Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft
File:                     BQcL-a2TBEn7O2m4aRzyDAEnebk.mft (raw, json)
Hash identifier:          5ZBoI0ZvijJPoc3HiD56gFtKrUzQEkxcMC88C82U4hw=
Subject key identifier:   79:DB:FA:E9:40:8E:14:BC:35:22:90:C2:03:F8:C5:28:6D:0F:72:E7
Authority key identifier: 05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9
Certificate issuer:       /CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9
Certificate serial:       0C16
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft
Manifest number:          0BFB
Signing time:             Fri 28 Mar 2025 18:54:40 +0000
Manifest this update:     Fri 28 Mar 2025 18:54:39 +0000
Manifest next update:     Fri 04 Apr 2025 18:54:39 +0000
Files and hashes:         1: BQcL-a2TBEn7O2m4aRzyDAEnebk.crl (hash: NN9R1tLaYrQ/+MBG5KKFL1qWpXcnuLhb1Nu/F2/eQJo=)
                          2: A87393C8F86B11EF86A73884C4F9AE02.roa (hash: eBd+WTeQJfulzr+N4ZQ9C6nPwSI+gB9hl5tWkJOTaS8=)
                          3: A766D10CF86B11EF86A73884C4F9AE02.roa (hash: Oni6AIFm2/Zy5DtH/auanOkB6FYH+HjvXMjJMyMEcuE=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3094 (0xc16)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DEC12
        Validity
            Not Before: Mar 28 18:54:39 2025 GMT
            Not After : Apr  4 18:54:39 2025 GMT
        Subject: CN=67e6f06f-40d0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:b5:13:cf:6f:da:74:f8:e7:0c:4b:f5:64:73:
                    90:4c:9e:91:95:d7:2f:88:00:b5:5d:49:56:f9:2b:
                    a1:0b:fc:af:b9:46:7b:89:d8:0d:b0:5e:6e:6a:c9:
                    b8:73:a3:99:3c:02:e0:66:cd:7a:33:b4:b7:d6:67:
                    bc:1a:ed:b8:63:86:f8:11:ef:a5:86:06:12:48:68:
                    f6:ce:44:bc:b9:da:e7:34:59:d1:17:c1:0a:d4:29:
                    e2:8d:42:89:e3:ad:2b:d3:48:e0:0f:4e:2e:98:57:
                    3b:6f:16:88:12:22:ce:40:cf:a2:2d:9b:e7:3e:bb:
                    f4:bd:8e:42:09:a2:29:64:20:98:18:ad:ca:3a:c2:
                    e4:70:13:20:4a:d7:de:e4:ca:38:9a:15:12:0d:b6:
                    d2:b5:07:ba:4c:55:91:51:d3:47:63:66:08:d4:2f:
                    ae:54:9f:4b:86:72:29:96:49:84:fc:51:eb:69:e5:
                    5e:c2:3e:89:20:43:85:5d:29:f3:3a:23:0a:00:12:
                    0f:fd:c3:58:b6:a2:4b:94:a7:60:aa:84:31:35:12:
                    fb:7c:79:59:4b:3a:3b:fc:08:7f:9f:da:40:ab:78:
                    78:f6:e0:65:d6:05:c3:87:f3:11:21:f9:27:c9:c0:
                    63:77:39:3e:4f:db:c6:11:fe:23:38:32:03:30:98:
                    c3:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:DB:FA:E9:40:8E:14:BC:35:22:90:C2:03:F8:C5:28:6D:0F:72:E7
            X509v3 Authority Key Identifier:
                keyid:05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:b8:3d:a3:c3:d5:89:6b:cd:2b:cb:64:52:74:f6:34:d6:38:
         15:66:50:1d:0a:8a:e5:c4:09:cf:2f:1f:35:ec:1c:ce:f9:0c:
         de:e7:27:28:b9:a7:fa:36:03:77:5b:be:a1:68:5d:81:6d:7d:
         0d:d8:2e:fc:bb:e0:af:ea:51:6c:b8:cc:69:6f:44:5c:c9:ee:
         28:0e:e7:96:37:71:76:13:50:54:83:5a:81:35:22:b5:cb:68:
         90:9e:04:a5:53:6f:44:a0:03:e4:da:e5:ca:1f:b9:df:0e:31:
         52:89:d6:7f:a4:68:05:04:18:3e:18:8c:8b:73:29:61:b5:28:
         d2:95:35:59:ad:2d:ed:5a:24:10:0b:37:19:38:6b:03:dd:83:
         a6:9b:6b:cf:ac:c9:62:35:43:00:67:e0:f9:5d:51:0f:ce:2c:
         cc:7d:11:2a:82:3a:ab:57:4a:13:d9:ae:24:ea:cc:3f:e3:e7:
         78:a2:2e:02:3a:cc:60:a5:d5:79:b3:bc:3b:aa:1e:7b:a9:69:
         27:4e:2b:c8:90:90:a4:0b:12:00:12:7a:5a:f5:ef:a1:2d:77:
         d1:7a:42:c0:28:db:b8:35:c5:18:4d:f9:40:51:49:4f:8e:d4:
         9f:a1:cf:55:b9:cc:b1:9e:a2:db:8d:b2:e2:78:a6:17:76:60:
         24:47:1b:98
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICDBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REVDMTIxMTAvBgNVBAUTKDA1MDcwQkY5QUQ5MzA0NDlGQjNCNjlCODY5MUNGMjBD
MDEyNzc5QjkwHhcNMjUwMzI4MTg1NDM5WhcNMjUwNDA0MTg1NDM5WjAYMRYwFAYD
VQQDEw02N2U2ZjA2Zi00MGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAk7UTz2/adPjnDEv1ZHOQTJ6RldcviAC1XUlW+SuhC/yvuUZ7idgNsF5uasm4
c6OZPALgZs16M7S31me8Gu24Y4b4Ee+lhgYSSGj2zkS8udrnNFnRF8EK1CnijUKJ
460r00jgD04umFc7bxaIEiLOQM+iLZvnPrv0vY5CCaIpZCCYGK3KOsLkcBMgStfe
5Mo4mhUSDbbStQe6TFWRUdNHY2YI1C+uVJ9LhnIplkmE/FHraeVewj6JIEOFXSnz
OiMKABIP/cNYtqJLlKdgqoQxNRL7fHlZSzo7/Ah/n9pAq3h49uBl1gXDh/MRIfkn
ycBjdzk+T9vGEf4jODIDMJjDXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnb+ulA
jhS8NSKQwgP4xShtD3LnMB8GA1UdIwQYMBaAFAUHC/mtkwRJ+ztpuGkc8gwBJ3m5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMxMi84NTkyRTQ4ODBG
NjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJFbjdPMm00YVJ6eURBRW5l
YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0JRY0wtYTJUQkVuN08ybTRhUnp5REFFbmViay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
RUMxMi84NTkyRTQ4ODBGNjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJF
bjdPMm00YVJ6eURBRW5lYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQB7uD2jw9WJa80ry2RSdPY01jgVZlAdCorlxAnPLx817BzO+Qze5yco
uaf6NgN3W76haF2BbX0N2C78u+Cv6lFsuMxpb0Rcye4oDueWN3F2E1BUg1qBNSK1
y2iQngSlU29EoAPk2uXKH7nfDjFSidZ/pGgFBBg+GIyLcylhtSjSlTVZrS3tWiQQ
CzcZOGsD3YOmm2vPrMliNUMAZ+D5XVEPzizMfREqgjqrV0oT2a4k6sw/4+d4oi4C
OsxgpdV5s7w7qh57qWknTivIkJCkCxIAEnpa9e+hLXfRekLAKNu4NcUYTflAUUlP
jtSfoc9VucyxnqLbjbLieKYXdmAkRxuY
-----END CERTIFICATE-----