Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft
File:                     CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft (raw, json)
Hash identifier:          pql2sp58EdkH/s6bcsdJmUgOWAwEDNS1ycOW2+LxMCA=
Subject key identifier:   4C:C9:E3:D8:1E:BE:90:0E:FF:3F:63:46:82:C6:55:59:4E:DE:54:14
Authority key identifier: 09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E
Certificate issuer:       /CN=A91CE533/serialNumber=09A3ECC49F83A798AE139F1DCBC536EE6F67CE7E
Certificate serial:       192C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft
Manifest number:          1920
Signing time:             Fri 28 Mar 2025 16:32:27 +0000
Manifest this update:     Fri 28 Mar 2025 16:32:26 +0000
Manifest next update:     Fri 04 Apr 2025 16:32:26 +0000
Files and hashes:         1: CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl (hash: QnRa0V3flYVxotlhWZmkBu8A79mTEyl0vybxQxIDz38=)
                          2: 290732FC79A211E79F34D81FC4F9AE02.roa (hash: SR7eVnerj/ud7fW+5gtERIt5ClN7aXRbGYLPuzi6Nlc=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6444 (0x192c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CE533
        Validity
            Not Before: Mar 28 16:32:26 2025 GMT
            Not After : Apr  4 16:32:26 2025 GMT
        Subject: CN=67e6cf1b-a9d2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:ec:80:13:6c:73:2a:06:f7:11:0a:69:25:2a:
                    9f:ab:b3:0a:d6:13:75:12:f1:ce:98:79:ac:69:fd:
                    05:06:c3:f0:3e:b0:65:2f:51:a7:dc:c1:55:21:70:
                    f6:a5:dc:70:bd:e0:5f:30:b5:63:04:01:85:b9:f7:
                    ef:43:91:26:1b:06:95:23:5e:3d:7c:38:5b:99:58:
                    8f:89:7d:4c:3b:56:3e:d3:54:3f:a9:1a:b4:5c:0f:
                    60:bf:d3:2d:7b:a8:4a:09:f8:7b:44:eb:b6:e5:5d:
                    5e:5d:67:26:76:93:19:af:81:b6:fe:50:16:ed:fd:
                    12:80:86:6d:c4:93:e9:30:6c:55:b2:40:97:ee:1d:
                    46:2b:83:d5:e3:14:d2:fe:ea:5b:1e:f2:24:12:ac:
                    e7:9e:09:ed:9f:b9:14:82:b1:d6:46:d2:53:e1:e9:
                    9d:d2:d2:1c:a9:bf:37:db:95:e4:49:6a:ad:fc:c6:
                    54:64:86:44:7d:33:f8:1d:aa:d9:a9:f4:de:9e:f7:
                    b8:a2:01:26:f8:65:77:8f:dc:5a:19:d9:bf:31:c1:
                    f2:04:74:0d:97:e1:80:b6:98:6f:92:86:a0:30:2a:
                    7a:87:d0:1d:4b:b0:2e:35:91:fa:f5:e9:11:25:be:
                    e0:12:35:fe:2c:fb:22:16:5b:d3:2e:81:c7:e9:83:
                    12:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:C9:E3:D8:1E:BE:90:0E:FF:3F:63:46:82:C6:55:59:4E:DE:54:14
            X509v3 Authority Key Identifier:
                keyid:09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c3:49:8b:a2:11:cd:e0:71:79:a4:7d:c0:15:b9:51:4a:da:c3:
         50:5d:7f:f6:ff:fc:62:a3:93:c1:a8:ea:77:7a:21:09:9e:97:
         f4:3c:c0:d6:0f:9b:bb:53:68:c2:c9:f1:3a:dc:c3:5c:60:e6:
         03:77:fc:03:30:da:8f:05:2a:cb:9f:56:1b:f7:b4:d3:7d:bd:
         56:86:4b:bf:f3:91:ef:b4:bf:68:b4:37:2b:04:b9:47:45:46:
         46:4c:5e:7d:0d:15:34:86:44:e8:22:cb:42:6e:00:5d:a6:8c:
         0c:a2:a6:f9:1e:49:73:f0:b2:88:67:09:0d:60:a3:a8:e0:88:
         40:ca:3a:14:90:52:32:a1:ee:1c:be:c8:ff:a4:60:a6:0c:09:
         33:f0:94:3c:b6:03:40:3c:90:4a:16:8b:af:34:8e:b1:0b:cf:
         40:dd:01:5d:9f:24:2e:dd:bf:77:78:ee:d2:9e:1b:49:52:98:
         1a:0b:54:6f:d6:bd:fa:69:29:1e:4d:e0:c6:8c:9a:d0:45:f2:
         c1:c1:66:07:c9:bb:29:6c:70:62:91:bf:65:3d:54:0c:03:cc:
         b3:e4:c3:db:cd:f1:2e:10:61:92:af:30:12:67:34:a0:03:aa:
         96:4b:b6:57:45:af:cd:fe:e0:cf:3b:3d:ad:3a:36:59:ba:36:
         17:b5:e5:1b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICGSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0U1MzMxMTAvBgNVBAUTKDA5QTNFQ0M0OUY4M0E3OThBRTEzOUYxRENCQzUzNkVF
NkY2N0NFN0UwHhcNMjUwMzI4MTYzMjI2WhcNMjUwNDA0MTYzMjI2WjAYMRYwFAYD
VQQDEw02N2U2Y2YxYi1hOWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1+yAE2xzKgb3EQppJSqfq7MK1hN1EvHOmHmsaf0FBsPwPrBlL1Gn3MFVIXD2
pdxwveBfMLVjBAGFuffvQ5EmGwaVI149fDhbmViPiX1MO1Y+01Q/qRq0XA9gv9Mt
e6hKCfh7ROu25V1eXWcmdpMZr4G2/lAW7f0SgIZtxJPpMGxVskCX7h1GK4PV4xTS
/upbHvIkEqznngntn7kUgrHWRtJT4emd0tIcqb8325XkSWqt/MZUZIZEfTP4HarZ
qfTenve4ogEm+GV3j9xaGdm/McHyBHQNl+GAtphvkoagMCp6h9AdS7AuNZH69ekR
Jb7gEjX+LPsiFlvTLoHH6YMSswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzJ49ge
vpAO/z9jRoLGVVlO3lQUMB8GA1UdIwQYMBaAFAmj7MSfg6eYrhOfHcvFNu5vZ85+
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUzMy9FOEZENEZBNDc5
OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1aXVFNThkeThVMjdtOW56
bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0NhUHN4Si1EcDVpdUU1OGR5OFUyN205bnpuNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
RTUzMy9FOEZENEZBNDc5OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1
aXVFNThkeThVMjdtOW56bjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQDDSYuiEc3gcXmkfcAVuVFK2sNQXX/2//xio5PBqOp3eiEJnpf0PMDW
D5u7U2jCyfE63MNcYOYDd/wDMNqPBSrLn1Yb97TTfb1Whku/85HvtL9otDcrBLlH
RUZGTF59DRU0hkToIstCbgBdpowMoqb5Hklz8LKIZwkNYKOo4IhAyjoUkFIyoe4c
vsj/pGCmDAkz8JQ8tgNAPJBKFouvNI6xC89A3QFdnyQu3b93eO7SnhtJUpgaC1Rv
1r36aSkeTeDGjJrQRfLBwWYHybspbHBikb9lPVQMA8yz5MPbzfEuEGGSrzASZzSg
A6qWS7ZXRa/N/uDPOz2tOjZZujYXteUb
-----END CERTIFICATE-----