Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft
File: 40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft (raw, json)
Hash identifier: B+1LEI+zxY4dEanr9tm6cxeaVfjOV+/AvYGIA607rts=
Subject key identifier: E8:A2:4E:EB:57:EB:6F:75:99:34:2C:80:42:8A:62:A6:F1:DF:80:2F
Authority key identifier: 40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA
Certificate issuer: /CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA
Certificate serial: 117E089F93BC05BACBDCCE7D05519D3759032033
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft
Manifest number: 87
Signing time: Thu 27 Mar 2025 17:41:58 +0000
Manifest this update: Thu 27 Mar 2025 17:36:58 +0000
Manifest next update: Mon 31 Mar 2025 03:30:58 +0000
Files and hashes: 1: 3135372e36362e302e302f32332d3234203d3e20313430343737.roa (hash: y71ZhCBj0ZFKWRv/ArGsOF0ogDJDqOvjhhVCZLjfrqA=)
2: 40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl (hash: j/rQz+uJ6deW6Q4CcJW2MEuu58EhkQQ2Ag3Tl0E4NVs=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:7e:08:9f:93:bc:05:ba:cb:dc:ce:7d:05:51:9d:37:59:03:20:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA
Validity
Not Before: Mar 27 17:36:58 2025 GMT
Not After : Mar 31 03:30:58 2025 GMT
Subject: CN=E8A24EEB57EB6F7599342C80428A62A6F1DF802F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:59:60:0c:45:55:e3:08:d1:40:92:b8:d9:62:
b5:7c:1b:8f:3b:8e:95:97:71:fa:1a:2c:ce:e1:b5:
e2:2e:78:7d:ab:f8:de:9c:bd:58:34:5f:2f:61:72:
44:15:7c:8d:7f:8b:cb:41:f8:c6:c4:dd:a7:fd:92:
90:64:ba:b7:77:1b:3f:f3:d2:1c:83:50:20:df:b6:
ab:0f:9d:5b:dd:90:2e:2b:7a:f5:09:ae:d7:7d:96:
37:8f:67:6d:0a:e1:5f:a9:cd:40:e1:e8:9b:70:3a:
fd:f4:1f:81:fc:9d:1d:4d:dd:39:fd:3b:0e:09:6c:
79:ef:7d:1a:2b:ad:af:0e:9f:f6:0d:7e:a4:0e:3b:
fd:ba:c0:3c:fa:96:12:3f:9d:60:bb:41:df:4e:c8:
08:70:28:ec:1c:41:5a:48:e3:2d:b2:c3:71:7f:4f:
17:be:fb:06:7c:9e:68:59:35:c2:cd:09:c5:f7:83:
df:4e:62:84:0c:84:1c:0c:53:31:ba:04:cb:b7:17:
e9:e2:f7:06:ae:46:b3:67:8c:93:61:7a:08:2f:7e:
f0:96:22:4b:df:25:88:5c:cb:99:cf:08:46:9a:37:
64:b3:9f:69:0e:af:5d:08:c6:60:aa:69:87:e0:c3:
8d:b4:f7:a6:72:af:80:48:48:00:61:5d:5e:6f:43:
28:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A2:4E:EB:57:EB:6F:75:99:34:2C:80:42:8A:62:A6:F1:DF:80:2F
X509v3 Authority Key Identifier:
keyid:40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:82:b2:96:7f:58:cf:fe:75:9e:e9:f1:df:93:fc:35:ea:9b:
07:71:c4:45:34:be:dd:2e:1c:12:28:ec:3e:08:d7:aa:15:02:
30:1f:d3:83:3c:dd:16:7f:05:4e:31:d7:b6:a9:b1:db:0c:d8:
6b:66:2d:8d:7d:35:fb:85:69:be:84:8b:f3:da:35:81:3c:29:
c9:eb:7f:fe:9b:f6:f5:d3:47:f6:49:36:5c:05:b3:b0:9b:78:
8a:1c:66:4a:85:ac:e3:ca:fe:b2:6c:ad:d1:db:5b:b5:af:32:
82:90:84:29:a5:44:ce:e8:e1:5c:f0:44:3c:95:6a:27:15:6e:
31:97:8a:32:70:ea:9c:7b:3c:2d:5e:18:89:90:0a:80:02:3e:
b3:21:73:30:72:e4:0d:53:4e:39:91:75:8f:25:f0:ea:a6:a2:
e9:f5:b7:e3:ac:da:5f:21:d8:36:41:d7:a3:e9:2a:51:e0:69:
0b:b2:da:d6:a2:9a:e4:04:50:4d:53:94:0d:66:ae:12:22:77:
69:d9:11:10:e5:cb:76:5f:d7:16:bf:7a:77:9c:7e:9e:0b:e2:
35:cb:8c:6b:83:e1:2d:01:f8:36:96:33:f7:87:cf:29:a4:58:
4f:fc:bf:60:9b:8b:1a:fe:8a:9b:75:19:0d:23:dd:4a:ac:84:
44:7c:03:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 15:26:36 2025 by rpki-client