Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
File:                     1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft (raw, json)
Hash identifier:          3Lj/dt1tUQ4fvRbgJ7dURyi+LLcCZmjmEaHGqA9JkMo=
Subject key identifier:   49:23:D1:6C:61:E5:B1:AA:02:02:D9:22:26:AF:1C:17:70:C1:EB:F8
Authority key identifier: D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC
Certificate issuer:       /CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC
Certificate serial:       0AFB
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
Manifest number:          0AEE
Signing time:             Fri 28 Mar 2025 19:34:41 +0000
Manifest this update:     Fri 28 Mar 2025 19:34:41 +0000
Manifest next update:     Fri 04 Apr 2025 19:34:41 +0000
Files and hashes:         1: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl (hash: bLdSH0Y9nm9MOznE4VIvPiyvhlwwsji0k0IAE/e0Cwo=)
                          2: 9156042083EB11ECB7EC3B76C4F9AE02.roa (hash: dPrx3cF0sDj9FTl2qCoRHJgtgGOLW5ACbJ0tx2wVxmU=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2811 (0xafb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914247C
        Validity
            Not Before: Mar 28 19:34:41 2025 GMT
            Not After : Apr  4 19:34:41 2025 GMT
        Subject: CN=67e6f9d1-40dd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:63:d9:de:bf:a7:4e:3a:30:b4:1a:14:d4:d6:
                    64:86:33:43:bf:9c:ef:3a:7a:0c:99:14:c7:ec:2f:
                    c7:38:85:c4:89:50:2c:5d:d6:83:af:b7:06:3a:e6:
                    fe:e6:ff:a1:93:59:a0:e5:2f:58:b0:a3:47:6b:7e:
                    a9:55:f5:ec:82:e4:00:e6:1c:78:bb:09:6f:8a:db:
                    e3:8b:72:b9:8c:f9:cd:13:a1:52:bd:03:8c:02:28:
                    97:8b:4e:76:36:33:bc:1c:d0:36:28:69:4d:ad:0b:
                    42:d0:44:d7:80:5d:72:1f:3b:1f:0b:1b:35:45:ef:
                    26:87:57:40:de:8e:f4:29:06:9d:e4:67:b0:72:e4:
                    30:22:67:4c:87:fc:9d:c7:76:76:97:57:23:7f:da:
                    62:c0:8e:b9:f1:b5:81:f0:27:02:d1:d4:5d:18:84:
                    d9:7b:96:cc:d7:aa:3c:e7:96:f3:52:6a:00:3a:d6:
                    a5:57:43:73:d6:98:b3:9d:af:7b:46:f2:3f:bc:4b:
                    7c:11:89:7a:cf:65:ae:68:b8:8d:0e:99:20:72:67:
                    39:e1:81:44:1e:6d:02:77:28:2c:e4:4e:fe:e3:1f:
                    9b:48:49:b3:25:94:82:dd:8c:ff:a4:cb:b8:84:a4:
                    5f:f6:87:08:af:88:25:b8:9a:2b:03:8a:81:62:72:
                    83:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:23:D1:6C:61:E5:B1:AA:02:02:D9:22:26:AF:1C:17:70:C1:EB:F8
            X509v3 Authority Key Identifier:
                keyid:D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:f8:dc:a8:c6:fe:5b:44:14:2a:4f:f0:09:db:e2:06:8a:5b:
         02:f8:29:fa:a7:2d:7e:43:80:39:40:e1:48:0c:e4:ee:05:0a:
         a9:6f:7c:10:c5:99:b4:55:76:7d:c2:30:54:f3:62:b5:f8:15:
         be:03:15:ec:b0:83:df:42:bb:32:ae:be:e1:f6:64:72:4c:f6:
         54:e6:7a:c4:a9:e2:c9:d9:ae:b5:83:04:53:d6:2f:d3:e8:ef:
         0f:4b:90:b7:7c:41:92:84:a6:ba:ee:20:eb:d5:0a:58:6e:05:
         65:01:17:3a:2e:5e:d0:b3:7e:83:6f:b4:51:4d:6a:fb:fd:a8:
         e5:a3:c5:3d:01:78:f7:2e:aa:40:b1:02:72:97:ef:8c:70:5a:
         3b:f8:e0:ca:43:95:78:4b:bb:c4:ee:93:58:30:cb:ab:2a:38:
         26:d1:e4:0f:02:5f:c4:58:22:aa:c4:83:0a:de:c5:35:00:92:
         27:88:3d:0b:9d:ec:ff:c4:b0:cc:31:4c:64:b1:07:10:1a:14:
         79:ac:2f:7a:3b:8c:80:5e:a3:46:b4:c2:62:14:a1:5e:98:fc:
         b3:3e:41:78:b2:6d:76:7b:de:ed:88:c4:3d:4f:d4:89:a9:fb:
         33:a8:23:a5:02:ab:b1:a7:a8:be:a4:6c:1b:4b:ba:2c:ae:10:
         e5:38:da:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----