Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.mft
File:                     60SnxtcuZG2Eose20umnMhAbgTo.mft (raw, json)
Hash identifier:          9HSBzcJtfwPyjaV+bLtH9RAoy6BmiySMGH9VnkacnPw=
Subject key identifier:   14:8A:0B:6D:2D:8D:53:83:CF:28:B9:47:FC:07:44:08:D3:9C:9A:C9
Authority key identifier: EB:44:A7:C6:D7:2E:64:6D:84:A2:C7:B6:D2:E9:A7:32:10:1B:81:3A
Certificate issuer:       /CN=A912A10A/serialNumber=EB44A7C6D72E646D84A2C7B6D2E9A732101B813A
Certificate serial:       0250
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60SnxtcuZG2Eose20umnMhAbgTo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.mft
Manifest number:          024B
Signing time:             Sat 29 Mar 2025 02:05:41 +0000
Manifest this update:     Sat 29 Mar 2025 02:05:41 +0000
Manifest next update:     Sat 05 Apr 2025 02:05:41 +0000
Files and hashes:         1: 60SnxtcuZG2Eose20umnMhAbgTo.crl (hash: mf8zls/y4gyXVB9fWXzjLr2SkJRVoQMqx7Fbs3EKFbU=)
                          2: 8C286648818611ED8D1C5824C4F9AE02.roa (hash: xFXNX7ojWtYsPecQfS60CBpkcLKXmlqCPRZZdxkSgiE=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 592 (0x250)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912A10A
        Validity
            Not Before: Mar 29 02:05:41 2025 GMT
            Not After : Apr  5 02:05:41 2025 GMT
        Subject: CN=67e75575-ad18
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:45:4c:50:f3:8a:ae:66:a2:07:ac:31:01:96:
                    54:08:9e:8f:c0:59:e4:06:48:07:0c:59:f7:3c:22:
                    b9:0b:b9:82:80:fb:4b:7c:cd:93:ec:fe:7e:4b:5e:
                    e7:7c:b1:2e:70:7e:60:de:46:e0:de:d6:0d:df:77:
                    23:18:3c:4e:0a:ca:0f:38:8a:96:24:62:9b:4b:fc:
                    c8:d0:e1:f5:03:3a:16:2d:c3:c2:7c:52:44:a7:26:
                    bc:69:06:fa:cd:80:bc:c6:bc:d4:b3:f5:78:b6:bf:
                    c3:1e:5c:54:95:6b:0e:d2:9e:18:19:85:16:ae:69:
                    bf:86:4f:06:6d:fc:6c:c1:f1:4c:94:f9:3a:0c:74:
                    ca:ad:58:16:0a:81:75:6f:d1:27:18:04:02:8e:3a:
                    b8:1b:95:ef:ed:93:09:ec:41:8a:a5:da:69:b5:40:
                    94:d5:31:69:ac:c5:d9:70:89:f6:d8:42:89:ef:7d:
                    70:ea:57:ae:28:13:10:b6:64:5e:4b:4d:33:e3:d2:
                    0c:0c:48:23:6b:3d:d5:17:d2:b2:cd:8e:42:fd:88:
                    8b:92:30:dd:eb:3e:80:a7:b1:c3:9e:f7:a1:90:a3:
                    2e:02:d2:a0:21:42:17:d0:ea:82:b8:0c:dc:b1:b7:
                    9e:57:a5:24:e4:ab:dc:aa:8d:cc:83:c4:63:3d:65:
                    14:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                14:8A:0B:6D:2D:8D:53:83:CF:28:B9:47:FC:07:44:08:D3:9C:9A:C9
            X509v3 Authority Key Identifier:
                keyid:EB:44:A7:C6:D7:2E:64:6D:84:A2:C7:B6:D2:E9:A7:32:10:1B:81:3A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60SnxtcuZG2Eose20umnMhAbgTo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A10A/E518B076139211EDA052021FC4F9AE02/60SnxtcuZG2Eose20umnMhAbgTo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:ec:f1:bd:cf:f4:85:ea:a4:77:6e:6c:98:1a:10:de:82:69:
         4b:ae:d1:bc:77:bd:8c:ee:25:6b:ed:ad:90:94:91:1e:76:a4:
         ea:8e:1e:25:d3:f2:e8:d0:70:10:5d:64:41:73:47:46:4a:87:
         6b:97:11:69:08:d8:46:ab:93:e2:c0:1d:70:59:da:0c:c3:ce:
         f4:e2:6c:99:77:10:e9:18:aa:b4:2b:cf:e1:df:03:4e:47:c6:
         32:ca:0b:69:36:3b:4e:6d:a9:e0:eb:3a:e3:2f:de:77:f7:ae:
         51:69:47:97:a3:de:ba:4f:90:15:33:cf:96:2b:62:9a:3b:db:
         d7:f3:a1:fa:30:93:cc:b0:40:d9:27:2b:65:c2:98:4c:41:cd:
         90:dd:07:68:89:bd:ca:02:e5:3a:e4:1d:83:83:10:87:52:05:
         4a:c5:8a:02:ce:ba:34:d7:ad:51:92:50:c9:45:43:c3:e8:41:
         ec:1f:b0:89:0c:cc:3e:95:4f:87:69:71:c3:cb:46:c8:be:a3:
         c4:9d:9e:33:6f:46:be:e2:b8:3b:50:19:84:db:32:dc:fb:09:
         8b:c5:16:2a:03:85:00:83:93:58:bf:c6:db:cb:33:27:84:25:
         76:5b:0e:87:01:14:34:51:09:2a:c1:de:9e:d6:86:b9:ab:fe:
         70:5a:69:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----