Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft
File: 3CA825E93FE8830376EF386786BF847CB239BE70.mft (raw, json)
Hash identifier: VBScd0NQJ4Vzb82a0ECCHj5rdy7+peGiyYiB4P++Wo8=
Subject key identifier: CA:4B:0C:F3:9D:2E:52:08:6C:60:EF:A2:9B:B2:88:3B:D4:A3:1B:8C
Authority key identifier: 3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70
Certificate issuer: /CN=3CA825E93FE8830376EF386786BF847CB239BE70
Certificate serial: 111F7D8BA6C383FABBD07CBCB429FDD51BFF51F9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft
Manifest number: 04BB
Signing time: Fri 28 Mar 2025 02:31:44 +0000
Manifest this update: Fri 28 Mar 2025 02:26:44 +0000
Manifest next update: Mon 31 Mar 2025 13:00:44 +0000
Files and hashes: 1: 3130332e38332e39322e302f32322d3234203d3e20313331313131.roa (hash: 7BaUBkYi576UVLsHbTQQnc27jnKH4uxS8EK0pK4qmYo=)
2: 3131392e38322e3232342e302f32302d3234203d3e203234323133.roa (hash: BSvE+OLnytfbf8toiJJMEZBKYqLTRbQfxnqbMWT62fk=)
3: 3CA825E93FE8830376EF386786BF847CB239BE70.crl (hash: DvK9mMmMyDSmsapMn/MasZPiYmXp1C0RoS5f4ASc5V8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:1f:7d:8b:a6:c3:83:fa:bb:d0:7c:bc:b4:29:fd:d5:1b:ff:51:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3CA825E93FE8830376EF386786BF847CB239BE70
Validity
Not Before: Mar 28 02:26:44 2025 GMT
Not After : Mar 31 13:00:44 2025 GMT
Subject: CN=CA4B0CF39D2E52086C60EFA29BB2883BD4A31B8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ab:9d:85:09:bd:dc:74:2b:1d:60:fb:bf:cf:
fb:c0:8a:0c:ee:6f:a6:30:bd:5d:2b:e6:08:60:36:
3c:39:47:1c:f1:23:65:f0:1f:3f:c4:1a:82:38:92:
23:dd:c6:b6:b1:84:b2:87:0d:1d:2b:e5:ca:03:b6:
f5:3c:2d:b4:8c:51:7b:db:81:e7:6e:20:fd:f4:b4:
97:95:ef:68:9f:27:6e:49:32:eb:8b:e4:cf:29:bf:
77:5c:76:8c:85:6c:29:64:fa:28:84:aa:b1:f6:cf:
9f:2a:c0:a1:b8:11:3d:b7:f3:f5:e0:f5:13:c8:35:
80:81:29:55:46:d9:66:2d:71:d8:cc:6c:ab:cf:8e:
71:2c:bd:06:c7:21:a9:da:82:80:4c:18:e8:87:4b:
61:a6:ec:5d:4c:e1:88:ac:23:3d:bc:fd:cf:0f:cd:
ec:76:46:69:a8:13:59:16:81:fe:28:2f:a9:13:29:
fb:a6:dd:30:c0:9c:ae:3b:42:83:f8:1c:b2:70:2b:
0d:9e:86:dd:99:0a:91:9e:c9:08:fd:63:1e:9e:9c:
f5:3e:7f:2d:e8:62:e0:04:98:d7:12:48:7d:5f:76:
03:6f:13:fa:de:43:4d:a7:ce:e1:54:d1:0e:54:54:
9b:76:a3:20:d3:02:dc:f9:ff:32:6d:64:79:10:bf:
70:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:4B:0C:F3:9D:2E:52:08:6C:60:EF:A2:9B:B2:88:3B:D4:A3:1B:8C
X509v3 Authority Key Identifier:
keyid:3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:a1:09:aa:49:e9:56:e0:96:fa:bc:eb:e6:c9:ad:12:63:f6:
b3:a9:e4:5b:b0:a3:d9:1d:02:36:29:02:0c:13:7a:28:72:d9:
74:9f:d3:6a:f3:84:71:2c:8c:95:2e:15:9d:7a:d8:15:8d:00:
90:d4:28:2f:e0:34:de:a2:5a:e8:38:c6:55:fb:e9:4e:ef:3e:
2f:3e:5e:bf:0e:b7:66:63:07:77:8f:cc:f1:88:54:74:13:75:
3c:e4:7c:c9:2a:b3:43:76:c1:9b:8c:e0:cb:db:0c:92:1e:63:
67:f9:7f:8c:41:2d:28:d8:e4:b9:eb:bc:75:e4:8a:83:ee:af:
d0:6a:fd:97:fd:3b:26:7c:51:5d:ef:c4:cb:1a:81:ca:19:7a:
5e:cb:1c:71:48:b5:c9:46:ca:b9:a5:44:b3:18:cc:40:0c:f3:
eb:8a:19:67:51:6e:6a:af:49:84:27:10:cb:a6:ba:30:18:84:
13:e1:7d:50:b6:af:eb:62:28:15:65:08:33:85:df:c8:34:73:
d8:d1:d2:c5:05:3f:c4:b7:ef:2a:67:9b:30:5d:05:87:36:04:
03:97:fe:df:ac:3b:31:f4:69:b9:df:12:31:cb:da:c0:02:c5:
57:13:ff:b5:00:51:c2:56:91:04:48:dd:ac:8e:c1:3c:76:9d:
0c:27:60:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:02:43 2025 by rpki-client