Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/cbde3a42-6272-4b6c-ad81-cccfbe9488c0/0/668C2397879176FD00D1A4949BAF8C1D8E764166.mft
File: 668C2397879176FD00D1A4949BAF8C1D8E764166.mft (raw, json)
Hash identifier: Il9KSydzgtTYTqw4AmmpWML0yYS7dTTow8ExjqpxkRk=
Subject key identifier: 88:3B:62:58:2D:13:7E:42:3F:A5:5F:44:0F:9D:2E:00:29:14:30:08
Authority key identifier: 66:8C:23:97:87:91:76:FD:00:D1:A4:94:9B:AF:8C:1D:8E:76:41:66
Certificate issuer: /CN=668C2397879176FD00D1A4949BAF8C1D8E764166
Certificate serial: 0E0AFCD7BD13900345281FE2AF7EFD80EAE3ED6C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/668C2397879176FD00D1A4949BAF8C1D8E764166.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cbde3a42-6272-4b6c-ad81-cccfbe9488c0/0/668C2397879176FD00D1A4949BAF8C1D8E764166.mft
Manifest number: 1B
Signing time: Mon 27 Apr 2026 14:31:15 +0000
Manifest this update: Mon 27 Apr 2026 14:26:15 +0000
Manifest next update: Thu 30 Apr 2026 15:28:15 +0000
Files and hashes: 1: 668C2397879176FD00D1A4949BAF8C1D8E764166.crl (hash: +RZZtSQFIB5OMv2fA4kDUV7DCuXPJVqml8r0c1h1x8s=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:0a:fc:d7:bd:13:90:03:45:28:1f:e2:af:7e:fd:80:ea:e3:ed:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=668C2397879176FD00D1A4949BAF8C1D8E764166
Validity
Not Before: Apr 27 14:26:15 2026 GMT
Not After : Apr 30 15:28:15 2026 GMT
Subject: CN=883B62582D137E423FA55F440F9D2E0029143008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:af:00:2a:8b:87:82:02:3b:cf:5b:06:41:d8:
eb:87:39:0b:25:41:a0:27:9d:ca:2d:67:42:ee:c4:
5f:5c:a7:83:af:8a:e0:d5:c1:a0:5d:6f:9d:6b:b8:
34:9e:1f:71:d8:f0:fe:74:05:65:16:13:0e:34:9e:
33:c4:79:b3:04:b1:be:64:df:ac:40:f3:6a:f0:62:
71:2c:b7:ac:f6:ee:21:33:67:2a:86:63:35:51:b2:
b6:52:3a:3c:a5:a9:c7:35:12:23:3f:c6:f6:28:ee:
97:ed:b6:e7:b2:92:5e:ec:7d:08:8e:2c:54:27:f1:
ba:34:48:d5:6a:b7:a4:31:08:bc:f5:36:48:10:50:
44:68:57:2b:78:fe:e1:4c:89:d6:65:eb:7b:74:5f:
f0:43:d1:8d:93:0a:48:96:4d:e3:82:65:63:4e:11:
ea:58:8a:5a:43:b0:a2:64:9f:fa:38:2b:a0:cb:0d:
94:44:c0:c6:b3:74:2e:08:44:d6:ec:35:eb:9b:7e:
84:69:5c:43:67:92:6d:6a:39:c2:5e:ed:31:ab:4b:
64:49:d6:09:04:bf:a1:57:df:26:28:db:26:ce:30:
16:4a:7d:0e:a9:74:ca:08:0e:8d:c2:0d:d0:04:13:
19:25:87:76:32:6d:fa:c4:62:69:a2:e1:ef:20:13:
ee:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:3B:62:58:2D:13:7E:42:3F:A5:5F:44:0F:9D:2E:00:29:14:30:08
X509v3 Authority Key Identifier:
keyid:66:8C:23:97:87:91:76:FD:00:D1:A4:94:9B:AF:8C:1D:8E:76:41:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cbde3a42-6272-4b6c-ad81-cccfbe9488c0/0/668C2397879176FD00D1A4949BAF8C1D8E764166.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/668C2397879176FD00D1A4949BAF8C1D8E764166.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cbde3a42-6272-4b6c-ad81-cccfbe9488c0/0/668C2397879176FD00D1A4949BAF8C1D8E764166.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:12:aa:78:c2:04:a0:6a:79:43:ba:7f:92:67:c5:1c:70:0a:
a1:2b:a8:39:8a:35:9c:64:5f:d1:f7:25:af:95:49:6e:b2:33:
c4:5b:d3:0e:1c:c0:78:54:2b:65:2c:27:fa:47:7d:39:fc:2c:
8b:67:6f:e7:96:d9:ed:19:06:9d:11:b7:bd:48:f5:5c:62:77:
e1:a7:ef:fd:b2:89:3c:5a:97:c2:85:a2:b8:4e:a7:1f:04:51:
3f:28:b7:bc:ce:03:e4:73:a7:7b:18:e8:fb:72:e2:98:1d:db:
e0:d1:e5:f2:d4:1c:91:ef:bb:15:d5:16:41:e8:e9:09:1c:d2:
21:af:6b:bd:3b:4b:59:b9:0b:41:b9:11:7c:f9:44:50:9e:e7:
12:d2:12:06:6f:aa:d5:98:91:74:cf:83:e5:f8:a1:51:4d:dd:
f4:d8:9a:0a:12:58:8f:40:80:2a:8d:7a:85:05:75:99:af:3e:
d7:a6:1e:2a:b7:e5:c8:8e:5d:3e:f0:c0:6b:ac:d5:7b:f8:14:
2a:7d:34:bd:f6:5f:ff:2b:b2:5a:28:a8:d0:20:12:11:e7:41:
eb:1a:4f:5e:cc:20:82:70:d5:d7:8d:47:21:cb:e1:a6:65:19:
56:9f:42:03:3a:87:65:13:e1:4c:23:f7:4c:a7:f7:3f:af:d8:
98:2b:c3:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 03:11:16 2026 by rpki-client