Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft
File:                     523EE387D3C00A87B7E355ABF1EE524AADF74148.mft (raw, json)
Hash identifier:          qloXQl85hLtdOJXWFQWU7xIGkM0UhiXm3b4u/IwJPwc=
Subject key identifier:   69:29:7B:96:E7:3E:B6:60:20:A5:9F:42:A4:68:FD:C0:FF:CF:7E:7F
Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48
Certificate issuer:       /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148
Certificate serial:       224116EF3FB4E0E9B4637D846379DBBEE316F896
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft
Manifest number:          056B
Signing time:             Mon 27 Apr 2026 23:21:06 +0000
Manifest this update:     Mon 27 Apr 2026 23:16:06 +0000
Manifest next update:     Fri 01 May 2026 09:26:06 +0000
Files and hashes:         1: 523EE387D3C00A87B7E355ABF1EE524AADF74148.crl (hash: kiZ9yRQXjQ60JLGkbrcxpFRjPjXnUD6cBcw1smJZ5kM=)
                          2: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (hash: 43ScMK1xGJHkc43OYqRAxNw2Nmb59FaJi1G0FFtsD2M=)
                          3: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (hash: Hl8MdE/LfLP9veWjqyALsJsbBZo/BnkTdZYuAxUUNAQ=)
                          4: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (hash: 5CQgZezG8X6Tkce8GGCztEMcPDF8UqBXxC4f+vxvm/U=)
                          5: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (hash: iUOhLSK71QoxS/WtDF2icd32d4ftR5T3bY2f32rlO8c=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            22:41:16:ef:3f:b4:e0:e9:b4:63:7d:84:63:79:db:be:e3:16:f8:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148
        Validity
            Not Before: Apr 27 23:16:06 2026 GMT
            Not After : May  1 09:26:06 2026 GMT
        Subject: CN=69297B96E73EB66020A59F42A468FDC0FFCF7E7F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:75:cb:d3:b6:6f:73:2b:71:54:a8:84:7d:ed:
                    c2:b2:9d:e0:cb:a7:9b:47:02:1f:4f:20:b5:01:23:
                    f0:bd:c2:c1:27:fc:26:90:11:84:d3:4e:1f:ec:24:
                    32:81:39:aa:92:ae:40:3d:66:35:a7:20:f2:c2:f7:
                    47:86:c7:d8:ad:50:65:28:1a:ef:fd:6f:6a:ef:74:
                    1b:af:29:e3:63:b9:93:f3:fc:23:53:e1:97:5d:49:
                    3e:8a:43:7d:2b:3c:e7:fe:c8:47:61:8c:50:1e:ed:
                    4e:97:af:51:04:fe:f9:a8:d4:18:d4:c7:71:c1:ac:
                    30:01:d8:c2:f2:6b:c8:90:e1:e2:22:34:0a:6e:48:
                    1f:0c:d4:69:9b:9c:ec:c2:12:20:54:ba:e7:5f:c6:
                    4a:b6:b2:7c:49:a2:8b:18:22:df:5d:c6:51:8f:74:
                    e6:32:4a:79:69:c2:db:5f:f8:16:79:6e:8c:17:19:
                    4b:61:2c:64:71:c9:6d:b8:eb:7a:7f:11:84:75:d2:
                    83:55:24:4a:3e:e4:3e:1d:11:01:16:7a:20:52:c2:
                    39:a9:dd:13:af:bf:33:51:ce:37:03:8f:08:dc:40:
                    9b:77:2c:a0:a9:f5:c5:7d:74:05:0e:dd:55:61:32:
                    50:c3:93:b7:ee:32:69:19:51:63:29:ea:e7:c3:fa:
                    52:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:29:7B:96:E7:3E:B6:60:20:A5:9F:42:A4:68:FD:C0:FF:CF:7E:7F
            X509v3 Authority Key Identifier:
                keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:b6:21:33:1c:67:93:99:58:d3:a9:05:8e:95:98:fa:32:da:
         96:21:c0:e1:ca:e0:dd:f9:de:aa:ac:17:9b:3e:44:38:e2:67:
         f4:5b:c1:31:f5:ea:0c:22:0a:fc:a4:7e:23:fc:3c:49:12:0b:
         0e:a7:f8:6c:e9:41:89:f3:d0:40:75:bc:1b:1c:fd:12:2a:6d:
         3d:44:79:e9:ca:73:f5:12:94:5f:4d:c5:30:f9:61:fe:fe:07:
         32:54:66:5f:b8:3c:4b:14:41:a3:90:8b:fe:40:37:6b:a9:f9:
         fd:9a:93:cb:66:cc:12:90:46:ab:20:cc:c4:0e:af:3e:28:8d:
         fe:27:f0:c5:5a:c2:04:33:a7:16:d5:4f:96:61:b3:9b:3f:7a:
         24:e0:4f:85:b2:90:c7:db:aa:5a:13:4f:77:40:a6:11:ed:b1:
         05:65:88:63:a5:8b:03:48:e6:b5:eb:4f:20:5e:ed:89:bb:4e:
         81:84:e6:bb:51:7b:04:2a:f2:0f:b6:81:5b:29:fb:37:c7:27:
         c0:09:94:19:6e:25:91:a2:9c:9f:a5:f9:d5:87:13:e0:e7:dd:
         dc:0e:47:ce:4b:78:79:d1:8f:6e:ab:ef:7c:a7:5b:4e:7a:1d:
         06:c3:3c:17:3a:81:e0:de:d2:2d:75:fa:37:e2:83:63:76:cb:
         61:11:60:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----