Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft
File:                     qjJWJCn4lsCly95WRDFIAzm-upc.mft (raw, json)
Hash identifier:          9l7j+r1/dsi92UU3+ipic7WPfEGZhbdkFDRuHA6eGvA=
Subject key identifier:   3A:A5:81:5D:6D:35:B9:11:C6:2C:C5:73:29:C6:66:42:CD:9F:AA:40
Authority key identifier: AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97
Certificate issuer:       /CN=A9150F66/serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97
Certificate serial:       1A81
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft
Manifest number:          1A6E
Signing time:             Fri 28 Mar 2025 15:45:10 +0000
Manifest this update:     Fri 28 Mar 2025 15:45:10 +0000
Manifest next update:     Fri 04 Apr 2025 15:45:10 +0000
Files and hashes:         1: qjJWJCn4lsCly95WRDFIAzm-upc.crl (hash: LPCi8x4f5vtQI1IRdoCVso2JvYeUYBtD48/5y49b4wk=)
                          2: 753F0A48CFB611EE83724A58C4F9AE02.roa (hash: uUlOQpzZO3P5eVMM621nQ4qWEKEyn8v2Q1jC2RCuf4E=)
                          3: 7A1D009C0EB611ECB5408277C4F9AE02.roa (hash: InP2ZGCygpqo7jQ5/iXnWywhtU95neHUOm+r+LrIH0s=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6785 (0x1a81)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9150F66
        Validity
            Not Before: Mar 28 15:45:10 2025 GMT
            Not After : Apr  4 15:45:10 2025 GMT
        Subject: CN=67e6c406-d97e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:3b:df:a6:83:cd:d6:61:6f:f2:7c:14:81:a9:
                    c9:5e:cc:78:e5:f9:87:db:a6:a1:f0:cd:9f:63:d8:
                    11:85:46:90:04:ed:65:a8:2e:76:87:5a:71:34:66:
                    0b:86:b2:ac:66:cd:6a:1c:a0:80:97:23:13:7a:ee:
                    90:af:b7:9a:88:fb:4c:d5:38:48:34:27:6f:44:0f:
                    2f:16:e8:a8:fa:ff:80:0e:98:7e:31:a0:85:7d:a7:
                    c8:4a:19:dd:2e:04:f9:99:6d:e4:ff:db:8f:67:67:
                    59:80:1f:39:fe:c4:c7:51:67:95:b5:a6:f6:3b:98:
                    79:19:40:dd:eb:ee:9f:95:4d:fd:2a:f3:e2:00:0d:
                    ba:5a:3c:8e:99:a9:71:88:3c:e9:a2:02:49:38:77:
                    2f:0c:61:94:ae:32:67:cd:3a:ee:a0:7e:be:e6:c9:
                    7f:1e:c3:37:42:9e:64:b7:cd:d6:5c:fe:7a:df:22:
                    9d:48:e0:f1:5e:60:10:54:4a:50:2e:db:ec:79:47:
                    77:66:4d:d6:56:4f:3d:30:40:ee:40:ad:bf:d5:ee:
                    c5:63:47:77:fa:7b:72:a9:e9:2a:60:f0:68:78:7d:
                    14:56:9b:0f:98:f8:94:6b:c1:3e:0e:b0:a0:f3:14:
                    c3:03:0e:cc:92:a6:02:87:7a:37:18:c1:63:a8:01:
                    c4:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3A:A5:81:5D:6D:35:B9:11:C6:2C:C5:73:29:C6:66:42:CD:9F:AA:40
            X509v3 Authority Key Identifier:
                keyid:AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:69:6c:3e:8c:97:9b:df:cd:79:95:e0:a9:e7:c7:94:4c:78:
         0e:76:8d:53:25:11:31:7c:8b:76:cd:ec:b2:f9:e7:fa:3d:79:
         72:87:64:6a:b5:95:9f:ef:16:9e:2e:a2:49:d4:7b:fb:30:f4:
         17:35:a2:7e:f7:3f:2f:ec:4f:c0:2d:32:25:b3:2a:f1:fb:fb:
         fb:5d:8e:7d:a0:31:d4:79:f8:67:01:31:f4:6b:04:1a:bd:0b:
         fc:fa:fd:30:4c:be:13:14:9f:cf:17:98:74:b3:0e:67:d2:e6:
         ca:7e:ab:45:c4:15:8a:a6:38:67:2a:45:bd:09:d8:b3:b1:c1:
         ec:6d:8c:30:be:54:14:29:74:49:10:81:79:58:1a:c9:0c:6b:
         63:9f:c1:87:8d:96:ad:23:c9:31:c9:25:2d:76:09:22:d2:90:
         85:f0:75:3e:1c:e9:79:c6:b9:24:61:7b:27:26:49:0b:b8:bc:
         f0:1d:2c:49:af:0a:3c:55:a3:10:b6:26:23:a1:d1:b4:86:11:
         23:3f:66:1f:98:66:23:a3:a6:71:fd:50:99:3e:70:f9:98:96:
         b0:be:50:68:e5:1e:69:17:9c:10:38:40:98:fa:38:f8:f4:2f:
         93:48:9f:6f:53:d6:64:81:a9:68:9f:5f:cd:7a:b0:0a:6b:85:
         b1:27:b8:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----