Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft
File:                     g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json)
Hash identifier:          29fw3E+f3ZvM8mjYSYXvZpKS77srhnuaVIGQk+EGyF0=
Subject key identifier:   E5:FB:18:34:FB:56:F4:F5:2C:A7:80:53:A0:D3:93:DF:3F:7E:8B:4A
Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB
Certificate issuer:       /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB
Certificate serial:       11B4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft
Manifest number:          119E
Signing time:             Fri 28 Mar 2025 17:19:27 +0000
Manifest this update:     Fri 28 Mar 2025 17:19:26 +0000
Manifest next update:     Fri 04 Apr 2025 17:19:26 +0000
Files and hashes:         1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: 9VrjG0IbTMf8/oz4f2UJ4Jrt6sJrgLt9rOA1stE/IGM=)
                          2: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: v7RjiERJ+UaXKwbiabeVpDMvLEWGvJ12a2mTucr6CA4=)
                          3: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: TVhSAgEvsJfuZaOVoxgSaRmJu5V64CD24chcx4Ly8ag=)
                          4: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: ScKShaSanQZL0Fzy7Q3PEdRjE3XVz96AGuDEeuPLE9c=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4532 (0x11b4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EC7F2
        Validity
            Not Before: Mar 28 17:19:26 2025 GMT
            Not After : Apr  4 17:19:26 2025 GMT
        Subject: CN=67e6da1f-8928
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:fb:37:48:fb:ab:a5:82:61:a9:63:12:6a:82:
                    c1:d1:a0:9b:d2:98:a5:36:ca:86:dd:27:b0:5f:21:
                    66:08:75:bf:58:64:f3:fc:d5:95:99:75:3d:ae:24:
                    21:d6:5c:5a:78:cb:64:e7:a4:1f:19:7c:2e:b5:45:
                    1d:f7:b0:12:1a:80:b9:50:39:1b:62:04:59:98:52:
                    67:62:5b:dd:2e:21:2f:1f:04:94:c4:1a:1d:b2:3b:
                    3d:f0:97:b7:27:d8:c2:f9:f5:0a:01:7e:70:cd:0f:
                    6f:ac:9a:0b:27:65:c8:8d:14:b1:62:fb:83:77:2e:
                    47:42:c1:ef:aa:47:df:8a:7a:69:67:24:b9:45:66:
                    e8:c4:59:9c:db:bd:8b:c8:e4:f1:3b:19:67:1d:1b:
                    6c:b2:74:26:5e:c1:02:27:d4:89:5b:e4:80:31:3b:
                    02:ca:20:e9:7a:bb:59:d9:8f:d2:86:74:25:96:64:
                    cd:38:d9:df:02:2f:e0:c2:44:a4:3d:3f:c3:45:6a:
                    5a:b7:9e:0c:fb:62:3c:e0:6f:6b:05:1b:cc:a2:e4:
                    96:3f:1f:c8:bd:bd:bf:e7:ee:92:77:a8:1b:26:2e:
                    b0:fa:77:25:3b:42:13:b3:f0:11:17:41:dd:6c:68:
                    0c:1b:e0:1e:5b:1c:11:75:ce:2b:65:15:21:01:a1:
                    e2:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:FB:18:34:FB:56:F4:F5:2C:A7:80:53:A0:D3:93:DF:3F:7E:8B:4A
            X509v3 Authority Key Identifier:
                keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:7c:66:e1:0c:00:7e:34:94:67:05:de:04:28:65:c0:f7:3f:
         b4:d3:ae:1e:0f:55:98:7c:42:ab:b7:91:5f:0c:d0:96:66:d3:
         1a:1a:98:aa:67:f7:16:01:19:3f:ae:85:c9:6c:f0:83:9c:29:
         4d:f7:aa:dc:6f:d2:45:27:fc:67:d0:1c:d7:2e:a5:51:d8:04:
         ff:42:e6:2c:97:fa:38:68:8f:56:06:2b:d4:b3:d9:01:fd:0d:
         67:f7:95:f4:c1:5d:72:6c:5c:2a:8e:26:71:5a:ae:42:7a:42:
         30:2c:d7:e1:b7:9a:46:04:00:7e:c8:a4:3d:53:2a:b7:9a:75:
         b3:a0:4b:bc:ad:7e:5d:e6:c9:48:77:98:7b:44:7e:e6:47:bd:
         7a:d3:9e:cd:a5:62:75:e2:b5:92:20:66:d4:f0:73:71:58:82:
         ad:7b:6f:a4:3d:6d:2c:44:ef:75:1a:9c:e1:a5:c6:63:87:71:
         48:5c:06:19:e8:df:97:9c:0e:9d:88:60:82:43:02:2b:a6:2c:
         ae:08:fb:2c:42:42:15:b9:4c:e6:3b:06:34:45:bb:37:50:0e:
         78:33:96:22:d6:59:0a:af:13:bc:e2:f2:ad:e3:cf:08:4d:53:
         ab:12:8d:ba:3b:7b:8e:dd:e6:cc:05:f4:00:15:cc:48:5b:57:
         f5:6e:b9:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----