Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft
File:                     2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft (raw, json)
Hash identifier:          qsSb/+hqUo4KEf9nThCb3UyNklmTiA4shVh0QB5DfFc=
Subject key identifier:   E5:7C:C5:1F:23:11:1B:3D:80:4D:C1:D4:FE:64:9C:F5:0E:9A:0A:ED
Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD
Certificate issuer:       /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD
Certificate serial:       61277EC35E17AD845246FCAD28D62349B9BE7A3A
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft
Manifest number:          0541
Signing time:             Tue 28 Apr 2026 10:52:20 +0000
Manifest this update:     Tue 28 Apr 2026 10:47:20 +0000
Manifest next update:     Fri 01 May 2026 18:09:20 +0000
Files and hashes:         1: 3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa (hash: pAsXLpsnvtFY9CiLQfO4MgBTQXdXjfq9fjmjjZL7V7Y=)
                          2: 2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl (hash: uxlEobPCLMs3lB4DBtuU72Debgx7T8SYeyMo77xQKP8=)
                          3: 323430323a363938303a323030303a3a2f34382d3438203d3e203539323738.roa (hash: D6GCo3ceVvJhAX1b+afxEUHTBD9rmTcpfSp7SCURViA=)
                          4: 323430323a363938303a3a2f33322d3438203d3e203539323738.roa (hash: KRbdEJvKURW+VgG7P6m8/xbRP6/xVRqHAh+GE/ZxmJg=)
                          5: 3130332e35382e3136302e302f32322d3234203d3e203539323738.roa (hash: 3p6KpA6/uKsXu1iiVTHxP1H1aKBvRxURT7LJ3HzRuNw=)
                          6: 323430323a363938303a313030303a3a2f34382d3438203d3e203539323738.roa (hash: Cf4F1dHsLMAEwRXj/sLvggNAyN9aUktmarNyz8vl8uk=)
                          7: 323430323a363938303a333030303a3a2f34382d3438203d3e203539323738.roa (hash: 1MuWl4R2LfAc9czxG6/QjtCE9g5QKK5BETiXC4FMLHs=)
                          8: 323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa (hash: LrRa5/YbMQIirnwavEqQmjlSXIv4GPDAL8XSH/RPz2k=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            61:27:7e:c3:5e:17:ad:84:52:46:fc:ad:28:d6:23:49:b9:be:7a:3a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD
        Validity
            Not Before: Apr 28 10:47:20 2026 GMT
            Not After : May  1 18:09:20 2026 GMT
        Subject: CN=E57CC51F23111B3D804DC1D4FE649CF50E9A0AED
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:cc:a0:ab:5f:5c:44:1a:70:26:ff:0c:ca:3b:
                    d6:a3:a3:40:73:be:7c:03:af:42:23:c9:7a:38:58:
                    e8:65:b3:4a:e0:82:18:b6:b8:e9:96:fe:d9:22:fd:
                    f6:9a:0f:ad:0f:49:6d:dc:47:e1:6a:e4:50:cd:cc:
                    80:70:f5:7f:40:82:20:dc:bc:2d:75:71:08:76:71:
                    33:e3:13:d1:2c:dd:ac:c3:90:f8:75:2e:39:96:c2:
                    2a:6f:f7:ad:c7:e7:a3:8d:f0:0a:d1:0c:bb:5e:d7:
                    1c:9b:05:45:7d:6b:32:c9:2c:2f:c9:01:b9:08:93:
                    dc:74:f4:3d:4e:ba:e5:af:ce:ea:e4:2e:20:a8:81:
                    46:97:6c:0c:f1:3f:a4:1e:f2:f5:b5:f6:af:8f:51:
                    b9:68:e6:84:23:ae:66:83:3a:0c:aa:2e:7d:62:33:
                    cb:b8:ea:bb:2d:dc:e9:69:b5:ca:ed:f8:ef:b3:c9:
                    b8:42:1d:e8:f6:2b:dd:0a:b5:0a:c5:c9:e7:11:61:
                    5f:17:e4:55:38:d2:d1:1e:0c:9b:8b:07:db:3a:e1:
                    78:0d:58:b1:c8:43:be:38:aa:21:93:1b:68:9a:b8:
                    43:d3:79:b7:54:68:2a:74:22:c1:77:38:83:41:67:
                    c0:98:52:a6:30:2c:5b:40:07:b9:2d:33:a3:c0:33:
                    de:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:7C:C5:1F:23:11:1B:3D:80:4D:C1:D4:FE:64:9C:F5:0E:9A:0A:ED
            X509v3 Authority Key Identifier:
                keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:72:17:dc:9d:b5:c8:8c:4f:38:a6:ea:31:48:59:82:52:61:
         19:4f:db:1c:79:d2:a6:1e:7a:c9:94:f9:21:79:73:15:b1:8a:
         cc:81:5d:53:94:fa:0b:0d:ba:61:a4:2a:06:30:23:32:1d:f4:
         f9:a3:a5:7e:75:37:06:14:1e:22:62:f5:6d:7b:5d:2e:ec:af:
         fe:98:59:13:d2:5e:ca:57:51:da:a9:b5:c5:3c:f8:f6:d2:24:
         f9:c8:cf:79:3e:87:a9:34:1c:30:42:8e:33:13:73:71:37:2f:
         42:d0:04:25:38:15:86:44:f0:6b:6d:56:be:83:d1:f5:5c:5e:
         49:78:a1:1f:4f:c9:12:34:0c:8b:15:38:45:91:58:8c:22:b4:
         ee:a4:1c:74:4d:e1:a0:3f:76:ac:45:23:87:80:1f:df:8b:85:
         60:da:ec:bf:91:ed:57:18:66:89:e5:a9:48:76:1a:01:3d:f8:
         3d:cd:52:de:ef:82:b6:b9:d2:46:11:06:bc:ab:79:5c:d0:4d:
         1b:ff:9c:33:ae:78:4f:86:19:ad:ce:b1:60:7b:77:ff:73:5e:
         f3:b3:f6:57:42:0d:e6:c6:6e:b4:2a:9d:db:8e:e1:67:75:7f:
         9d:37:2d:aa:f4:e6:e6:43:d1:ce:2f:35:8c:e9:4e:09:2f:b8:
         fb:72:df:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----