Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft
File:                     -QbZf3qofIbamQOdI27NtR0jH3o.mft (raw, json)
Hash identifier:          W4HVebz0bzmQtfkiori5iEVoSoyMlulnR8oE2hAaqG4=
Subject key identifier:   6A:9A:64:F9:FB:F5:8D:FE:F6:06:C4:4C:B0:69:4B:84:65:18:A2:8B
Authority key identifier: F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A
Certificate issuer:       /CN=A919FE97/serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A
Certificate serial:       0654
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft
Manifest number:          064C
Signing time:             Fri 28 Mar 2025 22:44:09 +0000
Manifest this update:     Fri 28 Mar 2025 22:44:08 +0000
Manifest next update:     Fri 04 Apr 2025 22:44:08 +0000
Files and hashes:         1: -QbZf3qofIbamQOdI27NtR0jH3o.crl (hash: jcNe4eIOy0GpGxKj+tFUenj45++r5ce/b41hEjG9jPI=)
                          2: 06EFF1D07D4B11EBA736017DC4F9AE02.roa (hash: iko0TAKPXlXdkQUZL7210qZyr/BZRegUTs2UUc4OgEk=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1620 (0x654)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919FE97
        Validity
            Not Before: Mar 28 22:44:08 2025 GMT
            Not After : Apr  4 22:44:08 2025 GMT
        Subject: CN=67e72639-a583
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:2d:8a:c2:f2:2a:6c:90:52:0e:f2:59:49:08:
                    bc:1a:22:15:13:1d:04:b9:1c:89:ba:aa:27:8d:09:
                    2c:af:00:b7:12:ae:bc:c6:9f:68:25:90:53:ea:f0:
                    2d:6c:b0:ae:0c:9d:3c:ed:e7:50:8a:6d:66:6b:97:
                    18:ef:f7:d6:5b:32:59:bf:2e:d4:f0:a4:d3:dc:6f:
                    f3:24:89:dd:d7:e7:73:3b:51:d8:b7:d0:9d:8e:7c:
                    f8:f7:a4:df:13:56:a4:ce:6a:34:1f:09:75:79:a5:
                    08:be:c9:da:c9:8a:f7:93:bf:11:2b:0b:e3:bf:ae:
                    8b:eb:a5:11:bf:d5:25:f6:60:1f:60:6a:23:b6:c8:
                    80:32:e1:24:1e:fc:d9:6a:5e:25:60:fb:71:b0:7e:
                    3f:db:63:70:f2:32:0e:1f:01:b6:e0:ed:eb:5c:19:
                    69:12:6c:4d:43:04:69:49:ff:19:32:b3:5a:94:53:
                    72:5f:c1:0a:f2:60:35:fa:5b:e1:4b:39:98:ff:5f:
                    d8:67:12:ab:61:3d:56:e0:32:63:29:f5:46:cc:13:
                    e1:5b:68:e7:2a:03:72:05:40:bd:bd:70:16:f0:6a:
                    22:99:c1:1c:1a:6c:20:5a:07:4d:4c:f4:2c:39:4a:
                    88:a6:e4:fb:83:1f:6b:36:cb:1d:d3:e4:42:3b:34:
                    61:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:9A:64:F9:FB:F5:8D:FE:F6:06:C4:4C:B0:69:4B:84:65:18:A2:8B
            X509v3 Authority Key Identifier:
                keyid:F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:59:a4:8a:1c:57:37:87:ef:5c:09:5a:9e:b5:04:12:c5:1a:
         22:d8:42:0f:77:57:83:d7:8d:92:02:9c:eb:19:13:22:b2:bc:
         bd:07:ab:11:3e:89:f1:3b:29:fd:11:da:fe:5f:5d:ec:1d:80:
         89:e9:d8:53:af:c2:78:01:ca:80:62:75:3b:cf:23:44:24:3c:
         2a:fe:57:41:44:44:d4:43:4e:37:9f:97:13:ff:4c:b7:5d:99:
         ac:12:a2:69:df:9e:fd:8c:b3:5e:be:87:86:2b:93:ea:f0:25:
         a5:0e:9c:ce:ab:08:f5:c7:11:56:7c:5f:80:64:af:e7:64:ac:
         9f:a5:54:18:8d:b8:b7:57:58:dd:7f:8d:49:2c:a4:d2:e8:64:
         48:75:ef:13:7f:e9:1b:2b:a5:4a:75:f6:73:0e:d6:48:85:10:
         df:35:fc:f2:f1:85:52:91:e7:a1:70:3c:af:93:60:ad:20:34:
         e6:00:6a:98:d1:ff:93:d9:73:5c:e6:51:29:d8:79:d5:89:20:
         9d:74:77:7f:32:ad:af:f4:d4:7f:c9:c8:26:1f:e8:e4:e6:cc:
         db:ae:0d:6b:e2:4b:8a:e3:fa:ff:f3:b7:cd:fa:cf:41:11:31:
         88:33:75:90:9b:f4:2a:63:6e:25:7d:31:77:1e:1d:b9:fa:59:
         9f:9f:cf:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----