Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
File:                     jhahBq30E6__xY8QEZJ09wDPpZM.mft (raw, json)
Hash identifier:          f7SMH18zZLgNJGmK+jW+dLUWqezd2WLnFcBVbAZkHvY=
Subject key identifier:   A1:E9:D1:53:74:D2:FB:85:30:C0:15:22:70:62:E0:3E:AB:D0:A3:21
Authority key identifier: 8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93
Certificate issuer:       /CN=A913EF8E/serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593
Certificate serial:       0242
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
Manifest number:          023F
Signing time:             Sat 29 Mar 2025 02:08:23 +0000
Manifest this update:     Sat 29 Mar 2025 02:08:22 +0000
Manifest next update:     Sat 05 Apr 2025 02:08:22 +0000
Files and hashes:         1: jhahBq30E6__xY8QEZJ09wDPpZM.crl (hash: O1Xx4ncLD5jc4l9r+/3SRY4DrVSmVP1QYrixqoW1+5U=)
                          2: 92F8EAF428F511EDA8D1655FC4F9AE02.roa (hash: eWEKn2C8Q5U4Dbtdbo63L8x5F49ZJgmIxX3AKCcfHMU=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 578 (0x242)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913EF8E
        Validity
            Not Before: Mar 29 02:08:22 2025 GMT
            Not After : Apr  5 02:08:22 2025 GMT
        Subject: CN=67e75617-fcd2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:44:9c:db:b7:b3:e6:d6:af:7f:eb:f1:fc:9d:
                    34:9e:b1:0a:a6:73:5c:12:e6:66:ac:cb:15:41:aa:
                    e3:97:ec:72:84:be:5c:b1:11:5f:28:25:40:1e:09:
                    58:1c:9f:a3:f4:55:ff:4a:de:cf:2c:98:b7:85:28:
                    f2:2b:44:76:12:f2:74:44:8b:84:b1:d4:ef:55:71:
                    2e:f7:b0:d6:e4:62:e0:55:48:2a:4b:df:14:ff:d8:
                    7f:65:c9:73:bd:d6:73:17:27:5c:e7:e9:8e:bc:3a:
                    c9:76:be:b1:cc:e6:aa:0f:5e:c6:93:da:c8:b9:1d:
                    7d:b0:e0:c1:06:80:67:0c:5d:38:40:6f:2c:8d:3a:
                    37:00:e7:6f:1e:88:ea:9f:48:f8:21:55:c0:88:f6:
                    2c:cd:c4:0f:5a:84:10:e5:e6:ff:b4:64:3d:a4:26:
                    80:e0:dc:dd:da:62:dd:45:6e:51:fa:90:30:00:4c:
                    a6:38:32:60:ff:29:29:b4:12:84:69:7d:6a:66:6c:
                    dc:f6:38:45:a3:f6:86:9a:21:f7:36:76:aa:e3:07:
                    18:38:23:64:3c:8f:f0:ad:b1:54:00:5b:ec:3d:6f:
                    9d:4d:5a:a5:cf:62:e8:58:48:98:6f:6a:e6:50:fb:
                    d0:25:e7:0b:dc:cd:ef:a6:b8:79:56:18:c1:2d:58:
                    5b:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A1:E9:D1:53:74:D2:FB:85:30:C0:15:22:70:62:E0:3E:AB:D0:A3:21
            X509v3 Authority Key Identifier:
                keyid:8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:bb:08:d6:b9:42:1b:0f:c4:f5:4e:4a:cb:c6:ec:62:15:59:
         ef:49:d2:5c:c3:52:09:6c:49:bd:fa:50:da:f3:cf:34:54:1b:
         90:c8:b1:56:fa:69:10:16:ce:d9:e1:a9:52:e0:73:8c:23:1f:
         48:e2:a4:24:7b:9c:37:f7:80:50:23:cc:55:ac:61:20:43:07:
         72:e6:22:75:b6:b3:ef:54:bc:85:f3:bf:d1:2e:22:67:35:c6:
         64:84:8a:11:59:ab:7f:7a:28:05:20:51:37:6b:13:bf:24:d8:
         8a:c0:eb:59:c3:24:da:80:36:2b:a2:16:17:49:c8:99:d8:dc:
         99:be:76:f4:8a:35:3b:eb:73:a2:e8:f5:11:3d:2e:ee:08:f5:
         cc:69:9e:8c:eb:a9:c8:f5:64:d9:ab:2e:8d:44:89:80:29:b6:
         dd:b7:80:ae:ad:56:82:e0:22:91:9e:cd:77:48:5f:f2:50:4a:
         bc:f8:75:56:c4:32:f8:a4:a5:e8:31:df:7e:f1:1d:b8:20:83:
         e6:95:83:b9:8b:84:8d:c2:2e:03:54:48:dc:06:2f:61:90:db:
         59:c0:1e:eb:1b:5d:b1:87:04:d3:30:09:4b:e6:e9:c4:8f:66:
         a8:1a:54:43:22:53:88:28:43:27:52:e8:8b:ca:75:6a:38:05:
         dc:3f:b1:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----