Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft
File:                     CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft (raw, json)
Hash identifier:          LixeGctOaQ9gsMXkJ8a5LgSyMn9tibE7HwMu7Ag1A6k=
Subject key identifier:   68:F2:03:97:D6:75:B7:A3:BD:67:B4:ED:2F:7C:87:F3:DF:97:2A:79
Authority key identifier: CA:41:DD:E3:59:1D:CF:89:BB:D1:5B:C9:6E:05:BD:C7:32:14:09:9B
Certificate issuer:       /CN=CA41DDE3591DCF89BBD15BC96E05BDC73214099B
Certificate serial:       0E098047D9D3A70956EC378FC6F694CCFA2B8D71
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft
Manifest number:          04C2
Signing time:             Sat 29 Mar 2025 03:11:47 +0000
Manifest this update:     Sat 29 Mar 2025 03:06:47 +0000
Manifest next update:     Tue 01 Apr 2025 13:03:47 +0000
Files and hashes:         1: 3130332e36362e38362e302f32342d3234203d3e20313431313037.roa (hash: bKZ9Kr5vGdouh2ZI4N+bxQ7MC1/jdvf7JVbCsDM4qhY=)
                          2: CA41DDE3591DCF89BBD15BC96E05BDC73214099B.crl (hash: Ae6C4t+mQy2raHXpH/aHpREo/yuUgU/uW5LVrp7rq5E=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0e:09:80:47:d9:d3:a7:09:56:ec:37:8f:c6:f6:94:cc:fa:2b:8d:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=CA41DDE3591DCF89BBD15BC96E05BDC73214099B
        Validity
            Not Before: Mar 29 03:06:47 2025 GMT
            Not After : Apr  1 13:03:47 2025 GMT
        Subject: CN=68F20397D675B7A3BD67B4ED2F7C87F3DF972A79
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:c9:c5:8a:15:22:8e:e5:fe:c3:ab:5d:e3:4f:
                    21:5d:3b:8e:b2:57:ed:6d:7f:90:84:f4:7b:94:1d:
                    33:0b:cb:19:5f:c1:a3:c9:c8:96:32:9e:1d:94:82:
                    80:f3:a1:f7:89:6b:9b:1d:21:05:d3:cd:8d:1a:fa:
                    c6:1d:0a:fc:89:5f:1a:cf:19:41:15:6a:4e:4d:9f:
                    20:e4:9b:18:57:57:49:b9:c4:87:ca:32:e5:34:b0:
                    c3:6b:75:28:55:2c:b2:72:a1:6c:b1:79:63:61:3f:
                    ed:a4:1f:2e:e1:1c:af:8e:ab:f1:5d:47:17:f6:b6:
                    7e:61:47:24:12:7e:3a:ee:5a:58:04:8b:6c:9d:13:
                    05:d7:c2:5b:a9:6a:4e:67:72:97:10:81:cd:ca:cc:
                    68:14:e9:6f:84:44:e8:fa:55:60:24:be:d4:bf:8c:
                    22:87:18:df:c1:37:d6:df:65:00:b8:df:0f:9c:98:
                    34:c9:2c:95:af:8f:31:ed:73:78:17:0f:b6:b8:28:
                    46:d3:3c:98:5a:e2:63:9b:44:6d:0c:9b:e5:e9:ee:
                    9f:e7:3f:70:e2:fd:fb:51:c8:ef:dd:b6:2a:1b:a9:
                    e1:a8:bb:1d:6c:9b:1a:40:7d:0c:77:89:16:2f:26:
                    4e:e8:86:85:d5:f3:05:5e:d5:38:a1:48:54:13:d6:
                    e2:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:F2:03:97:D6:75:B7:A3:BD:67:B4:ED:2F:7C:87:F3:DF:97:2A:79
            X509v3 Authority Key Identifier:
                keyid:CA:41:DD:E3:59:1D:CF:89:BB:D1:5B:C9:6E:05:BD:C7:32:14:09:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:c2:e4:7c:52:0c:6b:60:a2:de:12:bb:a2:17:e2:e4:14:74:
         c4:c6:b8:0d:ed:52:c4:a8:85:07:99:a7:4b:ec:d9:25:7a:7d:
         ca:6b:f4:a2:b8:22:f2:ed:cc:05:34:a8:ea:b8:2d:ba:cc:b9:
         a3:75:68:18:98:de:b9:d8:3b:b7:c4:86:f6:88:37:7e:b8:e3:
         fb:27:b1:e6:0d:66:e7:b5:de:ea:ad:fc:99:45:e8:1b:17:7b:
         4f:20:e6:90:8c:af:58:f3:ad:6d:30:89:ff:a2:36:08:27:a2:
         4a:84:f8:16:d6:56:1a:fe:84:2e:05:f2:45:7c:40:fc:05:6a:
         6d:c3:fe:9f:7a:7c:58:93:fd:3f:96:0b:c1:74:57:c8:2a:6b:
         cb:9a:25:0f:d5:c5:d2:9f:e3:be:58:ee:98:f6:05:66:9d:fb:
         ff:19:c6:84:31:f3:1b:22:e6:6e:b6:84:b7:10:7b:66:e4:1b:
         66:ec:f6:ac:ce:fe:32:13:21:56:48:00:fc:a3:14:f1:90:48:
         bc:12:4e:71:c5:87:d7:4d:93:3e:b5:9a:27:b6:1a:e5:0d:f1:
         ee:d1:ec:6a:d8:89:99:35:e1:ae:77:3a:04:33:dd:8a:4f:3e:
         64:5e:ea:23:87:ab:06:4e:9f:47:96:eb:58:cc:67:7e:d8:f4:
         3a:28:7d:a0
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUDgmAR9nTpwlW7DePxvaUzPorjXEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0E0MURERTM1OTFEQ0Y4OUJCRDE1QkM5NkUwNUJEQzcz
MjE0MDk5QjAeFw0yNTAzMjkwMzA2NDdaFw0yNTA0MDExMzAzNDdaMDMxMTAvBgNV
BAMTKDY4RjIwMzk3RDY3NUI3QTNCRDY3QjRFRDJGN0M4N0YzREY5NzJBNzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAycWKFSKO5f7Dq13jTyFdO46y
V+1tf5CE9HuUHTMLyxlfwaPJyJYynh2UgoDzofeJa5sdIQXTzY0a+sYdCvyJXxrP
GUEVak5NnyDkmxhXV0m5xIfKMuU0sMNrdShVLLJyoWyxeWNhP+2kHy7hHK+Oq/Fd
Rxf2tn5hRyQSfjruWlgEi2ydEwXXwlupak5ncpcQgc3KzGgU6W+EROj6VWAkvtS/
jCKHGN/BN9bfZQC43w+cmDTJLJWvjzHtc3gXD7a4KEbTPJha4mObRG0Mm+Xp7p/n
P3Di/ftRyO/dtiobqeGoux1smxpAfQx3iRYvJk7ohoXV8wVe1TihSFQT1uIzAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUaPIDl9Z1t6O9Z7TtL3yH89+XKnkwHwYDVR0j
BBgwFoAUykHd41kdz4m70VvJbgW9xzIUCZswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
ZmNjMmQ0NC05NDE4LTQwMTMtOTcyMy1hOTc4ZjhiZDhiNmIvMC9DQTQxRERFMzU5
MURDRjg5QkJEMTVCQzk2RTA1QkRDNzMyMTQwOTlCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQ0E0MURERTM1OTFEQ0Y4OUJCRDE1QkM5NkUwNUJEQzczMjE0
MDk5Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGZjYzJkNDQtOTQxOC00MDEzLTk3
MjMtYTk3OGY4YmQ4YjZiLzAvQ0E0MURERTM1OTFEQ0Y4OUJCRDE1QkM5NkUwNUJE
QzczMjE0MDk5Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBADHC5HxSDGtgot4Su6IX4uQUdMTGuA3tUsSo
hQeZp0vs2SV6fcpr9KK4IvLtzAU0qOq4LbrMuaN1aBiY3rnYO7fEhvaIN3644/sn
seYNZue13uqt/JlF6BsXe08g5pCMr1jzrW0wif+iNggnokqE+BbWVhr+hC4F8kV8
QPwFam3D/p96fFiT/T+WC8F0V8gqa8uaJQ/VxdKf475Y7pj2BWad+/8ZxoQx8xsi
5m62hLcQe2bkG2bs9qzO/jITIVZIAPyjFPGQSLwSTnHFh9dNkz61mie2GuUN8e7R
7GrYiZk14a53OgQz3YpPPmRe6iOHqwZOn0eW61jMZ37Y9DoofaA=
-----END CERTIFICATE-----