Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft
File:                     YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft (raw, json)
Hash identifier:          8FbLCxjKm1nqFt8PXyMTQDoUts1/kJrnaeOVxTafH8Y=
Subject key identifier:   C5:31:D9:07:75:0E:B2:96:70:DC:58:EC:9D:98:55:4C:23:F9:C5:26
Authority key identifier: 60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B
Certificate issuer:       /CN=A91E5998/serialNumber=601DC54B1F5205080EFD9AA6CFA5A51C4A79DD2B
Certificate serial:       0607
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft
Manifest number:          05FE
Signing time:             Fri 28 Mar 2025 23:10:47 +0000
Manifest this update:     Fri 28 Mar 2025 23:10:46 +0000
Manifest next update:     Fri 04 Apr 2025 23:10:46 +0000
Files and hashes:         1: YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl (hash: KHRWmQ1hIlP7/jOh0jEMePaqkc0jlXbZVKvrGpJfAZw=)
                          2: 7438DDF0FD4A11EF85D3AC1AC4F9AE02.roa (hash: p2Z1EgqQ+6pJLOz3jzYs7kxwvH11aaW9ezRiUjRkGPg=)
                          3: 24365CBCF51411EFB44F001BC4F9AE02.roa (hash: tjyX4VC0m3nPNl+YbtpnbpRvEQzCPx+5sbkGCSkgZHQ=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1543 (0x607)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E5998
        Validity
            Not Before: Mar 28 23:10:46 2025 GMT
            Not After : Apr  4 23:10:46 2025 GMT
        Subject: CN=67e72c77-adf7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:3e:42:6d:82:3a:fd:51:4f:3d:78:31:df:8a:
                    ff:b1:08:50:7c:ff:3b:80:32:03:27:6f:36:68:4e:
                    5a:7a:9d:0c:0c:58:ed:5c:29:e4:ba:14:d9:c3:b6:
                    c1:38:ff:d7:f3:9b:96:3a:13:a7:02:1d:2d:13:e0:
                    12:b9:08:a9:59:e6:5d:9e:2b:99:7d:0e:91:db:f6:
                    6c:56:eb:0a:f7:db:8d:bb:8b:90:cf:7a:59:6c:40:
                    bf:d6:8b:08:3d:2d:c8:5b:a7:04:88:4b:00:1f:b8:
                    cb:94:85:00:20:fe:d4:6f:a7:0c:12:7c:df:53:72:
                    61:65:8d:fa:9b:8f:bd:7c:51:69:9d:34:12:29:71:
                    a7:47:2b:f9:d3:68:20:06:26:95:0d:70:93:35:30:
                    43:ed:43:3f:2a:fe:b9:e8:f7:c0:9a:9d:9a:4b:7d:
                    f9:27:33:57:0e:a0:83:52:1d:cc:28:1b:ff:6d:4a:
                    b0:bb:06:de:81:59:fa:6f:32:3e:8c:8e:19:60:1c:
                    88:b6:12:84:1d:e8:f5:60:d9:97:ca:92:b4:74:3e:
                    8f:c7:c0:24:83:7e:be:40:3e:db:24:32:d6:60:ca:
                    e3:ca:3a:ac:0c:17:ff:48:67:df:86:8c:a5:c8:65:
                    66:47:09:af:46:5f:af:27:95:81:c1:23:f4:95:69:
                    e4:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:31:D9:07:75:0E:B2:96:70:DC:58:EC:9D:98:55:4C:23:F9:C5:26
            X509v3 Authority Key Identifier:
                keyid:60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c5:fc:61:3d:9a:af:0f:85:cd:9e:32:a2:cf:8d:25:e0:1a:ff:
         3a:e6:ca:20:f7:04:7f:ce:da:9d:ad:21:7a:67:56:c9:9f:b9:
         11:08:fb:bd:d4:00:18:49:01:ca:45:e4:a2:bd:5c:ca:0b:8a:
         4c:d2:37:af:03:41:f9:9d:0d:d2:e5:49:7b:6c:72:1d:f7:88:
         8b:13:41:0a:99:d5:7c:0a:28:c0:b4:0c:1c:12:8b:48:ea:69:
         15:59:21:cc:80:3d:53:70:eb:22:93:0b:e2:06:a3:c1:84:1d:
         48:ec:61:c8:0f:4b:fe:1a:99:7a:15:89:51:1e:83:93:62:1f:
         72:fb:e6:07:12:35:51:80:0b:e3:22:3a:b9:89:2f:3c:2b:85:
         b8:65:4a:2b:a5:6c:e2:1b:24:9e:07:48:7f:66:5b:e9:98:a4:
         c8:03:b2:65:e2:db:ac:ea:ed:41:c6:16:78:66:97:8f:a8:78:
         d0:4b:0d:1b:f9:05:51:bf:e8:10:d1:ba:91:66:af:e4:cb:1b:
         b0:ac:5e:92:03:bb:6b:e2:56:d7:d0:c1:5d:7a:57:10:17:a2:
         cb:bd:84:39:37:2f:73:ec:1d:39:b6:aa:53:f6:5a:7b:0e:55:
         cd:48:e2:d8:fc:f0:cd:c6:a5:de:76:d1:58:56:bf:bc:38:52:
         3b:99:52:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----