Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft
File:                     B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft (raw, json)
Hash identifier:          l+OWtbAH2uXKJKaEobco82AiIEd/Ay/lDL9QKx4GlOw=
Subject key identifier:   6B:39:AD:10:CA:47:A3:D4:CD:23:1E:0C:70:20:D6:3E:7A:39:B9:D6
Authority key identifier: B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08
Certificate issuer:       /CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308
Certificate serial:       678513A4F2BC281CEE3D0E651B4FAAC88BEEC91B
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft
Manifest number:          0163
Signing time:             Fri 28 Mar 2025 12:31:05 +0000
Manifest this update:     Fri 28 Mar 2025 12:26:05 +0000
Manifest next update:     Mon 31 Mar 2025 20:23:05 +0000
Files and hashes:         1: 3230322e3135392e39362e302f31392d3234203d3e2039333430.roa (hash: 4CYpX855PsKjE7pRqG0I65N8tDE2yevHm2JcGXCxF84=)
                          2: 3230322e3135332e3232342e302f31392d3234203d3e2039333430.roa (hash: vY8tbOcXriyCtT6FUxDmURMpeDa3xL/alWeAEYVK8DM=)
                          3: 3230322e3135392e35302e302f32332d3234203d3e203435373239.roa (hash: 7LPe2lEj9jSSghBzwzWvEJHD1rdTalK2jKZeyt7h7R0=)
                          4: 3230322e35332e3232342e302f31392d3234203d3e2039333430.roa (hash: cxySA+7GoKy0ZBQ953Jz7wXFE+7U1S6vU/NAFozpO4w=)
                          5: B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl (hash: 2C47w6IQeJoutFVQaw52mxuqLwFQE0fgt4I3Nw6Y26U=)
                          6: 3131372e35342e302e302f31362d3234203d3e2039333430.roa (hash: UieSxZjEvKIMrWcJdH2TDXUustdkDqF4w0J/hh4yLRA=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:85:13:a4:f2:bc:28:1c:ee:3d:0e:65:1b:4f:aa:c8:8b:ee:c9:1b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308
        Validity
            Not Before: Mar 28 12:26:05 2025 GMT
            Not After : Mar 31 20:23:05 2025 GMT
        Subject: CN=6B39AD10CA47A3D4CD231E0C7020D63E7A39B9D6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:17:d5:c0:9e:17:6d:cf:88:c3:d4:4f:fb:10:
                    38:af:f3:92:58:8b:d2:f2:e1:5b:a7:50:f7:d9:3b:
                    84:01:26:58:34:e8:fb:a1:3f:44:99:b6:0b:66:8e:
                    37:91:0a:d5:71:f7:a6:50:31:a7:64:3e:91:88:86:
                    c5:49:5e:0a:79:81:8a:db:7d:bf:8a:e9:7d:63:d9:
                    ca:73:c8:59:bb:7a:88:81:a7:11:14:16:70:0d:1d:
                    14:5b:e1:be:47:39:bb:e4:3a:9e:15:4d:5f:51:ae:
                    bc:d3:fe:6a:63:2c:a1:94:37:5f:89:4a:6e:bb:36:
                    6e:79:f0:73:47:28:4c:20:21:20:1c:bc:0e:d6:c1:
                    4c:08:d4:72:72:0f:57:74:31:f3:0c:ad:ac:90:6b:
                    11:5c:00:47:8d:af:99:96:cb:12:65:d4:13:9c:db:
                    46:78:c4:90:1c:d8:c4:e6:c0:86:f3:7c:c9:ca:b7:
                    68:b6:4e:ad:51:ac:98:21:a5:f0:29:d9:86:e6:29:
                    a7:02:44:4a:e7:1d:62:89:57:0e:fb:0d:8d:36:8e:
                    1c:e6:1f:40:7f:7a:45:b6:c2:03:88:e7:7d:e7:75:
                    92:d9:c2:7f:85:dc:dd:4a:34:49:02:c7:94:c9:a4:
                    dc:7c:38:ac:ef:e2:28:7c:a6:1b:79:30:f2:9c:54:
                    c9:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:39:AD:10:CA:47:A3:D4:CD:23:1E:0C:70:20:D6:3E:7A:39:B9:D6
            X509v3 Authority Key Identifier:
                keyid:B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d4:34:a7:83:46:9d:be:8f:b0:7f:c1:31:f4:a7:0e:20:9b:6e:
         80:6b:af:d0:a2:79:e5:9d:2a:82:3e:63:49:1d:7d:8e:0c:9d:
         64:8e:cc:43:52:af:95:07:c4:d1:4b:46:af:9b:74:77:f4:4e:
         81:52:61:d6:ca:ca:b8:03:7e:6a:2f:ef:db:0f:b6:c5:f0:5c:
         cd:2f:6e:d6:8c:a8:9a:f1:5f:dd:e2:5b:6b:a4:72:58:7e:45:
         d7:a6:55:67:a5:54:e7:58:47:db:b2:0a:ec:b7:43:20:98:96:
         ed:85:2c:fd:f8:37:03:9f:32:42:eb:11:6e:87:3b:93:fc:1b:
         be:4a:8b:23:95:83:8d:96:76:4e:fe:ae:7d:15:3b:6f:a0:e0:
         97:01:6a:43:ac:0c:28:2c:9f:fc:55:84:2c:7e:e3:2c:1e:df:
         24:16:16:a0:6c:19:06:ab:c9:80:bc:0e:a4:84:24:b1:ff:cb:
         0b:5a:05:f8:e2:06:9c:75:72:bb:37:c1:ff:c7:7d:63:39:69:
         7c:d8:fa:69:e0:1b:0c:93:a5:05:30:2b:f9:37:f9:da:b1:19:
         25:dc:d3:a0:1b:fd:e4:e4:c7:ea:97:c8:24:3a:a1:18:ff:55:
         d9:33:f0:42:6e:a8:46:92:ea:d1:8b:bd:a7:b4:f1:0b:02:37:
         d7:14:17:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----