Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft
File: zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft (raw, json)
Hash identifier: jmS22UKfey1ybOFzLI+8xmfeNX7mpfSDJ8iHxEsbPKY=
Subject key identifier: 3A:1A:24:D4:F0:40:87:87:7D:15:DC:37:49:04:62:1A:78:31:24:52
Authority key identifier: CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58
Certificate issuer: /CN=A91FA729/serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758
Certificate serial: 16FC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft
Manifest number: 16F2
Signing time: Fri 28 Mar 2025 16:45:25 +0000
Manifest this update: Fri 28 Mar 2025 16:45:25 +0000
Manifest next update: Fri 04 Apr 2025 16:45:25 +0000
Files and hashes: 1: zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl (hash: FOZXVTzXTi/dtoBmSat1ZfFlfbHWys9RZv+CWsOeqvc=)
2: 4A81F344C34111EB855D7C84C4F9AE02.roa (hash: uASyVgC1Cwioz2zhPx4P08otp7ZGZ17OkqWd5dxa/vo=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5884 (0x16fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FA729
Validity
Not Before: Mar 28 16:45:25 2025 GMT
Not After : Apr 4 16:45:25 2025 GMT
Subject: CN=67e6d225-296e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f1:95:ab:af:f3:89:a8:d2:2a:41:90:38:45:
65:ce:80:e5:ed:2c:3d:58:78:55:58:35:4d:20:2d:
bf:a7:a5:27:f3:e2:06:54:9f:47:db:7f:fd:7b:6d:
59:54:7f:b8:1a:81:07:d8:9d:04:27:b9:9f:95:67:
e4:0c:90:49:22:d8:f6:57:87:3d:f8:9e:32:80:b8:
6b:51:8f:37:11:f2:76:4e:de:dd:05:5c:b5:c3:b3:
5b:b9:41:e0:08:77:73:17:11:11:6f:d9:23:a3:1c:
00:d7:77:36:9c:7a:8f:20:01:6c:21:42:5a:05:47:
46:da:bc:24:6e:a5:ad:64:1f:2f:88:e1:77:39:33:
37:fb:e2:35:2b:2f:05:72:77:98:03:2c:44:06:d8:
fd:3b:22:6b:43:40:68:48:94:d3:10:b9:26:91:21:
a3:72:89:5e:dd:e0:14:6e:f5:c7:27:39:ad:96:d7:
14:fb:aa:66:b5:25:e2:0c:fa:cd:26:75:af:f0:85:
e3:2d:92:1a:07:dc:b6:a8:a0:cd:a8:5a:86:86:ca:
b7:53:0e:02:d7:4d:4c:3e:90:33:41:24:cc:a9:ae:
e8:c9:35:20:1c:0f:05:da:39:46:a4:f8:7b:de:e2:
6a:f2:2a:7e:0d:fc:42:dc:22:2c:e3:53:3e:3c:2c:
c4:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:1A:24:D4:F0:40:87:87:7D:15:DC:37:49:04:62:1A:78:31:24:52
X509v3 Authority Key Identifier:
keyid:CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
48:f8:37:a1:3e:36:28:b9:11:21:18:fe:df:1c:41:f7:c4:23:
4a:02:8e:ca:4d:68:f2:70:75:5d:17:6e:42:a3:bb:66:c8:56:
e5:cf:40:66:a8:73:26:88:83:3d:a8:08:32:2f:a2:39:85:1b:
cb:5c:20:31:db:4c:56:f5:99:c4:06:74:fb:86:a4:95:86:82:
d6:15:32:c3:e4:78:c5:48:0a:97:8d:09:8b:c5:8b:cf:af:0b:
00:b0:d7:92:56:0a:a5:74:28:5d:ad:98:8c:49:06:04:f9:f0:
a6:f5:54:9f:df:96:30:9d:56:13:9f:29:90:f9:e5:30:0d:04:
cd:5f:97:5d:05:ab:1c:1a:49:27:90:de:ce:37:74:55:99:19:
bf:ec:92:bd:0a:55:28:dd:d0:be:68:58:40:1b:1b:d8:b3:02:
20:14:f8:1b:09:b8:f9:26:b4:2c:4c:e6:7f:ba:83:b4:bd:94:
fe:3d:33:7b:c4:24:68:18:fa:cb:05:4b:f1:7a:e6:f5:6f:73:
c5:77:b6:62:89:72:ed:f2:01:a7:fd:9d:5d:4a:82:7b:05:76:
03:7a:1b:33:5c:ae:96:80:0b:e5:0e:d0:d4:16:e8:2a:8b:13:
65:7a:86:de:e9:ed:01:9b:a6:d0:a8:98:ff:93:20:a4:bb:ca:
32:e2:91:cf
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICFvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RkE3MjkxMTAvBgNVBAUTKENFOEUwRjJCQTQ5OUM1RTU4N0IwMTVFMTA0NEYwOThD
RTYyQ0E3NTgwHhcNMjUwMzI4MTY0NTI1WhcNMjUwNDA0MTY0NTI1WjAYMRYwFAYD
VQQDEw02N2U2ZDIyNS0yOTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0PGVq6/ziajSKkGQOEVlzoDl7Sw9WHhVWDVNIC2/p6Un8+IGVJ9H23/9e21Z
VH+4GoEH2J0EJ7mflWfkDJBJItj2V4c9+J4ygLhrUY83EfJ2Tt7dBVy1w7NbuUHg
CHdzFxERb9kjoxwA13c2nHqPIAFsIUJaBUdG2rwkbqWtZB8viOF3OTM3++I1Ky8F
cneYAyxEBtj9OyJrQ0BoSJTTELkmkSGjcole3eAUbvXHJzmtltcU+6pmtSXiDPrN
JnWv8IXjLZIaB9y2qKDNqFqGhsq3Uw4C101MPpAzQSTMqa7oyTUgHA8F2jlGpPh7
3uJq8ip+DfxC3CIs41M+PCzEJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDoaJNTw
QIeHfRXcN0kEYhp4MSRSMB8GA1UdIwQYMBaAFM6ODyukmcXlh7AV4QRPCYzmLKdY
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTcyOS8yOEI5RDAxQ0U1
RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhlV0hzQlhoQkU4SmpPWXNw
MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3pvNFBLNlNaeGVXSHNCWGhCRThKak9Zc3AxZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
QTcyOS8yOEI5RDAxQ0U1RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhl
V0hzQlhoQkU4SmpPWXNwMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBI+DehPjYouREhGP7fHEH3xCNKAo7KTWjycHVdF25Co7tmyFblz0Bm
qHMmiIM9qAgyL6I5hRvLXCAx20xW9ZnEBnT7hqSVhoLWFTLD5HjFSAqXjQmLxYvP
rwsAsNeSVgqldChdrZiMSQYE+fCm9VSf35YwnVYTnymQ+eUwDQTNX5ddBascGkkn
kN7ON3RVmRm/7JK9ClUo3dC+aFhAGxvYswIgFPgbCbj5JrQsTOZ/uoO0vZT+PTN7
xCRoGPrLBUvxeub1b3PFd7ZiiXLt8gGn/Z1dSoJ7BXYDehszXK6WgAvlDtDUFugq
ixNleobe6e0Bm6bQqJj/kyCku8oy4pHP
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:34:49 2025 by rpki-client