Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft
File:                     523EE387D3C00A87B7E355ABF1EE524AADF74148.mft (raw, json)
Hash identifier:          at1UTYGQawI5w4JH9gJS73z2ium0XYJXwcKFToS9DUs=
Subject key identifier:   71:BD:26:E6:26:12:28:63:23:18:88:8A:8B:07:B3:70:C8:24:FC:31
Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48
Certificate issuer:       /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148
Certificate serial:       5AC1700104970C00672FB6BAAB91D982B1693F01
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft
Manifest number:          04BC
Signing time:             Sat 29 Mar 2025 07:10:55 +0000
Manifest this update:     Sat 29 Mar 2025 07:05:55 +0000
Manifest next update:     Tue 01 Apr 2025 10:46:55 +0000
Files and hashes:         1: 523EE387D3C00A87B7E355ABF1EE524AADF74148.crl (hash: 4ZeON6TJ3gyjGoPcvbz+y67zSGdpAAfdS+bQS0wjaxA=)
                          2: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (hash: UWqkjfovjwl/QKGqzpJlq4xcCareXuzDyb/5yleHEFU=)
                          3: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (hash: cZVBXXGJKiJCT/zUIwExIpoODQYqK0TgIQSfYHzcYPg=)
                          4: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (hash: QEq8jNx2qgo9wFvMjpQwwTDlq5Z+M7FLAg6t2ZLkWJY=)
                          5: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (hash: S+MMrSxkm+20Gx180EdlH1YNBkEDPrj8PEBtJ4+Q9J4=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5a:c1:70:01:04:97:0c:00:67:2f:b6:ba:ab:91:d9:82:b1:69:3f:01
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148
        Validity
            Not Before: Mar 29 07:05:55 2025 GMT
            Not After : Apr  1 10:46:55 2025 GMT
        Subject: CN=71BD26E6261228632318888A8B07B370C824FC31
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:81:1e:5a:42:ae:01:82:86:5e:47:99:cd:4f:
                    76:0e:05:5f:e7:5c:90:7d:f3:45:70:fd:88:5e:c6:
                    4d:d2:2e:a8:10:ee:50:ff:3b:64:68:83:8a:c3:21:
                    f8:4e:40:77:9b:96:c2:0c:fd:40:99:e7:cc:cc:5e:
                    1a:30:36:39:94:5e:3d:7f:34:eb:07:3e:6c:95:73:
                    88:d8:55:1d:b4:82:ec:64:fa:8f:19:49:a4:31:5f:
                    6e:9e:a1:ed:9b:54:b5:e2:f2:db:05:96:14:47:db:
                    b8:c1:40:58:8c:e0:a6:77:83:ff:8f:d4:17:95:a2:
                    11:ec:32:24:19:2f:69:4b:f8:31:f2:44:47:4a:8b:
                    8b:59:a7:b3:69:69:ad:f5:c6:6f:57:4f:15:c1:c1:
                    f5:1f:d8:ff:fa:eb:ea:07:49:3e:1f:16:ca:8c:d4:
                    3c:d4:48:29:7d:9a:7a:39:bf:3f:ef:af:60:3b:c0:
                    88:cf:9e:94:df:4e:da:23:26:10:23:6d:1a:87:a9:
                    33:22:9d:d8:ad:8b:25:89:e9:62:d0:83:cd:05:4c:
                    2b:03:3e:0b:48:d3:02:d2:13:a5:ca:3a:f2:a3:fd:
                    b9:7d:a2:66:34:a8:eb:c6:fc:8e:ba:df:6a:af:00:
                    71:ed:c3:54:6c:29:ea:7f:0e:1d:bc:6b:a1:e3:1e:
                    ed:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:BD:26:E6:26:12:28:63:23:18:88:8A:8B:07:B3:70:C8:24:FC:31
            X509v3 Authority Key Identifier:
                keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:af:68:db:41:00:3a:e3:9f:8a:27:8e:0a:1a:fd:5e:be:5c:
         6c:84:e6:1c:9b:4b:7c:79:e0:ec:26:51:37:81:c6:ff:3d:83:
         88:ef:21:4a:05:57:87:72:34:6f:9d:6d:0c:21:f2:38:d7:c7:
         bd:bd:4e:0d:1c:19:88:6e:92:cb:09:07:5a:70:05:96:54:93:
         e4:b8:b6:22:3f:64:bf:93:f6:d9:0c:3c:2c:62:3e:44:f9:44:
         12:3a:55:d5:83:6b:53:da:3b:d6:1d:34:6a:aa:17:dc:4e:7d:
         15:15:c7:ec:6c:42:09:f6:dd:14:2c:e7:3b:f1:d1:25:fb:bc:
         0e:f7:ab:f6:6f:67:2a:90:27:61:f7:c6:68:ee:80:23:4d:ee:
         92:8b:c2:c7:3b:45:bc:89:93:b5:8d:e6:ac:02:3d:80:6c:8e:
         f8:59:0b:f6:11:60:09:c7:5f:5a:71:32:fd:03:b5:1b:6a:b5:
         dd:51:7b:9b:91:02:dd:a3:72:44:3e:a7:89:2b:57:af:ef:1e:
         34:e0:03:13:93:fb:b9:dd:38:a3:64:fd:0a:66:aa:3b:2f:3f:
         87:82:2b:c8:ce:99:3b:47:60:8f:e1:7b:8e:ca:18:f6:ca:4f:
         c6:47:88:6d:fe:24:e0:eb:9d:e0:d8:d6:0d:01:36:5c:7e:62:
         d6:c4:73:31
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUWsFwAQSXDABnL7a6q5HZgrFpPwEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB
REY3NDE0ODAeFw0yNTAzMjkwNzA1NTVaFw0yNTA0MDExMDQ2NTVaMDMxMTAvBgNV
BAMTKDcxQkQyNkU2MjYxMjI4NjMyMzE4ODg4QThCMDdCMzcwQzgyNEZDMzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmgR5aQq4BgoZeR5nNT3YOBV/n
XJB980Vw/Yhexk3SLqgQ7lD/O2Rog4rDIfhOQHeblsIM/UCZ58zMXhowNjmUXj1/
NOsHPmyVc4jYVR20guxk+o8ZSaQxX26eoe2bVLXi8tsFlhRH27jBQFiM4KZ3g/+P
1BeVohHsMiQZL2lL+DHyREdKi4tZp7Npaa31xm9XTxXBwfUf2P/66+oHST4fFsqM
1DzUSCl9mno5vz/vr2A7wIjPnpTfTtojJhAjbRqHqTMinditiyWJ6WLQg80FTCsD
PgtI0wLSE6XKOvKj/bl9omY0qOvG/I6632qvAHHtw1RsKep/Dh28a6HjHu0nAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUcb0m5iYSKGMjGIiKiwezcMgk/DEwHwYDVR0j
BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz
QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3
NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWE5NTIwZmQtOGRlNS00YTY5LTg1
ZjEtYzQ0ODk3YWU2MTIxLzAvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUy
NEFBREY3NDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBADqvaNtBADrjn4onjgoa/V6+XGyE5hybS3x5
4OwmUTeBxv89g4jvIUoFV4dyNG+dbQwh8jjXx729Tg0cGYhukssJB1pwBZZUk+S4
tiI/ZL+T9tkMPCxiPkT5RBI6VdWDa1PaO9YdNGqqF9xOfRUVx+xsQgn23RQs5zvx
0SX7vA73q/ZvZyqQJ2H3xmjugCNN7pKLwsc7RbyJk7WN5qwCPYBsjvhZC/YRYAnH
X1pxMv0DtRtqtd1Re5uRAt2jckQ+p4krV6/vHjTgAxOT+7ndOKNk/QpmqjsvP4eC
K8jOmTtHYI/he47KGPbKT8ZHiG3+JODrneDY1g0BNlx+YtbEczE=
-----END CERTIFICATE-----