Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft
File:                     Qf4dQTWrLWdiPnYIM5hGitT6odw.mft (raw, json)
Hash identifier:          9yJ+ue9/ZRadm3cW8gUzjUKOkIcvDLDyJrBAHwlOV2I=
Subject key identifier:   33:2B:EB:03:A8:D8:EB:D8:43:98:B1:7D:E8:F9:58:E7:89:31:D4:82
Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC
Certificate issuer:       /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC
Certificate serial:       1BD4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft
Manifest number:          1BA3
Signing time:             Fri 28 Mar 2025 16:23:05 +0000
Manifest this update:     Fri 28 Mar 2025 16:23:05 +0000
Manifest next update:     Fri 04 Apr 2025 16:23:05 +0000
Files and hashes:         1: Qf4dQTWrLWdiPnYIM5hGitT6odw.crl (hash: pIM5Y1/Efo0zjbElfxOoCO+JxVDKVjl+QJA3mRJLgIk=)
                          2: C177A6728D2011EF97C11D3CC4F9AE02.roa (hash: qqv99MidNMOt4MehbGZ8pvkQ6h/BMUNOb2r+cG35R9s=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7124 (0x1bd4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911B5D7
        Validity
            Not Before: Mar 28 16:23:05 2025 GMT
            Not After : Apr  4 16:23:05 2025 GMT
        Subject: CN=67e6cce9-2383
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:94:4a:fa:a1:98:fe:7d:24:3d:e9:fe:76:97:
                    9e:73:5c:07:84:d8:b8:fc:26:e1:6e:6f:1c:e8:cc:
                    cb:0e:b5:f7:71:80:46:39:e9:cc:6d:a3:a3:5a:39:
                    8c:9c:3d:7a:a1:7d:eb:af:7c:2a:c6:27:60:71:64:
                    e2:b1:03:52:5a:a8:07:19:b0:93:02:cd:29:6b:35:
                    de:c4:a1:a9:1a:51:a1:f4:a6:a3:ab:5f:8d:f4:a8:
                    eb:46:af:eb:61:db:ff:02:97:5b:24:6b:c8:28:e0:
                    4f:a6:46:0b:46:1b:a3:1e:4d:f4:63:9a:54:50:ad:
                    c3:d0:04:6a:24:f1:79:ed:b8:ed:93:1b:59:c6:00:
                    d9:89:ce:f6:e7:7a:ef:e8:f7:74:7b:53:08:b2:7c:
                    c3:82:60:f2:c1:e6:b6:58:8b:e5:14:2c:a1:86:38:
                    e6:0a:17:d7:55:a3:a2:52:71:ce:57:2c:73:81:80:
                    42:17:13:5e:a9:50:6c:68:16:09:d4:f2:2e:2e:f9:
                    79:45:ff:9b:57:18:40:97:6d:b5:78:f5:f6:cc:91:
                    21:b3:fa:d1:3b:8c:bf:34:be:e0:ee:6e:76:cf:9b:
                    8f:7b:e5:99:22:11:2a:a8:31:94:5c:aa:6a:30:a0:
                    f0:de:0f:b8:f0:be:99:a7:aa:a5:fa:5a:a3:eb:fb:
                    9b:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                33:2B:EB:03:A8:D8:EB:D8:43:98:B1:7D:E8:F9:58:E7:89:31:D4:82
            X509v3 Authority Key Identifier:
                keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bb:c0:cb:3a:a2:b0:aa:d1:a2:89:6f:9e:81:7f:e7:9c:28:26:
         42:cb:89:19:f8:a0:3c:3e:52:8f:1e:58:ee:ea:bf:f7:d5:c6:
         c5:40:5b:16:e8:f3:eb:30:8a:4b:1c:1a:e4:0f:8f:2c:ae:55:
         3f:d6:39:0f:1c:8f:c1:f1:f0:d7:40:c4:9b:bf:ca:9c:dc:84:
         e1:59:7c:9b:92:0f:58:0c:fd:80:d0:9e:c0:81:fc:c1:c2:41:
         f5:19:fd:ff:b0:c1:76:a6:39:0f:35:a5:0d:09:6a:c1:d5:88:
         d2:e2:34:36:db:37:50:a5:9a:03:ba:ca:39:36:c4:e4:92:94:
         47:cb:cd:1e:ea:1c:fc:92:cf:25:dd:42:d2:81:b9:c1:64:f6:
         49:ea:13:af:61:54:f7:1d:26:ae:a4:6b:6d:2b:5b:53:58:60:
         8d:38:f0:7d:e4:55:c2:66:45:b3:13:d1:9f:65:64:ab:17:33:
         73:df:0b:72:92:f5:09:94:16:60:9b:3d:27:81:73:ab:77:25:
         d9:ee:d1:26:b9:b4:cc:6e:76:0f:73:f7:1d:e2:53:a1:b4:90:
         49:6a:a4:93:54:b0:3a:ea:3c:fe:fc:1c:34:d0:e5:ef:47:93:
         53:ca:79:8b:10:24:04:da:76:2d:32:51:3b:e0:00:d1:37:4d:
         33:c0:e7:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----