Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
File: 9htN6lh5mctuFcVAieTbmD0BuxA.mft (raw, json)
Hash identifier: dcXKfVvNiRtcu0/vHuzf5baQ78uF0XFhqW8fkjn1qg4=
Subject key identifier: 6B:66:0C:9D:3E:6F:99:8C:B9:0E:4B:E1:89:0F:97:36:E2:12:67:B6
Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10
Certificate issuer: /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10
Certificate serial: 084D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
Manifest number: 1373
Signing time: Fri 28 Mar 2025 19:21:29 +0000
Manifest this update: Fri 28 Mar 2025 19:21:28 +0000
Manifest next update: Fri 04 Apr 2025 19:21:28 +0000
Files and hashes: 1: 9htN6lh5mctuFcVAieTbmD0BuxA.crl (hash: 75ktijVePYZgg2XTwi12CrYbECTqI1DZ8J/sH8w+JE4=)
2: 336BD320CA6111EA97DD3439C4F9AE02.roa (hash: kFvHpezndJlXkkRP4OZDHdlgHrDsggzCOPWYJs3g6SU=)
3: 341C7414CA6111EA97DD3439C4F9AE02.roa (hash: DLeS0zPVo1GXq+y9erAJGv8PPnf+LNimN04EFu+X8DQ=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2125 (0x84d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F7315
Validity
Not Before: Mar 28 19:21:28 2025 GMT
Not After : Apr 4 19:21:28 2025 GMT
Subject: CN=67e6f6b9-d326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:58:05:7b:8a:50:87:d8:b4:ef:6a:0a:c6:ab:
a0:63:a1:1f:b9:fc:d0:72:1d:38:b8:03:9b:fe:76:
ea:c2:67:11:1c:b3:bf:26:74:10:6c:30:a6:f3:41:
61:b7:42:2f:c9:f5:a3:84:0b:bc:49:8d:64:75:4d:
20:7a:1e:3c:36:7d:5c:36:b2:99:7a:29:b4:30:d3:
0b:c2:0a:60:94:60:bb:80:62:69:94:88:35:0c:a2:
8c:53:b6:87:3d:e4:54:2a:06:bb:e3:2e:a0:a6:1b:
14:0f:9f:64:d1:09:2a:13:27:34:c0:b0:ab:c9:4f:
70:f1:33:3b:26:aa:a0:51:b1:25:c5:76:44:d3:7b:
75:c9:29:20:3c:fc:2d:ee:37:79:07:69:02:33:7e:
b3:9a:13:3f:32:e8:84:10:c0:95:4e:df:44:af:8d:
af:a5:3c:42:d7:6c:d9:73:96:51:0d:32:21:57:13:
f2:bb:12:fd:a4:d5:47:9b:5d:1b:ee:63:45:b0:7b:
1f:04:52:ae:71:cc:dd:8b:f0:6a:8b:2a:96:b0:75:
5c:ba:61:b6:3d:1c:55:4f:4d:a2:75:30:bc:4c:b8:
21:54:c3:a8:7b:bc:8a:6f:a1:ba:76:dd:a9:1a:31:
94:c9:35:a3:31:fa:50:18:0c:d5:08:1e:5e:26:d3:
3a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:66:0C:9D:3E:6F:99:8C:B9:0E:4B:E1:89:0F:97:36:E2:12:67:B6
X509v3 Authority Key Identifier:
keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b6:26:df:69:81:3c:52:c9:4c:89:31:38:51:0c:32:f6:67:2e:
f3:7c:26:36:de:ea:60:97:0b:ef:8d:00:cf:69:38:f9:78:a6:
c1:45:3e:af:56:18:de:73:d8:df:e3:1e:5e:15:b1:54:4b:51:
20:47:90:6f:4c:fe:02:4e:6a:55:40:f1:b2:d1:67:9e:b3:b1:
3a:38:25:66:8e:2e:51:1a:b8:bd:f9:cc:0e:2b:f3:27:de:62:
c8:a8:06:44:35:03:6b:e7:63:83:da:d4:e8:e5:11:1a:a5:09:
ce:85:1a:db:de:13:22:9a:3f:63:f5:7d:52:0f:b5:67:89:36:
70:8c:1f:4a:d8:7b:8c:52:bb:59:90:c6:46:ed:5b:f3:17:4a:
b9:84:5d:b1:31:07:b8:3a:6c:d6:9d:32:e7:55:f8:68:02:fd:
0d:f8:f6:d6:f6:58:fc:fd:d4:83:d1:51:0a:37:e9:91:a5:c8:
7b:36:c7:16:06:01:c2:34:7f:b7:33:96:da:36:8d:e9:5c:12:
c5:b4:2e:70:ce:f9:9d:7b:51:10:99:f3:98:0d:70:0b:ec:66:
92:6b:d5:86:37:ac:cf:d4:01:42:d5:cd:aa:c3:f2:2d:9c:19:
22:ba:73:1e:3e:83:9b:91:97:a9:a9:75:52:cb:8a:33:b7:97:
74:0c:fc:b9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjczMTUxMTAvBgNVBAUTKEY2MUI0REVBNTg3OTk5Q0I2RTE1QzU0MDg5RTREQjk4
M0QwMUJCMTAwHhcNMjUwMzI4MTkyMTI4WhcNMjUwNDA0MTkyMTI4WjAYMRYwFAYD
VQQDEw02N2U2ZjZiOS1kMzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA51gFe4pQh9i072oKxqugY6EfufzQch04uAOb/nbqwmcRHLO/JnQQbDCm80Fh
t0IvyfWjhAu8SY1kdU0geh48Nn1cNrKZeim0MNMLwgpglGC7gGJplIg1DKKMU7aH
PeRUKga74y6gphsUD59k0QkqEyc0wLCryU9w8TM7JqqgUbElxXZE03t1ySkgPPwt
7jd5B2kCM36zmhM/MuiEEMCVTt9Er42vpTxC12zZc5ZRDTIhVxPyuxL9pNVHm10b
7mNFsHsfBFKucczdi/BqiyqWsHVcumG2PRxVT02idTC8TLghVMOoe7yKb6G6dt2p
GjGUyTWjMfpQGAzVCB5eJtM6xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtmDJ0+
b5mMuQ5L4YkPlzbiEme2MB8GA1UdIwQYMBaAFPYbTepYeZnLbhXFQInk25g9AbsQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy
RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1jdHVGY1ZBaWVUYm1EMEJ1
eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzlodE42bGg1bWN0dUZjVkFpZVRibUQwQnV4QS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1j
dHVGY1ZBaWVUYm1EMEJ1eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQC2Jt9pgTxSyUyJMThRDDL2Zy7zfCY23upglwvvjQDPaTj5eKbBRT6v
Vhjec9jf4x5eFbFUS1EgR5BvTP4CTmpVQPGy0Wees7E6OCVmji5RGri9+cwOK/Mn
3mLIqAZENQNr52OD2tTo5REapQnOhRrb3hMimj9j9X1SD7VniTZwjB9K2HuMUrtZ
kMZG7VvzF0q5hF2xMQe4OmzWnTLnVfhoAv0N+PbW9lj8/dSD0VEKN+mRpch7NscW
BgHCNH+3M5baNo3pXBLFtC5wzvmde1EQmfOYDXAL7GaSa9WGN6zP1AFC1c2qw/It
nBkiunMePoObkZepqXVSy4ozt5d0DPy5
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:32:10 2025 by rpki-client