Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.mft
File:                     C7F5AA72DB870E161B62ACA9250AD98AA110A014.mft (raw, json)
Hash identifier:          gVFDQVTkvRS4PI22gIp+v9Yr8d2JmEho32PqQ13zO7c=
Subject key identifier:   B5:FA:BD:A4:4D:30:A1:EB:00:CD:C5:EE:63:22:F1:7B:1D:0E:8A:23
Authority key identifier: C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14
Certificate issuer:       /CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014
Certificate serial:       2227E4EF5A92942243720422FFA57F2D8F412D28
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.mft
Manifest number:          0305
Signing time:             Mon 27 Apr 2026 14:42:13 +0000
Manifest this update:     Mon 27 Apr 2026 14:37:13 +0000
Manifest next update:     Thu 30 Apr 2026 18:52:13 +0000
Files and hashes:         1: 3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa (hash: b6Ze1Cmi7h0UbgRWSKjWyOEXa3332OwZs4ZuR8D6lzY=)
                          2: 3130332e3230372e3233392e302f32342d3234203d3e20313338303936.roa (hash: oeYDG2ojbn2UU8RO5PDyI86B1bVuGfaVXnCJZIST5M8=)
                          3: C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl (hash: J5Vc1t22uBVbYlcgISuwbyyBp+LqOrBrukRvx5iWQjo=)
                          4: 3130332e3230372e3233362e302f32332d3234203d3e20313334363434.roa (hash: bAg6MsDstetOvzdA+3u3BpUGBWifQkKCKKizemY7LEk=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            22:27:e4:ef:5a:92:94:22:43:72:04:22:ff:a5:7f:2d:8f:41:2d:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014
        Validity
            Not Before: Apr 27 14:37:13 2026 GMT
            Not After : Apr 30 18:52:13 2026 GMT
        Subject: CN=B5FABDA44D30A1EB00CDC5EE6322F17B1D0E8A23
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:f7:aa:78:7d:48:e6:10:72:87:88:3c:d8:04:
                    a5:62:e4:21:19:82:23:79:3f:f9:7c:f7:41:df:92:
                    d9:80:4c:6c:25:cb:0a:dd:7f:3f:a3:e7:db:38:fd:
                    d6:d7:d8:c8:5c:1f:77:8e:6c:dc:e1:50:1b:37:84:
                    95:40:f2:a2:ca:48:4f:17:19:02:e1:fd:f3:e5:7a:
                    0a:f3:30:52:9a:22:4d:e4:75:99:2a:59:03:66:de:
                    cd:cc:87:68:fc:48:6b:51:24:e2:11:19:e2:7f:b6:
                    62:8e:bd:4e:ab:d1:a3:94:8e:bc:60:2a:34:d8:70:
                    5f:02:cd:6a:a6:d4:ec:a4:68:73:0a:a7:f0:58:74:
                    4e:64:81:9c:47:6d:f3:7d:20:ca:ae:1b:5e:14:61:
                    5f:a2:85:4c:be:df:ef:81:fa:19:3b:b7:c4:6f:13:
                    fc:ac:1f:77:b3:d7:7b:3b:55:b7:f3:92:44:8a:52:
                    b4:ac:90:e3:cd:72:b1:8f:bd:35:5b:b3:6d:44:f6:
                    f3:cf:01:fe:4f:0c:c0:c6:5e:c4:10:63:63:97:7b:
                    19:00:81:2e:d3:d4:90:06:9b:29:8c:be:2d:19:7e:
                    ee:f7:f8:50:85:01:ec:1f:aa:9c:47:5c:b6:b4:a4:
                    09:40:54:6b:42:2b:f2:55:3a:10:b8:f8:10:89:f3:
                    e0:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:FA:BD:A4:4D:30:A1:EB:00:CD:C5:EE:63:22:F1:7B:1D:0E:8A:23
            X509v3 Authority Key Identifier:
                keyid:C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:b8:dd:7b:2b:b3:5b:b5:b9:c9:bd:b8:0a:cb:77:3d:41:cc:
         04:ba:b4:fa:7e:a4:ef:97:7c:b0:61:e1:14:b3:16:74:a8:be:
         21:8c:2b:3c:b7:17:05:99:89:ea:3b:c6:45:92:5b:0a:62:9f:
         c8:d3:49:d5:41:a1:c4:2c:0b:f5:7b:a8:05:b1:dd:a2:be:b4:
         7d:63:dd:77:a8:83:de:ae:1c:c1:53:11:de:87:11:97:d3:02:
         26:61:b2:99:e6:ae:2c:f7:1c:eb:d2:9d:d9:b4:ed:8f:61:3f:
         60:02:dc:0d:a0:e5:7d:83:a9:5a:e3:58:e2:08:0f:d3:8d:c9:
         49:39:57:95:60:33:17:ca:25:81:c9:49:ea:20:a5:4f:02:3e:
         f1:ff:e1:6b:e0:bf:2e:55:88:3d:53:9b:78:f2:04:da:ba:4f:
         5a:f9:db:22:b4:8e:ed:22:a1:24:8c:a2:85:f1:70:a5:06:bf:
         d8:7a:91:8d:5e:1e:b7:ec:04:e3:97:48:0c:73:5e:b7:2f:ab:
         ad:3a:aa:6d:97:2c:a6:48:48:01:c0:b7:32:7c:29:b8:93:90:
         a5:1d:57:6a:a1:83:53:a2:a6:ba:4f:9d:a1:de:f5:58:cb:e7:
         df:2f:da:ff:dd:7d:9c:f5:57:62:de:dc:73:ad:8b:a8:ff:05:
         c8:8c:2a:59
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUIifk71qSlCJDcgQi/6V/LY9BLSgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFB
MTEwQTAxNDAeFw0yNjA0MjcxNDM3MTNaFw0yNjA0MzAxODUyMTNaMDMxMTAvBgNV
BAMTKEI1RkFCREE0NEQzMEExRUIwMENEQzVFRTYzMjJGMTdCMUQwRThBMjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC996p4fUjmEHKHiDzYBKVi5CEZ
giN5P/l890HfktmATGwlywrdfz+j59s4/dbX2MhcH3eObNzhUBs3hJVA8qLKSE8X
GQLh/fPlegrzMFKaIk3kdZkqWQNm3s3Mh2j8SGtRJOIRGeJ/tmKOvU6r0aOUjrxg
KjTYcF8CzWqm1OykaHMKp/BYdE5kgZxHbfN9IMquG14UYV+ihUy+3++B+hk7t8Rv
E/ysH3ez13s7VbfzkkSKUrSskOPNcrGPvTVbs21E9vPPAf5PDMDGXsQQY2OXexkA
gS7T1JAGmymMvi0Zfu73+FCFAewfqpxHXLa0pAlAVGtCK/JVOhC4+BCJ8+CZAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUtfq9pE0woesAzcXuYyLxex0OiiMwHwYDVR0j
BBgwFoAUx/WqctuHDhYbYqypJQrZiqEQoBQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YjBlN2Y4ZS1jMjlmLTRlNmItYWQwYS05OTU3ZmJkNTY5NTMvMC9DN0Y1QUE3MkRC
ODcwRTE2MUI2MkFDQTkyNTBBRDk4QUExMTBBMDE0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFBMTEw
QTAxNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGIwZTdmOGUtYzI5Zi00ZTZiLWFk
MGEtOTk1N2ZiZDU2OTUzLzAvQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5
OEFBMTEwQTAxNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBADe43Xsrs1u1ucm9uArLdz1BzAS6tPp+pO+X
fLBh4RSzFnSoviGMKzy3FwWZieo7xkWSWwpin8jTSdVBocQsC/V7qAWx3aK+tH1j
3Xeog96uHMFTEd6HEZfTAiZhspnmriz3HOvSndm07Y9hP2AC3A2g5X2DqVrjWOII
D9ONyUk5V5VgMxfKJYHJSeogpU8CPvH/4Wvgvy5ViD1Tm3jyBNq6T1r52yK0ju0i
oSSMooXxcKUGv9h6kY1eHrfsBOOXSAxzXrcvq606qm2XLKZISAHAtzJ8KbiTkKUd
V2qhg1OiprpPnaHe9VjL598v2v/dfZz1V2Le3HOti6j/BciMKlk=
-----END CERTIFICATE-----