Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft
File:                     A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft (raw, json)
Hash identifier:          /VNOkjLiYek9GZBV772KO1bBLfqezuCtGpwVdCrfHrM=
Subject key identifier:   E4:BE:7F:E9:D3:F7:24:64:C6:54:B1:04:F0:60:25:D5:A4:EF:EE:9D
Authority key identifier: 03:72:46:D5:14:B8:23:40:ED:E0:62:89:BF:1B:C8:C4:59:DB:FC:E5
Certificate issuer:       /CN=A91E6DB3/serialNumber=037246D514B82340EDE06289BF1BC8C459DBFCE5
Certificate serial:       0317
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft
Manifest number:          0311
Signing time:             Sat 29 Mar 2025 01:28:28 +0000
Manifest this update:     Sat 29 Mar 2025 01:28:27 +0000
Manifest next update:     Sat 05 Apr 2025 01:28:27 +0000
Files and hashes:         1: A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl (hash: +3/irM5/BjuOUEfsXIA6q/80p2E1m9SY5AcDlJc7REM=)
                          2: 67A55414D56911EFB3E08134C4F9AE02.roa (hash: 6JpjDff62wDTfk1naPEndRnRsudFZskUVlbVd/hGOl8=)
                          3: 671C31AAC6C811ECA5A9AB33C4F9AE02.roa (hash: +vJahyBsj/iwD6Uf+V5LVvoqUetqk1SrdYTgQvG1J8M=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 791 (0x317)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E6DB3
        Validity
            Not Before: Mar 29 01:28:27 2025 GMT
            Not After : Apr  5 01:28:27 2025 GMT
        Subject: CN=67e74cbb-826c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:6f:df:11:40:0d:3d:58:b4:3a:a0:a0:b2:94:
                    a6:ee:a9:3b:01:b3:3c:99:66:3e:a5:91:67:f2:e9:
                    9c:b5:bd:24:00:d5:d6:b1:38:e4:86:f3:56:cf:5b:
                    3c:58:8d:d7:0d:1d:fd:73:d7:27:c2:c6:32:9d:99:
                    17:18:cf:05:4b:a0:9a:5a:e4:36:2b:61:68:16:24:
                    76:1f:16:b1:49:7f:f3:27:d8:df:5b:d4:60:30:8c:
                    11:b7:ca:87:ea:6a:71:56:cc:30:12:62:0f:ca:76:
                    4e:10:b7:de:9f:d5:a6:27:b7:e9:04:a0:5e:c3:62:
                    ff:61:1f:7f:0c:dc:2d:ee:2f:f8:6e:a1:d0:c1:72:
                    4c:4a:40:cc:f1:b8:c1:5b:8a:e0:72:7b:25:b9:42:
                    dd:1d:18:e9:1e:53:58:05:01:c1:58:4e:eb:ae:72:
                    b2:a8:42:4e:d3:a3:e6:e1:e2:f8:43:03:af:16:c7:
                    65:17:78:33:ec:30:5e:0c:41:5f:5e:2e:f8:81:6f:
                    23:23:80:1f:d0:b4:cf:d7:ac:57:e0:37:c7:43:cb:
                    c3:24:34:6e:f7:a0:3b:c6:90:88:bc:6f:17:bf:c1:
                    87:c0:8c:61:8c:fa:b2:60:ad:2a:28:73:ed:da:5d:
                    2a:00:b8:5c:7a:bd:db:84:93:40:a3:d6:b0:14:ce:
                    ab:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:BE:7F:E9:D3:F7:24:64:C6:54:B1:04:F0:60:25:D5:A4:EF:EE:9D
            X509v3 Authority Key Identifier:
                keyid:03:72:46:D5:14:B8:23:40:ED:E0:62:89:BF:1B:C8:C4:59:DB:FC:E5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         d7:61:07:d9:50:bc:bb:0a:a1:0d:5a:a2:76:b3:76:a3:19:14:
         f6:95:da:77:46:7a:76:18:04:28:8a:be:c5:e9:76:44:00:67:
         30:02:51:e3:7b:29:5c:97:9f:28:fa:e6:9e:13:a7:d3:ca:da:
         f0:fb:54:95:86:12:e9:ef:97:0c:57:b3:91:6b:4a:5d:17:b1:
         83:11:a8:54:f9:97:db:04:b4:be:cf:98:68:ab:15:14:08:1d:
         38:bb:8b:eb:ab:37:5c:f5:6c:7f:a5:43:de:a6:87:a9:88:72:
         41:52:37:d5:cd:98:2e:c9:3b:7b:f7:58:2a:25:83:db:b1:50:
         54:de:85:b2:44:e5:df:92:a3:92:cc:f4:79:7f:fe:d0:43:71:
         c4:ff:14:aa:d8:87:f8:c0:ab:82:96:4b:6c:14:5b:aa:ba:f4:
         ef:64:6b:11:6d:f8:1d:38:e5:92:b7:5d:32:38:64:dc:1c:54:
         f0:69:f8:18:82:81:f9:1f:2c:0d:06:0d:68:4a:7b:51:23:c0:
         77:bb:58:5b:14:18:61:fa:39:67:f7:09:ab:3f:fe:a4:f7:79:
         7e:a6:f8:0b:42:b9:90:07:4c:5d:01:24:a7:5a:82:92:01:9c:
         3b:e8:9d:36:c6:9f:61:fc:97:69:44:41:9e:78:77:75:cf:4f:
         ed:e7:ae:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----