Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft
File:                     21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json)
Hash identifier:          mpZg3Tq1nyCWsh/YxC8drdo4st8qcjPa/6EEJKVxNJE=
Subject key identifier:   95:E2:28:37:6B:B1:BD:48:71:72:69:95:91:BF:FC:97:9C:59:1D:4F
Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B
Certificate issuer:       /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B
Certificate serial:       45C2C2A3DC58DCED52D56B80896C0A3105390476
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft
Manifest number:          052B
Signing time:             Tue 28 Apr 2026 20:01:12 +0000
Manifest this update:     Tue 28 Apr 2026 19:56:12 +0000
Manifest next update:     Sat 02 May 2026 01:46:12 +0000
Files and hashes:         1: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: 9aD/3Z/ErIEOk14Z4YaZLswmU2h2wgfHXTPDv4blf9k=)
                          2: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: IywsBHZCpESzPvpzBYMa3aM5xr+uzQrgr/hs4zyGEfk=)
                          3: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: FqumLAE5ExkmaatbD11ff744L2iTMEhUHWhZUQWOtLU=)
                          4: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: p7znIjGrzIeqiJgSyw1Go9JzIhUPDTiZx2kzEBcMX+M=)
                          5: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: J7Eqzk0rLCECjOwGjEdw1vCeBneDceSExg8FEmGDsVA=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            45:c2:c2:a3:dc:58:dc:ed:52:d5:6b:80:89:6c:0a:31:05:39:04:76
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B
        Validity
            Not Before: Apr 28 19:56:12 2026 GMT
            Not After : May  2 01:46:12 2026 GMT
        Subject: CN=95E228376BB1BD487172699591BFFC979C591D4F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:6a:5d:22:07:1d:12:19:9e:c7:e6:b8:64:ae:
                    82:6c:59:62:f4:37:10:c2:50:72:42:f4:0b:3a:81:
                    3a:d4:75:c9:b9:dd:93:c2:50:4c:51:07:f8:45:5f:
                    93:9a:ba:19:03:39:14:e7:f8:38:bd:fc:8a:c1:fa:
                    60:fc:68:70:47:4d:46:2e:e9:e2:0d:19:4a:40:50:
                    20:d1:1f:8d:a7:df:55:cf:df:4b:70:61:84:a9:28:
                    56:41:70:e5:ed:00:43:f4:45:68:3f:bc:af:5f:f6:
                    c6:89:b6:21:24:56:ef:ac:53:3e:c9:e1:bc:e0:3a:
                    de:bc:26:17:df:ca:96:f4:57:b5:53:02:40:47:48:
                    c4:15:99:6e:05:02:c4:d0:2b:91:50:d8:b6:a7:53:
                    ce:47:69:b6:48:96:ac:00:32:e0:c8:fa:8b:5b:03:
                    8e:b5:c5:07:e1:f2:33:24:ac:5c:f2:86:2c:c9:74:
                    c2:8e:9c:c3:64:7f:d8:54:04:04:e4:01:b0:f2:87:
                    f2:4b:0b:81:de:a6:f7:01:b5:48:66:5d:5c:03:94:
                    7a:4d:cb:b8:f6:c7:cf:66:8e:b3:cc:83:98:cb:94:
                    12:c7:4c:1d:fa:b2:81:cc:31:6e:1e:62:94:53:c5:
                    d4:38:30:52:dc:65:61:1c:00:5d:bf:c7:1d:3b:c7:
                    d8:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:E2:28:37:6B:B1:BD:48:71:72:69:95:91:BF:FC:97:9C:59:1D:4F
            X509v3 Authority Key Identifier:
                keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:e1:00:85:c6:e4:e0:4c:21:c6:f7:ec:57:06:3d:ba:a7:dd:
         09:c4:11:e3:6f:52:f8:ac:2f:29:b5:63:79:0a:62:e4:ec:0f:
         20:9e:f7:a5:70:f3:8a:a2:66:8c:a1:ea:77:00:d6:6b:80:6b:
         1e:de:d0:15:21:d4:2f:62:e9:07:43:49:e5:fd:00:c3:65:b9:
         09:8b:39:4f:90:bf:a3:1f:98:99:06:85:6d:6f:98:c3:b2:8c:
         0d:8d:1d:d6:c1:53:06:d8:72:cd:75:a8:ec:a3:63:cc:89:30:
         c4:fe:c0:58:01:0b:1f:cb:04:f9:ed:71:8c:ab:c6:1a:04:a2:
         22:35:a3:2c:d7:c8:72:4f:db:99:99:eb:4b:c0:32:35:ab:cb:
         0d:19:14:48:f9:e2:20:50:8b:43:b7:13:f6:51:c2:05:25:dc:
         d4:07:a3:1a:14:78:06:a3:d5:1f:a7:54:bb:50:14:07:ad:90:
         54:92:78:1e:50:99:eb:86:22:41:27:b5:c3:92:a4:24:49:43:
         cb:6c:73:8a:45:12:51:ff:ce:4c:ad:18:32:66:2d:2e:e6:6b:
         e6:40:34:da:94:9d:bf:8b:e7:f1:a1:4a:5f:97:13:6d:92:0a:
         84:7f:b0:fc:6f:06:40:d2:c9:ba:22:04:a1:4e:40:f4:b1:fb:
         6f:9d:d2:c5
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIURcLCo9xY3O1S1WuAiWwKMQU5BHYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE
RDAwOTExQjAeFw0yNjA0MjgxOTU2MTJaFw0yNjA1MDIwMTQ2MTJaMDMxMTAvBgNV
BAMTKDk1RTIyODM3NkJCMUJENDg3MTcyNjk5NTkxQkZGQzk3OUM1OTFENEYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPal0iBx0SGZ7H5rhkroJsWWL0
NxDCUHJC9As6gTrUdcm53ZPCUExRB/hFX5OauhkDORTn+Di9/IrB+mD8aHBHTUYu
6eINGUpAUCDRH42n31XP30twYYSpKFZBcOXtAEP0RWg/vK9f9saJtiEkVu+sUz7J
4bzgOt68Jhffypb0V7VTAkBHSMQVmW4FAsTQK5FQ2LanU85HabZIlqwAMuDI+otb
A461xQfh8jMkrFzyhizJdMKOnMNkf9hUBATkAbDyh/JLC4HepvcBtUhmXVwDlHpN
y7j2x89mjrPMg5jLlBLHTB36soHMMW4eYpRTxdQ4MFLcZWEcAF2/xx07x9j3AgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUleIoN2uxvUhxcmmVkb/8l5xZHU8wHwYDVR0j
BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3
QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw
OTExQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmRhYmMwYmEtOTIyMi00YzQ1LTgz
NDItZWI4NjQzYzQ5NjdkLzAvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5Qzgz
NjNERDAwOTExQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBAEThAIXG5OBMIcb37FcGPbqn3QnEEeNvUvis
Lym1Y3kKYuTsDyCe96Vw84qiZoyh6ncA1muAax7e0BUh1C9i6QdDSeX9AMNluQmL
OU+Qv6MfmJkGhW1vmMOyjA2NHdbBUwbYcs11qOyjY8yJMMT+wFgBCx/LBPntcYyr
xhoEoiI1oyzXyHJP25mZ60vAMjWryw0ZFEj54iBQi0O3E/ZRwgUl3NQHoxoUeAaj
1R+nVLtQFAetkFSSeB5QmeuGIkEntcOSpCRJQ8tsc4pFElH/zkytGDJmLS7ma+ZA
NNqUnb+L5/GhSl+XE22SCoR/sPxvBkDSyboiBKFOQPSx+2+d0sU=
-----END CERTIFICATE-----