Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft
File:                     xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json)
Hash identifier:          9Kqly0vn4JHYBNh8kxAz+kujNCcBpQ/IahmmqW9qWmw=
Subject key identifier:   F4:2F:82:B4:A3:D1:28:20:80:8E:5E:7F:CB:B5:9D:59:54:DC:87:C8
Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E
Certificate issuer:       /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E
Certificate serial:       064D
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft
Manifest number:          0649
Signing time:             Fri 28 Mar 2025 22:46:10 +0000
Manifest this update:     Fri 28 Mar 2025 22:46:10 +0000
Manifest next update:     Fri 04 Apr 2025 22:46:10 +0000
Files and hashes:         1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: dVxG7xRdJQRML4vQbPS6IWtfDz2aEpLZvzf2aCTj0Bo=)
                          2: 485D694A454911EEB8718378C4F9AE02.roa (hash: DpNVsF8S1R1VahxgyAnkQsdhv9Y/GOwsBJQM35rMSJ0=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1613 (0x64d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9125C22
        Validity
            Not Before: Mar 28 22:46:10 2025 GMT
            Not After : Apr  4 22:46:10 2025 GMT
        Subject: CN=67e726b2-acca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:8d:ac:22:b9:56:7a:c1:d6:b6:65:ba:29:e8:
                    d3:ed:34:a5:58:01:f3:ac:19:ba:f9:d6:62:31:1e:
                    d8:7a:53:b6:3d:29:e7:5e:45:dc:92:5f:11:1d:93:
                    46:d9:ad:d2:9f:8b:f4:44:bf:0a:e7:95:76:b2:7c:
                    42:a5:45:f8:9b:f0:0b:6d:7e:b5:76:37:95:c1:7d:
                    50:3f:c5:dc:05:dd:c8:7e:d1:79:1a:25:13:01:55:
                    d1:3a:33:eb:53:81:85:da:44:30:38:30:d3:e7:88:
                    68:2c:6e:bc:b1:08:f9:57:c9:65:70:4b:d8:ac:c5:
                    0c:3f:20:50:d3:2d:fa:d6:e0:00:8f:1e:aa:8c:71:
                    8a:b6:de:f3:77:c8:a3:6c:f5:ab:86:56:10:18:00:
                    88:33:38:c0:71:b5:f7:09:c3:1c:e2:0e:39:b4:bb:
                    55:55:c3:55:f4:13:91:12:2e:14:63:d5:f0:43:df:
                    1a:67:6c:3f:70:bf:8a:b5:c4:3a:cc:87:82:ad:c8:
                    4d:5f:8c:ee:c6:8c:fd:d3:23:2c:46:c8:a4:51:8e:
                    ab:13:f8:72:aa:d4:e8:a4:37:06:bd:21:9c:22:d5:
                    70:a3:33:5d:e5:48:c8:ba:7f:33:66:81:ae:5a:6c:
                    31:db:99:3d:9f:81:c3:56:31:c6:85:d6:5d:52:0a:
                    cc:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:2F:82:B4:A3:D1:28:20:80:8E:5E:7F:CB:B5:9D:59:54:DC:87:C8
            X509v3 Authority Key Identifier:
                keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:11:08:6b:ac:79:98:58:ac:36:6f:6c:47:92:74:48:c8:65:
         b0:03:37:8c:a6:0b:26:83:35:33:1b:e7:9a:53:75:f7:c2:54:
         c6:8a:9c:d1:2b:cb:8f:0d:f5:99:48:36:82:1d:25:7b:6c:8d:
         00:31:06:22:ee:45:1e:9f:47:cf:85:0c:9f:2e:c4:e3:2f:05:
         cc:0a:4e:1b:05:91:5e:a1:6b:36:87:8c:4c:7d:75:6f:5a:92:
         ee:2c:89:46:61:5f:c2:50:9b:dc:6f:3b:5f:a5:38:ea:00:8f:
         95:16:c0:72:6f:3f:0d:d4:dd:84:20:bc:94:09:e8:c3:2f:8a:
         74:51:ef:80:b6:f6:3d:9e:b7:52:3f:ba:9d:50:3e:54:7a:20:
         d9:94:c3:26:59:eb:e6:01:fb:2d:26:ed:f6:68:04:c9:5e:08:
         4e:bf:d4:7d:68:c7:a4:ee:1d:61:b6:29:ff:d8:a9:db:38:04:
         5e:f5:b1:f9:bd:55:51:d2:d8:ac:79:62:3b:e2:68:ce:95:58:
         cb:2c:8f:49:3c:80:4d:39:44:e7:30:ed:db:1a:f7:c8:1c:51:
         f3:31:50:9e:e4:3e:d0:b5:69:5e:50:0c:82:a6:ef:88:ad:b5:
         1d:15:b9:b5:a3:20:30:51:a4:42:70:61:bb:3c:72:d8:74:fa:
         22:51:2e:81
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx
QTg1OEQyOEUwHhcNMjUwMzI4MjI0NjEwWhcNMjUwNDA0MjI0NjEwWjAYMRYwFAYD
VQQDEw02N2U3MjZiMi1hY2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAz42sIrlWesHWtmW6KejT7TSlWAHzrBm6+dZiMR7YelO2PSnnXkXckl8RHZNG
2a3Sn4v0RL8K55V2snxCpUX4m/ALbX61djeVwX1QP8XcBd3IftF5GiUTAVXROjPr
U4GF2kQwODDT54hoLG68sQj5V8llcEvYrMUMPyBQ0y361uAAjx6qjHGKtt7zd8ij
bPWrhlYQGACIMzjAcbX3CcMc4g45tLtVVcNV9BOREi4UY9XwQ98aZ2w/cL+KtcQ6
zIeCrchNX4zuxoz90yMsRsikUY6rE/hyqtTopDcGvSGcItVwozNd5UjIun8zZoGu
Wmwx25k9n4HDVjHGhdZdUgrMRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQvgrSj
0SgggI5ef8u1nVlU3IfIMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG
QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw
bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz
Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCaEQhrrHmYWKw2b2xHknRIyGWwAzeMpgsmgzUzG+eaU3X3wlTGipzR
K8uPDfWZSDaCHSV7bI0AMQYi7kUen0fPhQyfLsTjLwXMCk4bBZFeoWs2h4xMfXVv
WpLuLIlGYV/CUJvcbztfpTjqAI+VFsBybz8N1N2EILyUCejDL4p0Ue+AtvY9nrdS
P7qdUD5UeiDZlMMmWevmAfstJu32aATJXghOv9R9aMek7h1htin/2KnbOARe9bH5
vVVR0tiseWI74mjOlVjLLI9JPIBNOUTnMO3bGvfIHFHzMVCe5D7QtWleUAyCpu+I
rbUdFbm1oyAwUaRCcGG7PHLYdPoiUS6B
-----END CERTIFICATE-----