Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft
File:                     khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json)
Hash identifier:          GnkGHlXMf5+xysOGrQycbdlH81iKvH2xNq/T61ysT/U=
Subject key identifier:   45:A0:0F:72:D2:10:CA:BA:AB:4D:BF:8F:0E:4B:CB:52:CA:02:67:4D
Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90
Certificate issuer:       /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890
Certificate serial:       0376
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft
Manifest number:          0371
Signing time:             Sat 29 Mar 2025 01:11:21 +0000
Manifest this update:     Sat 29 Mar 2025 01:11:20 +0000
Manifest next update:     Sat 05 Apr 2025 01:11:20 +0000
Files and hashes:         1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: qJFQ3UY9LcNWpVxhDTX8hP9eZyOvoQV+BxnNQqjsPzg=)
                          2: 44FBB466A03911EC9AD2F840C4F9AE02.roa (hash: u8Y2qHn4dP492v5Q3muwggQyuBR/yx2lsL2jNNDR8KY=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 886 (0x376)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9137B39
        Validity
            Not Before: Mar 29 01:11:20 2025 GMT
            Not After : Apr  5 01:11:20 2025 GMT
        Subject: CN=67e748b8-e9de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:5a:98:55:e8:8f:34:b7:68:16:a1:b4:a7:4e:
                    e8:02:20:71:de:bc:59:58:97:1c:85:06:66:c3:ab:
                    aa:b7:1d:08:c3:25:de:c6:5d:ce:ac:da:23:26:ba:
                    62:db:bd:c1:ab:91:e7:1c:1c:d8:3e:27:99:bb:16:
                    55:d2:36:26:56:c7:f8:65:db:92:07:9f:d5:10:c2:
                    c8:af:a3:04:b2:fe:44:91:b6:e6:a6:55:70:07:7d:
                    66:0b:f9:8e:80:bb:3e:46:44:c5:7c:07:cf:af:1c:
                    f9:76:08:e4:04:ec:55:ab:7d:59:17:99:ce:ae:eb:
                    10:ea:74:40:ec:1d:f3:e1:72:9b:ab:61:a2:68:98:
                    71:74:cc:1d:61:a0:2a:83:69:aa:19:1c:80:d5:4e:
                    8a:3f:d4:37:df:73:b3:c4:c3:db:4e:1b:b0:26:1e:
                    f6:e2:38:e6:b5:17:7c:5a:d1:f0:f0:24:40:45:a6:
                    d7:e1:67:e2:96:0a:20:55:b7:2b:94:38:c4:76:4b:
                    04:79:2d:ad:00:35:d0:f8:26:75:8a:75:7a:a8:09:
                    53:75:eb:d6:25:0d:9d:4f:7d:eb:12:d0:ec:99:b0:
                    fb:5f:6c:a0:dd:1f:9d:87:0a:f9:30:27:51:b6:4c:
                    cd:2c:9b:21:c4:38:5e:1e:a3:37:03:3b:fe:c5:a7:
                    4f:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:A0:0F:72:D2:10:CA:BA:AB:4D:BF:8F:0E:4B:CB:52:CA:02:67:4D
            X509v3 Authority Key Identifier:
                keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:70:7c:86:e1:45:26:86:19:a1:c1:b2:9b:07:8e:a1:e1:25:
         82:24:97:60:15:21:f4:c5:d6:7f:45:1e:14:40:22:4c:54:7f:
         a2:de:57:54:8e:ba:e7:fa:ca:a5:08:f1:61:59:77:95:37:b4:
         9d:a0:ce:74:d9:60:11:f2:67:a0:46:1c:e3:81:b5:16:5d:5a:
         1b:15:7f:6d:af:48:4e:32:a4:f9:6d:ad:bc:7a:59:f6:41:1c:
         ff:8e:25:17:a1:61:ba:d1:9f:52:7f:be:f1:77:45:c4:68:66:
         e6:4e:05:4a:c5:5f:20:f0:23:05:5f:bf:4d:ca:23:fa:a0:36:
         42:ec:e4:d6:7b:88:55:1e:ba:38:ec:b2:d4:0b:36:50:cc:b4:
         8e:15:c7:71:2b:27:b5:e1:89:b4:e5:e3:df:ef:14:d9:f8:32:
         3a:77:07:c5:a3:86:e0:85:d0:42:a3:c6:45:f1:09:00:c7:d5:
         63:f9:67:11:44:f2:05:f2:8e:a1:a2:7a:4b:04:21:b1:2c:7c:
         8b:76:d3:37:c6:04:59:e5:48:f8:3b:93:d7:2a:10:08:90:48:
         3b:2f:4c:d4:d0:90:0c:05:0c:a5:2e:71:dd:23:89:f7:b2:62:
         ec:b3:e8:9d:46:92:6d:d2:b3:eb:37:0a:32:08:cc:9e:41:90:
         ef:60:26:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----