Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft
File:                     R2e2k72EYu6vqD2egDydKGtiHcg.mft (raw, json)
Hash identifier:          Xo6MppGmyn7tVGPW7Xp/FTVgI6ndxVVP1xbgbVNfAqY=
Subject key identifier:   73:3F:03:D7:84:DA:C5:5A:6C:FC:06:AF:F9:EB:77:F1:E0:31:6B:E1
Authority key identifier: 47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8
Certificate issuer:       /CN=A91F9B6C/serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8
Certificate serial:       11
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft
Manifest number:          10
Signing time:             Sat 29 Mar 2025 07:23:41 +0000
Manifest this update:     Sat 29 Mar 2025 07:23:40 +0000
Manifest next update:     Sat 05 Apr 2025 07:23:40 +0000
Files and hashes:         1: R2e2k72EYu6vqD2egDydKGtiHcg.crl (hash: i28V33u7hdDH3MfYjMGE9yNbKDUTHpuyNhtfz1FjH8Y=)
                          2: 3D60B6FCFA5E11EFB84AF068C4F9AE02.roa (hash: Ya8UAl3AvyfkYqVmnBZyGneXfArx61d1F2XHtbOSrtU=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 17 (0x11)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F9B6C
        Validity
            Not Before: Mar 29 07:23:40 2025 GMT
            Not After : Apr  5 07:23:40 2025 GMT
        Subject: CN=67e79ffd-7d98
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:c0:0a:09:17:e9:52:c5:f6:2a:8a:21:cb:ee:
                    3a:9d:86:c2:9e:aa:cf:49:b4:93:1a:b8:f8:20:18:
                    5e:72:97:b6:c6:d6:68:39:f5:68:80:b2:1c:a5:d0:
                    b8:0d:fd:8d:b8:dc:06:3e:5c:8d:75:f3:9e:cb:77:
                    b2:f6:6d:2c:42:2b:af:1b:3f:a1:54:4b:e7:8f:50:
                    93:a6:e1:ef:80:2a:5f:e8:87:56:d0:1c:26:03:92:
                    90:d1:e8:bc:50:33:8a:2c:ac:a7:63:b8:bc:6f:06:
                    19:bc:b7:98:19:e9:9e:f4:a5:db:c1:d8:94:f3:73:
                    02:95:65:ac:9f:82:76:33:26:71:61:c6:b2:0d:b7:
                    72:88:1d:11:6e:e9:1a:88:54:4a:48:51:22:b1:61:
                    72:41:00:24:3e:80:cc:ea:b3:0e:40:73:d2:48:b6:
                    a9:78:c9:81:96:90:18:d5:b3:41:82:15:a1:d3:9c:
                    74:0f:e2:ef:be:41:11:4d:0d:0f:d4:39:e6:ed:69:
                    03:71:9a:c5:42:65:59:a8:db:86:ed:16:a5:8c:07:
                    30:c0:c8:aa:f6:0a:0b:1d:e6:b1:b0:ed:08:22:6f:
                    84:cb:3a:23:42:df:7c:73:a7:32:89:3e:c7:4c:98:
                    7b:e1:e6:32:da:e6:ea:c9:2d:a7:e0:d2:71:6f:0c:
                    17:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:3F:03:D7:84:DA:C5:5A:6C:FC:06:AF:F9:EB:77:F1:E0:31:6B:E1
            X509v3 Authority Key Identifier:
                keyid:47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7d:f9:20:bc:8d:6e:0d:c0:c2:50:6b:f1:a4:2f:6b:7f:ae:f1:
         fa:22:a0:e2:5f:5c:39:5f:d8:d8:50:8f:76:c9:e7:fe:d1:68:
         b7:e1:ee:75:56:9c:e1:4b:3d:16:71:4d:39:a7:10:67:fe:7d:
         01:53:da:c4:1b:ac:b3:0b:55:d9:95:fb:58:c9:cd:07:a1:f0:
         c3:5f:46:38:f4:59:5a:5f:60:7a:e5:cc:3b:71:13:ac:9a:9d:
         ef:17:19:a6:8a:52:24:23:0f:81:97:76:6d:21:d1:73:72:cd:
         3a:ad:84:e6:1a:0e:72:db:6b:a0:5f:66:4b:9b:fc:ba:a2:26:
         e6:23:c8:2a:72:66:21:d5:5a:02:20:44:1a:ee:f2:4f:f5:05:
         62:c5:22:c9:7c:04:5b:9c:bd:74:46:22:e3:6a:ab:8a:37:f2:
         8c:22:6f:77:1a:f6:28:29:eb:dc:47:5f:1d:64:63:25:1f:f5:
         d6:43:cb:cd:d0:77:83:4d:ae:04:08:38:4d:a1:cd:04:7a:1d:
         ec:4f:57:b0:78:8d:b5:19:f9:89:31:1a:88:27:6b:e1:31:fc:
         c7:11:fa:97:18:d6:91:20:4e:34:a0:3e:b8:13:14:79:9a:8a:
         5c:a8:31:5e:1b:a6:b2:f9:15:12:71:2d:77:74:d3:8f:4a:33:
         c1:02:12:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----