Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/H2M_ctHGeBbCBkpW5Tg82VTdwOU.mft
File:                     H2M_ctHGeBbCBkpW5Tg82VTdwOU.mft (raw, json)
Hash identifier:          QdvHH/77yDLRj3SqP30VPxqM3XvLY4e9EpzBu8B3JlI=
Subject key identifier:   96:DD:03:A0:66:0A:C2:F4:20:50:E8:EB:A9:C7:0B:BD:B7:0C:A6:51
Authority key identifier: 1F:63:3F:72:D1:C6:78:16:C2:06:4A:56:E5:38:3C:D9:54:DD:C0:E5
Certificate issuer:       /CN=A91764E1/serialNumber=1F633F72D1C67816C2064A56E5383CD954DDC0E5
Certificate serial:       D7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2M_ctHGeBbCBkpW5Tg82VTdwOU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/H2M_ctHGeBbCBkpW5Tg82VTdwOU.mft
Manifest number:          D5
Signing time:             Sat 29 Mar 2025 04:59:35 +0000
Manifest this update:     Sat 29 Mar 2025 04:59:35 +0000
Manifest next update:     Sat 05 Apr 2025 04:59:35 +0000
Files and hashes:         1: H2M_ctHGeBbCBkpW5Tg82VTdwOU.crl (hash: 5qtkZV81zkwwSmXb4w6vr3+p7Wxw2e/222LfXC3P4+c=)
                          2: 30A1B4D0C67E11EEB4008058C4F9AE02.roa (hash: F4PEaJfd6HP1/7qcDw3hvzZGyQ0ocll5S0CbxU1lwXk=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 215 (0xd7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91764E1
        Validity
            Not Before: Mar 29 04:59:35 2025 GMT
            Not After : Apr  5 04:59:35 2025 GMT
        Subject: CN=67e77e37-9372
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:54:f1:23:bb:07:80:d0:67:19:de:1e:a3:aa:
                    98:81:e9:1d:68:2f:ce:87:ec:ff:98:b0:4b:06:70:
                    a6:a2:47:b5:0a:8d:32:f4:99:be:1b:43:20:4b:8d:
                    b8:19:65:1d:2a:c5:31:79:9b:29:0b:3e:76:7f:c0:
                    8c:79:47:5d:e7:b7:63:bb:62:c5:17:cc:e1:40:b2:
                    4d:89:5f:dc:c7:bc:43:b3:4e:c3:72:20:5f:17:1d:
                    33:cc:1f:f7:94:3b:70:b3:c1:04:7f:80:74:8d:b8:
                    d6:92:57:7b:e3:04:a8:74:ce:5e:2c:7d:df:ee:7a:
                    c1:da:d9:6a:79:e4:27:da:17:f1:82:76:55:dd:5c:
                    21:70:c8:38:9d:d3:f2:62:5d:42:cd:67:2d:ab:60:
                    28:ea:f0:1e:61:fd:5f:13:79:96:04:5a:8d:61:46:
                    54:f7:73:17:82:2d:11:d2:d7:7f:4b:43:2d:34:d8:
                    00:62:06:d0:e0:83:4e:67:ef:f7:75:dd:fe:b7:c7:
                    7e:6b:ee:db:de:86:4a:93:71:70:89:e1:e9:d2:3d:
                    28:b7:fa:74:7f:ed:52:96:1a:12:6b:c9:5d:e0:73:
                    23:87:1b:b8:18:c9:54:3c:96:d7:10:2e:24:49:5e:
                    0f:23:76:ec:c7:71:09:26:8b:d8:2a:7d:5a:3c:99:
                    e3:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                96:DD:03:A0:66:0A:C2:F4:20:50:E8:EB:A9:C7:0B:BD:B7:0C:A6:51
            X509v3 Authority Key Identifier:
                keyid:1F:63:3F:72:D1:C6:78:16:C2:06:4A:56:E5:38:3C:D9:54:DD:C0:E5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/H2M_ctHGeBbCBkpW5Tg82VTdwOU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2M_ctHGeBbCBkpW5Tg82VTdwOU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/H2M_ctHGeBbCBkpW5Tg82VTdwOU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:fb:74:13:64:73:97:13:a0:33:a9:8a:7d:b4:dc:aa:00:43:
         e6:4b:4e:7c:1a:d4:89:4b:35:af:2b:eb:d8:7f:88:42:aa:d2:
         de:d8:d0:c1:bf:cb:ce:e1:4d:32:99:1c:31:ee:cf:a7:ef:63:
         61:11:9b:ff:ba:01:f6:6f:8f:37:6e:80:32:11:ff:8d:ae:cb:
         e8:5a:9c:45:00:8c:83:aa:81:72:a3:f4:4d:2a:34:80:ee:37:
         34:e3:a0:d8:00:06:6a:43:2b:5d:c7:1b:01:00:a8:5d:0f:0c:
         21:aa:e5:78:ac:0a:98:2f:b5:c0:38:6c:b9:ed:cf:d4:c6:67:
         fa:59:5c:df:ac:6a:38:a0:5b:39:a3:44:b6:a9:05:61:5b:30:
         51:c6:e8:ec:b8:71:ea:47:69:bf:59:0b:a0:91:de:f0:59:70:
         9e:8a:d6:ea:c2:b5:14:e3:28:d5:b9:fd:79:e1:55:da:de:34:
         ed:71:63:46:9c:3a:7e:f8:e0:a5:4c:e6:c4:09:03:a0:bd:1a:
         46:94:a7:95:c2:c6:00:eb:2d:5d:71:98:92:6f:01:c9:54:9d:
         c4:8e:e3:74:e5:e4:a7:b2:87:c4:40:c4:8a:02:9f:ab:e6:58:
         be:24:f8:87:d8:a1:e5:a8:3c:bc:e1:c6:fd:b4:62:e8:7d:38:
         00:f4:d9:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----