Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft
File:                     pBhnIpZRYlTNTMrUSSUeGdG26V0.mft (raw, json)
Hash identifier:          JKmYkkumgjvtcHncUEYkwWMff+BGJfvkL/Pc3S4iUiE=
Subject key identifier:   2E:51:BC:7E:ED:F4:10:DF:FD:08:6C:AA:5F:D0:89:6A:49:95:A9:55
Authority key identifier: A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D
Certificate issuer:       /CN=A913FE3D/serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D
Certificate serial:       052B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft
Manifest number:          0527
Signing time:             Thu 30 Jan 2025 23:34:21 +0000
Manifest this update:     Thu 30 Jan 2025 23:34:20 +0000
Manifest next update:     Thu 06 Feb 2025 23:34:20 +0000
Files and hashes:         1: pBhnIpZRYlTNTMrUSSUeGdG26V0.crl (hash: NieUoiT6yF7nrmg157YRNEO7m8bLKbHHyzfydAkdJk0=)
                          2: 679A6FA4E53A11EB8197AD70C4F9AE02.roa (hash: mvt83k4r04Uj589p/6oDGv6atTVgppc7yoDpOvB9Gm8=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1323 (0x52b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913FE3D/serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D
        Validity
            Not Before: Jan 30 23:34:20 2025 GMT
            Not After : Feb  6 23:34:20 2025 GMT
        Subject: CN=679c0c7c-a41a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:cd:8d:fd:07:5a:c9:cb:bc:52:a4:57:43:3d:
                    23:38:bb:d3:54:bc:ae:67:17:06:fb:b5:8d:9d:d9:
                    05:d0:d2:ae:39:ec:f1:aa:c2:ca:70:3c:78:47:5b:
                    4b:d1:5b:ac:01:11:56:44:1c:df:19:80:be:2c:d4:
                    32:be:a9:53:6f:49:bc:0a:e5:d1:ca:23:90:3f:50:
                    21:29:34:ae:97:b5:d9:5f:ec:b1:bf:8a:d6:a2:28:
                    b4:69:85:3d:50:41:74:db:e8:f4:93:21:67:b6:96:
                    e3:4a:72:fb:46:d5:67:ac:1a:94:ff:5b:01:bc:e4:
                    58:3d:be:f3:e8:6b:db:89:98:2f:3e:9b:11:89:2d:
                    c5:58:18:bd:26:7b:3f:71:17:38:c8:1b:be:2b:68:
                    7e:9e:a7:57:9c:4c:94:10:a9:b3:6d:91:82:d9:09:
                    46:ad:32:6e:e0:78:03:12:76:c9:b3:47:fb:15:13:
                    2d:27:54:1d:8c:b7:c8:a3:de:46:de:ec:72:b6:98:
                    94:a8:97:39:71:b4:27:f7:d6:a6:d7:2f:52:97:4b:
                    31:51:2b:b1:53:99:a0:8d:6c:c6:22:0d:c7:9f:24:
                    31:cc:f8:e5:88:70:eb:cd:3f:e2:2b:42:5b:6a:06:
                    27:d0:ff:22:d1:6d:5f:00:0b:87:41:a6:22:fe:17:
                    ba:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2E:51:BC:7E:ED:F4:10:DF:FD:08:6C:AA:5F:D0:89:6A:49:95:A9:55
            X509v3 Authority Key Identifier:
                keyid:A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0a:dd:32:34:db:fa:ca:19:6e:dc:de:f1:fc:22:9d:47:6e:d8:
         47:aa:ce:8b:ce:4a:7b:66:0b:7a:95:e5:e8:8c:b6:9a:8b:83:
         de:bc:be:e0:1c:71:f5:47:17:57:46:7f:82:3c:90:9a:fa:b2:
         fc:e4:8c:de:b1:61:4e:b4:73:a3:d1:67:a0:88:d0:cc:15:4b:
         98:e7:78:0d:49:a2:4c:e1:38:c8:32:6e:05:e3:77:8e:11:49:
         5b:8e:bb:89:88:71:e4:da:c4:8e:b8:f6:be:97:43:73:63:35:
         66:d9:15:7c:22:3a:e4:f6:f3:5b:71:16:e2:aa:04:6a:b8:20:
         0f:17:3e:21:0e:49:f8:67:91:6d:a6:64:13:ae:82:c7:13:3e:
         8c:3a:49:a4:e1:06:c9:fc:29:15:44:7c:f8:d4:6f:ba:b5:9d:
         cc:65:a8:69:23:90:58:56:e9:15:ea:84:53:f8:eb:9f:7f:2b:
         4c:20:16:fe:4e:04:23:0f:72:e0:5e:aa:56:13:9e:b4:8e:42:
         67:d7:d7:9a:b1:6a:01:fd:27:19:bd:41:e5:4d:47:ee:dc:ae:
         ad:34:1a:14:8f:5a:3a:65:18:71:86:4b:ed:fc:e5:a7:5e:af:
         90:ef:15:fb:d4:21:11:03:be:91:2f:91:32:86:45:9a:36:02:
         43:ae:df:e4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0ZFM0QxMTAvBgNVBAUTKEE0MTg2NzIyOTY1MTYyNTRDRDRDQ0FENDQ5MjUxRTE5
RDFCNkU5NUQwHhcNMjUwMTMwMjMzNDIwWhcNMjUwMjA2MjMzNDIwWjAYMRYwFAYD
VQQDEw02NzljMGM3Yy1hNDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAoc2N/Qdaycu8UqRXQz0jOLvTVLyuZxcG+7WNndkF0NKuOezxqsLKcDx4R1tL
0VusARFWRBzfGYC+LNQyvqlTb0m8CuXRyiOQP1AhKTSul7XZX+yxv4rWoii0aYU9
UEF02+j0kyFntpbjSnL7RtVnrBqU/1sBvORYPb7z6GvbiZgvPpsRiS3FWBi9Jns/
cRc4yBu+K2h+nqdXnEyUEKmzbZGC2QlGrTJu4HgDEnbJs0f7FRMtJ1QdjLfIo95G
3uxytpiUqJc5cbQn99am1y9Sl0sxUSuxU5mgjWzGIg3HnyQxzPjliHDrzT/iK0Jb
agYn0P8i0W1fAAuHQaYi/he6FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5RvH7t
9BDf/Qhsql/QiWpJlalVMB8GA1UdIwQYMBaAFKQYZyKWUWJUzUzK1EklHhnRtuld
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkUzRC84MUU2NTRCQ0U1
MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUllsVE5UTXJVU1NVZUdkRzI2
VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3BCaG5JcFpSWWxUTlRNclVTU1VlR2RHMjZWMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
RkUzRC84MUU2NTRCQ0U1MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUlls
VE5UTXJVU1NVZUdkRzI2VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQAK3TI02/rKGW7c3vH8Ip1HbthHqs6Lzkp7Zgt6leXojLaai4PevL7g
HHH1RxdXRn+CPJCa+rL85IzesWFOtHOj0WegiNDMFUuY53gNSaJM4TjIMm4F43eO
EUlbjruJiHHk2sSOuPa+l0NzYzVm2RV8Ijrk9vNbcRbiqgRquCAPFz4hDkn4Z5Ft
pmQTroLHEz6MOkmk4QbJ/CkVRHz41G+6tZ3MZahpI5BYVukV6oRT+OuffytMIBb+
TgQjD3LgXqpWE560jkJn19easWoB/ScZvUHlTUfu3K6tNBoUj1o6ZRhxhkvt/OWn
Xq+Q7xX71CERA76RL5EyhkWaNgJDrt/k
-----END CERTIFICATE-----