Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft
File:                     5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft (raw, json)
Hash identifier:          8xEhEsZXxeqVFlktEZfTi32aL/IB/Aj1O+p+QYzPr9c=
Subject key identifier:   46:5E:F8:10:51:60:DE:BB:06:FC:B6:07:DE:30:18:C1:42:93:A1:69
Authority key identifier: 5A:40:FD:19:E2:DD:53:80:CB:6E:50:2F:16:DB:22:2F:90:89:55:2B
Certificate issuer:       /CN=5A40FD19E2DD5380CB6E502F16DB222F9089552B
Certificate serial:       129A1B1B5FE446D6DB5132C67683909C528A405F
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A40FD19E2DD5380CB6E502F16DB222F9089552B.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft
Manifest number:          0299
Signing time:             Wed 29 Apr 2026 03:22:40 +0000
Manifest this update:     Wed 29 Apr 2026 03:17:40 +0000
Manifest next update:     Sat 02 May 2026 09:54:40 +0000
Files and hashes:         1: 3130332e3138342e31392e302f32342d3234203d3e20313439363735.roa (hash: rC9zDsuuHrRHxm490P5sveoMq6dVJ3UnsdtYS7hgs/E=)
                          2: 5A40FD19E2DD5380CB6E502F16DB222F9089552B.crl (hash: t3rELmNkZjZ/l+tW8/UC4Q4sECqBMCO84VtxsJNCRRc=)
                          3: 3130332e3138342e31382e302f32332d3233203d3e20313439363735.roa (hash: LeeGwZNg1xeTEHyLpyP7xbBZEKxpkxbvCL0BfojuuRU=)
                          4: 3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa (hash: oPdKvuSaVZv8alsSE2ACZ+vyXVDRBNBm8/f/QuNBFZU=)
                          5: 3130332e3138342e31382e302f32342d3234203d3e203438343635.roa (hash: 0IGopCvXSRXbCg3kz6wjCn1/1Kczl4zkhji2/R4GIz4=)
                          6: 3130332e3138342e31392e302f32342d3234203d3e203438343635.roa (hash: QzihEc5MkFa7NqybYwRpohd7XvTO9rPruJzvUalzVM8=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            12:9a:1b:1b:5f:e4:46:d6:db:51:32:c6:76:83:90:9c:52:8a:40:5f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5A40FD19E2DD5380CB6E502F16DB222F9089552B
        Validity
            Not Before: Apr 29 03:17:40 2026 GMT
            Not After : May  2 09:54:40 2026 GMT
        Subject: CN=465EF8105160DEBB06FCB607DE3018C14293A169
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:81:08:14:e0:3b:e0:b6:6f:55:70:43:31:86:
                    18:3f:3d:6b:5c:88:14:77:46:b5:a8:d3:09:7b:6b:
                    e2:16:70:97:9e:04:a7:57:1c:bd:60:3d:13:6e:59:
                    da:e0:a1:9e:27:97:a0:1d:58:32:af:c0:04:09:c3:
                    b3:33:b2:cc:fc:c8:24:6e:45:0c:21:b0:7e:dc:c4:
                    d8:40:fc:2b:11:04:c8:d8:20:c5:e8:72:6b:22:a7:
                    b6:33:a2:4f:64:9d:bd:d0:09:84:57:5c:27:24:6b:
                    5f:94:5e:14:68:90:6c:71:89:d2:00:08:1d:46:4c:
                    4d:f8:34:f5:9a:a8:bc:c9:bb:16:9c:ed:78:06:c3:
                    de:0f:dd:c3:b3:be:7f:b6:6d:3b:48:0a:a5:ae:8b:
                    77:d2:22:85:f8:e0:e4:3f:26:be:ce:f4:2c:10:94:
                    d6:cc:bc:b0:59:0a:d6:1d:22:71:78:f7:e8:e7:4d:
                    1c:69:c1:29:64:a7:cf:fd:ca:cd:8f:ba:c0:b5:be:
                    69:97:ea:3c:76:de:90:6f:d8:3f:3e:74:7b:4e:c2:
                    0c:52:13:74:a9:a9:78:f0:4d:fd:1a:93:a8:5c:6d:
                    79:ff:f3:53:7a:e7:cb:36:63:a4:db:ee:fc:e6:0e:
                    c0:b8:db:a4:54:0c:9e:a2:86:99:80:65:e5:9a:5a:
                    db:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:5E:F8:10:51:60:DE:BB:06:FC:B6:07:DE:30:18:C1:42:93:A1:69
            X509v3 Authority Key Identifier:
                keyid:5A:40:FD:19:E2:DD:53:80:CB:6E:50:2F:16:DB:22:2F:90:89:55:2B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A40FD19E2DD5380CB6E502F16DB222F9089552B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:47:fb:01:e6:10:0a:c8:4f:62:0d:7a:ec:22:2a:04:e6:ec:
         f4:de:ea:e7:12:f8:86:b7:7b:4e:f2:08:29:6a:e5:c5:9b:b2:
         df:14:f5:89:a2:f4:49:ae:d2:1d:ed:2e:60:ab:c1:55:d5:d3:
         95:3c:6b:6d:bf:05:70:d1:48:a1:7b:14:fe:ac:55:ed:25:ce:
         02:c1:5f:51:be:98:5b:ad:55:4d:f5:52:ff:a6:3f:9d:76:74:
         76:e0:0c:7a:ed:04:23:21:6e:57:74:49:7f:fc:62:31:28:08:
         be:5c:73:08:70:3b:bc:0a:b8:c9:4e:3d:68:d6:02:47:ee:6e:
         56:42:1a:2f:b2:bb:d6:d7:aa:55:b2:ee:21:7c:04:7f:ce:b1:
         5a:64:a9:53:eb:a4:64:37:67:00:4e:d1:1d:2c:7a:88:d5:cd:
         ca:77:5c:c4:cd:57:dd:bf:b6:be:2a:9b:ea:ea:c0:20:45:47:
         23:75:f3:ef:35:b3:9a:d0:ec:0e:a9:b4:3d:33:51:bc:b3:aa:
         de:d0:ee:65:96:ee:11:51:2e:dc:f5:a0:d0:7f:c8:8d:a1:d8:
         38:7f:22:5a:c1:f0:2b:ba:1e:50:f7:6d:16:aa:c3:73:a8:a9:
         f6:0b:5b:cd:57:74:25:a5:ab:8a:75:62:0c:f7:bb:3e:52:9a:
         2c:f7:12:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----