Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft
File:                     XDZbFzHKfOfbgd1XEwvU1kMBm14.mft (raw, json)
Hash identifier:          qc4EX4f85SwaOJWLOKYhxFeCP+RWVuc/EbjV5lC7458=
Subject key identifier:   60:32:20:FB:19:40:87:C4:D2:5D:F0:2E:6E:99:D8:6F:C2:A1:F8:16
Authority key identifier: 5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E
Certificate issuer:       /CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E
Certificate serial:       0542
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft
Manifest number:          053B
Signing time:             Fri 28 Mar 2025 23:45:13 +0000
Manifest this update:     Fri 28 Mar 2025 23:45:12 +0000
Manifest next update:     Fri 04 Apr 2025 23:45:12 +0000
Files and hashes:         1: XDZbFzHKfOfbgd1XEwvU1kMBm14.crl (hash: 9Yxe9eFH8QLpM/ldh6JB+HAUJftMkqdt0/3WKQp5zIs=)
                          2: 8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa (hash: QJH4AI00yRGEUDIXxzK7vr00Zj8U+JgNqRc/dr5Ast0=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1346 (0x542)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D28EB
        Validity
            Not Before: Mar 28 23:45:12 2025 GMT
            Not After : Apr  4 23:45:12 2025 GMT
        Subject: CN=67e73488-6ae2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:63:11:ed:29:a5:e6:7b:f9:2f:bc:fd:e6:0c:
                    13:12:8c:b3:22:9d:11:66:de:e8:b4:4e:c9:09:f5:
                    e8:a4:83:ca:d0:cb:84:b7:a5:d3:92:ed:9c:08:c4:
                    77:21:41:56:bf:da:e4:36:e5:13:86:ce:a5:d0:d3:
                    92:f7:97:36:17:52:c9:c8:2c:26:e8:eb:d1:01:2a:
                    62:84:e2:ee:24:cb:cd:94:1a:ba:a7:c4:9e:1a:a6:
                    bb:c2:2a:d6:0a:31:8d:31:0c:d9:20:36:a3:35:4a:
                    3e:d5:e8:66:a9:83:c9:95:ea:01:5c:ff:0b:0c:9d:
                    ba:48:89:bc:51:02:06:0a:d1:9f:77:0c:b3:11:94:
                    11:52:82:40:7b:20:5d:29:63:f3:d2:1c:95:e0:ae:
                    75:3c:4f:5a:8c:63:8a:3c:dd:31:f2:99:fc:32:bc:
                    eb:f5:b8:76:88:52:e2:f2:e7:8b:ba:bd:8c:83:95:
                    9d:10:22:a0:1a:d7:b4:0c:a7:b2:eb:c3:76:bc:72:
                    54:48:7e:f9:e8:08:7e:a8:7a:63:d6:a2:fa:79:e1:
                    ed:bf:8f:d3:21:56:b8:a7:5f:58:e8:5e:f7:d0:d7:
                    31:c0:b1:ed:ec:af:e5:13:59:cb:5f:7b:c5:cf:1e:
                    86:5d:39:89:50:ff:74:58:19:88:1d:3b:b9:5a:06:
                    3b:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:32:20:FB:19:40:87:C4:D2:5D:F0:2E:6E:99:D8:6F:C2:A1:F8:16
            X509v3 Authority Key Identifier:
                keyid:5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:7e:95:19:b1:ad:af:74:03:9b:c3:64:bd:18:b1:31:d9:70:
         13:e2:cd:b9:32:73:1a:e8:8d:61:d6:ca:fd:66:f1:1e:a3:9d:
         25:4e:e5:05:f7:d8:3a:4f:6f:96:e9:26:1b:a2:17:50:a4:2e:
         ea:3d:eb:dc:f3:5c:c8:9e:21:f7:49:75:de:66:69:b6:db:08:
         e2:4d:9b:b4:46:f0:7e:f8:73:8e:83:9f:e7:f6:19:85:f9:96:
         65:1c:82:b3:c2:82:6f:c5:11:8b:09:53:b6:5d:93:fd:e8:90:
         8e:05:8f:44:4e:d5:2e:eb:c4:6e:a0:9d:49:2d:62:28:ba:f6:
         10:d4:5a:d6:1f:62:09:a6:8e:a5:2b:f9:a9:ec:31:14:d3:c7:
         73:7f:7f:a4:5d:4e:33:35:3e:61:8e:4a:62:57:2e:5b:6a:81:
         e5:46:1b:b1:52:8b:79:74:24:36:73:cd:b2:93:81:43:a8:c6:
         84:60:95:c1:54:e3:78:fc:19:54:e3:c7:6f:a9:f0:f8:3a:0d:
         00:d6:18:d6:4d:8d:37:0d:48:7a:7e:57:5b:57:3d:42:fa:20:
         fa:0f:5c:d9:54:ec:c8:00:b5:e4:cb:d6:9e:4e:d1:b9:a0:4b:
         14:39:b8:70:92:32:ad:1c:cf:c7:3b:ee:fd:bf:78:90:51:17:
         4a:55:1d:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----