Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912763C/F20AB31CEE6211EAA766644EC4F9AE02/4VLg53x5W1Qih9ZcHk4L8obU1eA.mft
File:                     4VLg53x5W1Qih9ZcHk4L8obU1eA.mft (raw, json)
Hash identifier:          /d4oGkVM6IRr1T8ZePZzoCT+a9yKdJOkO7ZmgLh25bI=
Subject key identifier:   A6:F9:9B:41:6A:22:9C:5D:99:4E:40:75:77:05:31:AB:99:C9:0B:E8
Authority key identifier: E1:52:E0:E7:7C:79:5B:54:22:87:D6:5C:1E:4E:0B:F2:86:D4:D5:E0
Certificate issuer:       /CN=A912763C/serialNumber=E152E0E77C795B542287D65C1E4E0BF286D4D5E0
Certificate serial:       07C1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VLg53x5W1Qih9ZcHk4L8obU1eA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912763C/F20AB31CEE6211EAA766644EC4F9AE02/4VLg53x5W1Qih9ZcHk4L8obU1eA.mft
Manifest number:          07BB
Signing time:             Fri 28 Mar 2025 21:21:50 +0000
Manifest this update:     Fri 28 Mar 2025 21:21:50 +0000
Manifest next update:     Fri 04 Apr 2025 21:21:50 +0000
Files and hashes:         1: 4VLg53x5W1Qih9ZcHk4L8obU1eA.crl (hash: YxByYbWi7LGARo96k7frner/W7WkVgAR0FLlzA7zWGo=)
                          2: 22329D14EE6511EAA50E8052C4F9AE02.roa (hash: 1BuomuYOjyAemcsoXwlPHOu6bk8zZy2uLp90VOf9/iU=)
Validation:               Failed, CRL has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1985 (0x7c1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912763C
        Validity
            Not Before: Mar 28 21:21:50 2025 GMT
            Not After : Apr  4 21:21:50 2025 GMT
        Subject: CN=67e712ee-188b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:d6:e9:91:fd:02:47:1f:64:d6:4d:14:d3:f2:
                    9b:09:1f:a4:f0:53:10:f3:03:93:0f:8b:c2:e7:33:
                    d6:c7:f6:ab:9a:93:39:b9:01:14:0c:d1:19:79:f0:
                    54:7d:61:e6:9c:42:53:d1:c4:f7:e7:9d:a4:f6:10:
                    51:d4:f0:44:91:0e:e3:f4:b1:4b:1b:c1:ed:62:3d:
                    3d:fa:b4:c4:b4:2c:f4:c6:a5:d9:48:be:00:37:c8:
                    ed:98:8b:86:2f:e1:d9:bc:2b:a9:d4:d5:77:1d:c8:
                    c8:3e:aa:78:b1:4b:2c:46:67:db:e1:8c:fc:0f:17:
                    53:ad:6d:4c:a2:22:a2:0a:6b:22:4d:e7:c7:19:76:
                    64:60:19:38:31:d5:f7:a7:b9:db:8b:12:2a:7a:9c:
                    44:a4:50:8c:77:8c:75:84:8a:ef:8b:89:ed:6f:04:
                    1b:e0:8c:54:f0:c7:fd:73:ef:03:5c:1f:4b:4e:29:
                    15:7e:8e:18:2d:bc:f6:2f:c1:64:4d:b1:d6:9c:b5:
                    bd:21:d2:91:46:40:07:b7:81:ea:64:b6:71:d3:d8:
                    ee:36:d1:08:ae:e8:02:55:74:d2:b9:71:87:45:1f:
                    d3:84:c1:6c:5d:1c:fc:76:82:7a:6d:63:92:98:0a:
                    fb:2e:35:df:60:dd:de:16:13:58:91:5d:b6:ab:90:
                    cb:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:F9:9B:41:6A:22:9C:5D:99:4E:40:75:77:05:31:AB:99:C9:0B:E8
            X509v3 Authority Key Identifier:
                keyid:E1:52:E0:E7:7C:79:5B:54:22:87:D6:5C:1E:4E:0B:F2:86:D4:D5:E0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912763C/F20AB31CEE6211EAA766644EC4F9AE02/4VLg53x5W1Qih9ZcHk4L8obU1eA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VLg53x5W1Qih9ZcHk4L8obU1eA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912763C/F20AB31CEE6211EAA766644EC4F9AE02/4VLg53x5W1Qih9ZcHk4L8obU1eA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:ac:65:6f:06:c0:21:0f:d7:42:3a:82:21:4a:1a:03:dc:1a:
         25:34:88:e0:83:09:6a:86:1b:8a:5f:e9:39:09:3a:d4:4b:d3:
         dd:28:0b:d0:70:ab:36:8f:cc:a7:4a:48:ed:d0:da:dd:62:7c:
         21:78:a1:73:57:72:5b:2b:cf:4f:24:36:8f:ea:51:11:9a:5e:
         46:19:a0:57:c9:ad:72:f6:19:5e:8d:c1:df:d6:75:41:d4:28:
         61:6a:29:1f:bf:11:99:99:b1:fe:70:91:ae:bb:0c:3c:d0:63:
         31:a6:d9:b8:7e:e3:a3:22:3b:68:b3:95:ca:b3:7b:46:3e:51:
         07:26:30:ac:37:6a:ff:9d:ae:5f:5e:8c:30:66:94:df:26:e0:
         f1:0e:bc:fc:a1:fb:09:57:dd:8a:cd:33:a5:9a:5b:b5:45:32:
         c4:b6:12:67:85:58:d6:4f:5f:1c:8b:cc:8a:27:91:fc:1a:1c:
         f7:6b:7e:b6:89:9a:5e:a3:db:2c:43:13:ba:28:61:b4:6f:85:
         43:b7:39:13:00:a5:c1:f5:6c:73:9c:e1:e3:e4:1d:21:77:14:
         b2:70:40:d8:4c:3b:6b:f8:4f:c0:79:48:c6:86:8a:0c:c7:c3:
         9a:dc:d6:40:da:7a:60:9f:fe:4c:88:40:c1:28:de:2e:41:cb:
         39:28:e7:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----