Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft
File:                     XotdlW6b29kHcBQqxw_fm2OIxtg.mft (raw, json)
Hash identifier:          leYESUySnqn8Be0uG9kJO9u/V53mWlgqgzp3qFaxrGA=
Subject key identifier:   B5:F2:F2:28:38:94:22:97:EA:9A:FA:22:EC:C4:7A:F2:90:91:30:57
Authority key identifier: 5E:8B:5D:95:6E:9B:DB:D9:07:70:14:2A:C7:0F:DF:9B:63:88:C6:D8
Certificate issuer:       /CN=A919D2EE/serialNumber=5E8B5D956E9BDBD90770142AC70FDF9B6388C6D8
Certificate serial:       042E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft
Manifest number:          042A
Signing time:             Sat 29 Mar 2025 00:35:31 +0000
Manifest this update:     Sat 29 Mar 2025 00:35:30 +0000
Manifest next update:     Sat 05 Apr 2025 00:35:30 +0000
Files and hashes:         1: XotdlW6b29kHcBQqxw_fm2OIxtg.crl (hash: frE9aerETvlCEgQWxHjFZd8hFLMLEk1onjqrTanHrxU=)
                          2: 097C49CC56FC11EC8032440FC4F9AE02.roa (hash: Bb+G2V63u2dqjlyGiP2E0iWy3Onnk60qnkfJKD3kZF0=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1070 (0x42e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919D2EE
        Validity
            Not Before: Mar 29 00:35:30 2025 GMT
            Not After : Apr  5 00:35:30 2025 GMT
        Subject: CN=67e74052-9a43
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:51:0a:df:22:3c:75:a6:58:c9:0c:37:62:93:
                    68:15:c5:43:ee:55:4c:1b:5e:14:84:df:ed:f5:1c:
                    62:c5:48:36:d6:69:c2:97:e4:3c:99:9b:e1:d7:8a:
                    9a:31:3a:8c:e1:f1:7a:7d:73:43:d1:62:d9:68:31:
                    40:63:b0:18:cd:ab:ff:5d:b3:46:11:40:14:ed:20:
                    60:5c:ef:bc:98:aa:4e:8e:dc:9f:03:e6:f6:f8:50:
                    f5:3c:b9:df:d2:26:91:8a:62:b9:75:ee:78:c6:17:
                    28:e8:a7:c7:6b:3c:aa:ca:8f:68:a7:e7:ef:98:bd:
                    5f:bd:e3:46:7c:ec:94:35:a7:8f:fd:71:64:57:4c:
                    cd:4f:53:a4:b1:05:b1:90:fd:a7:29:49:c6:32:fd:
                    65:23:95:b9:44:2a:50:98:9d:17:d7:7a:33:d8:86:
                    07:5c:70:c7:4c:b1:7d:8f:8e:54:db:56:94:fd:38:
                    77:a9:67:50:a4:fe:c8:13:d3:63:4e:ba:a2:11:7f:
                    41:5f:ed:86:e6:ff:6a:93:9b:08:b9:f4:f9:45:fc:
                    d8:94:5e:dd:45:50:11:31:30:a3:d6:30:6a:20:3b:
                    71:00:6e:dd:29:da:3a:b8:d6:c5:4d:75:43:05:de:
                    52:6c:02:eb:bc:2c:91:73:18:d3:75:3e:0b:c5:fb:
                    73:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:F2:F2:28:38:94:22:97:EA:9A:FA:22:EC:C4:7A:F2:90:91:30:57
            X509v3 Authority Key Identifier:
                keyid:5E:8B:5D:95:6E:9B:DB:D9:07:70:14:2A:C7:0F:DF:9B:63:88:C6:D8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c5:26:54:a7:dd:fd:37:e9:e8:05:e8:1e:b9:3b:b9:e2:54:70:
         6f:39:cd:06:64:57:ab:71:11:33:fd:6e:f6:cf:d9:9c:ff:af:
         9c:93:e7:64:b0:7b:6a:76:48:d5:86:cc:d2:23:25:49:96:e2:
         fb:f3:b0:98:49:90:f4:50:76:ba:36:41:cf:f5:32:73:ad:d0:
         bb:55:5a:50:d8:dc:1c:81:32:a8:bb:65:04:06:54:34:34:e4:
         d3:ab:55:43:1a:b9:4b:56:c9:b9:f5:18:25:38:b4:d5:4b:df:
         e1:78:62:db:4f:15:de:40:8a:c0:f1:f0:3a:2d:a2:31:36:a4:
         ee:00:80:f0:7f:b2:51:2a:fd:4e:2f:72:85:a0:9b:48:59:a3:
         d3:89:ed:1d:5e:76:64:50:c0:cc:8c:99:30:de:5b:28:e0:61:
         ba:1f:4b:0f:6a:49:bd:98:96:a5:be:8b:11:e1:98:01:fb:db:
         c8:a8:98:a9:2b:eb:70:9a:e7:c1:e8:dd:b8:d6:b1:16:ce:41:
         3c:8b:7a:30:2c:9c:e2:a4:ee:7c:12:ed:85:e2:44:8a:ea:ee:
         bd:bd:33:a7:61:73:34:d9:b7:9a:e9:2d:52:4d:82:7a:ba:c5:
         b6:65:d7:58:73:29:97:67:fc:ee:c7:fc:15:23:e9:a4:8e:82:
         53:cf:5f:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----