Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft
File:                     IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json)
Hash identifier:          AyZk1/9h4PlODIF951vnvVqGKR+oRDeZyrj+7DwfkwI=
Subject key identifier:   35:80:06:B5:D8:DD:46:8D:C7:3F:58:FC:23:87:38:ED:F3:EC:39:57
Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99
Certificate issuer:       /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799
Certificate serial:       0790
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft
Manifest number:          0789
Signing time:             Fri 28 Mar 2025 21:37:08 +0000
Manifest this update:     Fri 28 Mar 2025 21:37:07 +0000
Manifest next update:     Fri 04 Apr 2025 21:37:07 +0000
Files and hashes:         1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: I2ujNyRQOHDBJHzW+FiQfWBEPaFVfWLJdioynaiE+n4=)
                          2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: DLKvz3rwnGGBIag3RK7ssCkmYQ1hx8lImaGotS18Gqc=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1936 (0x790)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919A5B5
        Validity
            Not Before: Mar 28 21:37:07 2025 GMT
            Not After : Apr  4 21:37:07 2025 GMT
        Subject: CN=67e71683-0b02
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:1d:ea:21:f8:ef:4c:c4:7a:63:43:5d:ad:04:
                    a3:ce:49:34:b3:28:e2:fe:1e:f9:36:95:4d:67:36:
                    df:2a:3a:65:8d:86:29:0a:97:cb:ca:0c:a4:8f:00:
                    c4:82:a4:70:68:7f:7c:3d:e9:99:62:eb:0f:4e:0d:
                    57:11:9a:c7:c2:d5:38:81:ab:46:81:4e:ab:1e:68:
                    c9:98:f0:c2:d5:97:92:34:87:03:44:e0:f7:d9:18:
                    12:b7:f8:6a:26:b0:49:a2:09:0e:a8:98:98:57:a6:
                    80:3f:33:76:a6:f5:42:a5:f1:b1:e9:4a:a9:c1:75:
                    65:c4:60:f2:b3:75:50:ad:86:a6:9a:7c:05:fd:57:
                    b7:09:71:52:cd:86:73:23:b3:39:bc:94:26:d1:02:
                    d5:24:aa:2e:6e:b3:80:8f:b5:09:73:f2:61:4a:3d:
                    80:47:5c:27:6c:b3:f3:67:a9:9f:6e:64:13:69:3f:
                    76:c2:a4:b6:90:85:1f:97:2c:b5:9a:87:58:59:41:
                    eb:50:d2:0e:27:4c:cb:8d:45:48:8e:64:60:fd:7f:
                    bb:bf:c4:15:f3:05:bf:af:25:13:58:6c:e8:98:98:
                    46:a6:39:8e:96:b5:ae:8e:eb:62:c6:f9:c4:31:37:
                    a5:a9:47:e0:c5:38:6d:ec:b1:92:02:fa:f8:e1:7f:
                    dd:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                35:80:06:B5:D8:DD:46:8D:C7:3F:58:FC:23:87:38:ED:F3:EC:39:57
            X509v3 Authority Key Identifier:
                keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         02:2b:2c:b7:b7:07:91:7a:d9:10:1c:b9:62:b8:57:7f:f8:17:
         01:50:99:cc:c6:57:6d:69:bf:e8:a8:ca:7b:de:94:67:4b:c9:
         22:58:84:a4:b9:34:f8:66:57:cf:87:4d:8e:a0:fe:a3:fc:35:
         79:da:85:b0:8b:cb:85:c2:94:68:6b:6d:9b:3f:0f:c5:58:d4:
         f7:39:f0:2c:11:80:d3:78:8e:ab:bb:2e:5b:94:6c:29:08:51:
         cf:22:73:1c:3f:5b:17:88:02:f6:64:13:66:62:10:91:cc:37:
         54:f7:01:93:d4:e9:9b:7c:3d:6a:0a:ac:dc:cf:fd:c8:73:e3:
         3d:ca:02:33:c0:6c:71:15:af:05:74:25:02:fa:2a:56:85:59:
         c1:a8:75:07:a7:3b:67:47:19:d5:09:eb:ff:c7:a3:d3:8e:e6:
         c0:8a:01:b1:40:15:1e:9b:b1:dd:6b:d8:90:9b:d0:fc:ce:aa:
         b5:32:93:12:e8:7a:56:74:52:96:97:43:65:6c:3d:c1:76:73:
         08:87:c2:2a:f7:4a:48:89:17:82:e0:19:53:57:ea:36:f9:7d:
         37:d0:46:c0:4c:41:f3:1c:1f:a5:5b:4d:c2:7a:6c:7f:19:03:
         7c:e0:31:17:1d:1e:17:9f:d0:99:14:bb:bd:ca:d1:af:7b:46:
         c3:9c:46:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----