Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft
File:                     p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft (raw, json)
Hash identifier:          DG9NPm3dJVIwmOAtMFKM5Hg68Wp5GQi78x41druNcX4=
Subject key identifier:   13:96:CD:4A:58:D0:83:5A:ED:46:B7:B5:A9:A7:7F:E9:5E:A6:44:CC
Authority key identifier: A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6
Certificate issuer:       /CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6
Certificate serial:       0DDC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft
Manifest number:          0DD4
Signing time:             Fri 28 Mar 2025 18:01:34 +0000
Manifest this update:     Fri 28 Mar 2025 18:01:34 +0000
Manifest next update:     Fri 04 Apr 2025 18:01:34 +0000
Files and hashes:         1: p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl (hash: IFWPz6x4FN1lcUj6hSd+rJUjODpqcULqrH1rGT524TQ=)
                          2: 457A00A8AF7A11E9AFF10782C4F9AE02.roa (hash: mx4Am+cBFSXiPddaACrFcI512PsDACEUWWDSLjunmeM=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3548 (0xddc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9165297
        Validity
            Not Before: Mar 28 18:01:34 2025 GMT
            Not After : Apr  4 18:01:34 2025 GMT
        Subject: CN=67e6e3fe-e25b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:36:a1:98:1b:3d:25:1f:17:00:86:ce:1c:95:
                    6f:bc:4d:66:68:be:fa:ca:e8:07:d1:04:e7:89:1b:
                    f3:ab:51:31:1d:60:96:bc:04:a8:c3:63:a2:78:0f:
                    8f:e2:7c:27:88:a1:f6:ac:24:74:a6:fb:63:fb:16:
                    1f:1a:9e:ef:c1:f0:d9:5f:3e:02:fd:d2:ff:17:1c:
                    41:94:45:f3:b0:5d:94:16:5d:f9:82:ec:4d:1d:6e:
                    3d:db:04:94:66:9b:66:e3:26:02:12:dd:26:62:18:
                    b0:4e:ca:de:5e:24:59:b8:52:c0:a4:d9:87:ff:8f:
                    d3:77:2f:a1:94:9d:d8:66:e4:d4:c3:a5:cd:01:1f:
                    79:bf:f0:0e:c4:85:6d:bb:82:10:e8:d8:e2:71:49:
                    1c:90:87:f2:f9:05:69:26:3b:03:3f:7d:2e:17:13:
                    ad:77:fe:0c:2b:60:a4:03:bb:17:f2:f4:13:fe:c2:
                    ce:f0:5a:02:0e:03:8e:bb:dc:31:8a:bc:ad:3c:da:
                    eb:04:bb:d6:ed:4a:61:dc:40:ad:34:b6:bd:85:7a:
                    88:07:f4:95:5f:58:7c:d6:fb:14:44:b5:63:86:7f:
                    c3:a4:d7:93:ef:d5:57:01:60:a1:27:3f:3b:e7:cc:
                    3d:76:40:a6:40:33:29:e4:ba:2a:46:23:c6:22:da:
                    7e:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:96:CD:4A:58:D0:83:5A:ED:46:B7:B5:A9:A7:7F:E9:5E:A6:44:CC
            X509v3 Authority Key Identifier:
                keyid:A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:d2:ed:ce:07:61:d5:f3:26:91:5f:41:52:27:8c:24:84:02:
         94:84:b5:d8:82:b4:08:a2:3a:7c:88:7b:31:13:b1:90:2c:0d:
         08:d9:d7:52:a2:48:0b:32:ad:b6:09:3f:ef:f9:db:c3:40:7c:
         05:77:43:11:9b:ca:e0:fb:ef:f0:ea:53:7a:f7:31:6a:26:67:
         2e:83:ee:1c:03:2e:ea:e4:ab:97:44:64:66:09:93:81:71:5c:
         02:40:c8:ad:ae:d1:8d:5c:fe:ef:50:4c:32:bb:73:32:a0:fd:
         01:67:3a:2c:db:ec:69:98:c0:d3:b4:c5:5e:99:cc:13:3e:ac:
         00:1a:e6:81:d5:b2:30:f4:2b:65:7b:4b:98:e7:90:95:dd:98:
         3a:db:bf:87:b7:28:ec:19:f3:c7:c6:c3:2e:13:e6:d8:13:03:
         17:7b:4f:0d:5d:76:f9:0c:37:e9:f8:e0:69:6c:ad:69:5f:1c:
         00:68:c6:01:07:4a:c2:b9:79:a0:2c:c8:4d:4f:b6:a6:bc:9e:
         7d:7b:be:57:27:b4:eb:d5:37:4a:08:39:c7:7e:28:a0:ca:51:
         3e:d2:eb:1f:39:90:d9:f4:53:4e:b2:ec:c8:5e:e2:7d:39:44:
         77:5b:58:a8:47:91:1e:41:c1:72:b1:84:2f:5d:6f:c0:82:6d:
         97:4d:86:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----