Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft
File:                     HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft (raw, json)
Hash identifier:          uE7uM6eajGRhJR8MNhQ8otK/MvmqPr0NOWKZhfFeH70=
Subject key identifier:   1D:8E:7E:BD:13:5A:A0:08:B0:27:C6:05:5E:58:2F:DD:62:5C:4C:10
Authority key identifier: 1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58
Certificate issuer:       /CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658
Certificate serial:       DE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft
Manifest number:          DB
Signing time:             Sat 29 Mar 2025 04:59:26 +0000
Manifest this update:     Sat 29 Mar 2025 04:59:26 +0000
Manifest next update:     Sat 05 Apr 2025 04:59:26 +0000
Files and hashes:         1: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl (hash: WdJJqgFVtlQ9Ufmj37d95liIieujxam+S9Jk7qGpYuM=)
                          2: 4AFD4994CDD011EEA5534481C4F9AE02.roa (hash: 5W+7nQ6sUflibilCBlXCdge8iT2G6A6aLqY201MPVEY=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 222 (0xde)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9178C1E
        Validity
            Not Before: Mar 29 04:59:26 2025 GMT
            Not After : Apr  5 04:59:26 2025 GMT
        Subject: CN=67e77e2e-28e9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:c7:d4:c9:d0:c1:43:f6:f8:45:cd:10:57:07:
                    66:36:be:54:3c:2d:0b:c7:d2:d8:59:94:ae:bd:4a:
                    35:f1:bb:e5:58:16:ba:99:d0:d9:8a:ff:a5:40:2a:
                    3a:1e:0a:2d:9a:c1:f7:90:e1:8f:6c:b8:b2:01:ba:
                    6e:25:e0:f3:89:7c:52:53:40:74:d4:bb:ce:cf:6f:
                    ea:c0:95:77:9f:09:97:9f:ce:c9:b4:d9:6e:97:6f:
                    88:40:e3:b1:26:5e:b4:4e:f3:3b:36:f4:34:ea:76:
                    37:aa:ac:84:8a:fc:ff:53:a7:ec:9d:f6:5e:a6:72:
                    45:a2:c3:24:5d:f1:82:32:15:64:42:dc:01:0d:f8:
                    f8:8a:50:5e:40:0f:83:c7:7c:19:8f:d4:df:a9:ed:
                    69:0a:12:6b:e0:65:a4:58:ab:1f:95:0c:4c:c8:86:
                    6e:7d:e7:e0:2f:35:f8:27:5f:00:28:94:df:86:49:
                    7a:0d:c6:37:7b:c8:4d:98:90:37:dd:70:cf:71:15:
                    76:16:c3:fa:2e:b3:96:94:3c:71:59:c6:b4:54:f0:
                    86:65:92:e4:f0:1e:fd:ab:29:8e:f6:41:0d:e6:b5:
                    53:17:5f:d1:54:7a:83:9c:ae:11:d6:c1:f3:6b:b5:
                    e5:17:3c:7b:92:25:83:d4:c1:07:c4:d4:c6:ff:82:
                    cc:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:8E:7E:BD:13:5A:A0:08:B0:27:C6:05:5E:58:2F:DD:62:5C:4C:10
            X509v3 Authority Key Identifier:
                keyid:1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:f6:a5:22:6e:10:48:b4:f1:69:c7:90:aa:ba:78:e8:b7:f9:
         1f:92:48:c8:9b:0c:d4:86:5f:da:39:cc:37:44:c1:f9:72:bc:
         4a:8d:a6:69:84:25:83:09:63:db:c8:b9:e6:f2:09:cb:a2:72:
         6f:66:40:26:16:57:66:72:bc:58:25:f1:b9:6f:9f:45:29:5b:
         f0:6e:df:43:10:d5:0d:e3:24:d5:3f:8e:f6:c5:48:96:89:84:
         3e:fc:23:d5:4a:3e:67:2d:49:67:20:ce:21:9a:0e:6d:35:38:
         42:4b:31:49:db:db:8a:51:cd:cd:66:61:5d:f1:35:0e:36:e5:
         b6:1b:07:23:6c:1d:ee:2f:3f:30:94:2e:74:62:9d:02:49:e4:
         3c:7a:1c:c9:21:6c:df:6f:39:b1:aa:c4:ac:59:37:78:47:09:
         45:d0:85:57:5b:8a:23:11:d4:6d:e3:b1:78:1b:78:d1:0d:36:
         04:80:70:9f:f6:22:76:ba:82:b6:7d:24:26:5c:08:fd:a0:3f:
         0e:e8:76:b6:28:b6:a6:56:3a:14:8a:ad:99:d0:df:6a:bb:f4:
         a4:c5:40:69:4d:10:c7:7b:42:8f:ea:b3:51:bf:61:60:a9:67:
         6c:56:ec:d1:81:a3:94:e8:2a:f3:42:ab:82:e6:17:83:c7:a8:
         2a:3d:f9:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----