Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft
File:                     68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft (raw, json)
Hash identifier:          Es/snbm8xgO0UdZWVwQOPHmHAc7aXHs2BQhnCngS81A=
Subject key identifier:   3F:53:44:3F:1F:CD:5F:AF:0A:08:47:54:FC:E7:F9:03:F9:8B:8E:F2
Authority key identifier: 68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8
Certificate issuer:       /CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8
Certificate serial:       394EA28CEF433E23CFBB280C558193145FD758A3
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft
Manifest number:          04D3
Signing time:             Mon 27 Apr 2026 22:11:09 +0000
Manifest this update:     Mon 27 Apr 2026 22:06:09 +0000
Manifest next update:     Thu 30 Apr 2026 23:01:09 +0000
Files and hashes:         1: 3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa (hash: LmeqzYeHbwqjRvKuIbroVaXCpVEz8bLJBtycTcCFJu4=)
                          2: 3130332e3136312e3131312e302f32342d3234203d3e20313431363135.roa (hash: g4MCHQFO3MQThoyM2TjwQb6nRcwAjTBYmahYDBr6bho=)
                          3: 68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl (hash: LMbiGMEoElbHgnvldMZWNOuiYi+6UnaserOX4s8svJ0=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            39:4e:a2:8c:ef:43:3e:23:cf:bb:28:0c:55:81:93:14:5f:d7:58:a3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8
        Validity
            Not Before: Apr 27 22:06:09 2026 GMT
            Not After : Apr 30 23:01:09 2026 GMT
        Subject: CN=3F53443F1FCD5FAF0A084754FCE7F903F98B8EF2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f2:76:24:9d:c2:04:93:ab:10:83:2a:dd:3d:12:
                    94:d6:b2:19:a5:78:42:73:be:15:76:d2:e9:80:9d:
                    52:ba:58:9b:86:ca:a2:82:3c:ee:39:73:95:ed:fd:
                    44:9b:03:fa:71:3f:91:bb:19:c5:70:de:dc:ec:1a:
                    d6:1c:5e:4f:8e:69:9a:09:89:2e:41:69:64:e3:ef:
                    09:73:6d:f9:c0:3d:8d:01:01:87:f8:f8:08:c4:9e:
                    00:83:d6:b7:e1:87:3e:87:a2:b9:84:d1:0a:38:ea:
                    b3:60:02:bf:ee:15:27:6a:ed:d5:a2:ca:38:da:a4:
                    b9:31:25:ab:08:ec:d6:b7:e7:66:08:e1:d8:57:17:
                    91:9b:62:e4:6f:20:ab:36:42:6a:0f:1d:ad:f7:1e:
                    bd:d4:3b:69:8a:cf:53:17:59:4d:97:01:a4:57:4f:
                    a2:3d:40:16:17:ae:96:57:03:be:25:1b:73:71:37:
                    83:a2:f0:ed:5b:d1:2d:9c:9e:be:b6:fe:dd:e4:66:
                    4d:65:4e:51:5c:c4:92:97:74:e3:50:0f:0a:0b:14:
                    af:69:66:0f:33:86:e2:94:8e:25:3c:e1:7c:91:54:
                    7b:29:e3:61:cf:04:73:cf:90:7b:68:b7:21:f7:57:
                    e0:ee:40:eb:e8:4a:77:37:91:56:d3:fd:6c:4c:4e:
                    55:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:53:44:3F:1F:CD:5F:AF:0A:08:47:54:FC:E7:F9:03:F9:8B:8E:F2
            X509v3 Authority Key Identifier:
                keyid:68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:98:a3:6b:dd:35:1b:31:09:98:5b:4d:c1:2f:c6:b4:a9:30:
         30:a1:06:01:dd:f0:04:38:8d:c8:5f:50:6c:e8:4b:b2:9a:3c:
         3c:8b:fd:97:8b:07:eb:ce:59:05:91:88:72:af:8b:e9:1d:c3:
         40:46:df:5e:70:89:bf:d0:c8:45:e0:99:47:7a:89:d0:ed:20:
         23:6b:9a:3d:f3:7c:62:e4:1e:2a:68:db:59:4b:60:70:e8:e4:
         a5:43:0e:f6:50:dd:43:71:a5:18:34:b7:18:f0:8b:70:5c:c9:
         c1:17:6e:ae:9d:52:cf:6d:8c:dd:00:6d:51:8f:fe:68:1d:8d:
         e6:8f:12:14:be:90:b1:b8:47:02:6f:1a:24:cc:9c:a6:09:71:
         93:4c:2a:58:28:55:70:1d:11:a5:95:7b:86:e5:10:68:4c:ee:
         df:39:fd:31:a7:ad:e7:a0:df:b6:93:50:4e:20:55:a6:18:22:
         ef:cb:b7:2b:b5:0c:a3:fd:a3:a2:df:e6:1b:bb:39:31:af:18:
         4a:ad:29:5e:33:0b:e8:67:0a:c9:21:44:ab:b7:fb:39:6a:16:
         e2:81:70:f4:2e:6b:fc:5e:e6:3e:12:b3:14:7d:66:ac:47:46:
         c7:5b:88:c6:17:d5:b5:ae:e9:8e:e7:cf:a0:13:5e:75:20:50:
         b5:d9:50:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----