Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft
File:                     0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json)
Hash identifier:          fE1Kr0bhTQHGklUuhOCs7iAB/o5seEOdid7vh6UtR2g=
Subject key identifier:   AE:12:CC:B5:FC:EF:31:30:4E:6A:BD:E8:EF:AB:44:B3:DB:E2:0B:A1
Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E
Certificate issuer:       /CN=0EAF2A0CD22523DB087375417038E4165075CA3E
Certificate serial:       60120C7E5850548C22C58CB1AB342CA3B74B6215
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft
Manifest number:          92
Signing time:             Fri 28 Mar 2025 01:41:02 +0000
Manifest this update:     Fri 28 Mar 2025 01:36:02 +0000
Manifest next update:     Mon 31 Mar 2025 05:18:02 +0000
Files and hashes:         1: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: 20xyi7WGXkhpJhYMMa60rCEDcWMrrO4WibLNf+8UjDs=)
                          2: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: XkRrDZos3XM/A31DD08Hzxo9fydiShM/zKAHdSJQjoA=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            60:12:0c:7e:58:50:54:8c:22:c5:8c:b1:ab:34:2c:a3:b7:4b:62:15
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E
        Validity
            Not Before: Mar 28 01:36:02 2025 GMT
            Not After : Mar 31 05:18:02 2025 GMT
        Subject: CN=AE12CCB5FCEF31304E6ABDE8EFAB44B3DBE20BA1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:52:f6:6e:38:bd:2b:94:1e:34:ff:d7:89:9e:
                    6a:fc:48:24:57:bc:af:3c:68:fb:d2:9e:bf:2a:d3:
                    97:91:2b:11:a5:8c:d2:17:e7:81:fa:fc:8c:db:3f:
                    1c:7c:2d:3e:81:b0:63:d3:4c:09:f2:19:c8:8e:78:
                    c7:01:b7:9e:5f:cd:20:25:10:56:92:75:0e:23:ee:
                    02:6f:56:14:4f:c9:48:83:fd:a6:4b:90:53:52:b7:
                    79:ce:90:2f:d3:a6:22:aa:6f:5d:5d:ff:b4:df:ee:
                    ec:d2:c4:25:f1:45:dc:a0:0b:9f:c2:31:6c:25:2a:
                    15:ae:08:db:09:f3:5a:ae:3d:d8:e2:f9:9d:8f:78:
                    25:f7:de:97:e7:c4:0d:3b:6d:0d:2e:81:02:8d:9b:
                    31:54:a9:57:97:78:ff:fe:10:96:3c:e8:bb:e7:62:
                    16:07:51:a6:5b:2b:e1:3e:c5:c6:c1:79:c6:fe:30:
                    49:c5:46:42:a8:be:bf:47:83:a0:89:f8:de:5c:e1:
                    85:5f:75:e9:f3:dc:57:a2:29:c3:c4:42:9e:59:99:
                    6f:cc:e8:95:d5:5a:5f:d0:4e:3c:39:0e:81:90:1a:
                    01:90:85:5f:3f:c1:96:c0:45:89:79:27:af:63:5e:
                    f6:a2:67:10:c1:46:d5:73:67:fd:c1:26:c7:e6:c3:
                    b8:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:12:CC:B5:FC:EF:31:30:4E:6A:BD:E8:EF:AB:44:B3:DB:E2:0B:A1
            X509v3 Authority Key Identifier:
                keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:7e:9a:80:ea:ff:cd:2e:76:9a:56:df:a2:ed:5d:ff:fe:6c:
         07:0b:1f:31:7b:7a:5c:e7:56:da:fb:26:91:bf:8d:cd:d5:d6:
         27:4d:6a:7f:b9:c4:00:87:52:9a:68:8c:cf:6c:08:6e:85:df:
         6f:fe:09:41:1a:64:37:90:e9:b2:8a:55:1e:3e:c5:19:ac:ff:
         7b:95:53:b1:6e:8f:7e:b5:1f:b8:48:cb:91:5b:6b:1a:4f:98:
         6e:3c:0a:86:95:21:7c:e0:03:8a:b5:01:c5:95:32:61:76:83:
         9a:28:f7:95:92:5c:3f:49:88:8f:f2:d4:1c:75:3f:03:e6:92:
         ef:6e:d3:65:b4:9f:a8:7e:bd:c8:9e:b7:10:e5:de:4a:2a:5b:
         18:33:5c:69:a7:8a:28:fa:f0:30:1f:6e:cb:62:55:31:72:44:
         86:73:6f:3b:34:4d:eb:ca:12:54:0f:f5:9a:ad:cd:99:13:22:
         b4:f5:a2:ce:19:32:a2:45:e3:9e:9a:bf:73:59:56:af:34:a6:
         d5:5c:23:d1:98:9e:d8:d7:dd:29:50:c9:c8:89:a6:72:35:10:
         3a:9d:f2:d7:9d:75:cf:2a:8b:59:e3:ee:7a:63:00:f2:8b:4a:
         95:d0:ff:b4:48:cf:27:ca:a5:98:1a:3a:cc:99:55:9d:05:60:
         a4:1d:ac:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----