Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft
File:                     t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft (raw, json)
Hash identifier:          weyLUVSPUoAH1IXrAs0TkZd9ZsxRtuxtatgdbuq5KNo=
Subject key identifier:   FF:CA:DB:C7:53:D2:11:9D:03:1F:3A:F6:7B:A3:D6:E7:DB:8D:BD:1A
Authority key identifier: B7:C9:79:5F:FF:7F:69:CF:33:B7:65:1C:6B:99:26:A7:30:D9:75:9C
Certificate issuer:       /CN=A9142DB4/serialNumber=B7C9795FFF7F69CF33B7651C6B9926A730D9759C
Certificate serial:       011E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t8l5X_9_ac8zt2Uca5kmpzDZdZw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft
Manifest number:          011B
Signing time:             Sat 29 Mar 2025 04:12:31 +0000
Manifest this update:     Sat 29 Mar 2025 04:12:30 +0000
Manifest next update:     Sat 05 Apr 2025 04:12:30 +0000
Files and hashes:         1: t8l5X_9_ac8zt2Uca5kmpzDZdZw.crl (hash: p7Nwqq8lhTDxexiOCpj0Ve9WClCAZGq4hPAdjK0V+Wg=)
                          2: 9ADC9C8A5CE211EEBA4DBD15C4F9AE02.roa (hash: icEjBAvtyS7bBSn0NXrfM0VKf/GFl7OVPnJ58XOd/T8=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 286 (0x11e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9142DB4
        Validity
            Not Before: Mar 29 04:12:30 2025 GMT
            Not After : Apr  5 04:12:30 2025 GMT
        Subject: CN=67e7732e-8159
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:2a:f9:4a:70:9b:0a:19:44:81:69:22:8d:91:
                    d0:32:d6:38:83:fb:c6:20:0a:10:20:bb:4f:f0:15:
                    0d:2c:77:61:dd:6a:ab:26:c0:f3:12:9a:3a:38:55:
                    ed:3f:54:78:6c:1f:e2:49:ed:07:d2:7d:98:6f:82:
                    8f:f0:07:24:e8:c0:58:49:bf:ca:c2:fc:f3:70:fa:
                    42:0b:f5:f8:83:a7:84:ce:91:5d:71:e1:16:e2:6b:
                    64:44:84:fc:68:2b:96:fa:72:78:d3:88:c8:1e:fd:
                    0d:61:8b:e6:e5:ba:53:aa:52:b9:10:f0:23:b6:2c:
                    b4:88:8f:99:00:31:87:84:88:2e:63:e1:8f:05:bb:
                    68:2f:c8:b3:c4:8f:3d:9c:23:af:7b:17:bf:2b:1c:
                    79:d7:32:23:f6:dc:d0:0f:3e:79:80:2b:4b:3f:ac:
                    eb:18:14:a5:55:78:0f:23:55:a8:30:91:0a:c4:8b:
                    39:da:64:c5:08:e9:41:15:97:da:3d:54:08:44:ad:
                    43:7f:ac:0c:9f:cc:71:b2:74:3c:13:01:2e:07:ed:
                    ec:bf:63:d0:81:b0:d1:0f:a2:11:a0:cc:85:cd:77:
                    b8:83:73:d3:75:53:56:f1:ab:a1:b9:ca:b2:25:e6:
                    f7:96:d2:4b:4f:78:83:50:c8:59:c0:5e:16:bd:e9:
                    00:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:CA:DB:C7:53:D2:11:9D:03:1F:3A:F6:7B:A3:D6:E7:DB:8D:BD:1A
            X509v3 Authority Key Identifier:
                keyid:B7:C9:79:5F:FF:7F:69:CF:33:B7:65:1C:6B:99:26:A7:30:D9:75:9C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t8l5X_9_ac8zt2Uca5kmpzDZdZw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ac:78:12:45:38:69:2e:51:4b:40:4a:1d:38:20:59:60:f2:99:
         2f:fb:df:74:47:85:23:5d:ac:a2:58:7b:ad:77:59:70:ec:fa:
         44:47:df:b7:6d:33:ef:8a:ed:69:7d:5c:5b:27:a7:25:7d:dc:
         b2:d7:28:f3:35:56:4a:a7:9c:3c:87:dd:84:b1:b6:08:aa:96:
         6a:6b:97:0c:37:de:e0:82:fd:2c:a5:8f:2d:52:f3:17:0a:cf:
         48:30:78:b0:c7:0d:c8:38:4b:45:97:c1:06:04:40:8d:72:c1:
         0d:73:ca:7d:99:fa:01:b2:0b:72:48:59:c5:73:a5:19:59:1c:
         8c:d1:06:2c:5a:af:a3:82:62:ad:7d:4f:28:ef:3b:7e:4b:62:
         28:4b:73:60:a4:b6:e5:79:7f:75:ff:01:f0:df:c6:e1:1e:4f:
         55:74:a4:db:b4:12:5b:59:4a:8c:a9:60:2f:1e:3a:cb:93:39:
         af:a7:35:57:9b:fe:21:22:fe:60:19:d1:7e:65:8f:bd:c1:fd:
         05:a0:c1:b7:63:52:10:95:08:48:88:ea:8a:b4:d7:6e:ae:f5:
         e4:45:4a:19:58:01:27:b5:99:3d:8f:88:89:9a:fd:5c:2e:17:
         0b:68:b9:1a:eb:f7:fe:47:ca:01:10:d9:bf:c3:eb:1f:f7:56:
         49:86:82:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----