Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft
File: 71054E3C02E22D607A90FACC4DE7369B65367EBD.mft (raw, json)
Hash identifier: JH5pLwMpxKW2KMzq8TZnfz8ZeLKEPEy066f5UNbB2no=
Subject key identifier: 9A:A8:E1:8B:F7:76:E7:4E:1D:12:6E:71:41:92:E9:D8:F8:67:18:7B
Authority key identifier: 71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD
Certificate issuer: /CN=71054E3C02E22D607A90FACC4DE7369B65367EBD
Certificate serial: 11708EC9813ABE4B4A9581614A59DB70FA55EEAF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft
Manifest number: 01CA
Signing time: Wed 29 Apr 2026 09:20:55 +0000
Manifest this update: Wed 29 Apr 2026 09:15:55 +0000
Manifest next update: Sat 02 May 2026 18:38:55 +0000
Files and hashes: 1: 71054E3C02E22D607A90FACC4DE7369B65367EBD.crl (hash: Va672oRsBRL54EYLCAuwQqwGFM1XpyJAhq2yF+sHPfQ=)
2: 3130332e32392e31302e302f32332d3233203d3e20313431303634.roa (hash: ox/jPDjPCSM2yBDuW5lKFEBzvZUEEtg9kdQcbRM/Nsc=)
3: 3130332e32392e31302e302f32342d3234203d3e20313431303634.roa (hash: g42xSqBdbww2iHC490qUVGv715w1+ed6Uwshy2/cUBk=)
4: 3130332e32392e31312e302f32342d3234203d3e20313431303634.roa (hash: 7ZuQrAyTpSXLw2zTTFdrCC17EZNzNmUBwi/56OEgq84=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:70:8e:c9:81:3a:be:4b:4a:95:81:61:4a:59:db:70:fa:55:ee:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71054E3C02E22D607A90FACC4DE7369B65367EBD
Validity
Not Before: Apr 29 09:15:55 2026 GMT
Not After : May 2 18:38:55 2026 GMT
Subject: CN=9AA8E18BF776E74E1D126E714192E9D8F867187B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f1:1e:c2:7b:2c:d5:19:a9:dd:ef:13:ed:f2:
d2:c3:ec:e4:c5:51:15:86:89:eb:bf:cd:48:f1:94:
06:73:4e:d0:b6:4d:6b:d4:ad:8c:57:2e:2a:f3:4e:
e5:35:7f:b5:5c:31:d0:e4:d9:a9:c9:38:58:26:9f:
c7:98:b4:49:32:0f:78:10:75:c8:51:4f:5d:54:e3:
a4:ce:be:fe:f0:1a:44:d7:3e:89:fb:37:b3:55:f7:
f2:98:4b:cb:95:27:c1:c3:db:fc:08:51:13:83:85:
5d:5c:e0:5e:3c:25:96:04:37:c7:16:51:e2:92:0e:
56:ac:b5:09:84:fb:19:ad:5e:d5:63:73:10:ec:aa:
96:3c:80:54:58:40:eb:74:2c:dd:4a:ed:49:52:be:
7a:94:26:c9:99:88:64:79:89:cb:f9:e9:f5:af:eb:
9e:58:96:87:63:00:5e:c8:8d:1a:44:ac:6e:9e:f7:
86:28:f6:5e:c9:e9:71:97:68:96:f6:1d:c5:62:d3:
a4:bd:3c:a8:cf:09:e9:8f:20:1b:fd:ff:b3:f9:a9:
07:7a:d0:e9:96:f6:4b:88:a9:7e:5e:0d:d8:30:ec:
dc:f8:a9:8e:be:7b:db:53:02:fa:22:95:93:4d:37:
a7:76:ab:de:36:90:63:f6:8a:15:68:1b:ed:e9:65:
f0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A8:E1:8B:F7:76:E7:4E:1D:12:6E:71:41:92:E9:D8:F8:67:18:7B
X509v3 Authority Key Identifier:
keyid:71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:12:89:e1:ae:d8:fa:3b:bd:89:75:5e:9c:df:b3:b3:19:b0:
36:96:40:f4:c1:43:a4:19:1f:3c:74:e3:7e:03:7e:c8:46:2e:
c9:45:e1:33:63:ac:a1:79:a6:4f:9c:22:2a:d1:86:13:82:ba:
87:b2:bb:78:b1:d5:82:76:c5:ec:fc:7f:a3:b9:09:b2:7d:d5:
a0:05:b0:00:ca:4e:7d:55:0d:3e:0a:32:aa:e6:c7:6a:0a:50:
ea:a1:a1:57:a3:24:2c:3f:0d:6f:10:44:81:89:48:06:79:22:
27:e0:6d:18:dd:ef:80:1e:4d:be:15:95:3d:39:ec:d4:6a:8f:
06:22:34:95:c5:72:8d:6c:88:bc:91:dc:28:fa:ef:6b:ff:ba:
6a:04:3a:4b:dd:70:da:59:aa:3b:20:c8:f9:3f:ec:8e:bc:f5:
ec:8f:75:c8:de:23:74:2f:0b:7f:89:c0:c6:21:62:69:01:b1:
b7:fd:5d:5a:b5:88:b7:35:24:4e:e2:65:ee:5a:67:d4:d4:e9:
6a:9b:3e:94:f7:3c:76:5b:01:4b:96:ba:1b:c1:22:1d:72:42:
6d:20:7f:fb:2c:b0:72:e0:48:e4:0b:40:aa:50:5e:0c:c0:49:
8c:af:57:07:4c:0c:06:1f:f1:2d:fb:c2:8d:22:33:68:3a:54:
15:55:b9:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 03:15:38 2026 by rpki-client