Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft
File:                     9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft (raw, json)
Hash identifier:          FmuwKRZn5eVju0byHn43ck4rRP54cmgla/EwKMncSIY=
Subject key identifier:   67:3E:5A:75:33:E5:F1:75:82:28:66:BF:01:07:79:E1:14:83:47:65
Authority key identifier: F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0
Certificate issuer:       /CN=A91ED571/serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0
Certificate serial:       0D3F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft
Manifest number:          0D38
Signing time:             Fri 28 Mar 2025 18:10:02 +0000
Manifest this update:     Fri 28 Mar 2025 18:10:02 +0000
Manifest next update:     Fri 04 Apr 2025 18:10:02 +0000
Files and hashes:         1: 9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl (hash: rmBgHaYo1i47jbOh/koy/0mNh4JsI7zklJp7jF35d8w=)
                          2: C9819022CE7011E98E86DD52C4F9AE02.roa (hash: EM624Ee5dZvup/p2NN7lZAjAZv2Q+/2EJL827rz91tU=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3391 (0xd3f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91ED571
        Validity
            Not Before: Mar 28 18:10:02 2025 GMT
            Not After : Apr  4 18:10:02 2025 GMT
        Subject: CN=67e6e5fa-6756
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:31:02:af:a9:08:04:e9:a2:70:11:2d:38:c3:
                    f2:4f:c6:b8:c1:44:8d:e0:f6:30:78:a6:08:07:49:
                    90:87:79:58:05:99:29:3f:58:f2:2e:88:4d:81:d9:
                    6a:42:9b:18:31:e4:1b:42:97:27:11:25:fc:6c:12:
                    ee:1b:ed:64:e3:de:ad:d2:24:d0:e7:66:cb:04:f7:
                    fd:ef:94:c5:8e:8c:79:5e:66:f2:c4:f9:5a:06:21:
                    c5:64:06:1d:f4:d9:aa:cb:1d:42:90:1c:c7:7c:19:
                    ae:71:0e:18:52:aa:49:fa:50:9a:45:de:fa:17:a4:
                    60:17:7f:4b:eb:73:e0:cd:76:e0:5a:85:66:a1:d7:
                    90:7f:fe:f6:99:2b:0a:6d:61:ea:b5:8e:72:77:24:
                    1c:b7:0d:e6:28:d3:2e:82:10:f8:a9:e8:15:8d:73:
                    30:d2:e2:8c:b6:37:6b:cf:c5:fb:cb:f9:cb:f5:a8:
                    c7:dc:fe:db:07:ad:13:06:ee:13:af:e6:c3:12:b4:
                    92:fe:c9:c7:c6:1d:a8:49:c2:22:f3:8b:17:f0:0f:
                    b5:8a:a4:96:a4:27:3e:e6:18:e4:c6:4b:7c:bd:0f:
                    25:e4:9a:99:6c:01:89:a0:c2:a4:01:21:ee:ae:62:
                    45:63:da:33:16:4b:e6:9b:06:cc:71:f6:3e:9e:d8:
                    ec:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:3E:5A:75:33:E5:F1:75:82:28:66:BF:01:07:79:E1:14:83:47:65
            X509v3 Authority Key Identifier:
                keyid:F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7d:ff:56:35:46:31:65:a0:46:d7:33:92:0b:3a:b7:7c:4e:e3:
         48:b5:d3:ce:11:f3:3d:23:39:91:98:3b:ae:ea:b1:4e:36:81:
         04:f2:36:5f:6c:a1:bc:a5:9b:b8:6f:1f:66:82:9d:98:3f:8b:
         be:73:62:f7:82:8e:b4:34:c6:56:21:f4:ef:8b:12:06:bf:b6:
         4e:7c:05:25:94:ce:50:df:f4:4a:e1:96:91:ef:3a:97:56:33:
         5f:e5:1f:11:49:88:6a:26:e5:44:f6:d4:c7:1b:94:de:b8:e4:
         4c:16:15:cf:f6:0d:b5:39:90:16:d3:ce:ac:e2:fb:df:7a:bc:
         cb:8b:7b:bb:57:a1:de:a4:ca:50:41:89:b0:38:10:93:7e:48:
         98:40:c4:f0:10:a2:07:9d:42:50:6b:7b:1e:69:9b:26:24:af:
         6b:28:85:1e:b4:6c:1d:bf:80:f3:df:5e:75:e3:1f:87:ea:da:
         15:e3:8f:78:42:87:b8:59:fd:c0:4a:78:83:87:c8:2c:c3:7a:
         e5:28:bf:66:57:5c:53:15:f3:03:c4:19:cc:ec:54:ac:76:a7:
         16:be:2f:4b:04:f2:d6:e7:57:95:1b:c3:b8:19:e8:9b:e6:16:
         ab:2f:e2:ff:cb:8f:3b:aa:aa:a4:db:22:e7:3d:d9:d6:5c:90:
         54:1b:d0:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----