Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft
File:                     QSPpAOai7I_ptdcDt5KA7yFAfIE.mft (raw, json)
Hash identifier:          VxbguNNVkdKz0Tk5uNYsDHlgGn8yFsDO4PkNOA/o5XQ=
Subject key identifier:   62:0E:AA:51:FD:AD:62:D7:B4:69:43:B9:E5:18:BF:8D:F9:16:C6:D9
Authority key identifier: 41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81
Certificate issuer:       /CN=A91F3B2E/serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81
Certificate serial:       01A1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft
Manifest number:          018D
Signing time:             Sat 29 Mar 2025 03:19:36 +0000
Manifest this update:     Sat 29 Mar 2025 03:19:35 +0000
Manifest next update:     Sat 05 Apr 2025 03:19:35 +0000
Files and hashes:         1: QSPpAOai7I_ptdcDt5KA7yFAfIE.crl (hash: D2j4UimuLNziFBiMt1t1zdoCORYJLL0cpbBmgB2D3WM=)
                          2: A91AF6A8CE7811EF89FA3944C4F9AE02.roa (hash: xYipp+ZcmQFz/ogxlth1vHSd96eYxW/drt1nbOwk66E=)
                          3: 2B8EF9AA083911F0A051CE72C4F9AE02.roa (hash: NUJLc0QRL6TCVIjI3d7tAKvp2NahPW0NGI52wQUI1t4=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 417 (0x1a1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F3B2E
        Validity
            Not Before: Mar 29 03:19:35 2025 GMT
            Not After : Apr  5 03:19:35 2025 GMT
        Subject: CN=67e766c7-546d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:31:96:26:6d:e5:cc:cc:d4:b3:0f:3c:4b:51:
                    d4:5e:ba:09:b5:eb:8c:e0:39:14:d4:0b:2a:1b:ef:
                    b9:45:28:d9:b9:eb:55:d1:cd:67:1a:3d:91:04:6f:
                    41:8a:d5:89:2a:ab:91:b8:98:cc:db:64:36:37:ab:
                    c9:4d:c4:8e:14:e3:4f:23:30:51:38:e7:e8:e3:9a:
                    19:89:bb:b1:f3:ee:77:19:38:df:d9:7d:ba:9b:1f:
                    c2:4a:67:89:28:97:85:53:f3:25:20:2e:7c:2a:00:
                    fe:ba:41:ec:31:12:7f:1b:ef:bb:25:9d:31:fb:d2:
                    59:dc:f2:50:09:94:b3:a3:de:32:a4:9b:8a:b6:c0:
                    6d:8f:76:1a:7e:e0:b7:a4:24:63:67:8f:85:16:dc:
                    d5:8e:85:ce:08:73:d0:a5:05:f5:2e:b9:a8:f6:83:
                    72:9b:91:ba:31:e6:98:e0:21:b0:15:52:59:f1:44:
                    2b:42:da:a0:1b:31:92:ee:17:86:4a:31:da:80:b9:
                    47:0a:71:d0:1a:a9:43:14:ec:c4:ca:3b:dc:fd:3a:
                    c2:0d:b0:26:e6:30:4a:15:41:75:83:a3:de:24:49:
                    42:7e:90:92:d0:f0:3a:af:d5:e5:45:00:11:0c:ce:
                    7f:7e:97:25:e7:81:8b:25:48:38:a7:9e:66:ce:09:
                    20:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:0E:AA:51:FD:AD:62:D7:B4:69:43:B9:E5:18:BF:8D:F9:16:C6:D9
            X509v3 Authority Key Identifier:
                keyid:41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:db:5a:d7:c8:4f:4b:53:91:80:5c:2a:5a:b2:32:de:7e:d7:
         30:7b:c0:40:81:06:34:92:e6:35:b7:9c:c7:60:97:30:51:6d:
         a7:65:e8:b3:5e:6c:e1:02:01:bb:1b:ae:5f:8e:38:0b:18:ec:
         6d:82:0c:8a:39:d7:0b:4a:a3:50:8c:83:bd:a4:e2:c2:a9:a5:
         78:dc:60:21:9b:85:1e:1f:99:d2:88:f2:ad:ae:34:69:49:66:
         df:6b:85:ca:c1:b0:ee:64:95:48:4e:15:95:ae:cf:2b:ea:69:
         18:d8:23:fa:d1:44:39:54:66:05:34:f4:6c:5c:dc:31:c8:7f:
         12:92:de:e2:91:ef:49:18:49:d4:25:c5:d9:75:cf:b6:35:0a:
         38:9e:fb:db:09:cc:92:bb:a1:35:78:c5:d9:d7:ad:b9:c0:f8:
         9d:9b:62:92:91:0f:66:83:e8:67:cd:41:b4:52:f9:84:cf:b4:
         2c:63:55:6e:11:03:27:be:93:51:87:af:86:40:7b:ec:c0:4b:
         d0:be:b7:33:f1:61:e7:37:58:98:97:14:65:25:7d:75:77:f3:
         1a:19:e6:a5:ca:7c:90:7c:5f:a5:47:73:f9:6d:fd:52:3a:69:
         ba:b5:f7:1f:64:90:0d:c3:5f:6a:25:f6:26:15:ff:16:27:78:
         6e:2a:cd:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----