Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft
File:                     ORjYC8twLsrPhMt6yogPh4oU_kg.mft (raw, json)
Hash identifier:          pHbeNYXsyAbbjbyaHNvP+apjXFELr4UnyPRx7iF4JFU=
Subject key identifier:   81:1B:B2:28:69:C3:57:51:B3:20:AA:FF:13:0F:86:09:F6:8D:9E:E7
Authority key identifier: 39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48
Certificate issuer:       /CN=A9146B24/serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48
Certificate serial:       0143
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft
Manifest number:          011F
Signing time:             Sat 29 Mar 2025 04:37:05 +0000
Manifest this update:     Sat 29 Mar 2025 04:37:05 +0000
Manifest next update:     Sat 05 Apr 2025 04:37:05 +0000
Files and hashes:         1: ORjYC8twLsrPhMt6yogPh4oU_kg.crl (hash: 94KjAh2Ac1dTohlj6+4xt6GkX3prWu/pBp023swmXJQ=)
                          2: 0D16F5F4933211EEA5AC155DC4F9AE02.roa (hash: 1LEVeAmiTE8mfugUrgZ7PXJTh3jzct433M4/pCSC1j8=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 323 (0x143)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9146B24
        Validity
            Not Before: Mar 29 04:37:05 2025 GMT
            Not After : Apr  5 04:37:05 2025 GMT
        Subject: CN=67e778f1-911b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:c8:37:ad:cd:f2:67:b2:8b:74:db:75:19:c2:
                    09:87:ee:59:cd:3a:97:f5:d9:e0:25:9f:f0:37:3a:
                    f7:6c:7f:b0:ae:33:c3:98:0d:5f:62:47:08:ad:73:
                    ca:55:66:4e:cb:b7:bf:bd:1c:9a:3f:11:b3:4c:71:
                    eb:c3:c6:88:24:dc:ec:65:09:9f:ff:2d:d9:a9:e0:
                    de:be:40:83:d7:57:a6:e0:3e:62:7a:3c:d7:01:1b:
                    58:d2:52:c9:4a:51:b3:de:b8:1d:91:85:e5:47:52:
                    a1:a0:e9:88:a8:1c:e8:58:86:e7:f4:bb:c3:3e:62:
                    bb:3c:41:0a:00:4f:09:c0:54:6d:72:21:e0:63:35:
                    6a:a0:50:a0:38:7a:a8:05:76:a0:5a:e3:6a:ee:15:
                    a7:75:03:3d:3b:4a:e6:62:9f:2a:be:88:ff:08:cc:
                    20:cd:7c:7a:dc:4f:d6:20:27:df:40:18:dd:75:59:
                    1d:ce:51:be:18:a3:b0:fd:e2:3e:47:33:77:ec:e6:
                    01:ac:83:02:7d:e3:ef:64:37:0f:15:3c:53:ca:bc:
                    8b:c8:44:c5:cf:a8:10:e5:9a:db:b6:64:d4:19:b0:
                    d3:df:20:a5:6d:e8:57:b7:64:88:c1:35:f7:b5:44:
                    ff:01:65:0c:fc:ef:97:81:ff:9f:dd:e7:a0:f1:96:
                    e3:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:1B:B2:28:69:C3:57:51:B3:20:AA:FF:13:0F:86:09:F6:8D:9E:E7
            X509v3 Authority Key Identifier:
                keyid:39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:f5:81:9d:23:23:0b:e4:34:a6:7a:06:5c:6f:4e:36:81:39:
         eb:fa:8f:3e:53:05:18:33:ba:e6:37:c8:df:c7:b2:ed:5f:f3:
         12:f8:d0:3b:ee:44:11:3f:bd:92:42:53:14:96:ce:7e:62:13:
         d4:77:b2:e6:de:e9:64:eb:8d:29:04:c8:96:7c:9f:fa:7e:02:
         23:86:13:8b:5e:6e:69:a9:e9:5f:dd:b3:af:af:bb:0d:f0:0b:
         24:c9:fb:df:16:2c:dd:a8:4e:78:3e:17:02:be:2f:4c:85:02:
         14:d9:b2:ca:2b:fb:77:bc:fe:e0:4f:bc:f9:f0:51:a4:90:e3:
         0a:e3:c9:c5:a9:3f:9b:d1:96:c4:df:95:f7:63:db:91:33:22:
         08:02:f4:f7:9f:37:6c:ec:32:06:9a:c3:04:5a:c8:2b:f8:9b:
         12:be:c8:dd:8b:d4:75:89:b1:01:ff:f8:c9:e4:b7:3a:7d:cd:
         12:ab:91:df:6d:ad:85:ad:d0:2c:05:0f:39:7f:ee:cc:80:c9:
         77:0b:69:2d:10:50:99:bd:fb:a5:f3:20:44:04:08:b3:d8:ff:
         39:d0:d8:5c:63:4a:07:38:6b:6e:eb:b3:a3:1e:a8:3a:dc:62:
         58:2f:e6:77:e0:d8:e0:50:cd:be:c5:a5:ca:6c:96:79:56:83:
         b9:44:f1:e7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDZCMjQxMTAvBgNVBAUTKDM5MThEODBCQ0I3MDJFQ0FDRjg0Q0I3QUNBODgwRjg3
OEExNEZFNDgwHhcNMjUwMzI5MDQzNzA1WhcNMjUwNDA1MDQzNzA1WjAYMRYwFAYD
VQQDEw02N2U3NzhmMS05MTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAx8g3rc3yZ7KLdNt1GcIJh+5ZzTqX9dngJZ/wNzr3bH+wrjPDmA1fYkcIrXPK
VWZOy7e/vRyaPxGzTHHrw8aIJNzsZQmf/y3ZqeDevkCD11em4D5iejzXARtY0lLJ
SlGz3rgdkYXlR1KhoOmIqBzoWIbn9LvDPmK7PEEKAE8JwFRtciHgYzVqoFCgOHqo
BXagWuNq7hWndQM9O0rmYp8qvoj/CMwgzXx63E/WICffQBjddVkdzlG+GKOw/eI+
RzN37OYBrIMCfePvZDcPFTxTyryLyETFz6gQ5ZrbtmTUGbDT3yClbehXt2SIwTX3
tUT/AWUM/O+Xgf+f3eeg8ZbjDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIEbsihp
w1dRsyCq/xMPhgn2jZ7nMB8GA1UdIwQYMBaAFDkY2AvLcC7Kz4TLesqID4eKFP5I
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkIyNC9CNDczQzRCRTkz
MzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xzclBoTXQ2eW9nUGg0b1Vf
a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09SallDOHR3THNyUGhNdDZ5b2dQaDRvVV9rZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
NkIyNC9CNDczQzRCRTkzMzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xz
clBoTXQ2eW9nUGg0b1Vfa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAu9YGdIyML5DSmegZcb042gTnr+o8+UwUYM7rmN8jfx7LtX/MS+NA7
7kQRP72SQlMUls5+YhPUd7Lm3ulk640pBMiWfJ/6fgIjhhOLXm5pqelf3bOvr7sN
8AskyfvfFizdqE54PhcCvi9MhQIU2bLKK/t3vP7gT7z58FGkkOMK48nFqT+b0ZbE
35X3Y9uRMyIIAvT3nzds7DIGmsMEWsgr+JsSvsjdi9R1ibEB//jJ5Lc6fc0Sq5Hf
ba2FrdAsBQ85f+7MgMl3C2ktEFCZvful8yBEBAiz2P850NhcY0oHOGtu67OjHqg6
3GJYL+Z34NjgUM2+xaXKbJZ5VoO5RPHn
-----END CERTIFICATE-----