Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.mft
File:                     7FY9v-LzmMjp-xn590IytrVKpuo.mft (raw, json)
Hash identifier:          jmU1MffBmuFEW7vhmqj6/xfOMICLzFg+P/9mJIJrBeI=
Subject key identifier:   48:C6:08:09:D3:A5:6A:40:B5:5A:9D:2C:22:2A:A9:5C:5E:28:E8:2B
Authority key identifier: EC:56:3D:BF:E2:F3:98:C8:E9:FB:19:F9:F7:42:32:B6:B5:4A:A6:EA
Certificate issuer:       /CN=A91E8632/serialNumber=EC563DBFE2F398C8E9FB19F9F74232B6B54AA6EA
Certificate serial:       1ADF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.mft
Manifest number:          1AB8
Signing time:             Fri 28 Mar 2025 16:26:41 +0000
Manifest this update:     Fri 28 Mar 2025 16:26:40 +0000
Manifest next update:     Fri 04 Apr 2025 16:26:40 +0000
Files and hashes:         1: 7FY9v-LzmMjp-xn590IytrVKpuo.crl (hash: tH5v1hYlIE3mUff1jXTq5qAgiVzDdhgikDX/pw3cQ3c=)
                          2: DC3B90E4520011ECA6088714C4F9AE02.roa (hash: tVOP8LyZJ77JRBIkUucA79A27boRokWrzqFOTarPZXk=)
                          3: F8ED87B8FCE811EC9E4E3A4DC4F9AE02.roa (hash: HcXFJpDWZcmR/k4nnUkzVGlWv0kfSW5A6hP7Nj80qKs=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6879 (0x1adf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E8632
        Validity
            Not Before: Mar 28 16:26:40 2025 GMT
            Not After : Apr  4 16:26:40 2025 GMT
        Subject: CN=67e6cdc0-7ccd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:ea:9a:63:61:19:c9:ae:4b:95:09:d0:9e:24:
                    04:2f:9b:0b:39:00:ef:cc:ea:05:ff:b8:54:2c:40:
                    6b:9e:ae:58:79:1c:61:5e:b9:6c:88:21:ce:45:a5:
                    8c:2f:e9:dd:61:73:cd:e0:11:4b:2e:03:34:1b:1f:
                    27:63:f1:5c:d1:fd:da:6d:6c:7d:a3:34:e8:a9:c2:
                    b6:ce:27:39:ad:76:60:96:06:16:7b:a5:0f:7e:15:
                    fb:ed:96:3f:04:b0:6b:7d:31:26:1c:30:e2:61:e8:
                    96:cd:34:7a:33:c3:3f:3a:97:e2:93:df:d5:dd:d8:
                    d8:78:23:ca:12:b7:88:12:75:5e:2e:34:18:cb:de:
                    db:c5:c6:69:d5:b7:a5:15:fa:cb:65:f1:17:f4:3f:
                    40:56:d4:34:30:ce:be:4f:7b:81:db:2a:b1:5f:7a:
                    c0:0d:3b:3a:70:de:45:83:87:cc:70:d9:19:f8:29:
                    56:03:cd:50:7e:9f:2e:18:4e:76:77:77:bd:1e:72:
                    84:11:7e:c9:7b:b3:bd:ad:df:34:63:97:3e:3a:c9:
                    7c:ee:aa:83:cc:65:5f:dc:c4:bf:38:f5:c3:9b:f0:
                    ca:85:06:f1:8c:b3:88:93:50:e0:50:c3:11:22:0f:
                    e5:d9:db:1b:be:b8:03:0c:67:b2:27:ee:a5:9c:94:
                    36:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:C6:08:09:D3:A5:6A:40:B5:5A:9D:2C:22:2A:A9:5C:5E:28:E8:2B
            X509v3 Authority Key Identifier:
                keyid:EC:56:3D:BF:E2:F3:98:C8:E9:FB:19:F9:F7:42:32:B6:B5:4A:A6:EA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:b3:d2:25:39:bc:d8:20:0a:56:08:08:d0:79:9e:65:8d:68:
         f0:d0:ce:15:38:88:a1:92:5c:5f:db:cd:f7:00:a2:64:7b:f2:
         ea:72:60:32:f4:1f:f5:ab:0a:2d:5b:03:20:48:eb:a1:9a:1a:
         48:b2:ef:ff:5a:13:8f:06:de:d1:7a:16:3f:d0:75:37:03:70:
         1c:d2:41:64:de:ba:bc:c9:80:bc:08:99:e4:f0:dc:82:2f:26:
         ff:64:d4:d5:73:13:1f:40:3e:8c:fb:78:8a:b5:1f:c5:7d:fb:
         c1:21:a4:b4:48:27:9c:82:24:ac:fc:51:52:44:3c:09:86:48:
         21:56:23:f2:73:37:35:41:2b:7a:5c:d3:fb:6d:3c:be:6b:be:
         88:4c:01:c4:77:1b:d5:c8:3d:3b:4a:f6:98:1c:43:3d:24:b1:
         b6:73:06:66:7a:da:dc:f4:63:a6:9f:dd:49:cb:da:f4:0a:f7:
         4e:9e:eb:46:12:ab:cc:3d:78:aa:a2:40:f2:53:fd:33:37:11:
         d1:83:b7:fc:78:4c:2f:7a:f0:bb:4b:af:bf:28:0d:4e:0f:01:
         94:42:7c:73:08:05:11:94:30:04:77:48:26:44:74:c3:44:f8:
         15:3c:f2:7d:76:b6:2c:8e:f3:2b:31:05:b6:c8:d6:7a:2e:8d:
         c7:c4:5e:91
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICGt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTg2MzIxMTAvBgNVBAUTKEVDNTYzREJGRTJGMzk4QzhFOUZCMTlGOUY3NDIzMkI2
QjU0QUE2RUEwHhcNMjUwMzI4MTYyNjQwWhcNMjUwNDA0MTYyNjQwWjAYMRYwFAYD
VQQDEw02N2U2Y2RjMC03Y2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA9uqaY2EZya5LlQnQniQEL5sLOQDvzOoF/7hULEBrnq5YeRxhXrlsiCHORaWM
L+ndYXPN4BFLLgM0Gx8nY/Fc0f3abWx9ozToqcK2zic5rXZglgYWe6UPfhX77ZY/
BLBrfTEmHDDiYeiWzTR6M8M/Opfik9/V3djYeCPKEreIEnVeLjQYy97bxcZp1bel
FfrLZfEX9D9AVtQ0MM6+T3uB2yqxX3rADTs6cN5Fg4fMcNkZ+ClWA81Qfp8uGE52
d3e9HnKEEX7Je7O9rd80Y5c+Osl87qqDzGVf3MS/OPXDm/DKhQbxjLOIk1DgUMMR
Ig/l2dsbvrgDDGeyJ+6lnJQ2eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjGCAnT
pWpAtVqdLCIqqVxeKOgrMB8GA1UdIwQYMBaAFOxWPb/i85jI6fsZ+fdCMra1Sqbq
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODYzMi8wNUNFNDRFQTJF
NUUxMUU3QkFDODhCNjlDNEY5QUUwMi83Rlk5di1Mem1NanAteG41OTBJeXRyVktw
dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzdGWTl2LUx6bU1qcC14bjU5MEl5dHJWS3B1by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
ODYzMi8wNUNFNDRFQTJFNUUxMUU3QkFDODhCNjlDNEY5QUUwMi83Rlk5di1Mem1N
anAteG41OTBJeXRyVktwdW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBTs9IlObzYIApWCAjQeZ5ljWjw0M4VOIihklxf2833AKJke/LqcmAy
9B/1qwotWwMgSOuhmhpIsu//WhOPBt7RehY/0HU3A3Ac0kFk3rq8yYC8CJnk8NyC
Lyb/ZNTVcxMfQD6M+3iKtR/FffvBIaS0SCecgiSs/FFSRDwJhkghViPyczc1QSt6
XNP7bTy+a76ITAHEdxvVyD07SvaYHEM9JLG2cwZmetrc9GOmn91Jy9r0CvdOnutG
EqvMPXiqokDyU/0zNxHRg7f8eEwvevC7S6+/KA1ODwGUQnxzCAURlDAEd0gmRHTD
RPgVPPJ9drYsjvMrMQW2yNZ6Lo3HxF6R
-----END CERTIFICATE-----