Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft
File:                     ABc0faPzW3U5Ub30sbB_dh49nr8.mft (raw, json)
Hash identifier:          5YK6+dA44OmgOFyrhlu6xHIZhjttn7zTxb2fjN0UWPI=
Subject key identifier:   B0:4D:1B:5B:A8:93:67:17:B1:37:64:73:6C:28:6A:6C:1B:AE:79:86
Authority key identifier: 00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF
Certificate issuer:       /CN=A91E0AAD/serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF
Certificate serial:       03E8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft
Manifest number:          03DE
Signing time:             Sat 29 Mar 2025 00:50:22 +0000
Manifest this update:     Sat 29 Mar 2025 00:50:21 +0000
Manifest next update:     Sat 05 Apr 2025 00:50:21 +0000
Files and hashes:         1: ABc0faPzW3U5Ub30sbB_dh49nr8.crl (hash: M6DquhO2AiVC3HrIPEPULaciy2epjyzhQW1vE0QjGX0=)
                          2: 0BE6F39E79E611EC99DA1B51C4F9AE02.roa (hash: XTRPclMfvdnJMr1KTikHBQwB3BO5rbfhjMhUNaY3s7I=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1000 (0x3e8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E0AAD
        Validity
            Not Before: Mar 29 00:50:21 2025 GMT
            Not After : Apr  5 00:50:21 2025 GMT
        Subject: CN=67e743cd-2116
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:40:d3:61:f4:02:07:d2:9d:9f:9f:4e:4a:01:
                    9f:21:72:b4:bd:37:02:c1:d2:39:5f:42:49:29:f5:
                    93:b3:43:36:bf:e1:80:3b:42:3c:35:98:ec:da:cb:
                    f1:0c:47:63:d0:aa:94:c4:b9:d3:59:ef:03:45:6f:
                    12:0e:1e:7e:a9:4f:76:af:91:26:aa:da:80:ee:3c:
                    41:30:ae:2a:4a:44:40:02:e2:bc:f0:d8:b2:96:1f:
                    23:1d:59:ce:22:66:5c:99:fb:74:a6:4f:f9:b0:37:
                    10:e6:09:da:db:08:d5:28:e1:83:2f:c7:20:1e:3a:
                    a4:0a:fe:21:82:af:dc:69:ab:cc:1b:e2:55:b5:64:
                    83:2f:52:a8:e7:ae:ea:f5:ef:f9:6b:78:57:0f:9b:
                    37:36:57:25:f6:d2:ba:25:6d:69:8c:34:9c:1a:45:
                    64:46:1b:66:42:2f:52:90:ab:46:11:f9:2d:e3:73:
                    0f:f1:7d:96:99:96:83:17:d8:a5:0c:bf:9b:7b:6a:
                    4a:7f:a9:f0:5b:13:ee:55:2a:aa:c3:f0:65:76:ad:
                    ff:e6:83:6b:e0:74:d0:c7:50:a3:f6:8d:7e:bf:78:
                    82:05:c0:dd:d5:03:51:18:08:b6:11:7d:ef:3c:42:
                    2e:ce:32:f3:d2:1f:79:1c:13:33:92:2e:dd:21:d5:
                    5f:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:4D:1B:5B:A8:93:67:17:B1:37:64:73:6C:28:6A:6C:1B:AE:79:86
            X509v3 Authority Key Identifier:
                keyid:00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:8b:c3:aa:dc:24:43:d9:a9:65:5c:81:ce:ae:15:9f:cc:fe:
         fc:6d:f0:c5:1c:74:ce:bc:0e:0c:1b:37:03:97:02:d9:58:6c:
         ba:d4:42:31:33:67:0a:40:b9:b5:96:2a:ec:cf:71:31:66:c1:
         7c:0b:6e:ad:b8:60:60:42:cd:17:6c:7f:7b:06:0f:dd:67:a2:
         aa:9e:58:ea:b9:03:ca:18:3d:5d:e7:c5:61:3d:83:57:6c:de:
         a5:a7:8b:7e:0d:45:02:65:7f:ae:4f:9b:4d:57:a6:ad:90:b8:
         31:0c:7f:ec:66:ac:4a:ff:36:73:ca:fa:37:18:1d:53:1a:e9:
         e2:14:b6:40:f3:88:8e:0f:47:8f:62:9b:99:3f:d7:46:e4:8a:
         60:03:0f:34:ef:96:e1:00:76:16:c3:d4:fe:52:9d:27:13:1e:
         35:aa:ed:e3:52:47:e6:54:05:6c:74:1a:c8:8a:74:0b:bc:98:
         de:1e:d6:2a:6a:81:56:7c:56:ad:00:0d:9b:ef:d9:70:b9:66:
         37:49:e3:f1:ef:89:46:d4:68:1e:7d:10:fa:a1:6a:e5:16:d3:
         54:25:70:42:3e:54:7d:07:b7:d3:33:2d:78:1c:7b:52:aa:de:
         15:50:f9:cd:3e:fb:7d:cc:2d:8c:ad:e4:be:d4:1b:4b:07:d8:
         8e:71:71:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----