Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft
File:                     432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json)
Hash identifier:          bidNeVDh7XFDtakq1hQApYZJ1xaPczZCEu0wwlrx9Ww=
Subject key identifier:   1D:A9:30:77:83:62:D6:2A:90:BA:61:B2:EB:D3:4C:38:6E:AB:BB:59
Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1
Certificate issuer:       /CN=432AE9E2B00941EF8925409E82CA40508A4688B1
Certificate serial:       17A35C462C46FDFE1B9FCF0D8F8197F8D8300211
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft
Manifest number:          C8
Signing time:             Fri 28 Mar 2025 08:01:49 +0000
Manifest this update:     Fri 28 Mar 2025 07:56:49 +0000
Manifest next update:     Mon 31 Mar 2025 09:06:49 +0000
Files and hashes:         1: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xeW9Q+jrWgb1kNw9Ck6owBJ7nXg3E26nbn0fhXlo6qI=)
                          2: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: 54EEKsU6BsnFuVTTNxNl8Uwpop5YRZELFOdL+kuobgU=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            17:a3:5c:46:2c:46:fd:fe:1b:9f:cf:0d:8f:81:97:f8:d8:30:02:11
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1
        Validity
            Not Before: Mar 28 07:56:49 2025 GMT
            Not After : Mar 31 09:06:49 2025 GMT
        Subject: CN=1DA930778362D62A90BA61B2EBD34C386EABBB59
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:a9:d9:93:23:cf:cc:8d:89:03:ef:fe:49:f6:
                    4e:a3:b3:e4:c3:93:2a:0d:0c:7c:2e:65:ae:df:40:
                    f1:38:25:62:df:b4:d2:1d:8e:3b:17:aa:69:2b:20:
                    73:3f:47:b6:6f:37:1e:89:91:34:58:0b:50:46:59:
                    f3:9c:df:df:53:b3:36:64:21:ba:fe:a9:65:c1:88:
                    a7:4f:ae:39:a8:ac:54:f5:c0:c6:00:f5:27:e4:69:
                    eb:f9:27:7e:66:a0:67:42:d4:32:4d:60:ee:48:90:
                    aa:5d:a3:cf:55:c4:18:25:7e:aa:63:3f:f3:46:40:
                    05:76:01:8c:a1:eb:d6:a4:73:84:05:d5:24:79:ff:
                    8b:75:ca:88:d6:40:ff:09:12:94:5e:00:5a:d0:42:
                    d7:36:61:68:ae:f1:94:1a:5c:2d:3e:d7:d5:85:8d:
                    27:62:bc:04:98:b7:ff:0e:f7:e4:2e:a1:24:a3:87:
                    75:8d:5d:af:16:32:11:ee:b6:63:ba:f5:73:40:34:
                    bb:10:e2:ce:09:fe:5b:61:4e:13:53:07:66:18:bf:
                    96:d2:42:a2:7e:6b:81:7f:d0:b1:47:74:f2:e3:eb:
                    de:f4:3f:5a:03:c5:00:ec:ac:d3:f1:cb:bf:82:2d:
                    cd:77:f0:7b:df:dd:2b:a6:91:e4:9a:26:ed:02:28:
                    cf:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:A9:30:77:83:62:D6:2A:90:BA:61:B2:EB:D3:4C:38:6E:AB:BB:59
            X509v3 Authority Key Identifier:
                keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:96:a3:71:a2:2b:be:57:59:e3:d1:32:23:98:bf:61:d1:f6:
         5d:5b:1a:0d:63:c3:c3:6e:1b:b8:2e:8f:66:9f:94:0c:50:37:
         4a:62:d6:cb:87:ee:2a:1a:79:92:50:83:15:87:58:e9:84:be:
         10:64:a4:03:7d:9d:9f:e4:38:d8:d9:df:d1:21:b2:77:c0:86:
         26:3b:f6:5c:d0:46:b7:72:3e:fe:d0:69:22:97:29:df:b4:19:
         c2:6e:96:d0:6e:e9:fd:d5:49:61:e5:a8:56:43:9a:f7:82:98:
         c8:51:34:6b:85:dc:9f:3c:68:61:17:6b:c1:2f:bc:47:8a:5b:
         85:5a:72:9f:ba:08:01:30:be:91:36:af:0b:d4:d7:17:66:41:
         f0:23:73:53:3e:8f:02:41:66:20:6b:55:61:09:b5:de:5c:ee:
         1c:3e:70:c5:04:25:92:8d:2f:81:35:bb:b3:de:e2:08:d8:19:
         b7:fc:1e:00:12:e3:39:33:59:0e:3f:3f:f1:35:27:be:c8:89:
         97:19:37:60:4f:60:29:b0:f9:82:de:98:fc:ca:b3:1b:e4:be:
         58:7c:1a:01:ce:38:ac:ec:ea:81:06:58:b7:51:4b:d6:2d:b7:
         8d:ca:e1:c7:cd:e4:8b:29:b2:6f:fb:96:68:06:f2:18:ba:b5:
         aa:e0:b5:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----