Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft
File:                     AJko8LjNMO2gVjCoumdOdiqdKDM.mft (raw, json)
Hash identifier:          a4foIoEj1+sFOiIVWDyBFHNtVO6LlkmKcxvXziW11es=
Subject key identifier:   9F:52:14:08:2C:F1:28:9E:46:78:81:4E:1C:02:11:97:14:A5:41:9C
Authority key identifier: 00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33
Certificate issuer:       /CN=A91CE5A6/serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833
Certificate serial:       0129
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft
Manifest number:          0122
Signing time:             Sat 29 Mar 2025 04:10:56 +0000
Manifest this update:     Sat 29 Mar 2025 04:10:55 +0000
Manifest next update:     Sat 05 Apr 2025 04:10:55 +0000
Files and hashes:         1: AJko8LjNMO2gVjCoumdOdiqdKDM.crl (hash: se3JS4Jf5ELNIIImB2d9rOmxggMYEkKmwgWFHWFaeSE=)
                          2: EC56413A5B4B11EE9A031C81C4F9AE02.roa (hash: IYdEuH2XgAZOwJVJ/PgjJYy0V8hqTD9vcLpljNcDdl8=)
                          3: 7022F6EE5B4611EE9093F11EC4F9AE02.roa (hash: e0200w8zEsZ5WKCdPwZ5CedunKufXXzWVfu8693DHy8=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 297 (0x129)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CE5A6
        Validity
            Not Before: Mar 29 04:10:55 2025 GMT
            Not After : Apr  5 04:10:55 2025 GMT
        Subject: CN=67e772d0-66ed
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:15:b6:1b:93:cb:5d:b7:ae:1b:7f:28:91:e7:
                    88:3a:ef:6c:3b:a3:6d:2b:e4:20:a0:7e:69:9d:e1:
                    08:9e:43:fc:77:a6:7e:51:cf:e9:78:4a:32:04:77:
                    10:db:ea:24:d4:21:a0:26:9a:7c:a2:5d:89:ca:ea:
                    ef:8c:33:c0:90:9c:6c:d4:65:46:19:23:31:dd:d8:
                    b8:32:a3:b8:7e:36:70:63:f6:25:56:e8:37:09:b2:
                    fc:75:00:7b:e1:45:04:aa:91:22:3d:aa:14:b1:21:
                    32:4b:00:04:8f:6a:b2:5b:fc:f0:6e:2b:61:9b:ba:
                    2a:bf:a4:b2:0f:db:e9:9f:4c:f4:73:a2:4a:48:7e:
                    1d:c4:4d:32:88:91:8c:73:ea:bd:52:24:98:16:a5:
                    ff:c5:fc:ec:ec:a2:1d:2d:ca:10:b9:9b:fe:53:22:
                    75:84:96:12:60:fa:72:9a:55:06:8e:b3:05:d0:c1:
                    5b:cb:6b:f4:00:0e:38:9f:90:e0:fd:6c:81:dd:2f:
                    5c:a5:31:ec:46:2c:65:98:e2:aa:3e:fb:1c:7b:97:
                    97:94:fa:e9:9e:5b:98:b4:35:dd:b8:1b:5d:43:5e:
                    ce:ce:55:b9:c4:13:4b:fc:b8:10:d2:ee:b4:0e:43:
                    f1:f2:ad:a9:0c:34:0c:63:3e:d7:46:e7:ac:ab:6e:
                    d5:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:52:14:08:2C:F1:28:9E:46:78:81:4E:1C:02:11:97:14:A5:41:9C
            X509v3 Authority Key Identifier:
                keyid:00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         82:bd:af:94:a5:e6:b2:bd:37:db:9a:ee:23:9f:4b:03:b2:87:
         05:85:c6:6a:e9:dc:f5:e1:f9:b3:f8:f6:93:ca:9d:00:8d:84:
         cb:22:87:12:f9:8b:5c:94:16:25:9a:a4:0a:fa:ff:bc:35:02:
         de:ee:80:f4:14:0b:43:ca:e5:17:35:73:44:c4:9b:e5:85:cd:
         e8:48:e9:6b:8c:a6:bf:40:d0:46:c0:2e:69:7b:a0:93:8f:d0:
         c0:9e:ac:0c:ae:c0:e0:6c:24:dd:c1:7b:9c:5a:e0:09:fe:d6:
         fb:e0:58:1f:51:91:be:2d:65:cd:6b:44:0c:2e:a3:5b:23:4d:
         ed:f0:eb:32:dd:39:68:2e:37:47:eb:3d:95:56:d0:86:dd:fe:
         ca:02:95:0d:07:c4:51:0c:ee:bb:97:58:0e:9c:61:58:d1:a0:
         96:bd:a5:5f:48:75:b7:09:9b:04:ff:f6:be:8c:da:a5:89:5a:
         c0:5a:63:c6:18:a4:1e:b1:a1:b1:b2:b8:9d:2a:bd:91:86:03:
         8d:83:3f:b2:f6:9b:63:73:69:6e:f6:54:69:e5:04:90:cd:23:
         09:c0:54:37:6e:fd:4c:3f:a0:4b:f5:7a:65:74:4b:cd:5e:f7:
         2c:7e:e7:49:f3:25:fe:d9:19:20:0a:cc:d9:c3:b1:9e:73:60:
         ee:c0:00:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----