Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft
File:                     HA0tulqzbC-WcsFN2He57qBsysc.mft (raw, json)
Hash identifier:          /Eon+5chjoeMUkn6QLvsM48/f9CFMwvTz2uyPPx+oXc=
Subject key identifier:   48:06:87:A1:83:AF:38:DD:01:02:4D:74:24:64:28:9C:01:B4:DC:AC
Authority key identifier: 1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7
Certificate issuer:       /CN=A91E11B4/serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7
Certificate serial:       0882
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft
Manifest number:          0876
Signing time:             Fri 28 Mar 2025 20:53:45 +0000
Manifest this update:     Fri 28 Mar 2025 20:53:44 +0000
Manifest next update:     Fri 04 Apr 2025 20:53:44 +0000
Files and hashes:         1: HA0tulqzbC-WcsFN2He57qBsysc.crl (hash: PS3RG7kuR+gw5qRqB0ntYrBbNUj5u3swKthrMYoG+yY=)
                          2: BB250202BC2C11EA96657B4BC4F9AE02.roa (hash: pJopSUouAomRS7bBbLiExTbU2TzCWgsGbKH4r8LjMrI=)
                          3: BA69B6FABC2C11EA96657B4BC4F9AE02.roa (hash: NDjkgreHok48ic1Su9+HPGIeiSQ2Z7P+GcpTGnpZzHA=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2178 (0x882)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E11B4
        Validity
            Not Before: Mar 28 20:53:44 2025 GMT
            Not After : Apr  4 20:53:44 2025 GMT
        Subject: CN=67e70c59-9a56
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:f4:1e:35:47:55:5b:85:de:eb:e1:6e:fd:9b:
                    ed:45:0f:41:76:cb:2c:ce:8e:c5:b7:a3:e4:f2:97:
                    0a:bb:6e:9d:4e:87:f5:f1:e0:15:5b:1e:13:e3:80:
                    08:54:84:3a:be:ba:45:98:6a:fe:60:04:cd:78:63:
                    68:c7:20:97:1e:0c:f8:05:8e:83:2a:51:ce:5f:8d:
                    de:64:69:7f:48:49:c4:a2:2b:19:b5:f1:bc:90:89:
                    b1:db:74:34:6d:23:27:68:04:fd:3f:9c:b3:d6:be:
                    27:36:1a:60:74:d7:60:3f:a8:e1:61:c4:31:d6:1d:
                    fc:9c:e2:d4:68:63:b7:3d:f9:94:51:9d:c9:dc:ef:
                    cb:40:73:74:68:80:78:3b:40:63:0a:a5:68:d6:f8:
                    cf:9a:c7:df:2c:01:7d:67:86:c0:fb:77:2b:3f:29:
                    f9:c6:e0:ac:f7:d1:17:a8:39:a2:03:aa:d0:e7:9a:
                    4f:32:5e:a9:d9:71:d4:e3:c5:24:1a:2f:37:4b:b1:
                    c9:40:aa:a1:9f:4f:d7:4d:5b:cb:61:5f:45:87:c8:
                    bc:ca:a3:66:ac:02:55:7d:01:f6:e3:2b:4a:af:5e:
                    08:c3:68:a8:8a:4e:0d:68:83:65:5b:cb:d0:26:35:
                    da:18:10:98:c9:a6:1b:0a:72:a3:cc:f2:7b:fc:28:
                    64:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:06:87:A1:83:AF:38:DD:01:02:4D:74:24:64:28:9C:01:B4:DC:AC
            X509v3 Authority Key Identifier:
                keyid:1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:c1:58:65:9f:ae:e0:de:bb:89:e5:6c:e0:23:ca:d0:db:46:
         89:34:e0:32:82:2d:bb:9c:61:61:20:46:cc:29:8b:11:1e:1b:
         08:18:68:dd:ff:8f:61:e9:88:f4:de:71:79:20:2e:86:1c:39:
         af:56:44:8e:7c:da:4b:38:6d:a3:ac:e3:13:37:7a:bf:d4:99:
         52:52:bf:37:31:f7:df:b2:d7:79:62:1b:39:15:4d:9a:c3:76:
         80:6c:2c:e3:54:60:ca:de:fc:a6:b2:3f:e7:b2:83:55:52:2e:
         99:58:1a:01:03:3b:9d:f3:26:87:93:26:0d:f9:d6:fa:aa:05:
         f1:91:ce:76:26:c8:2b:d2:56:ba:7b:a4:83:1d:c2:4f:56:26:
         90:93:ac:56:bf:77:e0:2d:c3:7b:b7:37:ce:bb:9d:59:f7:89:
         12:97:86:94:38:8e:cd:2a:0d:b3:4b:bd:fb:c2:99:9c:b6:87:
         0d:b6:0d:da:a8:06:33:c4:f9:5e:60:d0:d8:93:ab:87:c1:3e:
         33:53:7b:78:00:7e:ff:83:45:2a:76:b5:b8:38:93:80:8f:48:
         30:dc:db:9d:1f:04:45:57:10:ad:3d:19:ed:86:73:80:b7:5f:
         ac:d4:eb:3f:82:1f:06:cd:d5:57:79:00:e5:d8:9e:23:bc:51:
         de:fd:fe:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----