Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft
File:                     CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft (raw, json)
Hash identifier:          pVpNyNKVHyWUwSsQR+5nBzxSApWfTGQHJvvwRLKMisM=
Subject key identifier:   E7:6A:9F:42:83:58:00:60:3C:2C:7A:01:B0:A5:D0:FD:8A:D9:A9:A6
Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C
Certificate issuer:       /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C
Certificate serial:       7BC27C90EC992F2E46F0B1B1C37719655EF79B8B
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft
Manifest number:          056D
Signing time:             Tue 28 Apr 2026 19:12:58 +0000
Manifest this update:     Tue 28 Apr 2026 19:07:58 +0000
Manifest next update:     Sat 02 May 2026 04:03:58 +0000
Files and hashes:         1: 323430333a353763303a3a2f33322d3438203d3e20313333383135.roa (hash: qJMxf0aJqdHPfbLPNvUiMxKhq3U6DmyX3ZCQXdLa44w=)
                          2: CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl (hash: RGtWnVR7JaAD7Ffl4nW+TiiIhq4lWsQHWgc4Tzkd5aE=)
                          3: 3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa (hash: gDwS3CZNot9PKNbXfgVaxRg3XKEAojqRRjZmWUnIieM=)
                          4: 323430333a626163303a3a2f33322d3438203d3e20313333383135.roa (hash: bj03wSoaB1PZHhqBBV4Wr4Sjs0onXCgWYauPl2mcWtw=)
                          5: 3130332e35322e34342e302f32322d3234203d3e20313333383135.roa (hash: +hHtMHqrRgOxnxPgQ1JDtVaqmRcnzLdlLvloLKvOcZA=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7b:c2:7c:90:ec:99:2f:2e:46:f0:b1:b1:c3:77:19:65:5e:f7:9b:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C
        Validity
            Not Before: Apr 28 19:07:58 2026 GMT
            Not After : May  2 04:03:58 2026 GMT
        Subject: CN=E76A9F42835800603C2C7A01B0A5D0FD8AD9A9A6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:ac:5a:58:18:b8:de:0a:80:fc:da:19:2d:90:
                    25:21:2e:ad:bc:86:49:5a:b1:0f:6e:52:81:bc:20:
                    3d:3d:2a:32:69:62:5a:33:87:4c:9d:65:e5:cd:a5:
                    4b:bc:f2:46:26:0e:c8:49:84:5c:5a:d7:00:2c:95:
                    95:b9:73:8f:62:ae:87:a4:18:ce:d9:e3:04:0c:da:
                    2c:72:eb:e4:d3:2c:9b:85:95:fe:3f:d0:9d:4f:b4:
                    ba:00:c6:f3:ed:7a:cf:79:cb:74:74:02:62:c8:ca:
                    44:fd:4a:40:5c:cf:fa:ce:65:96:11:07:b4:97:fe:
                    1e:67:f0:50:5a:9e:86:43:58:26:32:83:69:5c:d6:
                    81:b6:f4:ae:e9:7c:35:83:8f:3a:b2:e7:cb:7d:50:
                    3e:3d:fb:17:11:56:39:95:7d:e8:b7:2d:94:c3:a1:
                    6e:70:0a:cc:9e:b2:c5:cc:59:f2:62:ef:44:d7:61:
                    9b:54:5f:b2:9e:a2:4f:df:1f:0b:38:aa:c0:16:6f:
                    62:5e:3c:bf:51:ba:d9:fe:08:e8:a3:cc:ce:3a:cd:
                    a1:3f:4e:d4:21:6b:a1:df:cb:bd:89:2e:2a:b5:6d:
                    29:e1:0b:2d:90:28:af:5a:8e:27:88:7a:a2:5e:76:
                    d1:5c:51:95:c9:bc:0a:92:ac:4e:e8:c3:20:c7:e7:
                    71:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:6A:9F:42:83:58:00:60:3C:2C:7A:01:B0:A5:D0:FD:8A:D9:A9:A6
            X509v3 Authority Key Identifier:
                keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:86:d0:07:f9:75:a6:a5:84:01:3a:36:ba:42:ca:5d:ec:67:
         f7:1e:ff:7b:62:8c:a7:a4:ac:26:e3:71:5f:a0:57:0e:6b:4a:
         55:9b:24:25:37:b5:4f:fe:de:01:76:5d:5e:7a:e2:23:99:74:
         38:fb:bb:9f:3d:f0:01:97:aa:87:a3:d6:8e:a6:1a:f7:d9:07:
         45:91:ec:07:d8:f2:d6:fa:fb:e9:ea:99:c1:9a:95:54:6b:fe:
         e2:51:db:0c:57:a6:c5:8c:1f:08:29:8c:cc:9e:1a:b1:b2:28:
         30:87:46:0f:ac:65:79:ab:49:8b:77:00:4b:84:27:7d:63:33:
         d1:08:7b:86:85:b8:7f:da:08:bd:ac:c2:a6:26:71:91:c1:16:
         e6:e3:c8:03:60:fd:cd:28:f3:b0:d9:11:6e:7c:52:5a:52:2e:
         3d:49:a6:5f:46:a7:46:63:36:41:ba:d6:f3:80:99:4e:73:3f:
         67:d6:ea:2d:62:63:ad:a2:03:c1:bc:a3:24:db:fe:ef:37:20:
         ca:61:03:38:3d:6a:cc:b6:3a:04:7b:fe:69:a0:95:fe:5a:3b:
         91:83:f9:9c:b8:93:18:0b:ab:de:42:61:a7:24:a5:50:0d:ef:
         a7:e7:37:16:0e:e2:51:36:f7:ee:82:20:9a:dd:65:f4:15:92:
         23:b8:ee:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----