Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft
File:                     AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft (raw, json)
Hash identifier:          snNXAmhUkZTRznEUEo7Vdk6aOq103gJ5zTRQMMKrcBA=
Subject key identifier:   95:8C:ED:66:B3:DD:17:C8:10:A6:FF:58:11:0E:49:D3:D2:24:A7:85
Authority key identifier: 00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB
Certificate issuer:       /CN=A91735C9/serialNumber=006323A8DD01DEA95BD1AE44C9FFC453404425CB
Certificate serial:       0B32
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft
Manifest number:          0B29
Signing time:             Fri 28 Mar 2025 19:22:17 +0000
Manifest this update:     Fri 28 Mar 2025 19:22:17 +0000
Manifest next update:     Fri 04 Apr 2025 19:22:17 +0000
Files and hashes:         1: AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl (hash: LdQoqHWZkrDlyM1gHss7GXy9ah84rx70MVP4y85yuCQ=)
                          2: 32DDB7DA368B11EA9713E971C4F9AE02.roa (hash: KCGgayyIaV9bw3+jN02UdfN4476+RHEdK89wpH03TIg=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2866 (0xb32)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91735C9
        Validity
            Not Before: Mar 28 19:22:17 2025 GMT
            Not After : Apr  4 19:22:17 2025 GMT
        Subject: CN=67e6f6e9-9246
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:0e:c5:28:26:a5:10:c2:33:b0:ca:f1:93:d7:
                    bd:2a:4a:d0:00:5b:6e:02:e5:10:c1:f6:2f:bc:de:
                    5c:07:26:33:bc:e2:45:2d:60:40:83:c6:f4:a5:b6:
                    89:72:c5:e6:b0:02:24:d5:e2:12:f0:da:a3:7a:16:
                    bd:39:91:f6:e4:7a:47:07:8a:d2:da:d0:38:69:76:
                    9d:6f:5a:41:82:61:50:f1:f1:d9:c2:d0:ab:6c:24:
                    3d:72:17:1d:10:5f:53:92:e4:31:ac:0c:cd:43:b8:
                    a4:b7:dd:17:1c:68:f7:bc:7a:1b:03:a6:23:a2:9e:
                    46:c3:ed:78:38:14:98:db:4c:5a:e4:3b:51:7f:19:
                    5f:51:3e:d4:34:26:72:6f:fc:c6:45:a5:c1:42:23:
                    de:ac:8d:ec:cd:c6:58:9b:ea:56:75:53:4f:d4:f3:
                    c1:d7:d2:f8:d4:98:a3:e5:67:19:b8:0b:97:51:37:
                    e8:f8:82:0a:73:c1:f8:f7:42:1c:65:3d:bc:04:3f:
                    e4:f0:43:f7:9e:8e:9d:37:53:72:c3:0f:2b:94:e6:
                    79:90:25:76:fa:ff:1e:d7:82:74:2e:35:fd:a0:b6:
                    b8:f8:d9:be:69:5a:8d:25:44:f7:7f:5f:86:91:bd:
                    97:cd:0f:ef:64:68:1b:87:39:0c:a2:5e:32:2a:ec:
                    4d:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:8C:ED:66:B3:DD:17:C8:10:A6:FF:58:11:0E:49:D3:D2:24:A7:85
            X509v3 Authority Key Identifier:
                keyid:00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         be:cb:0e:f4:12:21:47:6a:52:a5:ce:41:d2:76:e7:14:04:ff:
         98:f3:45:57:0e:f6:d5:63:0e:bd:01:cc:78:fd:11:bf:8d:6a:
         46:ae:c2:8f:5f:ce:f5:4a:f2:89:e4:51:15:64:a9:25:f6:4d:
         da:7f:3d:34:ca:71:8a:46:89:7e:7c:b3:42:e2:4b:1d:e2:50:
         eb:16:be:d9:44:fe:19:2c:54:65:a5:70:9c:6b:6d:38:73:a4:
         cc:64:cb:0a:70:02:f4:0c:7d:b0:38:4f:91:e7:84:cc:50:30:
         7f:28:df:80:72:9a:c5:a6:de:ef:26:7e:de:65:6e:57:9f:5b:
         44:74:ef:3a:d1:11:c7:99:e1:7c:8a:4b:6d:01:cb:13:4d:6f:
         9b:05:97:98:5e:a0:d4:19:30:4d:73:30:d1:de:a5:6f:a4:a1:
         9f:1b:37:1c:47:29:5d:4f:c3:4f:90:80:4c:e4:af:43:f9:2f:
         e2:91:76:e5:41:d0:46:37:5e:75:0c:49:53:ce:73:73:b0:4c:
         b8:0f:be:d0:d4:e8:b5:43:fc:4c:49:77:a3:84:e7:b3:e4:b2:
         b3:e5:53:f2:99:b0:c0:31:e8:77:4c:21:7f:73:1a:d8:20:a3:
         66:54:ed:66:9f:70:94:8a:f4:6b:b5:ec:18:bb:35:b4:47:ce:
         ca:49:f1:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----