Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft
File: AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft (raw, json)
Hash identifier: F0KlmsoOnQh6D8NMp8glfFGRWwJt5y0uu2k4OxKfW4c=
Subject key identifier: E4:1B:AA:9D:07:37:09:8C:43:67:25:43:65:27:C0:98:4D:E0:63:2F
Authority key identifier: AF:5A:2A:D0:C9:E5:CB:1D:9E:F8:5E:6F:8F:44:03:10:F1:00:CE:38
Certificate issuer: /CN=AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38
Certificate serial: 2B703FC77A3727CEC17E28CA148584F8D94C0E7B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft
Manifest number: 03E9
Signing time: Wed 29 Apr 2026 09:12:12 +0000
Manifest this update: Wed 29 Apr 2026 09:07:12 +0000
Manifest next update: Sat 02 May 2026 19:38:12 +0000
Files and hashes: 1: 3130332e3136392e342e302f32332d3234203d3e203137393935.roa (hash: ylXHQm3DiD4h9n4NuN0yUGCouUxigE+BSv0spOzfo/w=)
2: AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.crl (hash: GTIK1MZPSxRPVJSQMSwE2cM1zlcMsp3L8oJYUfQt18I=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:70:3f:c7:7a:37:27:ce:c1:7e:28:ca:14:85:84:f8:d9:4c:0e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38
Validity
Not Before: Apr 29 09:07:12 2026 GMT
Not After : May 2 19:38:12 2026 GMT
Subject: CN=E41BAA9D0737098C436725436527C0984DE0632F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c8:23:b7:1b:78:15:16:89:05:05:8b:b8:f4:
e8:c3:ba:55:4c:81:aa:01:0b:04:3d:3a:46:ef:d5:
11:de:79:76:f3:31:ae:23:3e:af:42:f3:4a:82:82:
8a:27:b7:b5:df:72:73:b7:d6:d6:ac:aa:b1:fc:58:
2e:57:5e:15:b8:3f:66:21:9d:7b:ad:16:1a:aa:5b:
be:48:3f:38:24:1d:d8:0f:de:1a:f0:a7:a4:dd:c6:
9a:df:b1:39:c9:6e:45:1e:3b:7e:b1:fe:bb:82:ac:
f9:ad:3c:ed:de:f9:64:bc:a0:0f:5a:ac:a2:10:2c:
64:ee:b3:08:6c:f0:96:11:a6:b4:a2:2a:7c:f3:25:
a3:91:ac:41:85:5b:f6:4a:ec:b8:d5:75:00:f7:ae:
64:b6:e3:24:23:0e:8f:b9:cf:99:23:c5:6d:fb:86:
6b:66:73:2a:15:f1:14:1e:f1:1d:18:de:ff:3c:0c:
f6:da:b5:7c:3e:14:dd:4a:1e:8f:d4:45:13:33:c4:
4e:78:90:a9:7c:0d:2f:fe:c6:33:d9:16:27:5c:65:
64:fc:91:ce:23:0f:c7:f3:92:ea:e4:1e:74:58:75:
db:23:12:36:72:3a:aa:4e:f3:72:2f:04:19:be:a5:
ce:af:27:35:e5:e5:51:e4:bf:23:2a:ed:54:75:f3:
37:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:1B:AA:9D:07:37:09:8C:43:67:25:43:65:27:C0:98:4D:E0:63:2F
X509v3 Authority Key Identifier:
keyid:AF:5A:2A:D0:C9:E5:CB:1D:9E:F8:5E:6F:8F:44:03:10:F1:00:CE:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:85:78:6a:51:7c:87:96:ea:15:7a:66:58:1d:2e:26:12:3a:
5f:0a:e4:f2:86:27:f5:57:85:85:e4:4c:b1:b4:19:ff:ca:9e:
da:b1:5e:f2:d5:e9:83:da:dd:21:a9:ad:f7:46:5c:9c:85:16:
da:11:ae:cb:c9:de:cf:7a:79:bb:66:dd:1c:54:88:42:34:a9:
d3:bf:2d:d5:b4:e5:cb:b0:53:f2:07:88:70:93:9c:b1:7f:6d:
3e:0c:dd:43:11:84:8a:3d:4b:14:6d:5c:01:e5:05:59:b9:fe:
dc:d2:8f:1d:d7:56:36:66:7e:9e:76:68:18:f2:63:3f:30:83:
79:f6:5b:b8:c6:86:d4:30:40:45:6a:ee:79:fd:c2:0d:57:27:
82:b8:05:2b:a0:45:93:40:b1:66:f5:ea:bc:31:ef:60:cb:5a:
c2:cd:a6:16:21:11:0d:57:06:b5:85:d1:4c:48:cc:5e:c1:92:
69:64:ea:7b:75:12:84:52:ec:99:bb:b4:d0:9f:ed:a3:16:f8:
06:f6:62:ff:96:de:36:5f:07:e3:5e:e7:9f:bf:ba:20:d7:05:
e6:26:bd:b7:b4:2d:8c:0e:e8:09:0d:89:eb:f8:68:ba:11:9f:
32:11:e6:12:a0:66:dc:51:42:01:22:f0:d2:f4:25:37:ec:71:
2e:00:05:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 03:37:24 2026 by rpki-client