Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft
File:                     CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft (raw, json)
Hash identifier:          9RPSsDQFH0Xp9NkdlFNE5erKGIawM4oeYw3Ms8xaVKQ=
Subject key identifier:   F7:7A:B9:1D:A7:5C:CF:9B:C8:39:3F:55:CF:25:52:4F:CE:46:20:9C
Authority key identifier: CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C
Certificate issuer:       /CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C
Certificate serial:       0E3AAB94823A7F5E58016103534410002581A49E
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft
Manifest number:          0330
Signing time:             Thu 27 Mar 2025 11:52:10 +0000
Manifest this update:     Thu 27 Mar 2025 11:47:10 +0000
Manifest next update:     Sun 30 Mar 2025 17:52:10 +0000
Files and hashes:         1: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl (hash: eTVpEJIbMOgGSX/wGh7X4fgedsbPlIKNF0flKkQgWZg=)
                          2: 3130332e39312e32382e302f32322d3234203d3e203338343936.roa (hash: ZrInKy3rN8CQHG74U5DNNhQz02tlUukWAziTX5F6+yM=)
                          3: 323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa (hash: iv2SAjyHSWCSm/Qp+qCzqgF4lXDrzm6Us1pHd8OSMEA=)
                          4: 3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa (hash: J0yFIU8yPJPvRf3j8RKfhubQW1HtIykVJHVnsQp+Y88=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0e:3a:ab:94:82:3a:7f:5e:58:01:61:03:53:44:10:00:25:81:a4:9e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C
        Validity
            Not Before: Mar 27 11:47:10 2025 GMT
            Not After : Mar 30 17:52:10 2025 GMT
        Subject: CN=F77AB91DA75CCF9BC8393F55CF25524FCE46209C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:d7:1f:9d:59:9b:81:cf:69:03:cf:7f:9c:99:
                    fe:ba:63:29:44:03:91:85:bc:f6:3e:ea:a6:2e:e0:
                    cf:22:2e:17:5d:2d:12:59:13:b3:96:7f:3b:8a:0a:
                    29:5f:e9:26:39:c3:fd:ca:39:62:85:6e:d4:d8:c5:
                    27:1f:a0:98:87:52:41:a1:ee:da:86:cd:29:35:01:
                    a6:92:a5:63:af:f8:71:59:00:c0:3f:68:3e:de:8a:
                    59:5e:58:5f:c8:16:f3:73:38:5d:cf:2e:47:6f:c3:
                    47:48:ef:5f:ad:14:3a:e0:cd:94:2b:2e:ba:de:c2:
                    4e:7f:50:68:61:bf:b9:d5:1c:e6:b1:ff:90:3d:62:
                    e1:c8:5d:87:80:f7:f2:89:26:45:cb:b9:ad:2a:ef:
                    1c:01:00:85:ff:0a:a9:91:9c:a2:c4:b9:95:51:74:
                    21:3a:28:a7:e6:d6:43:e8:90:9d:97:c4:23:cd:f0:
                    a5:59:01:71:3a:85:71:06:4e:54:49:c5:b1:f2:d6:
                    9d:b0:9d:83:f4:55:86:e6:9f:06:85:39:16:5c:40:
                    0d:89:11:3c:8e:53:59:85:3f:0b:fc:60:40:7e:be:
                    47:21:fe:0e:f8:9f:9e:60:f4:e6:7d:b6:2d:4f:b5:
                    34:24:df:8b:3c:fd:4a:1a:e2:92:ca:2b:1e:01:77:
                    1b:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:7A:B9:1D:A7:5C:CF:9B:C8:39:3F:55:CF:25:52:4F:CE:46:20:9C
            X509v3 Authority Key Identifier:
                keyid:CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:8d:6f:1f:7b:58:64:37:ee:6f:07:73:b1:b1:15:7f:94:b3:
         3a:69:ec:f5:f9:f2:37:92:48:f6:b4:15:be:ee:26:38:21:a9:
         9f:8c:24:ba:98:d0:96:16:7b:ac:08:8e:e4:18:ba:fa:3e:cc:
         d6:45:29:7d:a0:f1:9d:2a:fe:b6:58:81:93:9e:83:c8:5e:bf:
         7d:64:86:c0:14:35:9a:f6:62:4f:70:17:24:54:4e:24:6e:01:
         eb:32:6e:c2:0a:37:39:02:4c:3c:cb:2b:1a:35:b1:2b:63:8b:
         e7:bc:ac:ba:b3:cf:a3:51:e8:8f:bd:1e:f0:75:69:54:dd:37:
         7d:cf:96:6c:db:bb:d9:7b:3c:92:78:a7:e4:a3:54:e9:41:aa:
         e7:d3:c9:57:8c:72:21:5d:ee:5a:c3:97:9a:b1:c4:d3:3f:84:
         21:41:44:b9:c0:dc:2e:62:11:a8:4b:56:78:55:d8:18:02:43:
         9b:01:dd:79:94:ca:0c:5d:c5:03:0e:a9:0f:15:8a:74:d8:0b:
         7d:c4:91:f2:5f:9f:b3:73:44:40:cc:d4:58:40:2d:27:79:2c:
         93:e4:b2:9e:fe:f3:6b:e3:cd:b8:3d:9b:6c:9d:64:db:8e:e0:
         3b:c3:f3:28:47:24:0b:c7:a4:0c:23:2e:e0:c9:c2:1c:45:9a:
         3c:bd:dd:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----