Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft
File:                     KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json)
Hash identifier:          cOFYy3VrBk1Y1vlMBVUk5mnbhommeutuBszO81vGuoQ=
Subject key identifier:   D6:6B:BB:4C:54:AB:BF:64:A2:0B:A7:12:26:32:E5:A8:FF:C0:DD:7D
Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1
Certificate issuer:       /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1
Certificate serial:       DC
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft
Manifest number:          DB
Signing time:             Sat 29 Mar 2025 04:54:42 +0000
Manifest this update:     Sat 29 Mar 2025 04:54:42 +0000
Manifest next update:     Sat 05 Apr 2025 04:54:42 +0000
Files and hashes:         1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: 7eIXKgKQF7Dc+oq6EopJjfDfzNz+q3919DrIorA/vmc=)
                          2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: drim/D+h+Xt+p+pnKr4+ojkoccz6AyP57BUNn870PPc=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 220 (0xdc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9132F27
        Validity
            Not Before: Mar 29 04:54:42 2025 GMT
            Not After : Apr  5 04:54:42 2025 GMT
        Subject: CN=67e77d12-d900
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:a5:2b:fa:0a:7d:bd:1d:ed:fa:d9:be:ae:9d:
                    11:49:58:bf:b4:40:4c:90:d4:82:61:47:2d:27:60:
                    66:62:a2:c9:9c:39:0e:11:2c:8c:44:50:3c:8a:41:
                    69:11:55:43:a1:9a:a0:42:5f:15:8c:18:4d:4b:48:
                    c8:28:0d:af:f7:01:7c:f5:3e:67:16:f0:10:e4:3f:
                    1f:77:91:a2:c8:c7:cf:06:76:ae:6f:db:c5:62:3f:
                    e5:a5:7a:4d:e9:93:24:10:cb:63:06:74:19:cc:41:
                    76:f2:ae:ea:fe:94:6e:6d:bd:c1:e3:50:9f:74:a5:
                    8b:6e:87:81:75:79:83:4f:77:7b:29:a8:81:c3:8b:
                    d8:3e:e8:6e:f6:e2:b9:f2:a0:88:43:c9:a1:da:f6:
                    42:46:06:1f:47:58:45:a7:df:79:82:47:84:7b:76:
                    41:8d:54:28:6c:ba:da:bc:f9:61:69:98:ff:b9:34:
                    b2:b9:32:73:62:d2:f1:7d:05:d0:5d:5e:0f:e9:e0:
                    62:54:c8:89:20:7a:65:b4:e4:24:1a:87:f4:e7:96:
                    b7:94:2d:4a:66:6e:32:72:0c:ad:9d:55:32:85:35:
                    3d:09:b5:36:4e:b1:c9:7e:3c:cb:db:60:1f:3b:9e:
                    1c:77:c8:fc:e2:c8:48:ee:8d:c6:3c:ce:c0:e7:30:
                    c6:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:6B:BB:4C:54:AB:BF:64:A2:0B:A7:12:26:32:E5:A8:FF:C0:DD:7D
            X509v3 Authority Key Identifier:
                keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:75:95:36:1e:a4:5e:9f:6e:4c:c8:e3:4d:99:a4:32:43:97:
         fb:48:52:7c:e5:f3:1b:d6:e4:e4:03:ec:31:93:69:98:b9:44:
         9e:11:08:d4:20:15:28:7e:00:d3:8d:71:26:e1:3b:34:68:5e:
         6d:03:86:e1:1a:a7:ce:fa:ba:b8:9e:7d:20:47:b3:67:56:aa:
         c3:5b:f6:39:39:21:ef:e5:c2:ed:b9:f4:18:07:37:8f:7e:88:
         4c:d5:1b:04:a1:4f:ff:0d:f7:0d:c4:10:d8:65:1a:4e:5a:d0:
         f6:3e:09:22:ab:a6:a9:25:56:4c:00:1b:b8:94:82:f8:05:3a:
         75:66:89:2d:5a:a2:74:90:dc:d1:ef:65:27:5c:28:20:85:19:
         7e:0b:7b:e7:c7:3d:e7:a2:59:ac:30:95:90:11:c4:0e:90:7f:
         b9:38:69:f9:ba:bf:44:1d:f1:b2:2e:5b:54:e3:5e:8c:54:cc:
         e3:5e:71:0a:69:ba:4c:56:e1:0c:31:2b:ac:92:15:be:82:92:
         53:f9:c0:73:5e:1f:c7:2a:81:7e:8c:d4:5e:cc:0f:d4:f3:46:
         95:21:95:f1:da:89:d6:d5:ab:16:e4:00:1c:21:28:0c:67:55:
         48:bc:bb:42:87:4e:da:30:32:26:3b:99:5a:32:1d:3e:33:6d:
         cd:2d:85:de
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3
M0EwNTYyQTEwHhcNMjUwMzI5MDQ1NDQyWhcNMjUwNDA1MDQ1NDQyWjAYMRYwFAYD
VQQDEw02N2U3N2QxMi1kOTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA06Ur+gp9vR3t+tm+rp0RSVi/tEBMkNSCYUctJ2BmYqLJnDkOESyMRFA8ikFp
EVVDoZqgQl8VjBhNS0jIKA2v9wF89T5nFvAQ5D8fd5GiyMfPBnaub9vFYj/lpXpN
6ZMkEMtjBnQZzEF28q7q/pRubb3B41CfdKWLboeBdXmDT3d7KaiBw4vYPuhu9uK5
8qCIQ8mh2vZCRgYfR1hFp995gkeEe3ZBjVQobLravPlhaZj/uTSyuTJzYtLxfQXQ
XV4P6eBiVMiJIHpltOQkGof055a3lC1KZm4ycgytnVUyhTU9CbU2TrHJfjzL22Af
O54cd8j84shI7o3GPM7A5zDGmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZru0xU
q79kogunEiYy5aj/wN19MB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC
NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ
cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3
VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAzdZU2HqRen25MyONNmaQyQ5f7SFJ85fMb1uTkA+wxk2mYuUSeEQjU
IBUofgDTjXEm4Ts0aF5tA4bhGqfO+rq4nn0gR7NnVqrDW/Y5OSHv5cLtufQYBzeP
fohM1RsEoU//DfcNxBDYZRpOWtD2Pgkiq6apJVZMABu4lIL4BTp1ZoktWqJ0kNzR
72UnXCgghRl+C3vnxz3nolmsMJWQEcQOkH+5OGn5ur9EHfGyLltU416MVMzjXnEK
abpMVuEMMSuskhW+gpJT+cBzXh/HKoF+jNRezA/U80aVIZXx2onW1asW5AAcISgM
Z1VIvLtCh07aMDImO5laMh0+M23NLYXe
-----END CERTIFICATE-----