Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft
File:                     25D788BD2A450C01354B9AB70826895FDFF56208.mft (raw, json)
Hash identifier:          FyewXwNZbKxyfd3KWEqQl8UrWDNAENrg5FwGpel3ecQ=
Subject key identifier:   01:8C:37:4E:53:A2:C0:98:D6:44:A2:59:2F:F9:4D:5E:30:E7:21:93
Authority key identifier: 25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08
Certificate issuer:       /CN=25D788BD2A450C01354B9AB70826895FDFF56208
Certificate serial:       32205881100748A00C3A5F1A49D4A767B0AB87D1
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft
Manifest number:          03BD
Signing time:             Mon 27 Apr 2026 06:41:16 +0000
Manifest this update:     Mon 27 Apr 2026 06:36:16 +0000
Manifest next update:     Thu 30 Apr 2026 16:13:16 +0000
Files and hashes:         1: 323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa (hash: BfvR/So226bitOLhPr9CHxhxgb1Q7qOXOhbe2UXDXlU=)
                          2: 3130332e39312e32342e302f32322d3234203d3e20313432333739.roa (hash: 7KmVFtPmF1PKTzL10ZTaJivGdGaijKq3y/u3fcta36Y=)
                          3: 25D788BD2A450C01354B9AB70826895FDFF56208.crl (hash: 7mozNQLwadrQ8BDH4N1JBt4BT7ur4CnJFNOeh2G5Q2c=)
                          4: 3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa (hash: AmegGicy5qm/oTOOAYDY/mxE94xy3VzwbgGfQNAYu1w=)
                          5: 3132332e3235332e3234382e302f32332d3234203d3e20313336383235.roa (hash: QI58DXpB52DfIuMgMkSoG294cwRWUIiNYLhET6AYpiI=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            32:20:58:81:10:07:48:a0:0c:3a:5f:1a:49:d4:a7:67:b0:ab:87:d1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=25D788BD2A450C01354B9AB70826895FDFF56208
        Validity
            Not Before: Apr 27 06:36:16 2026 GMT
            Not After : Apr 30 16:13:16 2026 GMT
        Subject: CN=018C374E53A2C098D644A2592FF94D5E30E72193
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:b1:b4:66:d0:41:37:8a:b9:ce:a0:87:dc:66:
                    43:66:12:35:18:c7:7b:1f:03:6c:98:3d:26:80:63:
                    b8:fb:b0:09:39:76:fd:4f:d0:68:e6:33:6c:24:2d:
                    2b:2f:93:8a:65:b3:5c:a5:e9:68:94:5e:2e:68:2e:
                    28:ba:e8:5f:b6:2d:15:9f:d8:1a:94:03:6c:e4:c8:
                    13:91:c9:7f:7d:10:c2:52:aa:ac:7e:a2:49:f1:f4:
                    43:37:61:c2:d4:1a:0e:87:6d:b9:7d:f3:68:97:82:
                    80:d8:6a:73:4e:2a:74:4a:28:05:34:33:56:fd:a3:
                    6d:d6:33:04:b8:58:dd:eb:df:ef:f9:b7:04:09:5d:
                    ea:2f:ea:74:e9:bc:e9:b0:6c:1c:1d:71:bd:26:3a:
                    c3:74:05:87:4d:87:2d:f1:f5:24:13:a7:38:99:2f:
                    69:0d:f1:62:41:65:ec:59:dc:62:5e:ac:70:93:b9:
                    77:3e:dc:7b:6c:bd:e7:85:92:df:c8:6e:1c:19:e3:
                    4c:77:c2:b6:54:08:ab:45:d1:83:ea:ef:8f:cd:63:
                    ed:8f:1d:22:82:f2:0b:13:5d:4e:0d:72:1f:e5:38:
                    fe:82:c8:bb:f6:f7:50:e4:8c:a6:26:10:d9:9a:09:
                    7f:db:08:ed:8e:48:bf:cf:79:a2:3f:fd:85:5e:3e:
                    b9:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:8C:37:4E:53:A2:C0:98:D6:44:A2:59:2F:F9:4D:5E:30:E7:21:93
            X509v3 Authority Key Identifier:
                keyid:25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:70:44:aa:a6:9d:a1:48:89:09:1f:82:10:51:eb:ae:09:6f:
         09:b7:40:34:18:9a:69:53:aa:9e:b9:5d:ad:4f:53:c9:73:5d:
         b2:59:70:de:55:53:80:56:0f:ce:f1:23:23:c3:43:54:21:3b:
         8b:7c:6c:23:93:61:86:37:7a:c3:d9:e7:11:3c:49:5a:e6:40:
         2d:42:5e:23:7a:70:26:46:65:9d:a4:7f:ff:45:97:ca:4d:2a:
         f8:79:fb:62:16:35:09:ac:86:f9:87:ef:b7:76:b7:08:bc:75:
         92:b5:d4:5e:df:06:c1:49:88:27:9d:9c:98:8b:57:05:2c:db:
         e6:ad:f0:6e:b5:37:76:03:d7:3f:83:a9:65:fb:e9:72:86:a3:
         39:7d:02:14:e1:a0:3c:22:58:bd:5f:49:89:3b:8a:0b:56:6a:
         58:5e:65:9e:03:fa:d9:35:ff:31:e0:9a:a8:d1:f1:4e:cd:1e:
         b1:35:da:d5:a3:6b:d3:78:a2:22:4b:6b:cc:6d:39:7a:88:a7:
         5b:30:07:0e:06:d9:79:e6:6e:0e:d0:1e:44:e1:9b:49:c1:26:
         34:3e:42:05:54:26:4d:88:ee:cc:8e:f6:dc:ff:cf:72:cd:e2:
         b6:9b:c0:e2:f8:48:8a:c2:c0:60:f2:9c:2d:37:1e:41:19:09:
         de:35:ff:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----