Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft
File:                     PyDCnh1-UV3z49hapE51H4Fycxo.mft (raw, json)
Hash identifier:          /Dq3FAB5XKIq2eLJ+t3Wrk34mSLYYK1yb5xX0iEWjhg=
Subject key identifier:   29:72:C2:7D:C8:7F:7A:BD:BA:59:2A:76:BD:EE:62:EC:FE:8F:2B:D1
Authority key identifier: 3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A
Certificate issuer:       /CN=A91210E0/serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A
Certificate serial:       0118
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft
Manifest number:          0113
Signing time:             Sat 29 Mar 2025 04:19:17 +0000
Manifest this update:     Sat 29 Mar 2025 04:19:17 +0000
Manifest next update:     Sat 05 Apr 2025 04:19:17 +0000
Files and hashes:         1: PyDCnh1-UV3z49hapE51H4Fycxo.crl (hash: /GGx9S8ok4tZ8daXHcClps7RRVo6tndVcSbwFT4QTTw=)
                          2: 503E43126E5E11EEB39D9E48C4F9AE02.roa (hash: L+aSJH2lWC1anAfV1QDeoFg2+6ljff+C6eVKVad/Lj8=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 280 (0x118)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91210E0
        Validity
            Not Before: Mar 29 04:19:17 2025 GMT
            Not After : Apr  5 04:19:17 2025 GMT
        Subject: CN=67e774c5-dfe8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:75:a8:2f:89:68:8a:b9:9b:ae:8a:66:ec:90:
                    5d:8e:ef:de:18:ea:39:d5:5c:81:4b:fd:51:69:8b:
                    29:37:65:ee:97:62:47:f1:dc:73:cf:e3:c6:06:09:
                    e0:2d:25:ba:73:e5:36:13:43:f7:f9:91:0f:cb:b9:
                    7b:34:e7:2f:49:e8:1b:b8:ea:3f:b7:3a:50:ee:e5:
                    3d:5a:05:02:24:18:e0:b3:82:93:f7:a8:1b:a0:df:
                    6c:1e:91:62:e9:cc:f5:ce:a1:88:84:1c:6c:11:87:
                    66:8d:93:c1:b9:b9:28:df:0f:65:41:82:07:f6:42:
                    8a:37:3a:43:47:3f:74:8d:e6:bf:76:03:fd:67:98:
                    35:ae:83:0b:4b:8d:5b:3d:11:18:ed:ff:6b:4c:5b:
                    fd:09:9e:b0:4d:f1:5e:61:12:18:7e:4f:8d:21:93:
                    c4:c6:ac:fd:b4:79:db:d4:4c:34:70:c7:13:18:f5:
                    96:6c:9a:53:21:4c:5a:98:51:35:71:23:af:14:d7:
                    2e:54:08:60:06:6e:06:99:61:57:ba:9e:df:be:60:
                    9b:88:0e:36:96:be:42:3b:03:3c:fa:25:ec:51:da:
                    5a:ff:6b:8f:ce:a8:72:cd:e2:97:bc:67:e4:53:b3:
                    bc:36:ff:74:97:83:20:8f:ae:a4:8b:65:3e:d2:43:
                    b4:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:72:C2:7D:C8:7F:7A:BD:BA:59:2A:76:BD:EE:62:EC:FE:8F:2B:D1
            X509v3 Authority Key Identifier:
                keyid:3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:e5:7a:0a:99:1a:b8:f6:c6:d3:ed:e9:5a:f3:86:4e:01:a6:
         14:9c:d0:b2:3e:65:c7:76:aa:e0:dd:73:f6:d4:64:f4:1b:e0:
         e5:78:a7:7c:e5:61:ea:38:4e:2f:e0:cf:16:0b:ef:ba:fb:15:
         78:e4:b1:7d:21:d1:e1:cb:46:e4:87:ec:e5:92:d1:61:23:ef:
         53:26:9d:51:07:7d:2b:13:bb:57:10:d9:6c:76:71:92:cf:f3:
         40:33:15:69:f8:3e:82:18:42:04:9d:fd:24:dc:25:14:8e:23:
         e7:1d:e6:7c:7e:e3:27:22:e4:44:ae:12:4a:3e:7e:dc:b6:4c:
         bb:98:c4:0b:ef:40:16:be:ea:86:7f:52:50:db:52:32:25:39:
         0b:e5:5d:12:e7:75:d5:ea:bb:70:a2:f3:57:1a:f5:18:0b:99:
         d9:24:27:5d:cb:82:f8:e3:db:51:3f:4c:85:d5:f1:40:04:04:
         9a:a9:60:21:61:44:c9:2f:5c:2b:f1:76:34:cf:14:8b:51:55:
         7a:60:ec:a3:40:ae:88:f0:1b:3b:63:64:f2:53:27:76:6c:e8:
         0e:e0:c8:95:26:fa:70:9b:f4:c4:db:83:69:7f:38:37:74:e7:
         7a:e6:59:a0:bd:d6:6d:9f:ae:a6:73:46:31:7d:9b:df:b2:ac:
         2a:87:cb:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----