Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft
File:                     52j8yLln1vHIgeDUmgxCCN8H-zc.mft (raw, json)
Hash identifier:          IZHMxZrVWzWDm2dFYFM474UXZLylBvtbbQLMNW/CIAk=
Subject key identifier:   CA:85:04:0D:2F:E1:C8:34:2C:2C:76:F5:8A:BD:57:D3:5A:C0:48:45
Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37
Certificate issuer:       /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37
Certificate serial:       033C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft
Manifest number:          0337
Signing time:             Sat 29 Mar 2025 01:19:38 +0000
Manifest this update:     Sat 29 Mar 2025 01:19:37 +0000
Manifest next update:     Sat 05 Apr 2025 01:19:37 +0000
Files and hashes:         1: 52j8yLln1vHIgeDUmgxCCN8H-zc.crl (hash: dK7j1ptRnOFYxmtaqygM9cKEGDePXsX6JHKBBKtqFbQ=)
                          2: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (hash: 3vF76S8iWJW8vHG1MAht+7FYZNQsdje1uuqCEx57cyI=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 828 (0x33c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914C1AE
        Validity
            Not Before: Mar 29 01:19:37 2025 GMT
            Not After : Apr  5 01:19:37 2025 GMT
        Subject: CN=67e74aaa-e1cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:eb:bb:ba:09:8a:c1:ac:51:4d:8d:b1:98:e4:
                    15:e5:bf:1c:73:d7:f3:58:2e:5a:d5:14:98:26:ce:
                    e3:ce:3f:12:cf:86:27:7b:f7:fa:91:1f:7a:72:8b:
                    fd:32:d4:22:8f:31:6f:91:04:c2:f9:21:a3:74:5d:
                    55:69:8a:73:7c:7f:ae:d8:fb:85:96:1c:94:c5:cb:
                    0b:93:2e:c8:f8:15:6b:ab:66:66:48:b1:e3:4d:f5:
                    40:0b:11:54:96:02:e8:78:57:9e:51:5b:83:8c:aa:
                    e3:62:b5:b6:dc:c6:e2:4b:fe:2c:9c:0f:98:dc:eb:
                    81:c5:f8:1c:f6:93:5b:48:6b:0b:6e:a2:fd:78:3c:
                    5e:b7:43:fe:d1:f8:79:3f:e6:d9:dc:c0:fe:8c:26:
                    ed:62:22:8f:0f:40:87:f5:01:00:6f:71:78:6d:ea:
                    41:41:d0:46:de:cb:84:81:df:55:74:a2:4e:79:7d:
                    64:81:5f:b3:87:eb:2c:26:c7:4a:65:71:42:61:1f:
                    c0:b8:7d:3f:03:07:e8:a9:b4:f8:87:80:8b:70:f0:
                    98:81:36:e7:94:3a:b7:7b:fa:e6:fb:8a:d6:cd:09:
                    50:f1:77:08:a7:01:96:0d:8c:7b:90:69:8c:71:90:
                    1f:24:50:5f:ce:d0:f0:ce:6f:3b:ab:bb:c4:25:5e:
                    fc:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CA:85:04:0D:2F:E1:C8:34:2C:2C:76:F5:8A:BD:57:D3:5A:C0:48:45
            X509v3 Authority Key Identifier:
                keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:15:35:33:8a:35:fc:87:43:d2:38:85:c5:50:ec:73:84:b9:
         ef:d9:21:00:46:1a:a9:ad:c9:94:ee:e8:6f:8d:68:56:40:83:
         23:30:06:bf:f2:8e:f5:7e:0d:94:d7:e7:cf:8a:c9:85:7b:a8:
         e6:14:4d:14:2c:4c:34:db:fc:b7:45:0a:e4:f2:95:8d:b8:9a:
         29:34:31:d8:32:f9:63:f2:50:cf:12:4f:04:c2:71:fa:b2:e3:
         6f:45:3c:86:ae:6c:47:78:66:35:80:5a:d4:6c:c3:74:22:ee:
         cf:c1:49:cd:55:98:33:f3:fc:66:69:82:07:02:22:e1:a2:ff:
         ed:18:c3:95:da:4a:b4:37:cb:af:65:a5:91:2c:50:16:51:3b:
         83:15:38:d8:97:0d:ad:1a:0d:f4:97:8e:ec:cf:70:52:ac:74:
         c4:7d:e2:44:af:06:ca:ef:92:af:73:55:29:07:4f:fd:a3:23:
         79:19:68:45:f1:b9:53:0d:db:1a:84:37:54:9a:e0:d1:4a:bc:
         e2:8e:27:2e:19:cb:5b:e1:3e:dc:88:f4:49:da:5b:f4:5a:f1:
         3f:04:2a:69:d9:5c:b5:7e:b3:c8:10:d8:5c:18:1b:44:c5:53:
         07:b5:0d:1f:af:fd:07:64:df:84:2f:5c:b8:48:58:9b:df:5f:
         d5:3e:5f:f3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4
REYwN0ZCMzcwHhcNMjUwMzI5MDExOTM3WhcNMjUwNDA1MDExOTM3WjAYMRYwFAYD
VQQDEw02N2U3NGFhYS1lMWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA5eu7ugmKwaxRTY2xmOQV5b8cc9fzWC5a1RSYJs7jzj8Sz4Yne/f6kR96cov9
MtQijzFvkQTC+SGjdF1VaYpzfH+u2PuFlhyUxcsLky7I+BVrq2ZmSLHjTfVACxFU
lgLoeFeeUVuDjKrjYrW23MbiS/4snA+Y3OuBxfgc9pNbSGsLbqL9eDxet0P+0fh5
P+bZ3MD+jCbtYiKPD0CH9QEAb3F4bepBQdBG3suEgd9VdKJOeX1kgV+zh+ssJsdK
ZXFCYR/AuH0/AwfoqbT4h4CLcPCYgTbnlDq3e/rm+4rWzQlQ8XcIpwGWDYx7kGmM
cZAfJFBfztDwzm87q7vEJV78oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqFBA0v
4cg0LCx29Yq9V9NawEhFMB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2
NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt
emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
QzFBRS81OEQ5OTJERUI2NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2
SElnZURVbWd4Q0NOOEgtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBmFTUzijX8h0PSOIXFUOxzhLnv2SEARhqprcmU7uhvjWhWQIMjMAa/
8o71fg2U1+fPismFe6jmFE0ULEw02/y3RQrk8pWNuJopNDHYMvlj8lDPEk8EwnH6
suNvRTyGrmxHeGY1gFrUbMN0Iu7PwUnNVZgz8/xmaYIHAiLhov/tGMOV2kq0N8uv
ZaWRLFAWUTuDFTjYlw2tGg30l47sz3BSrHTEfeJErwbK75Kvc1UpB0/9oyN5GWhF
8blTDdsahDdUmuDRSrzijicuGctb4T7ciPRJ2lv0WvE/BCpp2Vy1frPIENhcGBtE
xVMHtQ0fr/0HZN+EL1y4SFib31/VPl/z
-----END CERTIFICATE-----