Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.mft
File:                     8n_4duRl5zyaUv04SNvXZb-yNdQ.mft (raw, json)
Hash identifier:          qn4SPx4SM+tjrg7Tgb7Yl/b5Zlp2mIlekAzj/+Am0/w=
Subject key identifier:   C2:45:FA:33:B8:DA:6E:76:78:5E:E8:3D:19:39:FD:D6:98:30:F1:EB
Authority key identifier: F2:7F:F8:76:E4:65:E7:3C:9A:52:FD:38:48:DB:D7:65:BF:B2:35:D4
Certificate issuer:       /CN=A91175FF/serialNumber=F27FF876E465E73C9A52FD3848DBD765BFB235D4
Certificate serial:       0D3C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8n_4duRl5zyaUv04SNvXZb-yNdQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.mft
Manifest number:          0D2E
Signing time:             Fri 28 Mar 2025 18:10:22 +0000
Manifest this update:     Fri 28 Mar 2025 18:10:21 +0000
Manifest next update:     Fri 04 Apr 2025 18:10:21 +0000
Files and hashes:         1: 8n_4duRl5zyaUv04SNvXZb-yNdQ.crl (hash: f+MIBMiII211MSrMoSCJdJZqEU6/AZonHSpN+4K8Ktg=)
                          2: 3833FD20D09711E987F73A60C4F9AE02.roa (hash: IUQ+m8jWqnf3vf6hcCuC0VogjthEOWb1ceqBAZq2VPM=)
                          3: 8A00E9284FB111EDBE702516C4F9AE02.roa (hash: s8FViwNwbQunitwqHzsjUNkNGV0Mlz+MOgwlD5JB+Bs=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3388 (0xd3c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91175FF
        Validity
            Not Before: Mar 28 18:10:21 2025 GMT
            Not After : Apr  4 18:10:21 2025 GMT
        Subject: CN=67e6e60e-6f2a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:e4:97:bc:b9:cb:19:89:85:33:26:73:d9:1e:
                    8d:d3:39:2c:43:b8:42:b1:4a:7c:f0:4b:60:3d:24:
                    a0:70:04:ef:b0:91:43:40:f6:db:26:fb:fc:82:0e:
                    d1:d8:a1:13:45:41:71:45:a1:ba:df:0e:75:9c:ed:
                    52:2e:d7:40:b0:5b:92:4f:d1:83:7e:3c:6f:15:0c:
                    98:1c:6d:0e:6e:f7:27:cd:87:79:c9:86:2f:22:66:
                    10:21:c8:e2:64:a4:92:c7:87:08:16:73:bc:bf:23:
                    7f:97:ce:16:4b:0f:2e:7d:69:f1:96:94:83:6f:b8:
                    ee:05:41:4d:6b:b6:73:1b:6b:9f:5c:0e:80:ae:75:
                    e6:5d:0d:9f:97:e7:96:f1:8b:4e:28:d8:07:0b:b4:
                    03:58:f3:c3:da:6d:7a:e3:bf:a5:40:e5:98:79:26:
                    9f:cf:96:54:03:6f:74:f9:ca:c6:70:12:09:d0:0d:
                    80:a9:92:a7:24:3c:0a:18:ed:75:d6:f2:fa:3f:d7:
                    f6:04:e7:ea:99:fd:00:70:a7:0d:55:c9:55:16:52:
                    32:d3:e2:d5:d3:6f:f7:a5:be:e4:d1:cf:c2:a6:56:
                    71:3c:b6:3a:c2:e9:be:17:8e:cd:26:3d:ce:67:91:
                    40:26:af:0f:79:fe:a8:07:65:05:b5:87:36:12:e3:
                    33:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:45:FA:33:B8:DA:6E:76:78:5E:E8:3D:19:39:FD:D6:98:30:F1:EB
            X509v3 Authority Key Identifier:
                keyid:F2:7F:F8:76:E4:65:E7:3C:9A:52:FD:38:48:DB:D7:65:BF:B2:35:D4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8n_4duRl5zyaUv04SNvXZb-yNdQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b6:3c:ce:9c:49:47:51:00:48:6c:8e:6a:8a:48:99:31:14:e5:
         12:6b:d6:79:5e:ca:81:36:8d:06:3e:19:0b:73:61:5f:f8:ef:
         51:8e:2a:80:0f:e8:c8:bb:4f:3e:00:55:a2:3a:d1:c2:e4:4f:
         64:1e:c5:e4:77:ca:5f:59:17:fa:ea:f9:45:ac:c7:f3:ca:ee:
         39:40:4f:98:dd:db:8b:74:b9:d8:f7:33:cc:a8:bb:85:7b:f5:
         d4:12:7d:bd:81:c0:41:1e:92:fc:84:b8:a6:21:42:d8:5e:78:
         6a:4c:f0:ed:c5:ba:cf:9f:d4:7c:1f:c9:ce:b4:38:cc:6c:5e:
         17:f9:31:7b:c7:f7:41:fd:6f:44:dc:08:c6:9e:6d:66:82:ce:
         32:36:bd:32:3a:ec:bc:1f:0b:4e:00:e4:5a:d2:3c:03:4d:c4:
         1d:31:f2:5b:f1:b2:d3:37:28:98:37:e6:d9:f6:b7:0e:77:00:
         3b:3d:c2:3f:c9:83:c5:62:b3:32:df:36:ff:b5:74:41:c6:20:
         62:33:2e:fe:50:13:16:87:b9:fa:0c:0b:20:04:7d:66:d3:63:
         bb:98:44:1f:30:1e:a5:5f:78:1b:39:96:ec:84:93:c5:78:b5:
         26:07:af:19:dd:e4:a3:f7:8b:87:24:76:0f:1d:78:6f:14:ad:
         a4:29:d5:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----