Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
File:                     Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json)
Hash identifier:          Lf4WzrIi0Of9+SKJebip98wz97dEOvu9xlnqThtuybU=
Subject key identifier:   BA:8A:B1:84:C4:32:13:3E:08:68:54:6B:E7:F2:15:88:EE:3D:88:69
Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC
Certificate issuer:       /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC
Certificate serial:       2A
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
Manifest number:          25
Signing time:             Sat 29 Mar 2025 07:11:18 +0000
Manifest this update:     Sat 29 Mar 2025 07:11:17 +0000
Manifest next update:     Sat 05 Apr 2025 07:11:17 +0000
Files and hashes:         1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: LJb5uMarvvD7EQqAJD9WXGAkupblKeQU0SwmC3qh7wY=)
                          2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: KpVW4cQhj8alBR7jcPtqJ2dq3s1eufaG57nwvRNG5IA=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 42 (0x2a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F8357
        Validity
            Not Before: Mar 29 07:11:17 2025 GMT
            Not After : Apr  5 07:11:17 2025 GMT
        Subject: CN=67e79d15-fc04
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:56:d8:57:67:ef:7f:59:28:71:a3:ca:f6:49:
                    ba:a1:bd:5d:ac:05:6c:38:60:93:37:ca:30:c4:9c:
                    ca:09:83:55:df:14:65:fb:12:45:df:87:3e:11:d3:
                    9f:87:66:b0:94:dd:94:22:bc:34:bf:7b:ab:52:d6:
                    49:cd:37:90:54:85:be:ee:72:97:1b:39:96:50:b1:
                    9f:f9:ab:1c:57:b8:11:00:7d:f7:41:f7:8c:ff:36:
                    4d:e6:8f:e9:23:3a:9b:27:30:e0:1f:c4:21:b4:16:
                    8c:be:d5:19:8b:2b:82:0f:d9:2c:5a:ad:63:b7:e4:
                    ad:f2:50:20:b8:e9:3b:3b:a0:a8:8e:6f:62:ed:34:
                    fd:12:6e:87:67:33:91:95:d6:6b:f8:e2:88:ce:a5:
                    f5:6e:c2:ab:cf:90:80:4f:ac:7b:4b:67:74:f0:5e:
                    d8:65:5e:79:ff:49:6c:2a:a3:fb:3c:72:8c:5e:ef:
                    a0:ca:15:24:5b:f6:1c:24:8d:b5:74:d3:a0:50:5b:
                    0d:e4:cc:e4:f4:72:3e:03:d9:d4:98:f0:f1:8a:78:
                    37:f2:ac:23:73:e6:3b:50:1a:aa:15:9c:48:d2:6f:
                    ad:97:11:f5:74:ee:4c:a5:67:c5:37:ec:23:7e:ca:
                    19:e7:66:b1:44:78:f1:72:f7:e4:47:2b:54:98:de:
                    eb:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:8A:B1:84:C4:32:13:3E:08:68:54:6B:E7:F2:15:88:EE:3D:88:69
            X509v3 Authority Key Identifier:
                keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:c6:ca:3f:2b:d5:b0:ae:39:6d:88:eb:c7:b9:9d:cb:d4:bb:
         54:db:25:58:97:7b:7e:3b:f7:0d:de:f6:6c:46:5b:d5:17:75:
         93:82:cf:fa:be:c3:11:72:15:9d:b7:bc:fd:71:69:1d:72:1b:
         13:86:1b:db:93:b5:b0:fc:65:7f:5f:4b:79:2e:1f:c0:b8:3a:
         d2:3c:cc:88:d9:a0:cf:d3:72:79:8b:84:97:b7:e6:8c:3b:5b:
         92:9d:31:f3:4b:75:70:e2:ec:31:34:01:29:d7:54:17:78:34:
         ba:7d:10:bb:6e:41:c1:b8:00:d8:5f:ca:db:11:76:63:38:0a:
         a7:56:0a:32:f1:49:43:19:eb:9e:0d:c7:e7:24:7a:0a:22:14:
         84:82:f9:fe:d0:38:d5:7d:87:23:b0:f4:2a:99:92:57:a1:41:
         4a:93:ea:58:bc:2b:b8:87:fc:86:78:3f:9a:67:e4:fb:f2:ed:
         29:62:64:26:7b:85:a2:35:31:13:ac:52:e4:0b:b6:41:d1:7a:
         7b:62:c8:de:23:68:84:03:98:c9:49:a4:11:3a:ae:30:08:00:
         e9:81:d7:c5:6d:a0:ab:5c:7d:e7:96:ce:36:65:7c:c3:51:08:
         1f:2f:79:bc:19:d1:4e:35:9d:a1:23:4b:b0:84:b5:f0:07:3a:
         28:10:c9:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----