Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft
File:                     SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft (raw, json)
Hash identifier:          Xs4qUda6O+VssOdsOuMjuMzG8sWWt5adNjrpPD8nuu4=
Subject key identifier:   09:4B:57:DB:53:99:2C:65:2F:7D:74:15:FC:FB:B5:F5:41:5E:FC:DE
Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74
Certificate issuer:       /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74
Certificate serial:       07F6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft
Manifest number:          07CB
Signing time:             Fri 28 Mar 2025 21:23:41 +0000
Manifest this update:     Fri 28 Mar 2025 21:23:40 +0000
Manifest next update:     Fri 04 Apr 2025 21:23:40 +0000
Files and hashes:         1: SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl (hash: Jv0oi0SCfFwX9tlj8g8/I9XCnoHOsMBbai3PeaVJC28=)
                          2: DDBCA666F18911EAA922EB1FC4F9AE02.roa (hash: ruDiWo0iJ1IzCL54D+qZ/5Sx7ttq9JDNgJ3Itzo1mtM=)
                          3: 2F220BBA95AA11ED84962E13C4F9AE02.roa (hash: szuCGA/YKFnqAyQx0YvfNE1CLpywYPi051pqX/mLZ+o=)
                          4: 13279E2C124011ED9E430A4CC4F9AE02.roa (hash: DRibOliaFFpVDYBNRPwSwfeFfAK79Ag7KRQOfCVsri4=)
                          5: 67FF0960076911EF8569F157C4F9AE02.roa (hash: Dvs5DAUQ59zCBbfUhpGLPZgVQyIVukk8Lis+ely0rgs=)
                          6: 42CC52ECC68111EFAE49FF5FC4F9AE02.roa (hash: v8LvkvkZCh7/PfCtacYxlPwc3beChOibWsCiDIXZqaM=)
                          7: 68C5CFBE076911EF8569F157C4F9AE02.roa (hash: tsvfq1JS/MiwyfU6/6stmHXHI8bkcGx85DGNDrytcZ4=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2038 (0x7f6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DA10A
        Validity
            Not Before: Mar 28 21:23:40 2025 GMT
            Not After : Apr  4 21:23:40 2025 GMT
        Subject: CN=67e7135d-c2ea
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:5b:5e:3d:68:d5:31:81:5d:48:c1:56:ad:e3:
                    8b:27:0a:63:cb:2c:90:6a:c4:b3:80:34:d4:d4:dc:
                    2a:ca:f1:9a:48:f3:39:d5:aa:c7:c2:ea:c5:2e:39:
                    2d:06:74:91:e2:a0:7b:12:59:79:a8:e6:4a:bd:85:
                    e5:db:80:44:7f:68:c7:b0:f1:92:95:0e:41:47:ea:
                    a6:99:89:ac:bd:81:ca:61:d1:6e:1c:8e:04:8c:08:
                    10:b3:93:fe:c5:b8:53:26:6d:50:5b:ef:48:18:d0:
                    b7:fd:27:c2:1b:14:ea:a7:fb:d4:08:cd:02:81:27:
                    ad:b1:5d:e5:0f:51:6c:51:0b:e6:7b:94:07:2c:6c:
                    87:ec:e9:3a:57:ff:e3:04:ce:d3:d8:96:9d:3f:8d:
                    7f:b3:1b:5b:3a:62:93:a2:01:8f:f4:60:22:fc:ff:
                    5d:b0:4f:6a:86:93:38:56:5d:fb:b2:92:d4:fa:1e:
                    ca:fa:8d:28:e4:b2:e8:4a:ba:2f:d0:b9:0d:0f:30:
                    d3:7e:e0:38:82:97:f4:60:59:cf:b8:7f:ba:2c:65:
                    66:4e:33:df:5e:30:46:70:1f:79:c1:1f:ad:93:82:
                    65:23:58:04:c5:f5:15:6d:82:f9:74:d6:18:00:7d:
                    3f:a2:76:83:c4:2b:56:ae:bb:4e:11:a4:1c:ad:c2:
                    c2:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:4B:57:DB:53:99:2C:65:2F:7D:74:15:FC:FB:B5:F5:41:5E:FC:DE
            X509v3 Authority Key Identifier:
                keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:7e:1a:81:84:3f:b2:09:e1:b0:76:e6:20:b5:26:5e:45:8b:
         e5:6c:bd:43:c8:ac:1f:81:ca:f2:cb:4d:d1:8f:95:c7:a4:4a:
         b7:59:fb:71:ce:57:32:f3:88:60:fe:fb:9c:97:90:ed:bc:57:
         88:bc:83:28:a6:b1:46:7e:25:e5:fb:6e:a6:b1:8a:b9:2b:83:
         23:57:23:61:ea:62:0c:4f:35:6c:52:db:3e:60:cb:92:3f:f5:
         22:5d:be:5a:96:34:e9:fa:ae:8e:cc:47:17:fc:38:ae:1e:fa:
         57:15:bd:01:bb:a5:c4:e9:7a:b2:fe:04:4e:00:06:8c:cf:94:
         95:4f:84:3e:11:d1:f3:ac:0b:3c:e0:3d:cd:3e:9f:85:1e:db:
         49:6d:b3:c8:1f:aa:68:f0:ef:46:b4:12:1e:7e:26:c6:d6:81:
         06:1d:4e:4a:95:0b:e5:29:ac:06:58:55:b8:db:33:3e:8f:b7:
         1e:fa:4a:8e:c0:a0:f2:bd:66:f6:94:4c:1e:95:28:c3:d6:fd:
         bc:9d:fc:3d:16:d8:43:da:cc:ac:10:c3:09:56:39:7d:1e:1c:
         6d:5b:67:66:ed:ef:10:1a:18:c8:f4:22:c2:53:69:1f:e8:44:
         de:db:47:81:72:f8:9e:08:21:d9:24:24:1e:07:c1:e8:46:1c:
         05:a8:2f:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----