Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft
File:                     PQqIwMyj7oZ3zRffPuht5x38ESk.mft (raw, json)
Hash identifier:          LLUnhF0eky6uOS0B13cvIeeSK2HyJLPXQ9/iyo4uPFM=
Subject key identifier:   7A:66:5B:3B:6D:F0:DF:BF:4C:3E:64:12:8F:A8:4C:62:03:D2:36:59
Authority key identifier: 3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29
Certificate issuer:       /CN=A91607DE/serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129
Certificate serial:       032D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft
Manifest number:          0329
Signing time:             Sat 29 Mar 2025 01:22:08 +0000
Manifest this update:     Sat 29 Mar 2025 01:22:08 +0000
Manifest next update:     Sat 05 Apr 2025 01:22:08 +0000
Files and hashes:         1: PQqIwMyj7oZ3zRffPuht5x38ESk.crl (hash: cus8ksAwzcTvucxAqQccA2lL1QcwJc7+cIjb4DiCp0o=)
                          2: FD398FA0BB5D11ECA62F8674C4F9AE02.roa (hash: BTLl2ZQykfG+tipQAUgtzvqp3DpDHeGIHhFJsSIVOWM=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 813 (0x32d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91607DE
        Validity
            Not Before: Mar 29 01:22:08 2025 GMT
            Not After : Apr  5 01:22:08 2025 GMT
        Subject: CN=67e74b40-4d78
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:d3:30:98:b2:db:f3:9e:17:ef:70:70:c1:ea:
                    49:46:7e:33:5a:96:17:a6:ba:8e:35:75:cf:31:04:
                    47:4c:7a:9d:b7:a3:b4:88:94:dd:0c:f6:08:b5:fe:
                    1e:5e:f9:f0:da:13:04:2d:fe:ca:ce:36:ac:66:64:
                    9e:de:74:28:cb:c3:ee:31:33:27:b8:51:39:3d:55:
                    3e:25:54:5c:07:dc:26:41:bc:39:41:d8:57:81:69:
                    75:65:2e:50:4d:28:a8:75:44:d5:ae:5e:f6:62:9b:
                    da:96:59:15:34:28:ce:63:36:3a:26:d9:d4:3e:5d:
                    1c:04:77:fe:65:10:e5:93:88:5e:37:4e:f2:a7:25:
                    92:77:ce:f2:84:7b:a0:85:4a:b2:0b:8d:4d:41:fc:
                    7e:3d:ae:d8:b7:47:7b:1d:36:f8:ef:d1:91:76:9d:
                    62:5c:27:ee:46:5d:8c:f3:5c:8c:89:32:f0:e7:77:
                    6e:d6:41:4c:9e:f3:75:56:3f:bf:08:cc:da:31:1f:
                    67:20:f5:88:6a:cb:58:1c:42:f8:fb:a8:30:44:1e:
                    a7:4d:41:a9:03:99:25:c1:24:07:31:11:dc:84:88:
                    15:49:0f:e7:eb:d1:c9:2b:9e:33:fb:48:58:2a:65:
                    db:45:af:57:69:c0:ae:58:d8:fe:f3:1e:a1:25:52:
                    0c:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7A:66:5B:3B:6D:F0:DF:BF:4C:3E:64:12:8F:A8:4C:62:03:D2:36:59
            X509v3 Authority Key Identifier:
                keyid:3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a0:bf:2d:fc:c4:36:42:84:5b:0a:72:3e:91:7a:b0:2d:19:52:
         0b:31:09:82:1c:17:65:22:1e:c3:18:cc:9a:5b:e7:c9:cb:0d:
         ed:7e:ae:f5:16:d1:66:32:08:41:80:82:58:51:c9:d1:17:c7:
         4b:1f:e1:0d:67:cf:ad:f6:fd:2f:a5:ea:91:fd:d7:92:de:76:
         8d:8b:61:c5:ce:86:b9:93:13:c6:5e:c9:35:5e:7c:c6:75:8c:
         b5:c1:73:5e:05:65:6c:73:0d:45:9b:3f:bd:4b:5f:74:29:88:
         4e:c4:ac:d9:da:a9:bb:41:3d:4a:77:1a:c0:c9:86:b1:4e:f6:
         80:9c:f8:70:11:6c:c9:74:37:58:62:61:f7:e7:e7:bf:53:9a:
         89:87:c5:80:49:7e:ff:51:6d:2e:be:1e:22:72:df:5c:e9:e4:
         94:c4:85:25:ee:1d:c8:f4:94:9b:c9:3b:29:81:00:a4:54:8f:
         a5:cf:66:19:d7:60:63:97:3f:85:a4:4e:c0:d9:9a:b1:83:c9:
         02:12:af:18:54:37:d6:ff:7e:0c:0a:e8:a9:e5:1f:9e:54:ce:
         b9:6a:f9:56:ae:72:f4:e5:f8:21:39:c4:57:a2:f0:64:ac:6d:
         97:ae:ab:1a:b6:f6:6e:60:cc:cb:4f:91:ea:ca:64:39:88:9d:
         9c:5b:0b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----