Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9114FFB/6AC1F16A6E7C11EA8B3F0E59C4F9AE02/hM4p-GFBrPuKdekE8CcjhS3mMzg.mft
File:                     hM4p-GFBrPuKdekE8CcjhS3mMzg.mft (raw, json)
Hash identifier:          kOiWPYjx5Tkrbpaql/ysxnFuLBYNZZTzmP+cXBz0ohc=
Subject key identifier:   09:3B:40:F1:23:25:29:3F:78:C1:6A:20:9F:7D:00:A9:27:FE:BC:D5
Authority key identifier: 84:CE:29:F8:61:41:AC:FB:8A:75:E9:04:F0:27:23:85:2D:E6:33:38
Certificate issuer:       /CN=A9114FFB/serialNumber=84CE29F86141ACFB8A75E904F02723852DE63338
Certificate serial:       0A10
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hM4p-GFBrPuKdekE8CcjhS3mMzg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9114FFB/6AC1F16A6E7C11EA8B3F0E59C4F9AE02/hM4p-GFBrPuKdekE8CcjhS3mMzg.mft
Manifest number:          0A08
Signing time:             Fri 28 Mar 2025 20:04:30 +0000
Manifest this update:     Fri 28 Mar 2025 20:04:30 +0000
Manifest next update:     Fri 04 Apr 2025 20:04:30 +0000
Files and hashes:         1: hM4p-GFBrPuKdekE8CcjhS3mMzg.crl (hash: WHVkpd66Hr+MkgoQrIHiqkTA8GpJgzh9vvFjMblnl2s=)
                          2: 267A24046E7D11EAADB09659C4F9AE02.roa (hash: iuQBORVLtuzDIuncz9VmwS8znnsu9e38o4Zo2zyKz8E=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2576 (0xa10)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9114FFB
        Validity
            Not Before: Mar 28 20:04:30 2025 GMT
            Not After : Apr  4 20:04:30 2025 GMT
        Subject: CN=67e700ce-f8fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:1f:b8:5d:c8:1e:82:fa:57:8a:47:0d:11:d4:
                    1a:47:81:ad:ba:4c:d4:87:fc:f9:e7:af:5d:49:00:
                    0b:b3:be:9c:41:8e:7a:b3:09:6f:d0:6c:7f:49:3b:
                    bc:3d:34:8b:46:38:a7:0b:9b:f1:58:ad:7a:7b:0b:
                    fc:61:9b:9d:75:33:1a:84:cd:69:70:5c:a9:2d:af:
                    cb:a7:22:ee:30:14:55:dc:f2:60:54:21:ca:2e:80:
                    b5:59:62:d8:39:3b:5f:29:a8:51:86:e4:f7:c7:ac:
                    66:e9:82:77:7e:af:e1:09:dc:d8:e6:01:7d:5d:39:
                    03:b6:44:14:46:78:cc:d6:cb:e2:16:5a:e5:c9:a7:
                    dc:d2:9e:43:09:5b:52:b8:d0:93:6a:5f:91:b5:a6:
                    6a:b9:3b:01:ca:32:af:fe:5c:13:47:38:6d:40:dd:
                    fb:34:5e:30:7f:85:95:89:9c:ed:19:1f:22:ca:59:
                    8a:d0:d2:d6:57:fa:de:3b:a8:6b:e0:77:79:92:72:
                    93:a7:c3:05:f5:fd:35:ff:27:3c:a3:12:05:50:54:
                    95:75:fa:5b:4d:a7:21:01:30:ae:ac:44:52:f5:7d:
                    00:57:47:63:ce:ed:1b:ab:be:c2:c2:fa:b0:b8:e1:
                    08:6f:3b:d8:7c:67:a7:84:50:27:91:b8:c4:60:25:
                    6d:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:3B:40:F1:23:25:29:3F:78:C1:6A:20:9F:7D:00:A9:27:FE:BC:D5
            X509v3 Authority Key Identifier:
                keyid:84:CE:29:F8:61:41:AC:FB:8A:75:E9:04:F0:27:23:85:2D:E6:33:38

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9114FFB/6AC1F16A6E7C11EA8B3F0E59C4F9AE02/hM4p-GFBrPuKdekE8CcjhS3mMzg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hM4p-GFBrPuKdekE8CcjhS3mMzg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114FFB/6AC1F16A6E7C11EA8B3F0E59C4F9AE02/hM4p-GFBrPuKdekE8CcjhS3mMzg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:fc:27:85:b5:c5:c3:76:cb:34:03:16:8c:de:35:cd:2c:c2:
         b4:56:c7:86:66:a3:f4:35:0e:b9:0d:5a:f1:28:d5:86:02:85:
         cb:71:92:74:c6:e0:53:4e:3b:ec:51:08:f6:91:a0:67:21:0e:
         a3:dd:94:34:f2:fa:13:ff:24:7d:f9:68:e6:e2:f6:5d:b0:25:
         72:6e:7f:7a:db:59:ca:f8:6b:bf:1f:6d:2e:bb:1f:53:91:69:
         68:b9:53:4f:10:f6:7e:ee:e5:33:0f:f7:41:86:81:11:82:6f:
         4a:db:dc:79:3d:b3:19:56:62:b0:e9:47:fc:e2:73:e6:9a:41:
         34:3c:00:d2:0f:f9:ff:2f:74:a5:18:6e:69:54:e6:e2:01:5b:
         fb:e5:c7:1f:e4:58:58:04:cf:c3:a0:d0:e7:70:99:75:50:9d:
         12:ef:17:c9:02:13:57:ba:e9:e4:c7:c5:c5:d1:90:03:f4:c1:
         3c:9a:b0:79:3e:6a:94:11:49:08:1d:b6:34:be:cc:0a:3c:c4:
         fd:d0:84:9c:e7:87:16:e7:65:2a:c6:3f:03:07:4e:8a:7b:89:
         be:41:79:cb:34:bc:4b:b8:82:2e:50:83:74:3a:4c:3e:80:cc:
         7b:8d:cc:ac:a4:67:86:ce:7c:53:92:d8:bb:d2:5d:a2:d7:b6:
         d6:eb:61:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----