Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft
File:                     Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft (raw, json)
Hash identifier:          QVK4pFi3XYA/7l+gZHu5Rahh2WflNTuR7SmURMdMvyY=
Subject key identifier:   03:86:23:7A:F5:C7:A5:61:9C:24:D5:45:5B:B5:30:24:0F:2E:99:F6
Authority key identifier: 17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A
Certificate issuer:       /CN=A917EFB8/serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A
Certificate serial:       3470
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft
Manifest number:          346A
Signing time:             Fri 28 Mar 2025 14:52:42 +0000
Manifest this update:     Fri 28 Mar 2025 14:52:41 +0000
Manifest next update:     Fri 04 Apr 2025 14:52:41 +0000
Files and hashes:         1: Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl (hash: H0UvEZLUUAivy5Ae56dDzAHssABTUdh9VzRnsXFvfrY=)
                          2: E68E0FD4077B11EB98CA5D1CC4F9AE02.roa (hash: uVTYtUHXjzvA/dK6fjacM7pKV07g+NehzxqIMydfuDY=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13424 (0x3470)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917EFB8
        Validity
            Not Before: Mar 28 14:52:41 2025 GMT
            Not After : Apr  4 14:52:41 2025 GMT
        Subject: CN=67e6b7ba-fb39
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:bc:72:f8:64:52:1a:27:9f:9d:9a:61:ea:9f:
                    4c:23:8b:f4:28:c2:35:55:a3:a6:b6:10:de:4c:5f:
                    b4:b3:e2:41:35:98:3a:c9:68:37:b3:d5:45:9f:47:
                    ae:1b:51:8a:f3:7b:15:84:bc:b8:d8:14:ed:af:51:
                    8d:4d:1c:a6:c8:6f:71:50:f8:7f:3c:fa:5c:7e:2b:
                    3b:19:6b:a5:2c:da:d7:4e:fb:1c:1a:ea:d4:ea:ce:
                    40:d9:92:ad:7e:d1:0c:f7:f9:0d:6e:73:ad:9d:61:
                    43:dc:ee:39:ac:d7:e0:e3:28:76:df:f8:e7:f0:4a:
                    9a:b5:1d:83:db:22:b1:00:8a:23:e1:a9:33:2b:44:
                    08:4a:66:f8:83:5c:16:47:96:d0:bc:25:cc:62:ea:
                    46:2f:b0:64:7e:26:f0:ad:56:55:50:0b:3f:e2:88:
                    5f:aa:0b:f1:b9:aa:1b:69:a5:ef:9f:d8:d2:76:c4:
                    50:14:3d:da:27:ca:4c:45:66:03:05:eb:e5:50:a3:
                    ab:b8:fe:5b:c0:78:ae:d4:5d:98:9f:1a:6c:ab:51:
                    e3:1e:39:b9:c2:08:da:96:30:28:24:f3:03:b6:c7:
                    f9:17:48:dd:2b:e0:62:03:9c:4a:b0:1c:5a:2c:9e:
                    83:d4:b0:b0:35:1e:22:e2:6e:cd:5f:42:1a:30:79:
                    e8:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:86:23:7A:F5:C7:A5:61:9C:24:D5:45:5B:B5:30:24:0F:2E:99:F6
            X509v3 Authority Key Identifier:
                keyid:17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:c3:8f:46:ec:1a:c6:8b:6b:df:d7:3e:a9:55:04:be:f6:45:
         4b:4a:b3:e7:0d:15:ca:24:e6:48:30:16:fd:cf:3a:c5:3a:e5:
         d0:d6:dc:4e:08:22:56:a0:09:81:aa:94:1a:d5:b7:f0:83:bf:
         12:a7:1c:2b:e5:dd:16:0d:eb:cb:3c:03:e4:34:00:e2:11:6a:
         09:98:f5:48:7b:50:00:fb:ea:e0:dd:35:b0:3d:17:3b:4b:3c:
         55:e2:da:93:ee:68:b9:7e:c3:0e:3d:79:b2:db:d5:c0:37:51:
         88:67:7a:b0:09:d9:85:66:57:7c:4b:a0:86:87:63:aa:ee:86:
         8a:4b:4e:b2:95:b2:05:28:92:be:27:31:c3:54:14:4f:b4:bf:
         85:6a:89:f7:37:95:c3:79:0a:76:ff:71:6e:bf:d0:52:cc:c5:
         b1:19:e3:59:de:72:48:f9:44:c1:ab:23:17:7b:31:f7:ac:5f:
         d8:8b:c2:42:ed:d5:69:6a:22:9d:b5:8d:d2:ff:63:e2:c4:f2:
         84:61:f4:7b:2a:e6:ae:20:c5:b9:58:61:98:28:b0:7c:f0:da:
         23:23:f4:6b:25:af:18:93:6e:60:83:6d:0d:2e:a0:9c:b7:6f:
         70:3b:2f:db:8c:1c:bf:f3:dd:19:61:f7:5c:49:66:fb:89:c1:
         fb:d4:4d:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----