Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917F352/3D9D7F5EA1FB11EEA360925AC4F9AE02/Crfzan3eThH0sBWX3w3nopqAvEQ.mft
File:                     Crfzan3eThH0sBWX3w3nopqAvEQ.mft (raw, json)
Hash identifier:          WunPjNrRDRXrMR/jCmytSBFXb47cHVjckhZU4I25sYE=
Subject key identifier:   F2:31:1C:40:44:20:1B:3C:85:83:D6:31:C4:C0:34:35:92:13:DC:A3
Authority key identifier: 0A:B7:F3:6A:7D:DE:4E:11:F4:B0:15:97:DF:0D:E7:A2:9A:80:BC:44
Certificate issuer:       /CN=A917F352/serialNumber=0AB7F36A7DDE4E11F4B01597DF0DE7A29A80BC44
Certificate serial:       EF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Crfzan3eThH0sBWX3w3nopqAvEQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917F352/3D9D7F5EA1FB11EEA360925AC4F9AE02/Crfzan3eThH0sBWX3w3nopqAvEQ.mft
Manifest number:          ED
Signing time:             Sat 29 Mar 2025 04:43:14 +0000
Manifest this update:     Sat 29 Mar 2025 04:43:13 +0000
Manifest next update:     Sat 05 Apr 2025 04:43:13 +0000
Files and hashes:         1: Crfzan3eThH0sBWX3w3nopqAvEQ.crl (hash: /cyMxlGk6zGG9yTWZw9fS2JJEVAzk2Z1wKyxpCOk2TA=)
                          2: 8FE6CF86A1FB11EE9773325BC4F9AE02.roa (hash: 7+HziPW8bdU4fmbvKj0ZUtapknCkvsD+7VoRTrV2tSY=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 239 (0xef)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917F352
        Validity
            Not Before: Mar 29 04:43:13 2025 GMT
            Not After : Apr  5 04:43:13 2025 GMT
        Subject: CN=67e77a62-ebb5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:33:e7:cd:54:00:0d:26:f5:ce:78:57:27:39:
                    15:6a:d9:98:00:92:9b:58:9e:0c:31:99:ed:0d:4f:
                    4f:76:6f:05:be:da:5e:be:77:91:47:bc:09:93:8f:
                    cb:54:72:dd:cd:b6:a9:4b:eb:b9:e9:09:0f:98:d8:
                    4c:1c:ec:fb:56:6b:b5:e7:56:1d:08:2e:09:31:a5:
                    03:2a:86:96:0e:d0:b3:ac:38:11:67:40:88:ab:d0:
                    1b:c6:e2:ab:30:31:c0:e7:eb:44:75:a0:85:76:53:
                    e3:7b:0c:3e:20:e2:75:28:ca:b0:b4:a7:4a:4c:b7:
                    eb:02:6d:b9:e1:1a:51:b6:9f:9c:53:6d:7b:0c:83:
                    52:02:bd:32:04:58:67:3e:2a:80:cb:fd:65:6a:93:
                    0c:8f:bb:2a:dc:fb:20:d7:81:42:69:ec:55:3e:ad:
                    43:5c:56:ed:82:94:b6:72:6c:44:5f:45:18:df:82:
                    c6:66:84:0e:b0:4a:6e:f9:5e:4a:89:67:e1:43:97:
                    aa:62:44:bb:90:6a:e7:86:0d:00:2d:a3:b1:35:64:
                    6d:a3:60:22:4b:52:ec:ec:7e:22:ff:6f:ec:7e:dd:
                    4f:9c:ed:f8:c6:bb:dc:d3:0b:97:27:ca:78:14:31:
                    07:08:ec:cf:4d:04:13:51:fe:43:bd:d5:5b:5f:f6:
                    c5:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:31:1C:40:44:20:1B:3C:85:83:D6:31:C4:C0:34:35:92:13:DC:A3
            X509v3 Authority Key Identifier:
                keyid:0A:B7:F3:6A:7D:DE:4E:11:F4:B0:15:97:DF:0D:E7:A2:9A:80:BC:44

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917F352/3D9D7F5EA1FB11EEA360925AC4F9AE02/Crfzan3eThH0sBWX3w3nopqAvEQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Crfzan3eThH0sBWX3w3nopqAvEQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F352/3D9D7F5EA1FB11EEA360925AC4F9AE02/Crfzan3eThH0sBWX3w3nopqAvEQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:23:5d:41:45:77:17:6d:d9:1e:78:8b:ef:05:99:0e:50:28:
         12:46:69:3f:07:9e:ac:96:f4:81:ce:41:9e:65:6b:41:9d:df:
         f8:4d:ba:18:74:ae:a4:19:e7:a3:30:60:a4:c3:ee:8c:93:4a:
         d2:41:27:01:66:1f:0a:14:3d:2d:65:e9:b3:ab:1e:45:bb:46:
         ba:2c:56:e0:b3:9c:2b:e7:ea:c7:9d:03:bb:1c:41:6e:82:fc:
         ba:b5:ac:92:8e:ae:6f:ad:57:8e:eb:ff:8a:d8:ce:61:a6:07:
         24:b9:f1:70:42:5a:04:0e:b1:3a:69:30:39:90:ef:0e:3e:6f:
         da:09:a7:15:3f:c2:48:36:05:7d:73:58:27:84:fa:0e:db:6d:
         1a:eb:36:4a:98:46:6e:02:b5:62:1e:62:52:c5:0e:a4:a1:68:
         9d:fd:3b:4f:2b:63:6e:c3:3a:fb:af:a8:32:aa:94:58:89:42:
         13:d6:9e:f2:45:a9:4f:3a:d7:ba:79:ae:b1:1b:a7:69:84:e1:
         81:b3:ce:a9:90:0a:b7:57:a4:a4:23:d6:cb:55:d1:96:bc:6f:
         0b:c1:a1:21:6e:32:21:08:b3:bb:2d:96:b5:4d:ed:75:9b:a6:
         dd:ec:dc:fa:40:7a:99:cc:4a:ba:f8:0e:de:9d:c9:92:7f:e5:
         49:94:a5:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----