Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft
File:                     uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft (raw, json)
Hash identifier:          E8zTL+SiY9+OmlTbsMpzTJ0yBF3mWC7d00lUcTQkE2w=
Subject key identifier:   91:8F:2A:0F:DC:2E:62:23:10:6D:ED:02:D6:0E:62:DB:F9:14:4C:66
Authority key identifier: B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74
Certificate issuer:       /CN=A91103CF/serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74
Certificate serial:       0371
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft
Manifest number:          0369
Signing time:             Sat 29 Mar 2025 01:14:22 +0000
Manifest this update:     Sat 29 Mar 2025 01:14:21 +0000
Manifest next update:     Sat 05 Apr 2025 01:14:21 +0000
Files and hashes:         1: uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl (hash: u338iXqSiWi8ZSEOHqtsmVvLsX5pd/07O5HW624JGI8=)
                          2: 931A51C07F5811EE82ECE456C4F9AE02.roa (hash: 3ujH7nfRItY8BxT80xm2zxGd128K9q6N1aAV7Q13w4M=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 881 (0x371)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91103CF
        Validity
            Not Before: Mar 29 01:14:21 2025 GMT
            Not After : Apr  5 01:14:21 2025 GMT
        Subject: CN=67e7496e-10cf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:29:03:7a:dc:ef:99:43:79:58:45:0f:3f:a3:
                    ab:12:85:16:bb:f7:22:5e:0c:87:39:96:01:5e:64:
                    b8:ac:65:cb:8c:4f:c5:d9:69:f1:83:4e:21:bd:86:
                    75:2f:62:5b:da:9e:d3:90:f4:a4:0d:99:f8:55:19:
                    2a:60:e4:f6:c1:fb:af:e8:7f:c6:ef:8a:e4:32:bd:
                    ee:50:5d:bd:69:80:44:6a:85:d0:6b:1d:a8:ff:de:
                    3b:9e:00:a2:a6:9e:66:7d:a0:e8:f2:4a:32:dd:23:
                    c5:d0:b3:48:43:55:80:4e:e2:dc:ae:d2:4a:67:9e:
                    c8:d6:d8:29:75:cb:32:b6:be:1a:96:44:ad:22:19:
                    83:4f:ae:e7:51:cc:a5:82:80:ca:f4:04:74:35:44:
                    59:26:14:b1:23:c0:43:0a:da:fe:eb:15:98:6f:ee:
                    15:df:2e:2b:45:dd:e7:ab:a9:1f:06:3d:13:2b:c5:
                    32:e0:82:19:8f:50:95:09:47:af:82:bf:55:a1:f0:
                    18:63:4c:32:b7:8c:67:aa:fd:2f:f0:57:78:0b:bf:
                    1d:d9:fb:79:0d:31:d5:6c:be:04:bb:6e:19:9b:74:
                    39:8f:2c:d2:6f:c0:12:d3:69:cd:d6:5e:c2:28:5f:
                    b1:38:58:9b:d9:38:f8:56:fe:d4:83:f1:94:8b:39:
                    9d:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:8F:2A:0F:DC:2E:62:23:10:6D:ED:02:D6:0E:62:DB:F9:14:4C:66
            X509v3 Authority Key Identifier:
                keyid:B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a0:ab:5e:59:9c:dd:78:9f:bb:ec:e0:41:b1:fb:55:79:24:6b:
         f8:b7:10:78:3e:9a:1b:17:de:19:67:29:5d:f4:b6:71:70:66:
         08:ae:30:03:89:ae:d6:ea:68:f7:b4:ce:5d:9a:51:8c:d8:5e:
         f3:e4:4a:28:47:58:bc:09:84:74:5f:19:53:8d:5b:14:9b:fc:
         3f:aa:9e:73:8e:00:22:51:b8:cc:c1:c1:63:87:24:09:ea:a7:
         7f:94:e4:2f:89:e9:c0:22:44:41:4b:8c:54:07:52:a1:ec:5b:
         84:c7:0b:c2:d5:b7:88:34:f5:fd:40:55:15:3f:15:4a:b8:18:
         9b:88:fa:cc:c6:40:fe:79:f7:24:7d:d2:e2:ac:be:12:76:8f:
         e1:65:8f:75:3d:28:31:ff:f3:9d:7a:10:85:b6:0f:32:03:0b:
         a0:4c:89:0c:c6:8c:cc:25:3f:77:03:fe:7e:1e:85:80:a9:1c:
         10:77:36:27:81:74:ec:ec:7c:9a:4e:c6:f3:e6:e2:77:f4:d4:
         c0:a3:a1:c7:5a:37:9d:b3:c2:81:ac:0b:0c:54:70:06:12:6c:
         18:ca:89:ff:12:0c:55:c7:69:a1:6e:42:ec:9f:ff:4f:38:90:
         f3:d1:62:b8:2e:8c:fd:d7:25:8c:2f:cb:1a:74:ae:c9:a4:ab:
         83:8d:5c:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----