Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft
File:                     qHH05sNy2xC2TfOZX6FR77OfmYs.mft (raw, json)
Hash identifier:          rLLrbbqazCFhF48Ech16IsesYHOB/Rf7RKZAJgk6qbk=
Subject key identifier:   62:A3:8E:0B:92:58:AB:99:81:41:AA:66:DD:72:96:46:FB:15:70:E1
Authority key identifier: A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B
Certificate issuer:       /CN=A9195F49/serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B
Certificate serial:       040D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft
Manifest number:          0407
Signing time:             Sat 29 Mar 2025 00:44:38 +0000
Manifest this update:     Sat 29 Mar 2025 00:44:38 +0000
Manifest next update:     Sat 05 Apr 2025 00:44:38 +0000
Files and hashes:         1: qHH05sNy2xC2TfOZX6FR77OfmYs.crl (hash: MOylLX9yK9KXTxXhIn4z84o7JT7K5bBs2k2mo6K7BKo=)
                          2: 5FC75DCC66A511EC9C199341C4F9AE02.roa (hash: IvWK10KVmccFsQXKRDRpTDOeBASjVcAXqOBjMjmMWnM=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1037 (0x40d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9195F49
        Validity
            Not Before: Mar 29 00:44:38 2025 GMT
            Not After : Apr  5 00:44:38 2025 GMT
        Subject: CN=67e74276-cc7d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:d0:eb:2b:e7:7b:2f:33:7f:2a:df:0f:3b:b2:
                    5a:64:a7:c5:d0:50:28:2b:c9:35:b5:0f:30:f1:07:
                    a0:78:dc:8f:1b:5d:17:f0:84:58:74:17:86:5f:08:
                    f6:d1:03:dd:c1:ed:cf:2a:81:d6:59:f8:f2:8d:f0:
                    e7:70:d5:e0:d7:8e:1c:3c:e4:68:c1:1c:ae:c9:17:
                    ce:3d:f2:60:50:51:73:6f:fd:84:47:02:05:aa:c1:
                    93:6c:31:b5:64:39:dc:af:f2:de:df:4f:ee:06:e8:
                    2d:25:0e:85:3f:ce:29:a6:dc:15:39:3f:1a:86:8a:
                    d9:b4:77:24:41:b3:29:fd:5c:74:e9:c6:7a:19:72:
                    d0:1e:20:1d:b6:80:e7:6b:f5:c2:b8:c5:42:de:4f:
                    b2:03:90:75:0a:9b:03:6e:ba:e3:02:7b:4d:dc:93:
                    4f:6c:bc:74:b9:ce:1e:d5:f7:23:c0:d7:55:b7:c6:
                    57:1b:56:39:b2:9a:b6:5a:b5:42:30:7a:dd:fa:0d:
                    d1:f7:75:6f:65:5f:40:9e:f8:48:52:9b:a4:5b:73:
                    6b:91:54:6f:7a:69:43:93:b2:74:5c:91:fe:ae:af:
                    5f:85:9f:14:85:fc:e4:78:8e:5b:ae:a2:9f:6c:1d:
                    d5:50:75:30:ed:a8:0f:7d:fb:0d:f2:0f:24:3d:37:
                    51:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:A3:8E:0B:92:58:AB:99:81:41:AA:66:DD:72:96:46:FB:15:70:E1
            X509v3 Authority Key Identifier:
                keyid:A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:b3:23:41:ef:bf:93:21:e0:fa:86:94:4b:77:fe:82:4a:82:
         83:9b:98:86:99:e5:2b:9e:36:0d:75:f1:68:46:2b:9e:c5:81:
         1c:57:ac:d2:bc:c3:c7:38:19:92:08:9e:7d:ae:42:96:e5:e9:
         ca:ca:f5:a2:2c:b6:b3:26:67:eb:1e:22:f2:cf:75:fe:fb:b1:
         a0:1c:2d:69:fb:a4:42:f2:81:0a:d1:d7:e6:67:58:81:7b:60:
         18:3b:4b:7c:a7:25:f7:8f:92:07:f6:85:c2:f1:96:01:66:05:
         5b:1b:a1:0b:27:ca:46:9e:88:6d:a2:39:dd:14:e2:24:c6:d0:
         cb:81:4c:69:52:62:dc:a3:b8:95:26:30:cc:b0:80:77:4b:d9:
         83:95:9d:44:2c:e3:e0:03:ff:d6:89:3e:b0:a8:6c:c0:54:d7:
         22:d9:ea:cf:57:37:f2:18:5b:74:46:e9:e9:22:65:63:58:c1:
         58:2e:d1:1c:a9:91:ce:a8:b9:9d:86:a8:f2:ec:7a:57:39:60:
         48:c7:52:73:dc:88:66:29:9c:10:34:63:55:6b:c7:dc:7c:ad:
         c8:ab:01:79:80:77:01:46:00:22:26:76:7b:18:fc:f1:ed:41:
         9e:78:68:96:76:4b:13:24:d3:6e:19:da:88:3b:dc:0a:53:88:
         d2:61:01:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----