhcNMjUwNDA0MTcyNDI3WjAYMRYwFAYD
VQQDEw02N2U2ZGI0Yy03YTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAu/vCrLpZGrlEEZ3PCK6OV+493rbl5w1sLCA9gaQaR3fgH4g93UIMBEAHu2kY
ZJJcAiPvbxJa3Vw0/DqIGl1uVA4RqTSCUY8SbulVTQsMSeCyTKVQjyRjJTCj5V2I
DFm9V9S03luJ8WVBjutuqLX3h183Sl8Ee7sKQeyb6rOaGRF6l17J8y2HrACK8hd9
lX5lm7R63wTl4I7/ztPBcz9iE4Dvwu2EQHxs2yWVGPhuEaJFodDQE5A/yQ2s6ZCw
XT2Fndhk3TfQSnYBmemVi3Og8YFx8PcmXgWX/2Ri1Wmt0EKKkYBJHKppC3YOhWfW
kUgUKeMynFu7W4cH2iXeSR9xJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAV188a
ppbBsVd99BwUwzb+kpDqMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG
RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3
SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh
NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQC+vFmJahPQvtal+euKMCRVTjZ08e4GEeK50J76QMxaxAQl4DacXC15
yZPN6rKp645QaQVuD4p1tlw7AoqFOVzlxcnKFFqJBJwnohC71tHtyQahCEsNgz6F
t3Yo4kP1nG6BLlh1vnt3yRvR0hMaUBmh1Buo2RWchuJ8gvtmQXucMvmLgTcZp9Fb
njRta60nEcxvy86ASsQxnj21By36oRWDBLvcreg6uzk4gJHZcFF40+5jk7Z9wIoC
k4tCdxt3XQBeQ6AKNzql/+neUaBxUlv0VAEMXBOR2wl5TXyZTZbrQZ65MV3s5gD2
PtddGvYNSsB0LvFQEyq4QVT9BxrjeXLN
-----END CERTIFICATE-----
Generated at Sat Apr 5 01:30:29 2025 by rpki-client