Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft
File:                     BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft (raw, json)
Hash identifier:          iWaOc3ZfGJDOpu+UEHeSWpaevqLCIhiUCOdb7MFnEvA=
Subject key identifier:   AB:14:2B:90:E8:27:B1:1F:C6:92:0B:EA:64:D2:6C:0A:EF:42:43:77
Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A
Certificate issuer:       /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A
Certificate serial:       7F5E59403722F59E50DA0CF74F61B1233885DBB7
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft
Manifest number:          8A
Signing time:             Fri 28 Mar 2025 05:41:07 +0000
Manifest this update:     Fri 28 Mar 2025 05:36:07 +0000
Manifest next update:     Mon 31 Mar 2025 11:18:07 +0000
Files and hashes:         1: 3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa (hash: fPg3CNopGP6G+4XgqOe4b1fpuyhHkNvO3rM/vx+ZU+o=)
                          2: 3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa (hash: k/SYZle1NkfnFNVvY93UJAk7vhv/223CGCuJXPKjR+M=)
                          3: BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl (hash: YzI+VArjTkJ5fUf9bIw8XJHD1BIbYjI/Qgn3vXi1ppM=)
                          4: 3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa (hash: WQ3o4ScBRNrBdkrsNj1S2rAOurS9wRqMMCvcQilACbA=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7f:5e:59:40:37:22:f5:9e:50:da:0c:f7:4f:61:b1:23:38:85:db:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A
        Validity
            Not Before: Mar 28 05:36:07 2025 GMT
            Not After : Mar 31 11:18:07 2025 GMT
        Subject: CN=AB142B90E827B11FC6920BEA64D26C0AEF424377
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:22:72:2b:17:14:86:7b:81:50:2d:0b:f2:f3:
                    16:0c:60:60:99:e3:f4:ec:8a:b6:4d:a5:ab:15:23:
                    f3:e4:7c:56:b3:e1:47:52:32:53:ee:5f:33:b8:85:
                    cf:85:ad:ea:f8:e7:7f:8d:31:47:40:0e:fb:75:13:
                    05:5e:9e:11:85:5a:2e:2a:81:e9:3a:0e:53:cc:4e:
                    c3:8d:99:1b:ec:82:97:7f:83:c0:5b:27:f6:5e:76:
                    6d:1e:2b:e7:56:d7:52:13:92:59:df:c0:ca:ca:71:
                    6d:7a:1d:c5:44:02:30:14:69:03:9e:b6:f5:18:51:
                    28:1f:7d:2d:c7:3f:ac:9b:e0:5d:89:3a:d0:f4:1e:
                    ac:77:d3:42:df:82:5f:0c:d9:02:3d:72:ad:a1:5d:
                    6d:59:3d:d3:21:40:82:ec:ed:1e:32:09:29:b9:e7:
                    76:d0:54:52:b0:a5:47:bf:0d:99:a7:4b:fe:20:77:
                    54:f4:e4:11:ce:a8:f4:cc:fb:c9:cb:4a:c2:fc:5f:
                    6b:49:57:30:b1:0f:ad:04:b8:5e:96:d1:3f:18:22:
                    0b:9a:75:d4:62:dc:b7:db:c3:50:48:e8:5c:4b:1a:
                    d5:e0:a2:c9:76:bc:d2:df:93:67:61:81:05:01:bd:
                    81:10:29:bc:45:0b:06:99:fe:4d:11:a0:38:c9:9a:
                    06:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:14:2B:90:E8:27:B1:1F:C6:92:0B:EA:64:D2:6C:0A:EF:42:43:77
            X509v3 Authority Key Identifier:
                keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:80:5e:05:78:68:f1:ba:cd:da:a6:4a:9d:4a:79:fc:ad:cd:
         4e:b5:20:15:45:d6:fc:8b:f3:1f:29:12:c4:9b:12:f5:72:1f:
         cc:24:21:3b:54:4f:15:2a:2f:78:0f:6b:7a:da:cd:d6:01:23:
         1d:bd:89:16:ff:3a:01:21:c8:e7:f2:11:86:8b:69:9b:e5:e3:
         4c:60:f8:f0:7e:d9:3b:ff:66:a8:4e:0c:5f:49:be:33:11:e5:
         98:87:24:07:24:73:75:82:95:c6:15:59:c3:d1:7f:ac:62:d9:
         62:b1:4c:26:5e:4f:8c:44:ab:9b:e5:db:b0:95:cd:aa:05:b9:
         05:58:3e:78:cb:1d:3c:ad:63:95:f4:db:c6:0a:a7:d3:9f:54:
         8f:09:a8:0a:bc:11:3c:f5:0a:a1:37:c8:d1:8e:d7:c3:1b:3b:
         4e:aa:6d:25:90:99:19:b1:b7:2a:49:18:f3:3c:0c:c2:03:6b:
         e2:5e:44:4f:47:6c:ed:68:92:f0:79:01:24:ab:db:66:f3:47:
         8a:2c:bb:0e:06:9d:24:e7:52:dc:4d:0e:31:42:1b:89:f3:56:
         8f:ab:c2:a0:a8:aa:bd:58:94:e7:0b:87:66:6c:2a:a4:44:75:
         b3:62:61:46:e4:60:d7:07:6e:91:f1:dd:72:23:b0:72:b5:0a:
         04:fd:57:e7
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUf15ZQDci9Z5Q2gz3T2GxIziF27cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYz
NjE4MjMxQTAeFw0yNTAzMjgwNTM2MDdaFw0yNTAzMzExMTE4MDdaMDMxMTAvBgNV
BAMTKEFCMTQyQjkwRTgyN0IxMUZDNjkyMEJFQTY0RDI2QzBBRUY0MjQzNzcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnInIrFxSGe4FQLQvy8xYMYGCZ
4/TsirZNpasVI/PkfFaz4UdSMlPuXzO4hc+Frer453+NMUdADvt1EwVenhGFWi4q
gek6DlPMTsONmRvsgpd/g8BbJ/Zedm0eK+dW11ITklnfwMrKcW16HcVEAjAUaQOe
tvUYUSgffS3HP6yb4F2JOtD0Hqx300Lfgl8M2QI9cq2hXW1ZPdMhQILs7R4yCSm5
53bQVFKwpUe/DZmnS/4gd1T05BHOqPTM+8nLSsL8X2tJVzCxD60EuF6W0T8YIgua
ddRi3Lfbw1BI6FxLGtXgosl2vNLfk2dhgQUBvYEQKbxFCwaZ/k0RoDjJmgYFAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUqxQrkOgnsR/GkgvqZNJsCu9CQ3cwHwYDVR0j
BBgwFoAUvZt6icheDfZ4b1vVHUt9ljYYIxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
MzYwNjZlOC04ZTE5LTRkZTctOTQ3Yi05NGVlM2NkMDlmODUvMC9CRDlCN0E4OUM4
NUUwREY2Nzg2RjVCRDUxRDRCN0Q5NjM2MTgyMzFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYzNjE4
MjMxQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjM2MDY2ZTgtOGUxOS00ZGU3LTk0
N2ItOTRlZTNjZDA5Zjg1LzAvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdE
OTYzNjE4MjMxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBADmAXgV4aPG6zdqmSp1KefytzU61IBVF1vyL
8x8pEsSbEvVyH8wkITtUTxUqL3gPa3razdYBIx29iRb/OgEhyOfyEYaLaZvl40xg
+PB+2Tv/ZqhODF9JvjMR5ZiHJAckc3WClcYVWcPRf6xi2WKxTCZeT4xEq5vl27CV
zaoFuQVYPnjLHTytY5X028YKp9OfVI8JqAq8ETz1CqE3yNGO18MbO06qbSWQmRmx
typJGPM8DMIDa+JeRE9HbO1okvB5ASSr22bzR4osuw4GnSTnUtxNDjFCG4nzVo+r
wqCoqr1YlOcLh2ZsKqREdbNiYUbkYNcHbpHx3XIjsHK1CgT9V+c=
-----END CERTIFICATE-----