Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
File:                     tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json)
Hash identifier:          tcwjLp6qEyC7PqnDR5fdvQy9AHg5AQUUsij2Thhrces=
Subject key identifier:   D0:05:E2:9A:2E:17:91:B9:73:A2:43:09:6F:B2:83:19:E8:D1:51:E4
Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38
Certificate issuer:       /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538
Certificate serial:       0AF4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
Manifest number:          0AED
Signing time:             Fri 28 Mar 2025 19:33:00 +0000
Manifest this update:     Fri 28 Mar 2025 19:33:00 +0000
Manifest next update:     Fri 04 Apr 2025 19:33:00 +0000
Files and hashes:         1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: kncvIHWseIwBjysgjlGDmv2cTJwSdjsvfEnUMSWJgKc=)
                          2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: muZS9WNxEL2wJKlgL2513BvJDYDXcwI4cyb0WW+U1LY=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2804 (0xaf4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916D459
        Validity
            Not Before: Mar 28 19:33:00 2025 GMT
            Not After : Apr  4 19:33:00 2025 GMT
        Subject: CN=67e6f96c-683b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:db:98:e6:7d:e7:d0:7c:25:a6:ac:e7:4a:ab:
                    f8:00:7d:68:34:e2:1e:14:87:14:22:75:cd:66:6f:
                    b6:49:a0:88:2d:0d:8b:16:92:58:e4:06:4c:87:e0:
                    5c:67:af:c5:80:bf:ca:d2:8f:02:53:43:a5:ef:b5:
                    72:ac:cc:c9:26:4d:dc:0d:57:a7:17:13:d4:16:fb:
                    6a:54:a4:ee:f2:93:15:8c:ae:cb:4b:a0:eb:07:24:
                    d9:ec:d3:9e:50:37:94:17:06:5c:90:f7:d4:37:20:
                    8c:c1:e9:19:6a:53:ff:bc:93:fe:1b:bf:8e:0f:5b:
                    19:0b:29:72:16:cc:4f:6c:7f:54:1e:1e:f7:7b:ac:
                    5b:d7:7b:0a:98:8a:53:c2:3f:ce:1e:2e:5d:a9:3a:
                    af:38:3a:ab:f3:f1:16:53:67:07:3d:ce:e7:e5:5c:
                    e5:21:3e:53:b5:73:41:55:16:04:16:7d:0f:1f:9c:
                    87:46:c0:93:8f:31:dd:a0:c4:66:4a:e1:d8:d2:1a:
                    c2:2f:a4:c3:da:ed:b4:5f:e5:71:a8:6e:be:5a:09:
                    c4:f9:4c:8d:a0:05:f8:0c:99:75:87:6e:bb:ed:01:
                    30:91:f7:32:41:0f:41:a4:9b:d3:3b:ca:00:28:9a:
                    07:22:54:a3:74:3a:c4:f2:6d:ab:9b:df:db:e4:ed:
                    ae:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:05:E2:9A:2E:17:91:B9:73:A2:43:09:6F:B2:83:19:E8:D1:51:E4
            X509v3 Authority Key Identifier:
                keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:33:f9:63:39:91:8a:2c:8b:d5:38:28:00:54:2e:50:cb:c8:
         04:8a:b2:23:9d:de:08:78:a5:fd:2b:6a:5a:30:0b:23:06:bf:
         0b:db:c1:f2:7f:60:19:a5:59:4e:33:5f:d3:bd:42:a8:53:70:
         d8:2a:4c:ad:a9:b5:a8:9b:4e:45:33:f6:a1:51:a6:65:83:0c:
         c7:e1:11:20:eb:73:67:62:64:fa:b0:a6:39:c0:0b:fc:e2:c9:
         f4:1c:aa:99:1f:77:58:a1:b1:64:d5:d5:35:7d:89:88:b2:67:
         20:d0:c8:c5:d0:f3:37:c7:18:a0:28:b1:73:5d:eb:21:77:b0:
         e8:0e:d4:76:f3:77:ad:b8:c9:cd:8c:12:8a:6c:de:cd:b2:2b:
         a7:7a:fc:c0:5a:de:e8:cd:f1:cf:24:e8:26:bf:0e:f1:82:43:
         06:94:0a:10:7f:df:9b:15:9b:8b:79:23:01:7c:76:48:89:05:
         57:52:25:85:86:d6:45:9d:bc:e8:66:6a:78:b9:7d:49:b9:1a:
         70:11:c8:85:c1:a1:d3:cf:a2:fd:42:38:f1:1a:2d:79:9d:70:
         a2:ab:17:e5:d0:1c:22:d5:84:dc:0c:07:6d:64:aa:e5:9f:07:
         e9:4a:c2:0b:8f:c3:0d:ed:53:69:61:1d:a5:ff:ee:af:01:0c:
         d0:63:7f:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----