Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft
File:                     QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json)
Hash identifier:          oTiZTtTVyMeUSKzPsIqx66hTIo+2amLR48fCvzuGrmY=
Subject key identifier:   BC:E2:D3:0B:F3:0B:B7:67:43:9B:40:D6:2D:0C:3C:A3:47:ED:4F:EB
Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD
Certificate issuer:       /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD
Certificate serial:       02DF
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft
Manifest number:          02DA
Signing time:             Sat 29 Mar 2025 01:38:19 +0000
Manifest this update:     Sat 29 Mar 2025 01:38:18 +0000
Manifest next update:     Sat 05 Apr 2025 01:38:18 +0000
Files and hashes:         1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: aksd00DILXREiK91KSqC0qZNGmuQGwDuk7AKQ6Hu+es=)
                          2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: vSji2PW77227MPuRms4fNHOSHefJ2bW6akHMJ/kFIj0=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 735 (0x2df)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E91BC
        Validity
            Not Before: Mar 29 01:38:18 2025 GMT
            Not After : Apr  5 01:38:18 2025 GMT
        Subject: CN=67e74f0a-7ca1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:ef:eb:cd:8c:45:9d:d7:27:90:a4:ef:04:5c:
                    fa:c0:fd:14:00:95:a7:15:81:84:8b:25:04:be:f2:
                    7f:77:2b:57:0e:57:e8:ae:d7:68:82:4b:e6:47:44:
                    34:18:22:7e:3e:2c:fb:9f:9a:f4:07:e4:fb:b8:d5:
                    54:bd:f0:96:09:c4:f7:16:96:e8:3c:66:f0:ec:1e:
                    b3:19:ef:b7:cf:ca:33:c7:73:c1:6e:e3:f2:ee:b2:
                    84:29:87:7e:2c:28:0d:c0:6d:82:f8:a3:b5:86:10:
                    cd:a5:92:2b:9e:5a:d0:7a:ec:79:38:47:68:24:64:
                    99:54:3f:e4:d0:c9:80:3b:5d:77:2d:b7:47:cc:f4:
                    ab:84:f8:b3:2c:4f:dc:61:c8:2c:e4:be:da:51:83:
                    f3:67:46:59:a2:39:e6:a1:70:13:4d:b0:50:ce:c6:
                    9e:d3:b7:44:c2:b5:17:d5:41:c8:99:f9:41:5d:c0:
                    9c:84:3f:ff:62:4f:03:01:39:c3:bb:39:36:75:b6:
                    ab:9c:6c:5b:20:03:24:20:f2:a8:b2:56:1f:35:e3:
                    4d:02:0e:37:08:79:a7:32:e3:52:82:95:67:6d:4f:
                    77:23:6b:20:5f:b0:f2:dd:69:e3:f1:6a:64:58:cd:
                    58:a0:66:ea:9a:4a:dc:d8:ec:91:d2:0b:6d:59:6d:
                    af:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:E2:D3:0B:F3:0B:B7:67:43:9B:40:D6:2D:0C:3C:A3:47:ED:4F:EB
            X509v3 Authority Key Identifier:
                keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bd:70:86:f6:c2:ed:05:a8:cd:33:da:b3:0e:f4:fd:4c:04:24:
         01:8d:f1:8f:33:7b:2d:03:ec:e3:57:4f:ed:2a:3f:18:20:f0:
         17:08:43:d7:06:04:04:19:38:0a:22:ca:31:8e:56:23:eb:11:
         ef:f2:c7:20:62:57:58:4c:b8:42:98:f0:2d:fc:33:1e:9a:08:
         b1:7c:e9:11:84:ef:2e:41:fa:83:96:66:e3:1e:2e:73:e7:53:
         7d:bd:82:2a:d1:e3:5e:ae:e5:22:d5:24:b5:a7:e2:e8:e6:e6:
         84:fb:e0:4e:d4:09:da:38:2d:cf:b4:68:9f:95:16:15:4e:bf:
         24:14:c1:f3:7c:7d:0b:e3:a9:f6:42:65:2f:2d:45:66:3b:9e:
         8f:99:b5:eb:af:0b:66:ce:30:57:a3:9f:0c:bf:dc:b4:6d:bf:
         19:f9:f8:50:4a:51:be:9e:6b:42:e4:52:0a:b0:c4:ff:1c:5c:
         15:c1:38:82:d6:f4:c0:46:73:c6:03:a9:1a:b8:51:69:90:c7:
         59:92:8b:f2:42:5c:2b:93:e8:87:89:fd:22:31:33:18:2d:93:
         26:e0:2d:10:cd:10:b7:6c:a0:6b:71:76:58:29:0a:62:6b:2e:
         5e:44:dc:48:21:13:c7:19:33:1f:0c:22:e5:62:fb:28:5b:d9:
         2b:ac:25:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----