Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft
File:                     ApuM4ulfRYWEYukHCxtRU6yRP-g.mft (raw, json)
Hash identifier:          C33qQdgSVHyNC4CVpMg/hcQdlD2wJwR6i7/QCgkk8jM=
Subject key identifier:   11:D8:99:37:EB:21:57:A0:54:A2:51:00:9E:CA:F0:1A:A4:9E:BC:0A
Authority key identifier: 02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8
Certificate issuer:       /CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8
Certificate serial:       06FF
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft
Manifest number:          06F3
Signing time:             Fri 28 Mar 2025 22:18:37 +0000
Manifest this update:     Fri 28 Mar 2025 22:18:37 +0000
Manifest next update:     Fri 04 Apr 2025 22:18:37 +0000
Files and hashes:         1: ApuM4ulfRYWEYukHCxtRU6yRP-g.crl (hash: nrHNJdu7tZEPPvkVjPBlA3Z/AEFW6JxH1QSAoekGzG8=)
                          2: AA3A944A27EA11ECB1EBEA82C4F9AE02.roa (hash: H0CS/wDvj/j+OGq6CMvz4MaVZLlE1z8NE8iE80Ojvas=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1791 (0x6ff)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9157D67
        Validity
            Not Before: Mar 28 22:18:37 2025 GMT
            Not After : Apr  4 22:18:37 2025 GMT
        Subject: CN=67e7203d-45ad
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:8f:c2:09:c7:5f:b5:3b:1f:8f:b0:aa:e8:03:
                    3d:fe:f0:73:78:1c:88:f0:70:91:98:0c:03:91:58:
                    0d:ec:d7:5f:cc:36:ba:88:a8:60:64:fa:f8:3b:ef:
                    83:c9:0c:5e:b3:61:cd:5b:0c:77:66:da:f8:7d:29:
                    7f:b4:bf:b1:d1:5f:10:52:93:e6:80:52:ca:95:f9:
                    b4:a7:ee:1f:33:d4:0b:93:9f:e6:83:05:cf:31:a2:
                    6c:44:b0:41:bf:64:c1:44:ab:0b:a3:dd:84:d0:94:
                    5a:03:df:d5:c6:1a:1a:c2:53:23:71:ee:af:0f:95:
                    7c:a4:e9:a2:b5:40:5a:3a:13:8f:2b:54:2d:e4:e4:
                    3e:bb:19:90:f7:32:e6:56:b6:a6:2c:c9:d4:b2:0f:
                    74:be:b4:c3:64:b8:8c:af:8b:7b:af:db:fa:3d:96:
                    25:94:fd:47:ef:d2:dd:c2:fa:5a:05:be:7b:97:46:
                    3e:83:58:b5:a9:45:dd:4a:b8:da:53:9d:3e:5d:61:
                    f4:4a:65:0b:7f:bc:14:fa:91:0c:db:43:53:54:35:
                    be:f0:6b:b5:fe:79:80:f9:52:b6:9d:1c:5e:40:a0:
                    68:52:f5:94:dc:22:12:15:f1:c2:39:29:99:c8:48:
                    4e:c5:3e:86:bd:08:5a:f7:ba:1f:27:ba:08:0c:0b:
                    83:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:D8:99:37:EB:21:57:A0:54:A2:51:00:9E:CA:F0:1A:A4:9E:BC:0A
            X509v3 Authority Key Identifier:
                keyid:02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:93:05:de:a4:e8:b2:1d:98:b8:3c:a2:40:ea:4a:08:0d:24:
         8c:9e:34:03:8b:2d:5a:3a:b5:88:06:6f:2e:df:38:1b:82:aa:
         c2:4a:26:62:e3:9a:cb:b3:2c:73:d2:2e:49:b3:a9:bf:8a:15:
         14:9c:8f:6a:6d:8b:bd:1a:37:d3:e6:fc:2f:6a:e9:5e:18:0a:
         eb:11:33:8a:69:c7:70:ec:bd:b8:3e:db:75:10:16:6f:41:39:
         a2:ad:35:b2:87:63:20:b6:ca:88:4f:6f:32:98:11:cf:3b:d2:
         b3:26:7a:e7:bd:c9:76:7f:e0:0a:29:a0:a6:6a:8d:7e:65:42:
         53:1b:2c:72:d5:b9:bc:e2:ee:74:c7:df:fa:44:ae:e2:97:8f:
         a6:64:98:8a:bf:eb:d8:69:78:b3:43:97:06:71:f5:6b:93:08:
         53:7e:4b:12:3a:72:da:3c:56:3c:0f:6e:84:19:c5:47:50:7a:
         75:8a:55:ee:f3:b8:60:25:98:49:7c:58:f8:6e:5e:00:98:47:
         05:d1:bd:cb:82:f4:b8:22:ac:f4:50:d6:98:41:8d:78:ca:b6:
         01:e7:c8:93:b3:73:12:06:10:2a:91:6c:ac:02:c9:ec:e0:b9:
         1e:23:8a:98:de:63:b2:1a:c3:7d:d9:28:10:b8:fe:fa:c3:f5:
         37:a6:fa:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----