Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft
File:                     8HDB502tEidOj1dd_gu3wU69yZA.mft (raw, json)
Hash identifier:          UWcB82UuM9Z0UsPv54nrmlwa6QHHTnSY1s50jtcHGOo=
Subject key identifier:   A8:53:11:2E:84:E6:3B:AC:0B:7A:F4:5F:F3:06:2E:49:3D:98:33:82
Authority key identifier: F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90
Certificate issuer:       /CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990
Certificate serial:       031D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft
Manifest number:          0319
Signing time:             Sat 29 Mar 2025 01:24:30 +0000
Manifest this update:     Sat 29 Mar 2025 01:24:30 +0000
Manifest next update:     Sat 05 Apr 2025 01:24:30 +0000
Files and hashes:         1: 8HDB502tEidOj1dd_gu3wU69yZA.crl (hash: ozbqh4Ga0SdP7mSCZZZpsbkx5SqO3ftMB4UqvGWp5i8=)
                          2: 06A2C3E2C1E211EC86C79687C4F9AE02.roa (hash: L9t+DRBbmPVBfDehx/WMt8l2VQJogVd/uUcSz4yUxtc=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 797 (0x31d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91348DF
        Validity
            Not Before: Mar 29 01:24:30 2025 GMT
            Not After : Apr  5 01:24:30 2025 GMT
        Subject: CN=67e74bce-c5c5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:aa:7c:1d:41:b7:46:b4:45:5b:c0:78:bc:b9:
                    c0:54:30:15:af:36:32:a4:b1:e2:36:99:c1:bb:df:
                    7e:88:a6:a1:53:35:dc:ad:f1:05:40:3f:ed:fa:e3:
                    c0:cf:bc:a7:0c:18:17:0e:e9:a4:7e:15:f3:de:32:
                    67:c4:45:ca:de:3a:ee:e4:89:ec:5f:33:c0:a2:74:
                    60:88:bc:72:45:46:2f:79:0a:98:90:18:24:b3:1b:
                    70:5d:22:a8:ab:5a:35:89:4f:45:ae:c1:63:53:d8:
                    5c:5e:23:6c:0e:bb:0e:a8:c6:ab:54:04:cf:7d:ad:
                    53:70:8a:a1:7e:bd:de:79:ce:56:8d:6c:d9:09:dd:
                    06:84:11:b7:cc:ff:c9:f5:9d:20:ed:ce:1d:64:0b:
                    da:c6:22:a5:34:80:bc:3d:ed:b0:1e:34:6d:c8:4a:
                    cd:a2:81:0a:e7:90:23:fb:14:6d:d6:f8:38:c1:64:
                    e5:b6:31:4d:08:d8:a5:32:2f:9d:b5:23:09:2e:80:
                    21:75:a6:50:aa:69:29:49:2f:12:b6:b2:4d:f8:ea:
                    e4:38:f5:4e:db:c4:7d:76:17:65:05:33:a5:04:f5:
                    6f:96:b0:b6:cc:94:b1:35:65:2a:6f:d9:9a:e5:d3:
                    d4:68:32:1c:9d:8e:c5:f3:f7:9a:f9:93:c0:b8:97:
                    45:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A8:53:11:2E:84:E6:3B:AC:0B:7A:F4:5F:F3:06:2E:49:3D:98:33:82
            X509v3 Authority Key Identifier:
                keyid:F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:48:e6:45:19:17:04:e7:50:0a:57:5f:7b:d8:b6:b5:8f:ba:
         f1:3d:67:a8:77:b5:59:09:89:27:15:80:d8:a0:57:b3:ba:09:
         5e:0b:e6:b7:89:6d:c5:91:4d:e8:94:1b:75:6a:08:70:34:85:
         89:95:b0:fd:7c:7a:8f:9b:ee:f6:d9:dc:5a:c4:10:72:b8:96:
         22:8a:9c:fa:a9:81:77:d2:32:b8:08:7d:14:45:d2:49:23:62:
         77:cb:a3:f0:9d:82:04:44:65:99:a3:33:ed:09:61:fb:27:a1:
         cd:21:c2:d8:b2:5f:45:b3:2c:18:a4:1d:0a:32:28:87:48:ce:
         68:38:88:be:bd:b3:dc:7f:e8:b6:ef:dd:49:ea:2f:f6:2b:f4:
         9b:c4:52:5e:5a:0e:40:a4:e4:25:5f:d0:48:57:27:17:bf:6e:
         11:e4:f9:d9:61:08:a4:ce:26:e5:65:05:88:71:18:34:27:ff:
         8d:32:b8:ba:7f:24:5a:05:41:63:36:ff:e1:a7:d0:6c:7e:9f:
         da:6f:85:30:3a:c4:4d:f3:99:68:22:80:a3:e9:d2:a1:7a:f5:
         2f:03:6c:fe:d4:30:a3:3f:ff:45:19:a9:e9:64:df:fc:91:69:
         72:fb:38:0f:b3:a3:93:d0:c1:e1:8f:e2:b7:dd:8b:3f:33:d2:
         42:38:53:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----