Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft
File:                     FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json)
Hash identifier:          31Tdl1y7QknOoFFzH7+ujQEVjrSrN2LDTucftfZJqp0=
Subject key identifier:   02:05:51:A4:C5:B2:A6:DF:E8:59:5F:F0:35:D1:49:4E:59:98:58:70
Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3
Certificate issuer:       /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3
Certificate serial:       08CA
Authority info access:    rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft
Manifest number:          08C4
Signing time:             Fri 28 Mar 2025 20:44:38 +0000
Manifest this update:     Fri 28 Mar 2025 20:44:37 +0000
Manifest next update:     Fri 04 Apr 2025 20:44:37 +0000
Files and hashes:         1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: A6irApvIecZmcxbi22udG9i1ogrMddUmn2SjyFFzoKw=)
                          2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: 7BeIC/3MCE4ltdZdNYUXGP6p5TOokjZ4G97ql300lNY=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2250 (0x8ca)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914F5BA
        Validity
            Not Before: Mar 28 20:44:37 2025 GMT
            Not After : Apr  4 20:44:37 2025 GMT
        Subject: CN=67e70a35-1a21
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:f4:fc:42:2b:8b:20:2f:15:62:1b:0a:d3:23:
                    fd:81:9c:43:35:0e:0f:07:93:0a:28:3e:9b:24:b3:
                    f5:87:eb:ea:56:e2:e6:17:26:3b:d1:73:5d:76:ad:
                    ab:eb:df:5e:b0:66:c0:11:18:2c:d6:6b:a4:57:fe:
                    be:d3:56:c6:62:b5:2b:57:4c:6c:9b:fc:3e:aa:87:
                    b1:46:cd:2d:47:15:cd:6d:96:6f:54:7a:89:0b:ce:
                    77:1e:3f:a0:6f:40:f5:49:4b:65:60:82:ad:e2:bc:
                    ee:82:e0:23:0d:ef:16:ca:ca:30:00:24:e9:c7:8c:
                    d0:27:14:12:54:a8:c1:72:5a:1f:36:8e:c7:80:2a:
                    d1:7b:43:2f:d7:3a:0f:c8:2e:43:60:5f:b7:7e:e9:
                    af:8d:a5:54:72:99:f3:a0:2f:6e:d3:be:31:ab:d1:
                    db:71:18:b7:3a:6a:c3:6b:fe:2a:9f:ae:db:30:12:
                    1d:fc:5c:e2:9c:2f:b5:49:38:87:87:19:cc:e7:7f:
                    ff:81:aa:7c:a8:08:e4:b5:66:00:c8:e5:91:32:ae:
                    86:e3:f4:c3:48:dd:94:73:69:a7:35:98:ea:e7:37:
                    27:76:78:d3:c9:40:42:21:4e:86:63:29:2d:a4:6b:
                    16:76:a3:6b:cc:15:89:e7:d1:d5:d4:c8:d3:41:92:
                    0b:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:05:51:A4:C5:B2:A6:DF:E8:59:5F:F0:35:D1:49:4E:59:98:58:70
            X509v3 Authority Key Identifier:
                keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8c:b7:2f:92:d4:40:36:79:a5:24:16:c0:d9:d8:6c:10:0c:7d:
         6a:46:85:a9:67:b3:47:e4:be:34:51:c3:1d:10:49:fb:38:72:
         3a:6b:5e:2a:7b:92:db:48:be:11:ef:77:36:93:3e:11:44:55:
         e2:a3:16:7b:bc:a7:5d:dc:a5:6a:e4:d9:38:2c:9b:07:41:8f:
         3e:cc:bd:92:4a:a0:36:28:d3:22:84:51:13:a6:69:19:20:4e:
         12:c2:96:fd:d5:7e:8a:1a:b3:e0:26:c9:60:3d:a2:d5:a7:a9:
         02:d6:1f:72:7c:75:8e:96:8f:7b:e5:55:30:1e:5d:5f:01:58:
         1a:32:4a:eb:ba:89:a9:45:d8:34:1e:ca:26:d2:73:5d:9a:4c:
         90:ab:cd:84:01:26:cc:28:d9:db:a0:2d:23:35:33:1e:25:a0:
         96:be:fc:39:e2:bb:ed:c8:6c:be:b1:76:06:a9:69:a8:cd:b8:
         08:09:3d:e0:ec:09:6a:3d:6c:67:6a:d7:60:1a:96:cc:78:a1:
         d0:e8:d5:b3:c0:9f:08:fc:fa:62:da:98:78:33:fe:e4:32:87:
         60:50:f8:d2:af:f7:8e:0a:7d:9d:46:35:1f:37:38:e1:99:c1:
         9e:73:89:f0:90:96:77:f5:0d:c9:bc:a2:89:dc:5d:e8:12:19:
         19:3e:77:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----