Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft
File:                     SyWxRyDwREuz1mj5Y1hDVPf6whM.mft (raw, json)
Hash identifier:          6E1MCzqD/D7AwSoQ5iE+5OlangwtE5ukrIJyw4/37qs=
Subject key identifier:   D9:4B:18:FB:93:D7:7D:8C:01:D0:31:A7:3B:40:ED:9B:55:79:8E:06
Authority key identifier: 4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13
Certificate issuer:       /CN=A91650EA/serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213
Certificate serial:       CB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft
Manifest number:          C9
Signing time:             Sat 29 Mar 2025 05:07:22 +0000
Manifest this update:     Sat 29 Mar 2025 05:07:22 +0000
Manifest next update:     Sat 05 Apr 2025 05:07:22 +0000
Files and hashes:         1: SyWxRyDwREuz1mj5Y1hDVPf6whM.crl (hash: LVQ7jhyhWWai0kuLpMoNHHCeMn0Gs5ZY253FwK+lcfU=)
                          2: D0F245E0D76711EE99C72C29C4F9AE02.roa (hash: 9VKla165NEuwDujrYh1FdBvK2ZH/U/K5NZJL+RjIV7c=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 203 (0xcb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91650EA
        Validity
            Not Before: Mar 29 05:07:22 2025 GMT
            Not After : Apr  5 05:07:22 2025 GMT
        Subject: CN=67e7800a-8030
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:c2:b2:0b:0c:00:37:38:9e:8c:e1:8b:d8:4b:
                    c4:c1:46:e1:12:29:ae:81:56:b3:23:46:09:bc:fd:
                    ae:c8:4a:08:0a:1b:68:55:de:49:a8:a4:dc:9c:20:
                    a8:14:d3:16:e3:9f:6c:ab:5b:76:a4:b7:96:0d:6e:
                    a9:f8:ac:86:87:e3:3f:85:ca:94:d4:03:7c:4e:75:
                    34:32:ed:59:e0:7d:9c:47:99:ed:de:6d:b9:6f:2f:
                    ed:76:c2:0e:fb:0e:8a:fe:5e:5f:ec:d8:ce:ba:42:
                    c1:06:19:e7:98:d1:c0:4d:e4:2c:e0:1f:16:b1:0f:
                    19:f8:5e:8b:66:e2:48:f7:28:5c:bf:74:81:05:a9:
                    60:9b:7e:56:d2:c1:ed:d3:33:ad:08:fd:51:0e:28:
                    51:b3:c8:e7:d0:f7:c0:63:b0:e6:b2:d4:34:f3:4a:
                    4a:df:07:87:dc:32:d8:c2:ac:49:a8:3b:70:03:3d:
                    03:45:3b:c3:0f:8c:ec:78:af:f2:29:1b:71:76:db:
                    de:11:ba:85:8b:b6:1f:ad:26:08:7b:15:19:ee:14:
                    45:a9:c2:76:46:a3:22:1d:3d:58:5c:f9:4d:5b:bb:
                    81:97:93:da:d5:6e:b8:3a:b7:5f:36:33:24:88:5f:
                    4d:46:b2:6a:56:41:01:a2:07:f4:aa:ca:f4:e9:86:
                    a5:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:4B:18:FB:93:D7:7D:8C:01:D0:31:A7:3B:40:ED:9B:55:79:8E:06
            X509v3 Authority Key Identifier:
                keyid:4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:b3:76:a3:15:e8:c4:d3:b5:8d:4b:a1:c3:79:3b:e5:bb:a5:
         d7:05:d0:cc:ed:70:de:dc:fc:81:a6:a9:16:3e:95:c6:f4:4f:
         22:42:9e:8c:76:7e:83:f5:18:8e:55:8f:2d:53:87:98:51:7f:
         5d:e4:3c:0d:aa:fc:cb:d3:5b:14:04:2c:71:0c:1f:45:92:bf:
         da:ed:89:6a:63:f9:9b:f0:bc:80:4c:9b:0f:27:b0:37:ed:1d:
         eb:b0:1e:b1:7c:78:22:2e:bd:19:7b:e8:77:6b:f6:33:8c:46:
         e8:8e:47:65:fa:75:af:fd:f8:6a:1e:8c:05:b9:a4:87:49:b1:
         d9:71:af:b0:b3:16:c7:22:17:45:37:98:b1:f8:4c:cd:67:40:
         95:15:11:1b:88:42:ff:3f:44:b2:a6:b7:93:01:28:1c:d0:4c:
         19:93:6f:a7:2a:b3:0f:d2:2c:3c:12:f1:25:03:e7:64:ac:9d:
         59:01:0d:53:51:9d:fd:15:1a:98:3e:47:43:62:6c:07:fe:27:
         37:8a:6c:60:95:5a:f4:e8:bb:12:4f:1f:f6:29:eb:6a:87:72:
         43:e4:02:fe:da:5a:4b:d3:5a:00:c8:36:26:b2:b7:ea:24:5e:
         bb:da:bc:93:b4:53:49:5d:db:4c:4e:14:6f:66:27:71:78:b1:
         2a:c1:87:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----