Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft
File:                     871B4235DFC56C482416E7BBA192562092FFE055.mft (raw, json)
Hash identifier:          KCxs4ydpNO/itxtPKUTJnGIm4FYP7ZlZHebdwlwI9Lo=
Subject key identifier:   81:F7:57:03:EA:E6:73:FB:0E:04:A8:E2:66:AB:B9:30:1C:41:9C:06
Authority key identifier: 87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55
Certificate issuer:       /CN=871B4235DFC56C482416E7BBA192562092FFE055
Certificate serial:       647B676276DC0FF69F12E7115A80596C219EF684
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft
Manifest number:          A8
Signing time:             Sat 29 Mar 2025 05:22:05 +0000
Manifest this update:     Sat 29 Mar 2025 05:17:05 +0000
Manifest next update:     Tue 01 Apr 2025 12:18:05 +0000
Files and hashes:         1: 3135372e32302e39322e302f32332d3234203d3e20313532343037.roa (hash: dOMygz5zltbqlA4IY/6P2zi8X+0Vf9OQi3HjL4HaSVo=)
                          2: 871B4235DFC56C482416E7BBA192562092FFE055.crl (hash: hfMOrYWfHIN823DY9/30vXB361GB749mImKXOrr/Ty8=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            64:7b:67:62:76:dc:0f:f6:9f:12:e7:11:5a:80:59:6c:21:9e:f6:84
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=871B4235DFC56C482416E7BBA192562092FFE055
        Validity
            Not Before: Mar 29 05:17:05 2025 GMT
            Not After : Apr  1 12:18:05 2025 GMT
        Subject: CN=81F75703EAE673FB0E04A8E266ABB9301C419C06
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:eb:2b:20:9e:e7:ec:49:0c:54:1e:60:59:58:
                    9b:a7:d7:ab:90:33:ad:56:26:a3:47:90:fb:5c:16:
                    42:e2:b7:af:3a:eb:8e:4e:b1:24:3c:49:cf:e3:c0:
                    9e:d6:92:a6:89:c4:49:81:cc:35:b3:22:b7:3a:4f:
                    2b:69:bd:5f:f8:82:31:ba:b9:bc:88:50:6e:7d:ce:
                    1d:2f:4f:c5:63:66:8f:b6:b6:fe:c3:71:39:cf:13:
                    56:18:10:ff:61:db:ea:77:3a:e8:66:92:5a:07:86:
                    3a:4f:df:c9:2f:0a:61:ad:4a:6b:60:93:a8:2f:53:
                    03:75:b9:f0:72:97:ca:d0:a7:31:d9:6c:9e:cd:b5:
                    b5:0d:dd:12:4b:21:b7:84:f9:48:af:40:df:01:a5:
                    bf:97:ba:6d:29:8d:a8:4d:f0:7c:80:27:6a:b7:ec:
                    98:4b:98:98:23:71:fb:12:97:f6:dd:1a:a4:52:89:
                    f9:2f:6a:2a:65:fa:f9:ba:f2:42:bc:66:5e:7e:91:
                    23:51:9c:34:99:fa:e7:92:0b:30:22:22:ac:1d:6c:
                    5b:1a:b6:08:0b:03:ec:d6:a3:3a:1d:01:ad:27:13:
                    05:e6:9d:f5:50:6e:53:b5:cd:ce:bc:de:11:0a:96:
                    3a:a2:27:c2:5c:d5:c6:49:99:d8:b6:f5:27:e3:4d:
                    b5:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:F7:57:03:EA:E6:73:FB:0E:04:A8:E2:66:AB:B9:30:1C:41:9C:06
            X509v3 Authority Key Identifier:
                keyid:87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:02:ff:55:0c:bd:1f:f5:d9:87:55:2e:0d:38:64:fa:3b:e6:
         9a:cf:62:91:fc:82:23:40:45:19:5d:bd:4d:b2:fc:83:03:32:
         70:80:68:8a:a7:08:9f:9b:b3:b0:85:4f:bf:d8:5b:d4:fb:8f:
         a9:57:8a:46:8d:76:ba:bc:2f:22:54:66:41:e2:46:e0:51:07:
         7e:ab:37:53:54:f7:00:dc:f5:5a:f1:b2:cb:38:3f:ca:79:42:
         8f:07:2d:50:b6:fd:3b:e7:bd:69:c0:ca:64:6b:5e:87:47:f5:
         d8:57:3f:66:26:4c:2f:69:a3:50:70:aa:c8:0d:3b:d9:7e:81:
         41:fb:8d:51:3e:4a:76:52:33:b2:3e:46:da:06:39:99:22:c7:
         73:03:b6:a0:09:ba:bd:45:d2:20:52:67:1f:b3:00:81:fb:66:
         d8:2c:3b:01:e9:f5:d4:bf:ae:99:40:7d:1c:75:22:0b:9a:78:
         43:86:a0:cd:32:a5:ec:b0:5e:92:76:5a:14:26:44:44:e7:cb:
         e1:bf:b9:5b:18:ab:fa:12:f7:1e:4e:82:eb:68:0d:de:74:c8:
         e3:f8:24:6b:cb:dc:05:06:d2:9d:fb:1c:64:fc:97:99:3f:b2:
         f2:db:4b:c0:4f:57:a9:d6:95:02:18:a7:3d:bc:71:14:98:ac:
         af:40:b1:2f
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUZHtnYnbcD/afEucRWoBZbCGe9oQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5
MkZGRTA1NTAeFw0yNTAzMjkwNTE3MDVaFw0yNTA0MDExMjE4MDVaMDMxMTAvBgNV
BAMTKDgxRjc1NzAzRUFFNjczRkIwRTA0QThFMjY2QUJCOTMwMUM0MTlDMDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq6ysgnufsSQxUHmBZWJun16uQ
M61WJqNHkPtcFkLit686645OsSQ8Sc/jwJ7WkqaJxEmBzDWzIrc6TytpvV/4gjG6
ubyIUG59zh0vT8VjZo+2tv7DcTnPE1YYEP9h2+p3OuhmkloHhjpP38kvCmGtSmtg
k6gvUwN1ufByl8rQpzHZbJ7NtbUN3RJLIbeE+UivQN8Bpb+Xum0pjahN8HyAJ2q3
7JhLmJgjcfsSl/bdGqRSifkvaipl+vm68kK8Zl5+kSNRnDSZ+ueSCzAiIqwdbFsa
tggLA+zWozodAa0nEwXmnfVQblO1zc683hEKljqiJ8Jc1cZJmdi29SfjTbW1AgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUgfdXA+rmc/sOBKjiZqu5MBxBnAYwHwYDVR0j
BBgwFoAUhxtCNd/FbEgkFue7oZJWIJL/4FUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
YTg5NmZkYy01NjM4LTQxZDItOGE5OS02OGNlODE2YmQzY2YvMC84NzFCNDIzNURG
QzU2QzQ4MjQxNkU3QkJBMTkyNTYyMDkyRkZFMDU1LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5MkZG
RTA1NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmE4OTZmZGMtNTYzOC00MWQyLThh
OTktNjhjZTgxNmJkM2NmLzAvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2
MjA5MkZGRTA1NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBAIoC/1UMvR/12YdVLg04ZPo75prPYpH8giNA
RRldvU2y/IMDMnCAaIqnCJ+bs7CFT7/YW9T7j6lXikaNdrq8LyJUZkHiRuBRB36r
N1NU9wDc9Vrxsss4P8p5Qo8HLVC2/TvnvWnAymRrXodH9dhXP2YmTC9po1BwqsgN
O9l+gUH7jVE+SnZSM7I+RtoGOZkix3MDtqAJur1F0iBSZx+zAIH7ZtgsOwHp9dS/
rplAfRx1IguaeEOGoM0ypeywXpJ2WhQmRETny+G/uVsYq/oS9x5OgutoDd50yOP4
JGvL3AUG0p37HGT8l5k/svLbS8BPV6nWlQIYpz28cRSYrK9AsS8=
-----END CERTIFICATE-----