Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft
File: 99A17325620A243689E32E6074D5CFCA91D915EB.mft (raw, json)
Hash identifier: WHt4NjLBjcYN9rzoOs22WeNNE5fjWQzOC0hyefpX+Gw=
Subject key identifier: 38:82:9C:37:55:2F:B6:D5:36:C0:88:6B:A6:16:1D:48:36:DD:4B:A3
Authority key identifier: 99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB
Certificate issuer: /CN=99A17325620A243689E32E6074D5CFCA91D915EB
Certificate serial: 7F641E96B0F87470733D5FFE31D6E1347C932748
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft
Manifest number: A3
Signing time: Fri 28 Mar 2025 02:21:43 +0000
Manifest this update: Fri 28 Mar 2025 02:16:43 +0000
Manifest next update: Mon 31 Mar 2025 03:05:43 +0000
Files and hashes: 1: 99A17325620A243689E32E6074D5CFCA91D915EB.crl (hash: TnhY9zDnbepubdeuksltNNjyZmK01/IfazctBxMQPts=)
2: 3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa (hash: W4T3x6W6F80SSirpXVn9D/iy5Cn3YHJGBUQbdlxcTEY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:64:1e:96:b0:f8:74:70:73:3d:5f:fe:31:d6:e1:34:7c:93:27:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99A17325620A243689E32E6074D5CFCA91D915EB
Validity
Not Before: Mar 28 02:16:43 2025 GMT
Not After : Mar 31 03:05:43 2025 GMT
Subject: CN=38829C37552FB6D536C0886BA6161D4836DD4BA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9b:f1:41:ab:9b:0b:3e:da:e4:b3:5a:6a:c4:
d8:03:fa:65:61:37:d9:f3:9b:0e:ab:70:88:d7:5f:
62:40:18:17:94:a2:a3:8d:01:dc:93:ca:ce:6a:2e:
79:7c:66:78:07:ff:05:17:54:e1:97:6a:d3:04:94:
6b:53:60:45:a8:3d:3d:61:07:71:8c:21:03:80:a9:
b9:4b:79:44:e1:ff:8a:66:7a:a4:b0:eb:58:a2:a4:
ac:db:2c:f7:7d:3c:f6:42:e7:f9:f7:50:7f:78:e9:
af:ab:70:eb:a3:26:bb:e0:78:08:df:04:57:10:f3:
fd:1a:56:3d:7b:b4:39:1d:c1:71:a2:1b:1e:7a:2c:
96:c7:84:7e:ba:d1:ab:32:3a:f4:2b:20:70:72:c6:
be:61:cc:64:bc:3e:b5:d8:53:05:74:c2:86:4b:82:
f9:8d:be:53:9a:5a:03:be:14:28:3b:9f:0c:37:67:
08:95:13:24:f3:6c:ce:cd:5e:d9:e4:ca:32:96:9f:
5c:de:d7:d8:4b:61:f6:1c:27:fc:ff:4d:e7:18:9e:
68:66:3e:11:96:d3:09:0f:8b:34:e3:d8:20:d3:d8:
cc:33:f1:85:49:d6:a4:c2:0f:6c:4e:e2:11:45:e9:
85:b4:f2:56:b6:bc:f2:e0:47:f6:9d:a5:2e:bd:83:
27:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:82:9C:37:55:2F:B6:D5:36:C0:88:6B:A6:16:1D:48:36:DD:4B:A3
X509v3 Authority Key Identifier:
keyid:99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:2b:a9:7d:99:04:50:73:5f:40:66:38:4f:6b:f9:b7:86:33:
b1:d7:58:59:5e:24:fd:20:ec:cd:f6:ff:6e:dd:dc:a7:d5:9f:
91:00:30:2b:bc:e2:70:f7:db:1b:ef:a0:89:e0:0e:97:11:4f:
1e:2f:a2:0d:d8:07:e1:cc:6a:79:06:50:58:6a:5c:dd:5c:12:
a4:d8:73:00:4f:8c:03:e1:bc:46:97:96:fd:8b:8e:c3:d5:a5:
22:87:b1:e8:e0:7f:d9:a0:8d:e0:ec:a0:34:39:6f:83:dd:a5:
1f:34:02:3f:8d:8b:86:4b:b8:f9:4f:0b:2f:25:4c:e4:c1:7f:
7f:46:13:18:fb:e9:e1:16:60:42:75:54:1c:91:bf:98:5d:b3:
12:dc:ae:7e:8c:4e:14:6f:16:15:1b:90:28:30:1c:78:fd:a0:
f8:3d:6f:1c:3e:cd:eb:72:f8:43:3f:14:53:99:06:41:a8:fe:
81:53:5c:00:e5:77:29:9a:ae:bd:4b:d7:c9:5b:fc:c3:7f:14:
51:6a:27:0a:b2:30:6e:c0:37:41:c8:ac:92:1f:29:e2:94:48:
cd:f5:6c:75:a4:7b:e6:29:f0:a8:a8:df:ab:27:f4:c2:25:af:
f1:5f:49:ca:f9:2f:ee:d5:fc:26:43:f7:ad:cc:60:36:dd:a3:
74:86:7e:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 22:21:35 2025 by rpki-client