Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft
File:                     c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft (raw, json)
Hash identifier:          JDLvNB1r7NkOET1hEcwjXRTtknUAnMSLVnyeMfH1RM0=
Subject key identifier:   BD:75:D4:40:BD:A6:20:DF:60:7B:BD:E1:84:C8:F5:7E:9E:7C:16:FA
Authority key identifier: 73:98:7E:CC:E7:7E:44:EB:36:65:1E:09:8D:33:75:0F:A8:64:E6:76
Certificate issuer:       /CN=A91316E5/serialNumber=73987ECCE77E44EB36651E098D33750FA864E676
Certificate serial:       012D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft
Manifest number:          012A
Signing time:             Sat 29 Mar 2025 04:01:24 +0000
Manifest this update:     Sat 29 Mar 2025 04:01:24 +0000
Manifest next update:     Sat 05 Apr 2025 04:01:24 +0000
Files and hashes:         1: c5h-zOd-ROs2ZR4JjTN1D6hk5nY.crl (hash: hxUTpgqR8T9k8FZg1L7v1aW46Hw1FTPTlTgNAogR0Vg=)
                          2: C1A8182646D011EE8BE5AE80C4F9AE02.roa (hash: gAXQ6XOA3NODkbVV4z4rY8FPGvcx9W1CdIeenZ4k+xI=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 301 (0x12d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91316E5
        Validity
            Not Before: Mar 29 04:01:24 2025 GMT
            Not After : Apr  5 04:01:24 2025 GMT
        Subject: CN=67e77094-da94
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:5b:3b:94:63:92:18:8e:1b:6c:12:21:3d:35:
                    bc:d3:61:1b:69:81:d5:3d:6e:89:2a:21:d2:3e:50:
                    51:0a:7b:30:52:f8:aa:17:41:b5:25:75:65:79:61:
                    4e:e1:41:89:dd:2f:1f:6e:48:1d:18:4c:d9:a9:a4:
                    a1:33:0c:77:ca:86:80:c0:8b:26:01:76:00:e1:2a:
                    d5:d0:5d:8d:01:2f:b7:3b:be:d6:a4:32:3a:5a:56:
                    d8:ad:82:15:6d:7e:c4:15:32:5a:4a:26:c2:31:b0:
                    63:78:c4:3f:77:2a:6f:04:db:fe:ca:4e:8d:6d:78:
                    2d:01:5d:16:b1:d6:22:5b:28:ee:16:10:f6:11:b4:
                    75:ae:c0:8b:e2:59:46:9f:f7:f6:56:92:55:e6:5a:
                    98:b2:68:f6:ab:84:00:29:65:2b:a6:92:ad:77:26:
                    8e:73:c9:0f:46:a3:77:86:0d:37:7e:10:44:88:a8:
                    58:6f:49:62:6b:f7:95:d6:0c:f4:33:58:aa:57:5b:
                    09:11:25:1c:ce:54:7c:e9:b7:ec:92:8a:9b:2c:dc:
                    ed:18:67:16:95:35:cb:55:23:2a:67:d7:de:2d:01:
                    ac:7e:6e:92:49:d8:28:82:84:e8:53:f4:b8:09:ad:
                    56:61:fc:e0:ab:0a:bc:13:ce:70:62:44:7d:61:14:
                    67:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:75:D4:40:BD:A6:20:DF:60:7B:BD:E1:84:C8:F5:7E:9E:7C:16:FA
            X509v3 Authority Key Identifier:
                keyid:73:98:7E:CC:E7:7E:44:EB:36:65:1E:09:8D:33:75:0F:A8:64:E6:76

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:4b:0e:57:23:a2:71:18:af:03:30:7e:e5:f9:bc:e0:cc:ae:
         c0:22:1f:1b:5a:f6:c5:51:3a:1a:60:bd:e8:de:4d:7f:ae:68:
         9a:e5:5c:21:f7:cc:45:11:d3:cd:1d:54:b8:34:12:dc:d4:eb:
         3f:c1:03:0d:9a:e0:a4:78:f1:69:65:a8:cf:83:bb:f1:69:22:
         47:4c:a8:ac:03:19:7d:ce:30:c9:9f:20:62:c6:77:f9:98:c4:
         f7:25:83:8e:c2:be:89:c6:ac:1d:22:3b:31:8e:ee:d8:f7:b4:
         4f:e6:fb:21:25:29:f0:f6:10:6e:dd:f6:82:1b:7f:d1:93:8a:
         20:12:d5:ae:20:b7:43:86:a8:4b:8c:cc:ff:ab:db:f6:fd:b1:
         8d:3a:46:19:62:90:ab:54:14:3b:e6:1a:b9:94:c8:bd:91:0f:
         7d:d6:b8:2a:4d:29:3b:67:e0:eb:56:6d:a8:02:50:71:bb:b0:
         d2:c7:fb:7a:07:b7:a7:ca:90:00:53:b4:95:9f:64:27:33:e4:
         32:5d:3b:93:aa:0b:ca:9c:20:fd:44:59:fc:d7:06:9f:f8:27:
         b8:7e:22:e7:ae:8d:cc:a4:1d:ed:b9:6a:9e:a5:b5:7f:0e:bd:
         db:20:d2:d7:4c:60:da:4a:3a:f1:8d:5b:36:97:b4:dd:7d:f9:
         a3:8e:28:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----