Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/a72bb871-018d-4d21-9913-fc946c38794f/0/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.mft
File: 40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.mft (raw, json)
Hash identifier: Kpy+4T6Ca8IbECzbu0HeWKRAViVeBiR9g/l8dtdKZno=
Subject key identifier: 18:57:DC:66:8E:73:B4:01:E2:3A:60:8B:7B:B7:69:64:EC:41:AB:4F
Authority key identifier: 40:B2:84:02:A8:91:E6:B3:4E:B9:A2:F6:AF:76:CB:17:DA:9B:00:3A
Certificate issuer: /CN=40B28402A891E6B34EB9A2F6AF76CB17DA9B003A
Certificate serial: 240017E070000A5A57345932B07166F8456163A9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a72bb871-018d-4d21-9913-fc946c38794f/0/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.mft
Manifest number: 0252
Signing time: Mon 27 Apr 2026 22:52:13 +0000
Manifest this update: Mon 27 Apr 2026 22:47:13 +0000
Manifest next update: Fri 01 May 2026 01:58:13 +0000
Files and hashes: 1: 40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.crl (hash: I1gfGz92WmrI+NEz+Oof1IE9Eb2J1NL8vDCIgFydWjY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:00:17:e0:70:00:0a:5a:57:34:59:32:b0:71:66:f8:45:61:63:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40B28402A891E6B34EB9A2F6AF76CB17DA9B003A
Validity
Not Before: Apr 27 22:47:13 2026 GMT
Not After : May 1 01:58:13 2026 GMT
Subject: CN=1857DC668E73B401E23A608B7BB76964EC41AB4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:86:a3:6c:03:62:50:5b:30:bc:a2:a2:40:d2:
73:a8:5e:b2:70:92:e7:1a:bc:88:01:49:63:23:ed:
f7:6f:9b:f5:01:6d:07:0c:48:17:42:3a:74:7a:64:
91:19:a9:1b:ca:53:3b:d8:28:59:c7:b2:fb:22:a0:
de:ce:af:62:0d:13:eb:bc:54:c2:3a:3b:95:42:54:
08:08:f6:d5:58:28:07:70:50:6b:0d:11:c8:d3:1a:
3c:ea:34:d2:54:b8:ae:e4:ca:27:78:3d:84:1d:f2:
00:7b:bf:f4:4a:2d:67:e0:6e:6f:b4:fb:07:42:6c:
ba:12:65:ef:0b:52:d2:61:71:5e:b6:78:40:74:37:
9e:6d:f7:29:20:06:1f:45:44:27:2c:ca:e6:6a:44:
47:82:75:f2:3c:fb:10:2d:33:84:89:af:4b:dc:75:
37:1b:02:30:cd:b2:75:0f:1e:02:41:65:8f:6c:27:
b8:7d:bd:1a:7c:ba:b2:6e:19:5f:a2:7f:d4:3a:92:
b1:20:3a:b6:47:92:9f:89:7c:59:7f:ef:eb:fd:21:
5e:b0:ab:d3:19:b1:e6:22:85:3c:57:8d:66:4a:fa:
e4:e9:d9:2a:cf:12:f1:37:ac:54:5f:32:63:85:44:
93:25:65:90:61:e3:04:3f:01:f5:40:b6:d2:93:08:
33:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:57:DC:66:8E:73:B4:01:E2:3A:60:8B:7B:B7:69:64:EC:41:AB:4F
X509v3 Authority Key Identifier:
keyid:40:B2:84:02:A8:91:E6:B3:4E:B9:A2:F6:AF:76:CB:17:DA:9B:00:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a72bb871-018d-4d21-9913-fc946c38794f/0/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a72bb871-018d-4d21-9913-fc946c38794f/0/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:dc:4e:73:50:e9:41:e2:fb:e3:0b:39:4a:ca:a9:a0:d3:38:
11:af:c5:32:73:e8:42:28:25:a9:38:f1:55:f0:46:2b:28:f0:
bd:38:0a:49:d2:d3:e2:1a:e6:b0:1c:c2:ee:cc:44:b7:35:8b:
f0:74:19:54:03:39:04:7f:8b:b0:8f:0d:be:0b:0b:73:3a:6c:
be:e8:a9:36:5f:ac:5e:1b:c4:91:65:fc:48:54:cc:6e:ec:41:
f6:f4:53:cb:65:09:ac:c2:36:95:15:42:2c:86:7e:d5:ab:b7:
af:13:87:70:8d:0e:b0:4a:f7:6c:5b:88:08:6b:82:d4:43:52:
b6:9d:c0:f3:71:e0:60:d8:e3:d2:09:2d:eb:4e:0e:c9:da:eb:
6a:fa:49:95:63:ec:a0:7f:29:f0:95:16:fe:ba:33:59:b3:69:
ba:46:48:9e:6f:d1:41:0a:de:f5:0a:eb:49:3e:72:b7:e1:fc:
42:50:7c:ec:6c:85:69:fd:45:67:04:bf:8a:aa:0d:f6:29:9e:
05:20:01:9b:c8:50:45:9c:8c:fc:6e:3f:93:49:b2:90:5c:72:
d4:9a:92:65:48:fb:3a:96:24:e6:10:75:16:b9:f0:99:bd:cd:
26:55:2a:6a:ae:ed:6d:b2:fe:f1:40:5d:4a:bf:9a:ba:07:18:
af:d3:a9:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 03:38:29 2026 by rpki-client