Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1FB/4584C148FA5D11E6B8814F19C4F9AE02/KuYzMfcZmlWiutnLFPg_q1Bm6Vg.mft
File:                     KuYzMfcZmlWiutnLFPg_q1Bm6Vg.mft (raw, json)
Hash identifier:          tOFayEu7XOTgl96QKU+b5fpkmqTSlv0TqUdBCHsvc9U=
Subject key identifier:   70:2A:61:B2:E5:4E:71:98:BB:32:44:78:CA:47:D2:0C:B0:76:B7:54
Authority key identifier: 2A:E6:33:31:F7:19:9A:55:A2:BA:D9:CB:14:F8:3F:AB:50:66:E9:58
Certificate issuer:       /CN=A91EE1FB/serialNumber=2AE63331F7199A55A2BAD9CB14F83FAB5066E958
Certificate serial:       1B39
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KuYzMfcZmlWiutnLFPg_q1Bm6Vg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EE1FB/4584C148FA5D11E6B8814F19C4F9AE02/KuYzMfcZmlWiutnLFPg_q1Bm6Vg.mft
Manifest number:          1B31
Signing time:             Thu 22 Aug 2024 16:27:24 +0000
Manifest this update:     Thu 22 Aug 2024 16:27:23 +0000
Manifest next update:     Thu 29 Aug 2024 16:27:23 +0000
Files and hashes:         1: KuYzMfcZmlWiutnLFPg_q1Bm6Vg.crl (hash: oogBNPFgwmBMDY9aKeG23vkDFXbJsF4jvwHxJ5fNw4Y=)
                          2: A3436BD6FA5D11E6AA12A219C4F9AE02.roa (hash: AEkbhlHCZoSAdf5bTxzBqec94+uTUsF0jdM0DiiwKmA=)

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6969 (0x1b39)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EE1FB/serialNumber=2AE63331F7199A55A2BAD9CB14F83FAB5066E958
        Validity
            Not Before: Aug 22 16:27:23 2024 GMT
            Not After : Aug 29 16:27:23 2024 GMT
        Subject: CN=66c766eb-cb6c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:e3:8e:25:2a:85:39:d0:84:2e:c4:bb:ac:e3:
                    5a:80:de:a5:d7:59:38:96:f0:8a:57:4c:f9:49:13:
                    01:ed:fe:3a:2a:47:ed:92:96:80:a4:c5:2d:f1:c2:
                    bc:a5:c2:d3:85:01:6f:e4:f8:04:83:40:35:43:7e:
                    96:38:5c:ff:e4:c9:dd:f8:93:8c:7d:1b:95:12:b3:
                    dd:9f:16:33:45:a7:73:7a:87:c8:12:1d:38:2a:e3:
                    f0:64:a6:db:92:b2:b6:62:fe:9f:e6:44:9d:01:fc:
                    40:d1:04:8c:9f:14:13:72:87:e5:94:19:a2:82:52:
                    8d:82:73:a8:ed:83:8f:17:38:96:5d:ee:91:55:49:
                    c0:9b:34:64:c2:87:cc:03:7f:03:a9:51:7a:d7:b0:
                    57:fd:f7:37:f7:f3:70:23:df:0c:78:43:d1:8d:25:
                    82:4c:8f:a8:42:34:48:34:19:0e:b0:c0:b7:d6:a5:
                    fd:28:34:27:40:98:04:69:1b:16:3b:22:00:fc:44:
                    e5:1e:44:3a:2a:78:20:7f:3b:f0:b1:f9:26:4d:fc:
                    76:f3:16:14:ba:02:5f:de:87:35:5b:af:82:b8:b2:
                    bb:d4:50:cc:1d:16:c2:1f:19:1a:af:be:91:a0:89:
                    4c:7b:36:60:45:b2:52:c6:64:87:12:54:a8:cd:76:
                    51:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                70:2A:61:B2:E5:4E:71:98:BB:32:44:78:CA:47:D2:0C:B0:76:B7:54
            X509v3 Authority Key Identifier:
                keyid:2A:E6:33:31:F7:19:9A:55:A2:BA:D9:CB:14:F8:3F:AB:50:66:E9:58

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EE1FB/4584C148FA5D11E6B8814F19C4F9AE02/KuYzMfcZmlWiutnLFPg_q1Bm6Vg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KuYzMfcZmlWiutnLFPg_q1Bm6Vg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1FB/4584C148FA5D11E6B8814F19C4F9AE02/KuYzMfcZmlWiutnLFPg_q1Bm6Vg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         73:c9:eb:20:05:13:79:00:d6:fa:36:ab:9d:59:fd:6b:9a:88:
         e4:69:ec:0b:fb:71:76:f1:93:a8:e6:47:eb:54:86:ca:e8:5f:
         85:2a:c3:72:02:06:5d:66:62:46:b9:18:b7:61:25:e6:ee:23:
         a7:a7:d2:78:80:f7:ba:f6:8c:7e:59:82:96:c0:25:ea:e2:88:
         1d:80:3f:b6:be:67:f0:94:14:d9:de:a0:c8:58:c4:eb:c6:b9:
         73:a5:1f:fd:78:96:9d:4b:a9:8b:66:d7:65:71:e7:ab:75:b0:
         9c:19:39:13:26:47:f0:df:22:72:73:d2:21:61:71:32:b1:ff:
         1f:30:8d:7b:eb:b1:d5:e7:6c:40:b4:71:8a:60:a2:7d:5f:90:
         5e:92:f6:46:51:30:25:4b:22:ee:d9:53:d6:2b:d5:7e:11:ef:
         35:ab:9c:09:88:bd:4e:47:d5:15:b9:83:a5:0a:96:20:37:cb:
         38:d3:87:e5:e4:b6:6b:2e:cf:30:9a:50:8e:4f:f9:8a:30:63:
         9a:5e:e0:21:ff:70:a1:a7:24:93:dc:ad:4b:1e:6f:9c:d8:89:
         49:2c:f6:04:95:f9:e8:16:eb:88:31:c5:92:10:e2:e9:a6:88:
         e8:4f:b5:7e:c3:64:43:c4:51:5d:d5:e5:93:a3:af:39:8a:9c:
         28:8e:49:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----