Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft
File:                     hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json)
Hash identifier:          Uu8WAUb5IYfq4qQoDu3m9n37s/iTX3jwgqYcmd2wIjQ=
Subject key identifier:   03:A3:78:93:5C:5A:F6:EA:99:6C:C2:D5:99:20:0F:47:9C:3F:D3:7E
Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC
Certificate issuer:       /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC
Certificate serial:       1662
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft
Manifest number:          1658
Signing time:             Fri 28 Mar 2025 16:49:08 +0000
Manifest this update:     Fri 28 Mar 2025 16:49:07 +0000
Manifest next update:     Fri 04 Apr 2025 16:49:07 +0000
Files and hashes:         1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: 5PcPjBZZUf29VmycFFtEwKMAWl9TFO5TNW+z6qD2FXM=)
                          2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: l/QXhkP0PiImWOQFu3VwXh2hTS7h1F0aUkdMN0JWiZQ=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5730 (0x1662)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913A0F3
        Validity
            Not Before: Mar 28 16:49:07 2025 GMT
            Not After : Apr  4 16:49:07 2025 GMT
        Subject: CN=67e6d303-dcd2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:bb:50:95:85:c6:53:7a:40:09:85:76:11:24:
                    f1:c2:fe:4a:a9:e3:6b:c0:c5:9a:4d:cf:57:fd:8f:
                    9a:5e:79:e0:95:b7:d1:18:6d:48:3c:d1:08:b3:01:
                    0d:4d:56:a3:e9:85:01:3f:8b:08:a4:e1:f7:ad:13:
                    e8:38:8d:cc:a1:db:54:03:bd:27:b4:5f:97:0d:07:
                    5c:7a:f9:97:e5:98:39:b0:84:6e:9c:90:be:66:ec:
                    03:cd:8c:05:e1:c9:ad:8d:4b:b6:5d:2d:ac:b2:1b:
                    c8:6f:0f:5a:0a:c9:e0:8c:83:88:39:69:99:cd:d7:
                    2c:4f:e4:b6:3e:58:49:53:c0:42:01:43:e5:38:fd:
                    8d:fe:ef:9e:db:9e:27:76:81:9c:c2:07:52:d1:75:
                    92:95:9c:f1:ab:13:31:27:69:ce:ac:75:d8:f4:7a:
                    7b:e5:a0:15:a3:84:ce:34:33:d4:41:6c:03:1d:73:
                    22:aa:fa:bc:f4:f9:fc:59:72:b7:50:4d:0a:20:68:
                    a5:71:6d:4a:0b:0a:5f:81:cd:8d:eb:1e:ba:08:ac:
                    24:8f:c4:c2:48:0b:5e:96:b2:50:89:05:7e:63:76:
                    70:f0:b4:7b:32:c5:3d:c7:60:be:ee:81:4b:40:8c:
                    6b:ea:57:3a:d2:bc:69:71:08:88:80:cc:b0:3e:3c:
                    6d:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:A3:78:93:5C:5A:F6:EA:99:6C:C2:D5:99:20:0F:47:9C:3F:D3:7E
            X509v3 Authority Key Identifier:
                keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3f:03:c6:0e:22:a4:be:c1:81:ab:3c:59:9d:56:24:d7:56:8b:
         f6:46:e5:a6:3d:de:34:96:66:57:cd:f6:49:5d:b3:85:22:54:
         cd:b8:e9:15:b8:71:6d:15:2a:b5:98:62:b1:72:72:05:fc:61:
         47:d7:76:9c:ae:8f:ad:86:2f:e7:ba:87:52:87:85:47:c2:89:
         93:c6:c2:3d:6a:a8:1c:67:06:a2:68:88:22:f9:af:a3:28:c3:
         35:eb:ac:89:b1:eb:66:19:87:29:ff:2e:a9:d5:1b:f4:23:44:
         80:3e:f1:f3:28:3e:05:0f:75:f1:74:a9:45:1b:26:36:8a:bd:
         9e:ae:39:28:ac:63:4c:44:e8:6f:e0:91:97:e8:31:37:80:4a:
         e4:99:6c:1f:86:8d:bf:12:68:55:a4:c8:c6:0f:2e:ad:49:dd:
         a1:bb:a7:df:ec:f1:18:10:3a:bf:94:83:f7:c2:99:f0:ef:1e:
         22:1f:23:90:a6:c2:06:13:13:81:d7:98:2d:57:b0:1f:a2:e0:
         bd:0d:fc:b8:ca:a6:bc:a1:47:a5:e6:32:fb:c7:f3:84:21:d8:
         16:c0:71:a9:d5:2f:c2:6e:89:e1:82:28:d5:6a:64:5f:54:04:
         08:3f:33:96:8e:1b:f1:86:9b:a7:5a:b1:94:37:fe:84:47:3d:
         a8:fb:b7:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----