Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft
File:                     YsQYLAA-_Po43a9O-QT7BP5bVko.mft (raw, json)
Hash identifier:          Jc9XPDe71VHIXoQfgpSapPg9ALF+TQFIyf30aVxGRxs=
Subject key identifier:   13:E4:7C:28:5E:6B:EF:EB:89:81:0E:AE:24:EC:B2:2E:A2:A1:C4:F6
Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A
Certificate issuer:       /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A
Certificate serial:       0790
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft
Manifest number:          0768
Signing time:             Fri 28 Mar 2025 21:53:06 +0000
Manifest this update:     Fri 28 Mar 2025 21:53:06 +0000
Manifest next update:     Fri 04 Apr 2025 21:53:06 +0000
Files and hashes:         1: YsQYLAA-_Po43a9O-QT7BP5bVko.crl (hash: zQ70jj2WCL+d0NEc814J/AGHnVt8phIzMQtH0T2JmH8=)
                          2: CDA6F2D0111611EFAD808A81C4F9AE02.roa (hash: m3HRY//GpdVT+hpG8y49SxDvHAGnCrO93hZGlg6oP6I=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1936 (0x790)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917CE22
        Validity
            Not Before: Mar 28 21:53:06 2025 GMT
            Not After : Apr  4 21:53:06 2025 GMT
        Subject: CN=67e71a42-f431
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:09:bd:16:7c:41:ba:8e:82:c7:f3:a7:d7:e7:
                    02:67:a4:07:af:0d:34:9c:68:2b:60:8a:50:b4:50:
                    28:c9:e6:44:74:bb:4e:9b:cb:52:89:35:a0:80:73:
                    e4:1c:a7:87:b5:66:11:d8:d3:33:3c:b2:d9:0b:6e:
                    1b:b1:19:8b:8e:9d:bf:de:16:85:9e:05:aa:5d:c0:
                    ef:8f:2a:92:f5:a3:48:e2:cf:17:5b:6b:45:f2:40:
                    50:16:37:a8:97:81:f0:70:b9:b2:a2:54:44:f4:f0:
                    89:78:83:23:5e:f5:a5:85:7d:f6:b9:1b:9a:9d:3c:
                    2e:3a:b3:f7:cf:4d:b1:d3:a1:f7:0d:2a:95:2d:2b:
                    34:e2:42:5d:a9:62:84:6e:40:30:e3:73:35:b8:69:
                    ae:b2:76:9e:6a:ef:8b:b6:0b:eb:d2:d4:c4:ec:7d:
                    65:b9:aa:86:b4:ec:3f:7c:6e:b0:21:d2:e5:da:e8:
                    7d:cb:87:ea:72:81:ab:a5:fd:fb:42:03:a6:45:8c:
                    5c:9d:0a:00:40:a0:a2:56:bb:75:29:b8:ab:13:a6:
                    a1:41:e0:de:f8:c7:87:49:5d:02:f7:5a:91:97:d6:
                    6c:9f:d5:63:10:8b:dc:be:37:e0:ec:58:3d:c7:27:
                    52:62:ed:67:87:44:f9:07:7f:b9:e1:04:f8:a6:92:
                    56:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:E4:7C:28:5E:6B:EF:EB:89:81:0E:AE:24:EC:B2:2E:A2:A1:C4:F6
            X509v3 Authority Key Identifier:
                keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:9b:7e:6e:d3:14:5d:6d:0d:92:8f:26:ce:3d:17:6f:89:4c:
         d3:44:7b:61:5c:5c:eb:53:de:5d:bc:75:6e:cc:e1:cf:a9:5a:
         e0:31:ca:ec:41:d2:89:57:83:e1:91:4d:a5:7c:cc:94:c8:fe:
         db:95:91:03:6b:83:81:7d:57:14:f5:2d:4d:34:d3:8e:8f:02:
         2c:37:29:7b:bc:d8:13:41:a3:1a:b6:0c:0b:43:bd:2a:89:28:
         03:9b:a8:38:8f:e9:fc:4a:4f:77:72:5a:7d:c6:14:ec:3e:12:
         ee:92:d2:ab:cf:21:29:c5:e1:0e:13:52:4d:1d:5a:c4:6d:8c:
         df:f1:f4:98:49:6a:95:84:ef:b8:3f:45:02:53:a5:22:28:91:
         3a:52:01:fd:f8:62:bc:8a:a5:c0:83:9d:bc:8a:d2:52:0b:67:
         03:ef:32:de:f3:d2:62:bc:20:d3:ee:cf:9d:3d:8e:17:e9:94:
         1c:d1:0a:5a:8d:25:bd:58:c6:e8:d4:a4:30:4d:c5:6d:77:89:
         2d:43:84:25:a4:61:1f:46:98:77:89:83:04:ed:03:58:d5:ae:
         ef:05:74:78:50:39:69:01:9a:b6:e3:24:51:d4:e4:e0:a0:70:
         43:22:71:ce:19:60:c2:62:ac:cc:1e:23:9d:98:3e:bd:60:f3:
         85:a1:4b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----