Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft
File:                     s5m0raB1Aagp1W8h2o613DIDSlY.mft (raw, json)
Hash identifier:          u6uOe8XDz/fiQ6zRyvkk5rIrKUyzPbDxCiocd5Mo2s4=
Subject key identifier:   0C:D8:A6:08:17:B1:42:30:68:32:B6:A9:0D:B3:76:9D:49:13:56:CA
Authority key identifier: B3:99:B4:AD:A0:75:01:A8:29:D5:6F:21:DA:8E:B5:DC:32:03:4A:56
Certificate issuer:       /CN=A91D98FC/serialNumber=B399B4ADA07501A829D56F21DA8EB5DC32034A56
Certificate serial:       0C8E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft
Manifest number:          0C80
Signing time:             Fri 28 Mar 2025 18:25:47 +0000
Manifest this update:     Fri 28 Mar 2025 18:25:46 +0000
Manifest next update:     Fri 04 Apr 2025 18:25:46 +0000
Files and hashes:         1: s5m0raB1Aagp1W8h2o613DIDSlY.crl (hash: v8KOUAHJH+/7rpcxRdeWZ3m+soENzqLsi957Be3sthM=)
                          2: 238AAE04B3CD11EF82D5B34FC4F9AE02.roa (hash: Vh7yMYlqWkmmCVoJUzEKALaYDnLO+UKuaoILrbL+tGw=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3214 (0xc8e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D98FC
        Validity
            Not Before: Mar 28 18:25:46 2025 GMT
            Not After : Apr  4 18:25:46 2025 GMT
        Subject: CN=67e6e9ab-53c1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:73:a6:b6:7a:6c:9e:38:85:d6:30:75:05:48:
                    e9:c9:61:49:75:26:88:9d:37:eb:4f:19:54:05:c3:
                    39:95:d0:6c:30:0c:5c:04:bd:b1:5a:5e:74:ea:ab:
                    2b:e6:0d:07:f2:de:39:c6:b2:7e:52:a1:ec:23:e3:
                    2a:ac:4c:f2:72:b9:e1:b4:19:10:38:1d:ef:ce:75:
                    b9:43:93:59:8b:23:00:af:fb:4e:c2:3c:42:7b:b6:
                    53:9b:f4:1d:a2:97:ac:2a:96:fb:64:53:dd:1f:29:
                    78:b1:1d:98:04:67:ae:8a:12:f0:41:7b:84:92:7e:
                    90:23:98:35:6b:7f:0d:e8:d0:59:1a:ae:87:32:bc:
                    3d:37:d5:a5:03:02:61:a0:3a:da:cb:60:8f:a0:95:
                    2a:15:d9:9b:07:9f:72:9a:a3:e4:3d:64:c9:1a:fc:
                    58:0b:a2:9a:05:3f:64:a4:30:16:74:33:37:27:86:
                    c6:66:5b:6a:96:92:cb:42:fd:37:6a:42:1a:de:48:
                    58:9c:68:85:87:32:49:67:dd:e8:56:7c:6d:d8:5e:
                    92:dc:ae:e3:f2:27:ce:a2:b7:f9:11:cf:09:8d:92:
                    9b:ff:f3:9c:31:f1:b5:f5:e3:e8:fa:e4:a5:9e:9f:
                    d3:22:d4:1b:e6:d2:d9:5e:40:15:9b:b9:2e:e0:95:
                    a8:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0C:D8:A6:08:17:B1:42:30:68:32:B6:A9:0D:B3:76:9D:49:13:56:CA
            X509v3 Authority Key Identifier:
                keyid:B3:99:B4:AD:A0:75:01:A8:29:D5:6F:21:DA:8E:B5:DC:32:03:4A:56

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:de:bd:55:e1:5e:51:fd:37:80:ef:57:f1:33:6f:56:a9:e4:
         07:e1:9f:63:b3:ad:c8:a0:d1:69:6c:04:f7:6c:65:71:da:f4:
         a8:ec:7c:d5:a0:d5:ad:7f:66:a4:06:55:00:97:22:aa:50:18:
         0a:b3:b1:8a:63:69:00:23:e0:14:e7:af:02:e8:45:50:60:87:
         6c:2f:69:e6:c1:99:49:dc:51:78:82:bf:a6:77:1a:29:13:67:
         14:39:70:a1:43:3f:5e:bf:be:77:09:4e:25:3d:25:0a:ca:ea:
         4b:cd:51:f4:61:ce:98:1c:e2:66:0f:68:48:6f:23:b9:3a:c2:
         4e:a0:28:20:b5:37:b0:2a:8f:95:4f:0b:c3:b2:7f:3e:87:c7:
         70:28:40:17:09:1e:91:ca:aa:cc:35:84:49:27:c4:d8:cd:a6:
         a1:9e:d8:d4:8b:74:f3:1e:b5:72:b4:92:cd:63:30:8b:ea:e3:
         d0:1e:16:71:af:a9:c2:64:ba:d1:69:c4:ea:b3:90:92:c4:ae:
         7a:96:d4:d6:b8:87:39:c9:b2:c5:b8:fa:f9:c0:fc:47:b5:29:
         73:7d:61:63:98:02:fc:f9:92:28:66:a0:22:6b:ba:76:6b:97:
         be:46:2b:85:24:98:41:e0:c4:8b:41:07:3f:e1:c0:8a:7e:93:
         0b:16:7b:31
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICDI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDk4RkMxMTAvBgNVBAUTKEIzOTlCNEFEQTA3NTAxQTgyOUQ1NkYyMURBOEVCNURD
MzIwMzRBNTYwHhcNMjUwMzI4MTgyNTQ2WhcNMjUwNDA0MTgyNTQ2WjAYMRYwFAYD
VQQDEw02N2U2ZTlhYi01M2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAu3OmtnpsnjiF1jB1BUjpyWFJdSaInTfrTxlUBcM5ldBsMAxcBL2xWl506qsr
5g0H8t45xrJ+UqHsI+MqrEzycrnhtBkQOB3vznW5Q5NZiyMAr/tOwjxCe7ZTm/Qd
opesKpb7ZFPdHyl4sR2YBGeuihLwQXuEkn6QI5g1a38N6NBZGq6HMrw9N9WlAwJh
oDray2CPoJUqFdmbB59ymqPkPWTJGvxYC6KaBT9kpDAWdDM3J4bGZltqlpLLQv03
akIa3khYnGiFhzJJZ93oVnxt2F6S3K7j8ifOorf5Ec8JjZKb//OcMfG19ePo+uSl
np/TItQb5tLZXkAVm7ku4JWoIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzYpggX
sUIwaDK2qQ2zdp1JE1bKMB8GA1UdIwQYMBaAFLOZtK2gdQGoKdVvIdqOtdwyA0pW
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOThGQy8xQzg5OUUyNkY0
RUMxMUU5OEZCRTlCMEZDNEY5QUUwMi9zNW0wcmFCMUFhZ3AxVzhoMm82MTNESURT
bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3M1bTByYUIxQWFncDFXOGgybzYxM0RJRFNsWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
OThGQy8xQzg5OUUyNkY0RUMxMUU5OEZCRTlCMEZDNEY5QUUwMi9zNW0wcmFCMUFh
Z3AxVzhoMm82MTNESURTbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAv3r1V4V5R/TeA71fxM29WqeQH4Z9js63IoNFpbAT3bGVx2vSo7HzV
oNWtf2akBlUAlyKqUBgKs7GKY2kAI+AU568C6EVQYIdsL2nmwZlJ3FF4gr+mdxop
E2cUOXChQz9ev753CU4lPSUKyupLzVH0Yc6YHOJmD2hIbyO5OsJOoCggtTewKo+V
TwvDsn8+h8dwKEAXCR6RyqrMNYRJJ8TYzaahntjUi3TzHrVytJLNYzCL6uPQHhZx
r6nCZLrRacTqs5CSxK56ltTWuIc5ybLFuPr5wPxHtSlzfWFjmAL8+ZIoZqAia7p2
a5e+RiuFJJhB4MSLQQc/4cCKfpMLFnsx
-----END CERTIFICATE-----