Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft
File:                     XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json)
Hash identifier:          YNpVhSYg4xu5F+Rqj7bhisvxsle7RtUe+cUKHIkIulA=
Subject key identifier:   5B:52:63:B8:48:E9:2D:3F:91:BC:64:BA:82:9A:DE:48:AF:C9:6E:1E
Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95
Certificate issuer:       /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995
Certificate serial:       0E28
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft
Manifest number:          0E1B
Signing time:             Fri 28 Mar 2025 17:59:08 +0000
Manifest this update:     Fri 28 Mar 2025 17:59:08 +0000
Manifest next update:     Fri 04 Apr 2025 17:59:08 +0000
Files and hashes:         1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: oSh0HFMuuAacg4lDajc2r2cenK2k1KrdQm+n0rW+DXo=)
                          2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: xirIMjuaHIPZj6jpdJVKaFKfHlsVW3gI4qvEhU2Je88=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3624 (0xe28)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E66E5
        Validity
            Not Before: Mar 28 17:59:08 2025 GMT
            Not After : Apr  4 17:59:08 2025 GMT
        Subject: CN=67e6e36c-354f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:67:e9:a5:63:43:65:8f:39:7f:19:73:17:50:
                    0d:e6:30:d6:5c:f7:07:11:59:0e:08:02:ef:d6:0b:
                    c7:77:c4:88:81:30:2a:0e:8c:fd:57:4e:0f:d3:55:
                    da:54:cd:5e:a2:c6:20:19:ff:8e:88:31:c9:cd:ea:
                    bd:58:c8:f1:14:d5:40:b5:fb:8b:fa:6c:32:94:2c:
                    b5:4a:a3:08:68:b6:c7:fb:d8:d3:01:8b:8a:26:68:
                    de:3c:59:07:28:45:ce:4e:30:a1:8b:59:34:ec:63:
                    d4:45:0b:fa:be:01:33:2c:7c:85:6d:b7:5c:bf:02:
                    4e:c8:d1:ef:46:4d:6a:80:02:c3:4a:d3:10:38:ac:
                    77:2e:fa:62:2d:45:40:a2:ad:3c:5e:b7:db:0d:46:
                    5e:16:eb:46:44:71:1c:75:45:cd:7f:0e:40:5a:f1:
                    e0:0e:ff:e5:c9:a1:5e:5a:23:9b:f4:bd:f6:75:37:
                    6f:c6:7e:25:1c:47:43:b6:3f:0d:f1:ac:f7:f2:aa:
                    62:24:5e:68:05:30:fb:3b:5f:e1:c1:3b:3e:27:ce:
                    24:f1:3b:91:13:28:fa:75:da:f8:77:49:29:6d:6e:
                    ae:da:8d:e9:e9:7b:0f:89:43:ab:0b:b5:52:d3:1f:
                    26:27:b9:7f:8f:b4:10:c4:7e:25:e3:1f:53:72:22:
                    2b:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:52:63:B8:48:E9:2D:3F:91:BC:64:BA:82:9A:DE:48:AF:C9:6E:1E
            X509v3 Authority Key Identifier:
                keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:b3:dd:95:2b:56:4f:cf:e9:18:6a:02:30:c0:ef:a3:f1:fb:
         49:19:e6:0b:5c:14:42:51:93:21:03:27:2a:ff:db:39:8f:56:
         07:09:fc:b5:74:16:96:cc:c8:2b:bb:77:66:f1:7b:93:e5:a8:
         c8:3d:74:8b:e2:a9:49:4e:b4:a2:df:e9:ce:e5:7d:82:e1:db:
         3e:12:a7:9e:58:26:68:fa:78:cd:4e:22:2e:b8:77:cd:fa:1d:
         2a:43:c1:61:8f:39:73:43:f2:70:f8:71:99:bf:d7:5f:a1:0c:
         7e:5d:80:72:e2:c8:51:b3:d9:8c:1e:b9:43:9d:04:2d:5e:d6:
         83:59:70:5d:b7:a5:8b:33:f7:8a:ce:69:ac:1a:1d:5a:95:1a:
         11:28:d6:a9:23:c9:ad:dd:28:3c:2f:02:77:b9:be:5c:2c:d3:
         af:79:7c:4e:99:b4:50:bf:7e:f9:4e:c9:95:f1:86:43:dd:11:
         0d:f9:5f:a3:e3:69:6a:4b:a7:66:46:f5:2e:53:72:f4:15:27:
         0b:7e:f5:e1:f6:66:e0:cb:62:af:f2:f8:81:9a:b3:6c:22:f9:
         50:c6:97:eb:4d:2b:2f:d0:51:2b:c7:d3:dc:f4:f1:3a:f7:c1:
         b1:49:32:70:c1:fd:f7:6e:c8:62:eb:29:cf:ff:03:e9:51:5e:
         bb:71:44:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----