Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft
File:                     HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft (raw, json)
Hash identifier:          Y+8bs99Nm0tN+ryijI1YPpQCrJQCu0G+js8rZCunaBU=
Subject key identifier:   BB:12:C1:25:49:DA:02:FA:CA:42:D8:FF:17:91:35:37:C7:C6:80:0A
Authority key identifier: 1C:62:DC:1D:80:CB:AB:03:03:53:E1:F5:74:B3:60:01:98:FB:6B:71
Certificate issuer:       /CN=A916ED18/serialNumber=1C62DC1D80CBAB030353E1F574B3600198FB6B71
Certificate serial:       1929
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HGLcHYDLqwMDU-H1dLNgAZj7a3E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft
Manifest number:          1915
Signing time:             Fri 28 Mar 2025 16:32:37 +0000
Manifest this update:     Fri 28 Mar 2025 16:32:37 +0000
Manifest next update:     Fri 04 Apr 2025 16:32:37 +0000
Files and hashes:         1: HGLcHYDLqwMDU-H1dLNgAZj7a3E.crl (hash: hIBHAsnk+nVscLeW/zIUNYWVBe9jb9hKCP2Gdz8jjZU=)
                          2: BE8F165C873111E9AA82EC27C4F9AE02.roa (hash: Xvk9c25qRt1XT1WoQeTZNF8a7ZR5UOWIfJYiBZNp3Lo=)
                          3: 9C1DF7FC434311ECBE4BAA38C4F9AE02.roa (hash: ZYXynd/2Y7ukYX8bO7tWRLxmXPOwOSzcsRTG+CNcqC8=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6441 (0x1929)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916ED18
        Validity
            Not Before: Mar 28 16:32:37 2025 GMT
            Not After : Apr  4 16:32:37 2025 GMT
        Subject: CN=67e6cf25-2471
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:0a:61:0e:fb:60:58:9e:41:7e:85:cc:8b:d2:
                    a6:db:ac:d8:2c:e2:9d:89:6a:7f:b1:72:c8:5e:b6:
                    06:56:5e:67:ee:6e:12:6d:b9:ba:79:cf:95:c2:4b:
                    46:96:e1:94:db:f0:e9:eb:b1:94:53:6c:91:26:6a:
                    c0:fb:53:a6:c6:b4:c4:b5:88:83:06:18:ef:a0:57:
                    c3:c6:71:e8:7e:fd:9c:9d:98:02:26:27:26:58:f2:
                    fe:c9:00:45:14:ff:fb:21:ca:5b:80:c6:75:76:23:
                    88:63:c6:14:31:36:01:26:96:c8:e6:1d:8d:19:42:
                    e8:55:a7:58:88:07:ec:b5:e9:2c:fd:28:cd:23:df:
                    4b:5b:7f:f4:a2:b2:63:45:86:97:1f:fc:f2:0c:8e:
                    7f:22:7d:5e:18:49:52:a1:30:70:52:34:60:21:c0:
                    43:67:ed:73:92:02:05:44:e4:15:20:0c:8e:99:88:
                    8c:8a:c1:ee:87:26:23:04:7f:1f:18:9b:d2:26:bc:
                    3a:9f:d3:e2:98:52:62:f5:d9:e4:a5:30:04:39:6f:
                    f2:b1:a1:8e:1f:01:06:83:09:dd:af:66:9b:8f:a7:
                    87:ec:38:a3:6b:32:ca:33:84:fb:ad:ef:bb:e6:1b:
                    ff:87:fd:09:c1:d4:81:0c:81:f1:38:bc:61:66:ef:
                    50:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:12:C1:25:49:DA:02:FA:CA:42:D8:FF:17:91:35:37:C7:C6:80:0A
            X509v3 Authority Key Identifier:
                keyid:1C:62:DC:1D:80:CB:AB:03:03:53:E1:F5:74:B3:60:01:98:FB:6B:71

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HGLcHYDLqwMDU-H1dLNgAZj7a3E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:6a:f1:0c:5b:db:8b:b6:3a:6d:ca:8b:5b:0e:4f:97:35:08:
         f6:fc:ae:96:a9:0b:63:21:76:d7:a0:8a:22:b8:3e:e9:32:da:
         90:36:40:32:9b:47:33:b8:c8:d9:c0:5c:8c:97:9d:c7:00:47:
         63:08:f1:88:2b:45:f5:8a:2b:5b:ea:4b:e1:12:fa:10:ac:14:
         d5:4f:22:84:fa:8a:69:be:85:96:c5:b9:37:c1:5d:9e:27:ac:
         63:d8:76:63:cf:6d:dd:8f:1e:75:01:17:92:b8:e0:f6:3f:95:
         90:16:0b:2f:7e:4f:4a:d4:46:18:94:26:5e:21:f7:ff:bd:7c:
         38:8f:63:fd:8d:27:80:69:a2:21:22:36:57:9d:63:03:61:c2:
         f8:06:3e:b4:eb:c2:1b:85:34:c9:8f:ff:15:2a:15:8e:8e:78:
         16:27:20:f1:b8:4d:a0:d2:38:b8:c8:c0:e3:c8:19:bd:81:67:
         a0:b5:c5:3d:5a:23:16:71:cb:d1:85:ce:0d:4e:ad:98:99:20:
         f5:cb:63:d2:43:18:f9:b8:71:cd:f7:20:31:85:81:4a:82:00:
         b3:15:f9:eb:69:07:d0:9d:8a:de:5f:2d:e3:d9:00:6c:d3:6a:
         fa:47:fd:68:41:86:f4:4a:d3:2b:a8:cd:e0:99:cb:82:70:99:
         63:20:16:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----