Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft
File:                     HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json)
Hash identifier:          AbwaZLdUWY18TvpUNljV1ZkMhx8JRUIszeGyUjqVKXY=
Subject key identifier:   6E:A0:C5:BB:68:4D:91:BB:90:FE:F2:CA:A0:04:6E:E8:5D:05:BC:0E
Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D
Certificate issuer:       /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D
Certificate serial:       0332
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft
Manifest number:          032F
Signing time:             Sat 29 Mar 2025 01:20:57 +0000
Manifest this update:     Sat 29 Mar 2025 01:20:56 +0000
Manifest next update:     Sat 05 Apr 2025 01:20:56 +0000
Files and hashes:         1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: GR7WE2vDJBM077EK2txVqzBj833//WUIf7YHn8nlokc=)
                          2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: BArGwM1bK+rweYsGVKqgC9JYCGyliz8oP72ndcEJbbI=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 818 (0x332)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9118E3A
        Validity
            Not Before: Mar 29 01:20:56 2025 GMT
            Not After : Apr  5 01:20:56 2025 GMT
        Subject: CN=67e74af9-6e7b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:9c:df:5f:07:47:62:bc:5f:7d:02:79:eb:03:
                    fd:7e:27:3a:61:e6:0e:a7:f3:1d:be:92:94:48:65:
                    9c:28:07:a5:23:b4:97:2c:69:92:70:00:46:18:00:
                    4b:c3:e0:2b:a6:80:6b:49:66:38:71:67:f3:8d:48:
                    f9:c0:ca:59:53:ed:2a:57:58:2e:62:44:73:e4:24:
                    58:d1:82:04:49:ed:60:cd:ae:1d:de:2b:fb:28:bf:
                    3b:a3:9e:bd:df:56:1f:7e:79:5b:22:d2:54:b8:8a:
                    5f:ba:71:36:e5:32:aa:fa:1e:f5:30:74:b8:9d:0c:
                    fd:59:8c:1b:0b:80:ff:8d:ad:45:7c:55:cd:b8:5e:
                    d5:cf:f2:ab:1a:03:96:c3:c9:0b:10:ef:a2:78:cd:
                    06:2b:12:cd:52:43:c7:8f:39:46:dd:4d:e1:62:a1:
                    c7:72:64:84:21:79:a2:f4:48:e7:f5:bd:db:37:0a:
                    12:0d:9c:62:32:1d:3d:0e:5e:bc:fc:82:f8:91:60:
                    71:8c:ad:c6:b5:91:64:b2:18:be:7f:9b:20:20:4d:
                    6d:83:1f:08:f8:76:16:be:30:fa:6b:e1:6d:59:3b:
                    31:7a:1e:76:05:fd:2a:50:4b:20:42:25:d0:a5:58:
                    e8:c4:fd:60:21:91:ab:a8:33:21:24:dd:7f:db:3c:
                    fe:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6E:A0:C5:BB:68:4D:91:BB:90:FE:F2:CA:A0:04:6E:E8:5D:05:BC:0E
            X509v3 Authority Key Identifier:
                keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:1d:58:8d:2e:87:ef:c1:8e:0f:d0:b8:84:98:8f:f0:6d:33:
         92:3f:b0:b5:f5:e0:4e:07:6f:3f:ce:13:f1:3a:9b:9c:4d:95:
         2a:2a:e4:56:7f:84:b9:d5:1e:4c:a4:77:de:fc:7e:2e:5f:4b:
         d4:95:6e:c2:10:51:e2:70:94:47:ec:60:e8:6b:98:2a:88:f0:
         12:9d:a4:6d:bf:c8:a0:f5:2c:d1:84:5e:c6:91:ce:07:0c:8b:
         be:22:3b:a7:a5:d0:87:57:c2:41:76:2a:b0:d7:64:28:0a:65:
         87:7d:3b:60:45:ef:2f:0d:47:e5:6a:dd:6a:20:d3:b4:44:cf:
         08:de:7e:2b:af:57:9e:d6:38:54:1a:95:3a:ef:0e:b5:27:0d:
         c4:e1:cf:ac:90:72:b3:47:c5:48:d2:31:43:06:1e:41:57:47:
         d2:32:23:41:7e:fc:a0:4d:01:7b:2d:e4:89:9f:49:44:b2:04:
         c1:62:c9:6e:5f:6b:7d:2e:59:57:48:01:f9:06:8b:57:cf:99:
         13:d1:ac:b2:42:21:21:db:fb:2b:5f:46:98:0f:aa:75:ad:c6:
         cb:99:3d:ad:12:e4:09:ea:96:35:30:a3:26:36:7e:af:29:d3:
         51:3b:20:50:a9:e9:e3:36:cf:78:b5:4b:bf:f3:39:2b:94:de:
         10:d7:9a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----