Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft
File:                     1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft (raw, json)
Hash identifier:          FNNupTch3eER+vh76wllqD7vIoYGCg1rjptrPdVqOLk=
Subject key identifier:   76:C4:56:91:70:48:5C:36:54:8C:1C:C0:1C:FD:EF:EA:13:AF:02:E5
Authority key identifier: 16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20
Certificate issuer:       /CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20
Certificate serial:       141013E68183675EB8DEC66740788802A3F5ABC3
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft
Manifest number:          02A4
Signing time:             Wed 29 Apr 2026 04:12:02 +0000
Manifest this update:     Wed 29 Apr 2026 04:07:02 +0000
Manifest next update:     Sat 02 May 2026 13:24:02 +0000
Files and hashes:         1: 3130332e3138302e3235302e302f32342d3234203d3e20313439333733.roa (hash: FU4m4uM0eOvuHrbeEWpDEWdnGc1mYzPxVGKE41GscXY=)
                          2: 3130332e3138302e3235302e302f32332d3234203d3e20313439333733.roa (hash: 6+aOTOrAxzWsWipZ2VbdRwlhEyJYsC/PS67oMR2JaEk=)
                          3: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl (hash: QAopXddHc32BxSZrYWXeZCIN59cTUlQjJyw4BH0Ugt4=)
                          4: 3130332e3138302e3235312e302f32342d3234203d3e20313439333733.roa (hash: hUygR1F36BFXE6jZfKUn6z9xWtDxXwKMMrnfrGbDbrA=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            14:10:13:e6:81:83:67:5e:b8:de:c6:67:40:78:88:02:a3:f5:ab:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20
        Validity
            Not Before: Apr 29 04:07:02 2026 GMT
            Not After : May  2 13:24:02 2026 GMT
        Subject: CN=76C4569170485C36548C1CC01CFDEFEA13AF02E5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:b8:68:5b:e1:ca:96:bd:36:35:54:b6:a5:30:
                    29:bc:7a:4e:71:cf:43:02:78:7f:5c:bc:c2:08:93:
                    61:e0:0f:bb:c4:b3:5d:94:72:5e:97:6e:86:5d:d0:
                    00:b8:c6:40:45:99:cb:70:f9:96:66:aa:73:5d:c6:
                    42:e0:be:21:ee:3a:cb:e4:bd:e9:69:72:4f:6a:a1:
                    fe:f2:03:99:3f:45:63:10:65:72:37:c1:b3:d6:c0:
                    49:84:96:ad:84:7f:6b:4f:41:61:61:14:80:f8:08:
                    75:07:21:81:13:cc:0d:ee:c7:88:8d:75:ef:1f:d0:
                    d3:68:18:3e:af:b3:df:0d:02:88:f6:c4:de:65:40:
                    bb:a8:4f:37:2c:e3:c6:5a:b5:31:f5:26:99:58:29:
                    05:b4:eb:0a:d8:3c:35:51:3a:c0:6f:e8:3a:c5:da:
                    c7:78:8c:03:b6:dc:b2:6e:4f:f6:1d:6f:6f:c8:aa:
                    7d:7f:e6:d8:bc:0d:b7:54:3a:3e:fe:85:02:a8:0b:
                    05:d8:09:fd:a0:be:62:0a:11:9b:4d:86:f4:da:ba:
                    20:ae:4e:17:3a:30:24:e7:8a:b8:43:05:ac:fb:33:
                    f2:29:9f:db:dd:c6:0a:4c:4b:f6:2b:dd:75:75:28:
                    a3:a1:55:28:3c:47:36:44:8b:22:ae:3a:3c:64:f0:
                    9c:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:C4:56:91:70:48:5C:36:54:8C:1C:C0:1C:FD:EF:EA:13:AF:02:E5
            X509v3 Authority Key Identifier:
                keyid:16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:8a:17:27:d0:cc:82:85:fb:96:44:45:a1:d8:7d:9f:69:a8:
         4d:31:66:65:96:b0:60:d2:20:fe:e0:7c:c8:7e:00:4c:8f:6c:
         e7:6c:d3:97:1f:8a:e2:e7:21:0d:7b:1b:b9:47:3b:0e:b7:b4:
         6e:a3:76:87:9d:39:ac:68:9a:fc:4a:05:d7:e0:e3:b8:8f:d4:
         eb:b3:5e:dc:65:56:85:7f:65:a4:0c:8b:06:49:28:a7:b0:58:
         a8:e7:28:ec:73:8c:9c:f2:b6:30:70:b4:05:5f:65:23:88:91:
         e2:2c:03:e0:11:ad:d2:00:1f:48:cf:78:6d:e8:ce:9b:43:e9:
         e1:3c:5c:50:76:79:29:5a:2d:b8:6b:39:37:c0:37:99:7a:26:
         68:c4:54:64:df:49:86:9c:74:d3:c7:15:f6:81:cc:31:32:16:
         88:13:23:66:d9:50:f6:88:91:eb:4f:63:6b:c4:3d:e4:97:84:
         54:6d:b9:2f:6d:79:e2:f4:a7:a3:b8:28:8e:34:bf:21:a1:93:
         ad:12:e6:9b:c8:30:75:c3:77:2d:db:44:bb:cd:98:b3:d7:bc:
         e7:94:b9:17:da:eb:03:4f:3d:49:50:cf:20:92:28:63:d0:b8:
         8c:b9:fa:b6:41:fc:ee:3a:a0:f7:dd:93:c4:93:0a:b1:32:76:
         1f:88:98:ee
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUFBAT5oGDZ1643sZnQHiIAqP1q8MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdB
MTBBMUUyMDAeFw0yNjA0MjkwNDA3MDJaFw0yNjA1MDIxMzI0MDJaMDMxMTAvBgNV
BAMTKDc2QzQ1NjkxNzA0ODVDMzY1NDhDMUNDMDFDRkRFRkVBMTNBRjAyRTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDuGhb4cqWvTY1VLalMCm8ek5x
z0MCeH9cvMIIk2HgD7vEs12Ucl6XboZd0AC4xkBFmctw+ZZmqnNdxkLgviHuOsvk
velpck9qof7yA5k/RWMQZXI3wbPWwEmElq2Ef2tPQWFhFID4CHUHIYETzA3ux4iN
de8f0NNoGD6vs98NAoj2xN5lQLuoTzcs48ZatTH1JplYKQW06wrYPDVROsBv6DrF
2sd4jAO23LJuT/Ydb2/Iqn1/5ti8DbdUOj7+hQKoCwXYCf2gvmIKEZtNhvTauiCu
Thc6MCTnirhDBaz7M/Ipn9vdxgpMS/Yr3XV1KKOhVSg8RzZEiyKuOjxk8JwXAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUdsRWkXBIXDZUjBzAHP3v6hOvAuUwHwYDVR0j
BBgwFoAUFpcSeuKI9MA1A+0O2PCb16EKHiAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
MjQ5ZDM4Ny03MGNmLTQwZTktODc1OS05Yjg2ZTBjNjUxMjgvMC8xNjk3MTI3QUUy
ODhGNEMwMzUwM0VEMEVEOEYwOUJEN0ExMEExRTIwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdBMTBB
MUUyMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTI0OWQzODctNzBjZi00MGU5LTg3
NTktOWI4NmUwYzY1MTI4LzAvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlC
RDdBMTBBMUUyMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBACiKFyfQzIKF+5ZERaHYfZ9pqE0xZmWWsGDS
IP7gfMh+AEyPbOds05cfiuLnIQ17G7lHOw63tG6jdoedOaxomvxKBdfg47iP1Ouz
XtxlVoV/ZaQMiwZJKKewWKjnKOxzjJzytjBwtAVfZSOIkeIsA+ARrdIAH0jPeG3o
zptD6eE8XFB2eSlaLbhrOTfAN5l6JmjEVGTfSYacdNPHFfaBzDEyFogTI2bZUPaI
ketPY2vEPeSXhFRtuS9teeL0p6O4KI40vyGhk60S5pvIMHXDdy3bRLvNmLPXvOeU
uRfa6wNPPUlQzyCSKGPQuIy5+rZB/O46oPfdk8STCrEydh+ImO4=
-----END CERTIFICATE-----