Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.mft
File:                     Uw0prcD7HPKDfTm7hjQ0hsHHFoI.mft (raw, json)
Hash identifier:          xe9zaDdteNWUOMXrbKJPM1d9RTobxFqFCBSL4oNgZ5o=
Subject key identifier:   C0:6C:4C:8F:4E:3C:DE:44:E3:73:1A:37:94:81:9F:4D:67:98:06:71
Authority key identifier: 53:0D:29:AD:C0:FB:1C:F2:83:7D:39:BB:86:34:34:86:C1:C7:16:82
Certificate issuer:       /CN=A91F3AF8/serialNumber=530D29ADC0FB1CF2837D39BB86343486C1C71682
Certificate serial:       0798
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.mft
Manifest number:          078C
Signing time:             Fri 28 Mar 2025 21:35:48 +0000
Manifest this update:     Fri 28 Mar 2025 21:35:48 +0000
Manifest next update:     Fri 04 Apr 2025 21:35:48 +0000
Files and hashes:         1: Uw0prcD7HPKDfTm7hjQ0hsHHFoI.crl (hash: evmQghr6CG64JDfhKU3Mc6vHa23FHusivVvEsbCdEXs=)
                          2: 3791632A030011EB909C3244C4F9AE02.roa (hash: dB3zmsBTd89CRpUWBbCoSsuPQSrK3XC84t7uk9x1cA8=)
                          3: CC08667A7A6011EB9BC9937BC4F9AE02.roa (hash: Z/3rZQtnqfOwNEnHVO1+ydXZ5JjAuPVHRMvibrG3oIc=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1944 (0x798)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F3AF8
        Validity
            Not Before: Mar 28 21:35:48 2025 GMT
            Not After : Apr  4 21:35:48 2025 GMT
        Subject: CN=67e71634-d001
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:9c:30:f1:0e:90:31:b9:4a:b2:2a:4a:07:a7:
                    1f:cc:1e:1f:75:ba:6c:4e:f8:e4:40:d6:5e:96:1c:
                    c8:ad:60:c6:44:3f:51:8a:22:ac:22:5b:72:5a:f5:
                    fa:cd:37:d5:6f:06:81:9e:58:00:30:06:53:d8:04:
                    94:f2:cc:31:e8:e1:2e:1f:ba:f4:fb:a6:b9:2b:4c:
                    0d:55:ec:68:ec:d3:64:8f:db:aa:91:9b:69:a7:93:
                    42:b6:c0:fb:a8:56:1d:6c:92:87:8c:f0:29:86:3a:
                    14:d7:d3:ab:bc:16:04:1d:9c:64:cc:2a:06:9f:a0:
                    00:96:4d:eb:a6:10:68:b8:69:c0:8d:11:ac:6e:3d:
                    6c:0a:0f:1b:75:8d:c8:b2:91:a8:11:68:b3:8a:c9:
                    8e:ed:f8:df:cd:e9:90:97:75:16:68:a6:c3:23:57:
                    3d:f2:f5:22:f1:41:de:e8:64:8d:6a:39:13:54:6d:
                    9f:41:3d:da:95:d9:58:78:12:49:a7:8c:74:e9:e6:
                    b6:3d:e5:48:ea:c6:46:5b:7d:a2:04:ba:ae:2c:ba:
                    db:79:1c:4d:80:c5:2d:37:02:a0:31:6a:74:80:35:
                    91:58:73:05:18:5a:bb:f4:87:b9:f7:35:a1:b9:19:
                    a2:73:4d:ef:23:59:87:96:d0:c0:aa:ee:b3:5c:36:
                    39:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C0:6C:4C:8F:4E:3C:DE:44:E3:73:1A:37:94:81:9F:4D:67:98:06:71
            X509v3 Authority Key Identifier:
                keyid:53:0D:29:AD:C0:FB:1C:F2:83:7D:39:BB:86:34:34:86:C1:C7:16:82

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3f:a6:ec:e9:31:ae:c0:15:b3:a7:1e:8b:36:33:1a:ab:dc:d9:
         af:58:74:70:dc:4a:96:04:83:fa:3c:0a:89:10:7b:2c:62:7e:
         6f:0f:0a:aa:b9:9d:68:82:23:dd:59:3d:79:e0:1c:10:d3:80:
         d0:30:56:ae:b3:a8:fd:98:58:8f:6d:fb:90:3e:9d:31:46:1c:
         48:bd:9d:42:0a:8d:2e:06:a8:44:b9:16:12:a2:cb:16:4e:55:
         23:7f:a6:fb:04:62:36:32:12:bc:41:1b:e4:2b:a9:cf:46:48:
         43:a2:84:af:c8:68:ee:5b:a2:52:c0:cd:bd:11:2b:a0:6d:85:
         5f:7f:a3:5a:07:bd:88:a3:38:6b:58:2b:65:78:e3:95:55:86:
         54:c6:18:df:77:85:75:cb:33:11:83:f3:77:ec:04:e4:e9:39:
         46:29:ef:af:ce:d6:3b:36:bf:2c:9d:b8:d3:a8:78:3e:f0:5d:
         75:eb:29:c8:34:da:18:8d:07:db:f7:ba:18:75:15:f8:15:67:
         fa:b0:50:41:9d:81:36:29:db:9c:75:9b:68:e9:29:a8:ed:9b:
         f8:4d:81:1c:11:de:c1:a4:61:7b:ae:fa:a2:0f:c1:b3:18:87:
         08:3d:01:9c:1e:64:10:58:4d:d7:90:41:9d:80:43:b8:c2:77:
         d4:1d:da:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----