Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.mft
File:                     gwig5Q7SdrauEaNIK8K70EDlnxo.mft (raw, json)
Hash identifier:          NvUpFZQJAAhEy0TpRujIn0hoaCRjqNaRsJw6t6Q4Hao=
Subject key identifier:   DE:36:A6:69:20:8D:BF:81:4D:C3:55:4D:02:86:2A:EE:69:1C:AF:21
Authority key identifier: 83:08:A0:E5:0E:D2:76:B6:AE:11:A3:48:2B:C2:BB:D0:40:E5:9F:1A
Certificate issuer:       /CN=A91A45A0/serialNumber=8308A0E50ED276B6AE11A3482BC2BBD040E59F1A
Certificate serial:       0AA9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwig5Q7SdrauEaNIK8K70EDlnxo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.mft
Manifest number:          0AA3
Signing time:             Wed 04 Jun 2025 19:28:29 +0000
Manifest this update:     Wed 04 Jun 2025 19:28:29 +0000
Manifest next update:     Wed 11 Jun 2025 19:28:29 +0000
Files and hashes:         1: gwig5Q7SdrauEaNIK8K70EDlnxo.crl (hash: tJrKHs1sF8xNofOrGabxohljMCuivk1K8VIsHREVr1o=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2729 (0xaa9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A45A0, serialNumber=8308A0E50ED276B6AE11A3482BC2BBD040E59F1A
        Validity
            Not Before: Jun  4 19:28:29 2025 GMT
            Not After : Jun 11 19:28:29 2025 GMT
        Subject: CN=68409e5d-3994
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:75:a4:c3:7a:5d:c4:40:ba:1c:a9:b6:88:cb:
                    21:0c:75:b8:c2:08:a2:13:dc:db:ba:6a:ce:bc:8c:
                    1a:27:ba:07:ec:49:7d:ac:06:d9:83:cf:33:6d:fd:
                    93:dc:6f:43:40:3d:68:8c:d2:53:93:2c:aa:1f:fb:
                    99:78:c5:b4:31:83:f0:cd:f3:35:b7:88:31:53:1f:
                    68:e7:57:3e:75:de:e3:41:58:10:6c:30:18:6c:c5:
                    01:dc:d2:96:6b:44:be:6c:25:d7:ee:74:11:f1:c3:
                    8a:69:96:aa:63:c4:40:e3:ea:f2:1b:43:a0:a0:78:
                    30:8b:ad:a8:58:3f:92:fd:22:1c:05:eb:bf:16:a4:
                    e8:59:74:a6:88:dd:f8:5a:33:43:81:e5:0d:41:cf:
                    25:75:2c:b9:56:5c:bb:60:5f:9f:e3:17:3a:75:7e:
                    92:8e:67:3d:bb:a2:db:a2:06:68:67:bb:08:22:64:
                    71:f2:22:95:9d:b0:2b:91:18:38:52:88:73:43:13:
                    73:21:d9:6f:0c:7d:58:f5:11:e9:b6:98:ba:ad:c5:
                    2e:7d:c8:a0:3b:ff:53:9c:10:86:95:86:9c:55:62:
                    00:f9:8e:31:5d:b0:12:f7:42:71:ba:66:f4:68:35:
                    01:20:3b:e1:95:95:7a:fc:30:e5:73:7e:40:24:79:
                    f1:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DE:36:A6:69:20:8D:BF:81:4D:C3:55:4D:02:86:2A:EE:69:1C:AF:21
            X509v3 Authority Key Identifier:
                keyid:83:08:A0:E5:0E:D2:76:B6:AE:11:A3:48:2B:C2:BB:D0:40:E5:9F:1A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwig5Q7SdrauEaNIK8K70EDlnxo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:c8:cc:98:d6:59:d6:3f:c2:de:17:a7:77:cb:e9:37:17:c3:
         7a:f7:75:f0:09:cb:21:85:de:f5:5a:f9:cc:ec:4b:1c:ea:ea:
         a1:a5:8e:5d:9c:87:25:7c:19:1e:b5:f7:f4:3f:1f:a1:62:bf:
         50:39:ac:54:96:f5:ce:2d:23:7e:df:23:e8:f2:41:3e:3d:6d:
         76:19:e5:de:5f:9b:b5:3f:33:6f:68:bd:61:1d:ef:72:91:32:
         7f:86:06:35:62:c0:a4:da:1b:d4:0f:52:a9:f5:b9:d6:a0:3d:
         fa:e1:00:ae:1f:25:b3:97:7d:76:1d:f6:6c:fa:46:24:20:72:
         12:83:56:89:94:80:87:b2:39:60:8f:6d:0f:f6:a8:a2:8f:b1:
         69:a3:2e:12:26:4e:27:8c:d4:3e:58:6c:39:6a:74:cd:e0:2e:
         41:4c:60:af:ce:30:6d:55:98:81:1f:09:11:c6:7f:6e:6d:c1:
         df:71:33:2b:0d:66:46:38:a4:eb:53:03:33:ae:e9:bb:e4:3b:
         3f:16:b6:c6:b2:17:83:b7:6a:ed:2a:f8:c8:05:a3:1b:b0:84:
         cd:d6:53:96:f0:e7:0f:43:d9:79:0d:6d:13:47:e1:df:b6:b7:
         20:a4:9b:2f:c3:0f:2a:24:d8:d5:72:78:88:12:f6:ca:29:81:
         9f:c2:87:81
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTQ1QTAxMTAvBgNVBAUTKDgzMDhBMEU1MEVEMjc2QjZBRTExQTM0ODJCQzJCQkQw
NDBFNTlGMUEwHhcNMjUwNjA0MTkyODI5WhcNMjUwNjExMTkyODI5WjAYMRYwFAYD
VQQDEw02ODQwOWU1ZC0zOTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1XWkw3pdxEC6HKm2iMshDHW4wgiiE9zbumrOvIwaJ7oH7El9rAbZg88zbf2T
3G9DQD1ojNJTkyyqH/uZeMW0MYPwzfM1t4gxUx9o51c+dd7jQVgQbDAYbMUB3NKW
a0S+bCXX7nQR8cOKaZaqY8RA4+ryG0OgoHgwi62oWD+S/SIcBeu/FqToWXSmiN34
WjNDgeUNQc8ldSy5Vly7YF+f4xc6dX6Sjmc9u6LbogZoZ7sIImRx8iKVnbArkRg4
UohzQxNzIdlvDH1Y9RHptpi6rcUufcigO/9TnBCGlYacVWIA+Y4xXbAS90Jxumb0
aDUBIDvhlZV6/DDlc35AJHnxTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN42pmkg
jb+BTcNVTQKGKu5pHK8hMB8GA1UdIwQYMBaAFIMIoOUO0na2rhGjSCvCu9BA5Z8a
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVBMC9CRjMxNDcxMjU2
RjAxMUVBQTZFOThENDJDNEY5QUUwMi9nd2lnNVE3U2RyYXVFYU5JSzhLNzBFRGxu
eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3aWc1UTdTZHJhdUVhTklLOEs3MEVEbG54by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
NDVBMC9CRjMxNDcxMjU2RjAxMUVBQTZFOThENDJDNEY5QUUwMi9nd2lnNVE3U2Ry
YXVFYU5JSzhLNzBFRGxueG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQA+yMyY1lnWP8LeF6d3y+k3F8N693XwCcshhd71WvnM7Esc6uqhpY5d
nIclfBketff0Px+hYr9QOaxUlvXOLSN+3yPo8kE+PW12GeXeX5u1PzNvaL1hHe9y
kTJ/hgY1YsCk2hvUD1Kp9bnWoD364QCuHyWzl312HfZs+kYkIHISg1aJlICHsjlg
j20P9qiij7Fpoy4SJk4njNQ+WGw5anTN4C5BTGCvzjBtVZiBHwkRxn9ubcHfcTMr
DWZGOKTrUwMzrum75Ds/FrbGsheDt2rtKvjIBaMbsITN1lOW8OcPQ9l5DW0TR+Hf
trcgpJsvww8qJNjVcniIEvbKKYGfwoeB
-----END CERTIFICATE-----