Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft
File:                     leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json)
Hash identifier:          3SrVhhztdzpPAagJ9cdLCXqaxldDyLuvMtP1K/ajFD8=
Subject key identifier:   A0:64:AE:A3:2C:B2:A7:AD:A7:88:C2:1B:31:EF:FC:0B:5B:E1:B1:62
Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99
Certificate issuer:       /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199
Certificate serial:       10F8
Authority info access:    rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft
Manifest number:          10EE
Signing time:             Fri 28 Mar 2025 17:24:47 +0000
Manifest this update:     Fri 28 Mar 2025 17:24:46 +0000
Manifest next update:     Fri 04 Apr 2025 17:24:46 +0000
Files and hashes:         1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: vOyn7pORGiVoayT66XPWVqttEdo5FXycDvSKDcyI30Y=)
                          2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4344 (0x10f8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91972B6
        Validity
            Not Before: Mar 28 17:24:46 2025 GMT
            Not After : Apr  4 17:24:46 2025 GMT
        Subject: CN=67e6db5e-4664
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:03:49:98:9c:38:ec:5c:e1:6a:e7:49:4c:5d:
                    3c:55:c1:a2:6e:58:2a:7f:3c:ed:f2:de:9f:68:90:
                    32:db:d9:7b:7b:bb:33:f3:9f:35:6f:15:66:81:a2:
                    c9:26:38:bd:f4:74:fd:22:dd:ed:ec:e2:00:03:3a:
                    39:23:42:2a:80:7b:6f:f8:64:58:58:ec:95:e3:5f:
                    17:3a:26:03:b2:55:50:ef:ff:32:3a:f9:5a:4a:1c:
                    92:8e:45:2c:85:42:9e:40:42:61:e1:c1:ec:11:74:
                    05:78:dc:cb:e3:28:28:14:13:02:21:f0:4a:98:18:
                    47:a5:bf:9c:49:e8:4f:e5:5d:dd:40:fc:6e:16:96:
                    97:ba:85:fc:e0:8e:6a:b0:a3:d7:89:4a:76:94:09:
                    a3:87:19:fb:c8:d2:df:e3:d9:97:91:25:82:ec:66:
                    32:1d:80:51:01:dc:c8:b8:e7:67:41:e8:9d:84:5f:
                    f8:bc:7b:61:d5:00:4c:65:a4:46:56:31:b8:1d:80:
                    29:f0:01:98:1e:a1:12:64:1c:cd:62:0d:6d:87:89:
                    4d:86:e1:91:2f:a0:17:ed:42:3b:0b:e0:b5:f6:a5:
                    af:e3:5d:83:d2:a1:53:10:30:27:37:1b:1d:96:2f:
                    fe:42:24:3e:3e:aa:84:01:b0:4e:c4:d7:0e:f5:2b:
                    96:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:64:AE:A3:2C:B2:A7:AD:A7:88:C2:1B:31:EF:FC:0B:5B:E1:B1:62
            X509v3 Authority Key Identifier:
                keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         95:c0:cd:8e:a8:93:50:5c:e1:ca:94:42:e8:87:04:11:11:c8:
         57:55:d9:b7:1b:56:c1:0d:01:78:07:1b:69:7b:3d:e3:70:c8:
         6d:62:98:2c:0f:63:29:20:c8:78:7e:d0:8d:75:71:18:3b:7b:
         68:49:24:b1:eb:c0:d0:25:ee:f8:76:c8:23:d3:a7:c5:0a:0e:
         bb:0e:e3:bc:1a:68:2d:22:b6:a0:89:e8:2d:50:5d:20:e5:84:
         78:6a:f7:45:14:c7:39:8a:76:d2:07:aa:60:f0:aa:1a:97:49:
         a4:fe:a1:63:b4:84:a8:e3:94:3b:ac:e9:a9:73:86:81:8f:bb:
         1a:79:35:15:7e:fe:ae:92:dd:94:f1:6f:08:41:4a:d6:b7:32:
         f0:f3:1a:03:c7:6c:ab:d8:ca:ab:bb:3b:77:09:4c:76:69:12:
         77:e8:2f:b2:a6:5f:0f:af:27:aa:b8:50:82:f0:d8:57:39:1e:
         0d:ce:c0:6c:50:68:3d:c2:c9:df:03:07:b3:20:58:c1:50:40:
         51:ce:cd:55:f1:89:6f:bc:3e:a0:26:bb:f2:83:a3:70:0f:5c:
         4e:fa:db:10:bb:1c:bd:76:ce:e9:9f:5f:ef:a0:84:f3:6d:eb:
         bb:a2:49:55:f9:d2:17:8f:93:3b:32:75:61:06:d8:9d:d4:57:
         70:94:5a:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----