Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft
File:                     IAAAWsWhdEBL07_CmUMyPpYGJbk.mft (raw, json)
Hash identifier:          OCbR+2ojqzOkv2a9K8gOuXCorKiQdV35AAdCA31aJ4Y=
Subject key identifier:   DB:13:55:34:78:FC:09:46:C4:5A:A5:BF:CC:24:77:4D:E8:92:EB:C2
Authority key identifier: 20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9
Certificate issuer:       /CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9
Certificate serial:       0328
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft
Manifest number:          0321
Signing time:             Sat 29 Mar 2025 01:23:34 +0000
Manifest this update:     Sat 29 Mar 2025 01:23:34 +0000
Manifest next update:     Sat 05 Apr 2025 01:23:34 +0000
Files and hashes:         1: IAAAWsWhdEBL07_CmUMyPpYGJbk.crl (hash: 8heTE94hTZvObjlAXAyPgvev98Hn92uBhWLA3WoFYxk=)
                          2: 09E46A74C07F11ECB0707F18C4F9AE02.roa (hash: fKQvUorpCo1+t6j4CpNdFsIqffZ/KOuD0j+HaDJA0Es=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 808 (0x328)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DA590
        Validity
            Not Before: Mar 29 01:23:34 2025 GMT
            Not After : Apr  5 01:23:34 2025 GMT
        Subject: CN=67e74b96-a749
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:0f:34:0b:b3:ab:5e:ea:10:1a:f6:ea:fd:2f:
                    71:7d:ea:0a:ab:e0:c8:e4:5b:f8:e2:bc:32:fa:e6:
                    5b:4e:b1:e7:7c:9d:4e:04:56:01:b9:3f:cf:f6:47:
                    af:b1:0f:56:9f:b0:b6:65:5b:61:d8:fb:96:c7:cb:
                    2e:3f:4a:c5:b8:90:02:d0:e3:26:7c:bb:2f:e0:c2:
                    71:21:99:6f:b7:f9:69:41:e3:25:c2:be:28:08:b9:
                    17:88:ac:e5:6e:cc:21:80:88:3f:5c:6a:83:06:17:
                    6f:1a:41:0a:7d:e4:a6:ac:f6:aa:01:bb:7b:04:3e:
                    43:f7:90:0f:0d:a8:15:37:4d:d9:2a:1c:16:6a:72:
                    b3:53:7c:2c:42:71:dd:95:8c:ec:ac:f4:92:50:d5:
                    58:05:de:bd:b0:66:28:b9:52:36:e9:de:89:91:00:
                    93:9c:20:e7:88:a4:95:43:bb:fc:4d:25:24:52:58:
                    ee:b1:98:4c:7f:ed:85:3e:fa:ad:bd:17:f6:74:09:
                    20:4b:41:ef:0c:89:ab:60:79:4b:31:78:37:c0:b4:
                    20:c7:45:31:e9:86:5a:29:6f:14:b6:8d:12:7c:a6:
                    69:73:0d:e7:a4:c4:56:4b:a9:85:48:31:0e:5d:a4:
                    0e:ad:fe:15:e4:c1:31:5e:b0:a2:7f:c8:34:7f:80:
                    40:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:13:55:34:78:FC:09:46:C4:5A:A5:BF:CC:24:77:4D:E8:92:EB:C2
            X509v3 Authority Key Identifier:
                keyid:20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:d6:86:b9:00:aa:8b:7c:10:5b:a1:54:89:9f:81:e8:9d:93:
         41:04:14:73:6c:18:9b:2a:56:ff:72:f7:73:74:ab:29:d9:ae:
         e6:53:4d:44:12:f7:c5:49:e1:05:ea:c6:d7:8b:41:f6:bb:a1:
         ba:4b:e9:e2:b1:39:a5:c3:ba:5a:e9:6d:23:ee:dd:3b:76:34:
         34:d3:6e:eb:0b:f7:28:c7:ba:ed:4f:69:f2:2f:e7:8c:27:3a:
         f4:95:5e:72:08:2d:ed:e1:83:3b:b3:14:5a:61:07:3c:ae:83:
         ac:1a:cf:8e:71:e4:c2:6b:e6:43:16:21:54:01:0f:7d:cc:92:
         6f:33:bd:4b:ac:51:9e:b0:3c:4a:1f:55:4e:20:bb:6c:f6:89:
         df:47:2f:bd:3f:0f:24:20:8d:47:f6:8a:79:16:fb:0d:2e:3b:
         93:4a:b9:99:df:76:aa:16:ec:63:c7:2a:4e:b1:83:d8:65:a6:
         d6:01:2d:c4:6c:7d:f4:c4:11:a3:2b:72:af:45:28:ea:84:f3:
         4f:3b:43:36:47:e1:91:04:8a:a4:ec:73:31:f5:cd:a2:9b:f0:
         17:33:68:13:a8:4f:b1:9d:e7:b4:cc:4b:a1:84:8a:03:0d:16:
         29:db:24:fe:7c:8b:60:9c:47:c2:fa:17:91:ed:c9:53:77:69:
         72:16:f4:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----