Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft
File:                     DtUqdvMcJCF0oq0ZSByVcDty4jY.mft (raw, json)
Hash identifier:          IMFA+jSo/oJ1W31Q8qGphNmftkUIjBmu9NnwSrjIV1k=
Subject key identifier:   01:F9:D2:6E:F5:38:5F:3F:81:EA:71:7B:8C:96:09:82:A1:9E:E6:12
Authority key identifier: 0E:D5:2A:76:F3:1C:24:21:74:A2:AD:19:48:1C:95:70:3B:72:E2:36
Certificate issuer:       /CN=A91E33D7/serialNumber=0ED52A76F31C242174A2AD19481C95703B72E236
Certificate serial:       0DE4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft
Manifest number:          0DDB
Signing time:             Fri 28 Mar 2025 18:00:28 +0000
Manifest this update:     Fri 28 Mar 2025 18:00:27 +0000
Manifest next update:     Fri 04 Apr 2025 18:00:27 +0000
Files and hashes:         1: DtUqdvMcJCF0oq0ZSByVcDty4jY.crl (hash: 6SZ/v88XzRM6VQp2zIbHm6DOroxDaI/eRX1JbiFAUdY=)
                          2: C26576D4F4ED11E9ACC51713C4F9AE02.roa (hash: leeMqNjzFzLxyR/PuwyeZTmIKl73aTot0VdgEtIi1fo=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3556 (0xde4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E33D7
        Validity
            Not Before: Mar 28 18:00:27 2025 GMT
            Not After : Apr  4 18:00:27 2025 GMT
        Subject: CN=67e6e3bc-9a9e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:44:d2:89:b3:91:da:80:65:bd:33:d5:49:11:
                    1c:e1:2e:c9:ca:8a:fe:32:cd:90:29:72:bb:e8:1d:
                    3f:1e:2f:bc:ed:f7:1f:60:28:70:3f:d4:a2:af:b6:
                    92:af:2e:8b:1c:3c:2f:b3:85:b3:7e:f5:a9:bb:c0:
                    bf:37:41:67:ee:47:e9:b5:86:ac:78:f7:a4:18:28:
                    a8:82:b1:65:f7:5f:19:17:c9:8e:18:fa:fb:2a:d5:
                    28:27:62:62:a9:af:00:f6:a9:d1:11:fd:88:64:7d:
                    f8:79:26:bd:07:ae:49:75:62:d1:ef:63:9a:e9:c1:
                    8c:ef:f3:e0:bf:ca:31:a8:fb:73:ac:2e:e4:a7:fb:
                    f2:34:da:2d:d9:43:09:09:27:48:56:8a:58:22:ef:
                    fb:d4:20:a2:56:9c:7d:55:b4:e3:67:fa:4f:d6:1f:
                    ac:a8:f6:00:eb:19:6d:3c:d1:fc:97:17:1a:8a:3f:
                    15:b3:e9:f5:5e:6b:9e:3e:e3:b2:bf:e2:50:e9:d2:
                    c6:e8:5e:bd:e4:de:41:05:d2:01:db:99:83:a0:3e:
                    f3:91:02:5f:7b:37:e1:f3:40:ea:54:b2:9c:a5:de:
                    08:fe:90:ca:ca:37:e1:a2:f9:3c:14:76:43:88:2a:
                    86:59:d7:c7:1d:16:b4:94:63:f8:7e:13:c8:d3:d4:
                    7b:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:F9:D2:6E:F5:38:5F:3F:81:EA:71:7B:8C:96:09:82:A1:9E:E6:12
            X509v3 Authority Key Identifier:
                keyid:0E:D5:2A:76:F3:1C:24:21:74:A2:AD:19:48:1C:95:70:3B:72:E2:36

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c8:29:d4:5d:3f:36:d1:59:ff:b2:27:4e:f4:da:43:d6:96:f0:
         48:d8:66:f7:4a:43:c1:79:a8:65:86:10:6d:b1:b2:64:66:c0:
         2b:b1:3c:53:8f:df:ce:0e:54:3b:5a:6f:45:25:a0:04:2e:b3:
         d7:8e:0a:53:72:f2:17:aa:52:31:ce:61:8b:c1:34:84:b3:5d:
         d4:6b:3b:3f:bc:f9:00:b0:8a:9c:6c:63:59:8e:ec:64:32:d5:
         af:39:08:69:cb:1a:a4:0d:83:6b:15:87:07:66:be:aa:05:d8:
         f0:54:8d:d5:84:a2:b1:1f:a9:d6:7b:62:ba:55:3e:8e:7c:8c:
         fe:c9:25:ec:36:f8:a2:0c:9c:dc:a4:71:16:c8:85:0d:8c:67:
         14:45:0b:7d:80:9b:4e:48:db:08:3b:0b:f2:fc:f3:60:92:4a:
         90:4d:9c:4c:9e:a3:dc:64:5d:69:08:54:43:81:91:3e:4e:19:
         c6:7a:df:b3:ab:1c:33:64:2b:6a:15:a6:43:a9:9f:23:de:52:
         a0:c2:e5:80:1b:e1:2b:6e:a2:c0:7c:e0:71:11:bf:93:2f:09:
         21:2c:47:9c:73:96:a2:d2:54:62:43:2b:7a:4a:c2:50:a9:dd:
         1b:10:aa:28:d8:77:e8:bf:c3:b9:70:81:99:66:76:60:ed:30:
         ac:9c:bc:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----