Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft
File:                     Ci5d8bLD15feoVNn-qncOITNGzM.mft (raw, json)
Hash identifier:          zfHwux9DQhFkZtoLN6fRrCrAFuR+vz0Vc8tq8GzFrQo=
Subject key identifier:   43:C2:BD:B0:2A:3E:37:04:ED:0F:09:FE:B5:6D:C7:F9:CF:FB:6E:1E
Authority key identifier: 0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33
Certificate issuer:       /CN=A91CD096/serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33
Certificate serial:       0D5F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft
Manifest number:          0D54
Signing time:             Fri 28 Mar 2025 18:08:37 +0000
Manifest this update:     Fri 28 Mar 2025 18:08:36 +0000
Manifest next update:     Fri 04 Apr 2025 18:08:36 +0000
Files and hashes:         1: Ci5d8bLD15feoVNn-qncOITNGzM.crl (hash: rtFTUKssqvfl+zOJMwdyc1MWF0PuRQBKQcYdF2ZWFOI=)
                          2: 4EEE01FCE15611EF9560323EC4F9AE02.roa (hash: x8jTl1An+uSOMMAGf8hO7SL91nc57EGm6DraZTYeQXE=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3423 (0xd5f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CD096
        Validity
            Not Before: Mar 28 18:08:36 2025 GMT
            Not After : Apr  4 18:08:36 2025 GMT
        Subject: CN=67e6e5a5-12ed
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:98:60:2c:50:3b:6b:0d:d3:73:e1:b9:2b:68:
                    db:4d:6c:b0:46:ab:b4:2f:7e:fa:96:7e:7b:67:e7:
                    c4:cc:d2:4e:3e:f9:df:f7:d2:53:34:6b:b7:26:d1:
                    a2:d2:13:97:b5:7f:29:ba:38:2a:37:e3:04:22:6d:
                    2b:ba:09:9a:60:9a:08:fd:8a:27:7a:64:1e:02:4a:
                    ea:e0:38:58:fb:2a:0c:4e:0a:b4:91:f4:a2:f5:f4:
                    ac:a8:f7:9e:ec:7a:2e:ce:c0:30:ef:ed:ca:05:6d:
                    f5:6e:39:e7:dd:da:88:30:05:99:b1:84:2f:02:d0:
                    dc:f9:e7:12:94:c3:c3:33:cd:25:72:77:ca:3e:4b:
                    59:d1:40:d2:fc:eb:78:0f:63:3b:73:11:d4:30:19:
                    73:1c:3b:b7:b3:7c:92:da:9f:c9:8c:1d:f1:ad:0b:
                    55:a4:5e:b1:dd:38:8f:e4:b2:e4:71:db:4e:a6:68:
                    cd:39:f8:4e:c9:2d:5e:8a:96:4a:88:90:27:63:25:
                    c1:a7:47:19:00:05:15:22:74:05:d6:55:60:d8:09:
                    e4:34:1c:72:ac:ee:cd:4d:e0:ea:53:0d:bd:ab:c2:
                    48:c4:e8:d1:40:cc:ba:34:f8:8e:7b:3c:6b:36:94:
                    a1:4e:d7:f6:5e:ce:6d:92:fb:d7:50:bf:17:c3:eb:
                    23:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:C2:BD:B0:2A:3E:37:04:ED:0F:09:FE:B5:6D:C7:F9:CF:FB:6E:1E
            X509v3 Authority Key Identifier:
                keyid:0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bf:42:94:53:2d:1f:43:e8:be:ed:e7:85:86:5e:e7:d4:05:89:
         ef:d6:70:2c:db:b5:fb:e6:f0:21:3f:38:3a:e8:50:da:ba:16:
         02:ac:0e:6e:39:fb:da:3b:1b:5d:fc:b1:df:77:5b:47:55:af:
         99:30:f7:23:72:21:31:8d:47:6a:d2:bc:64:70:3d:d8:ee:cd:
         be:82:43:0a:7d:2d:51:48:75:ad:d6:6e:b2:e5:ef:b7:4c:a7:
         f8:40:ae:8d:18:19:9e:0a:9d:2d:a7:f4:44:9c:f1:31:04:58:
         83:95:14:bf:08:4c:bb:cb:0f:79:c6:d5:0e:f8:0a:bf:85:b0:
         55:3f:d5:b5:0f:fb:f7:ea:84:05:41:4d:18:9f:99:64:8f:35:
         56:66:68:ff:f0:ad:06:58:27:f0:67:3a:d8:42:9a:cd:ba:f9:
         a7:57:0b:d3:ce:13:8a:47:30:81:8c:1c:a2:b6:4d:0c:59:ec:
         f0:a6:c9:85:25:24:cf:e5:a1:8d:a9:a8:c7:f7:6d:ec:65:d3:
         cc:3a:82:37:6d:64:3b:12:ca:a5:a3:38:83:fc:ec:77:69:7d:
         fd:ca:e2:a3:f6:5f:22:36:4b:be:c4:d3:c6:65:45:b8:be:1e:
         1e:68:69:bf:96:ba:00:4f:aa:1c:57:ec:33:27:1c:b4:b8:24:
         02:74:6c:99
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICDV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0QwOTYxMTAvBgNVBAUTKDBBMkU1REYxQjJDM0Q3OTdERUExNTM2N0ZBQTlEQzM4
ODRDRDFCMzMwHhcNMjUwMzI4MTgwODM2WhcNMjUwNDA0MTgwODM2WjAYMRYwFAYD
VQQDEw02N2U2ZTVhNS0xMmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuJhgLFA7aw3Tc+G5K2jbTWywRqu0L376ln57Z+fEzNJOPvnf99JTNGu3JtGi
0hOXtX8pujgqN+MEIm0rugmaYJoI/YonemQeAkrq4DhY+yoMTgq0kfSi9fSsqPee
7HouzsAw7+3KBW31bjnn3dqIMAWZsYQvAtDc+ecSlMPDM80lcnfKPktZ0UDS/Ot4
D2M7cxHUMBlzHDu3s3yS2p/JjB3xrQtVpF6x3TiP5LLkcdtOpmjNOfhOyS1eipZK
iJAnYyXBp0cZAAUVInQF1lVg2AnkNBxyrO7NTeDqUw29q8JIxOjRQMy6NPiOezxr
NpShTtf2Xs5tkvvXUL8Xw+sjPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPCvbAq
PjcE7Q8J/rVtx/nP+24eMB8GA1UdIwQYMBaAFAouXfGyw9eX3qFTZ/qp3DiEzRsz
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDA5Ni9FNTA0MkMyQUNB
MzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1ZmVvVk5uLXFuY09JVE5H
ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0NpNWQ4YkxEMTVmZW9WTm4tcW5jT0lUTkd6TS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
RDA5Ni9FNTA0MkMyQUNBMzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1
ZmVvVk5uLXFuY09JVE5Hek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQC/QpRTLR9D6L7t54WGXufUBYnv1nAs27X75vAhPzg66FDauhYCrA5u
OfvaOxtd/LHfd1tHVa+ZMPcjciExjUdq0rxkcD3Y7s2+gkMKfS1RSHWt1m6y5e+3
TKf4QK6NGBmeCp0tp/REnPExBFiDlRS/CEy7yw95xtUO+Aq/hbBVP9W1D/v36oQF
QU0Yn5lkjzVWZmj/8K0GWCfwZzrYQprNuvmnVwvTzhOKRzCBjByitk0MWezwpsmF
JSTP5aGNqajH923sZdPMOoI3bWQ7EsqloziD/Ox3aX39yuKj9l8iNku+xNPGZUW4
vh4eaGm/lroAT6ocV+wzJxy0uCQCdGyZ
-----END CERTIFICATE-----