Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft
File:                     ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft (raw, json)
Hash identifier:          rSELU79dMwXyilA5MjpfXyT8ni0x8J7J8llzBDxLBJs=
Subject key identifier:   B3:A9:E0:0C:9F:A1:F5:AB:A0:2E:78:27:00:88:93:57:E6:0C:E6:39
Authority key identifier: 64:B6:86:B0:5D:CB:E8:BE:A9:28:07:53:2D:E2:9A:77:90:51:56:F5
Certificate issuer:       /CN=A91476F2/serialNumber=64B686B05DCBE8BEA92807532DE29A77905156F5
Certificate serial:       0547
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft
Manifest number:          052D
Signing time:             Mon 02 Sep 2024 06:09:08 +0000
Manifest this update:     Mon 02 Sep 2024 06:09:07 +0000
Manifest next update:     Mon 09 Sep 2024 06:09:07 +0000
Files and hashes:         1: ZLaGsF3L6L6pKAdTLeKad5BRVvU.crl (hash: 1DhNW5jCTDOSKyX2hPqk7pT9JISrJkmWGQH7ZGCualM=)

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1351 (0x547)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91476F2/serialNumber=64B686B05DCBE8BEA92807532DE29A77905156F5
        Validity
            Not Before: Sep  2 06:09:07 2024 GMT
            Not After : Sep  9 06:09:07 2024 GMT
        Subject: CN=66d55684-82b0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:91:76:e5:61:b4:cc:5f:33:77:73:11:27:19:
                    f2:07:1c:4c:17:62:23:c3:f3:7c:55:78:f6:a4:78:
                    77:2d:16:37:73:75:09:cf:83:6a:6f:ce:4a:b6:f7:
                    14:4a:d7:d3:af:34:77:63:7f:d8:92:c7:b8:fb:fb:
                    e9:a6:88:bc:26:74:b7:2a:c6:b0:8f:fb:39:c8:04:
                    78:d3:46:ce:f7:5b:3f:59:b7:a4:d9:54:87:20:21:
                    6a:36:a6:42:7d:f7:7b:ea:59:60:93:48:08:3d:ac:
                    80:21:9a:7c:32:ad:63:50:fd:40:3f:7f:7e:f3:e7:
                    b3:77:aa:dc:c3:e1:fd:7e:a9:54:43:1b:d0:03:ba:
                    bb:36:e6:da:77:4a:ea:e7:48:ee:c4:61:d4:1f:e9:
                    0b:25:ca:b2:21:84:ef:36:42:2c:d7:9b:4b:ef:49:
                    89:71:4e:7e:8d:c9:3f:2e:2f:5d:f8:38:25:58:a7:
                    a8:98:6c:96:c2:04:04:b4:3a:fe:f0:74:37:33:63:
                    7c:3f:b2:d0:42:85:94:f7:8f:37:3f:8d:a3:79:03:
                    e7:49:26:5d:30:b9:74:3e:8d:5b:3f:23:5f:98:e7:
                    97:77:d1:5d:1f:5d:a3:d2:14:f6:24:9b:26:2f:02:
                    31:59:6e:43:f6:58:0b:34:21:8b:7e:0d:66:b0:45:
                    af:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:A9:E0:0C:9F:A1:F5:AB:A0:2E:78:27:00:88:93:57:E6:0C:E6:39
            X509v3 Authority Key Identifier:
                keyid:64:B6:86:B0:5D:CB:E8:BE:A9:28:07:53:2D:E2:9A:77:90:51:56:F5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:d5:55:d5:2d:f3:ac:e5:65:46:c4:5c:90:4e:d2:e7:d6:7b:
         95:e7:7b:55:47:99:30:c9:3b:30:44:17:fd:6f:30:77:39:30:
         47:88:3a:8c:df:f3:fa:d1:37:1b:ee:1b:7f:db:72:fb:65:d8:
         32:76:fb:d6:b3:a2:4d:a2:f6:49:4c:db:60:ed:9a:95:53:76:
         ef:cf:50:4b:45:e2:22:c9:ea:8a:f5:1a:76:8b:cc:a0:8e:35:
         44:c8:6f:9b:9d:8d:ba:b6:d5:5f:e4:e2:d2:bf:e5:1c:dc:5f:
         ff:ac:1c:a3:41:03:37:0b:ea:45:86:56:6e:a0:81:70:91:a7:
         0d:ed:ed:28:50:49:9c:20:03:c8:3e:c8:70:93:46:f6:e8:eb:
         df:f8:77:ec:3a:20:b4:ea:83:2e:7d:e9:38:a5:43:49:fc:d6:
         b1:43:f0:0b:1c:4e:e5:dc:f3:06:77:38:ba:f2:5c:bc:39:2b:
         30:2e:ab:73:56:ea:b9:a9:54:1a:6d:b8:ad:0e:88:22:f4:a7:
         bb:82:6e:b2:3a:6d:fb:91:81:bd:6e:21:74:dc:40:13:88:85:
         09:45:2b:54:e3:7e:22:16:b0:44:dd:51:66:dc:16:d9:f7:1a:
         79:32:bc:b3:d0:de:b7:f9:9e:e4:b4:83:f8:cb:2d:0b:2b:fe:
         94:2a:f5:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----