Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft
File:                     DD68C98D519CC8D624F664B026AEB9B289EE819C.mft (raw, json)
Hash identifier:          3c3nqQ68jNxompW9nNTiZccUOE2NzCczDyO5wxDnuWQ=
Subject key identifier:   65:F5:72:C1:D9:F8:2F:22:3B:31:6E:7A:F1:D8:AE:84:06:C0:21:A1
Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C
Certificate issuer:       /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C
Certificate serial:       475FA7BB58B263768FC29160ABAB7F60F5FE3F23
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft
Manifest number:          0235
Signing time:             Mon 27 Apr 2026 23:32:07 +0000
Manifest this update:     Mon 27 Apr 2026 23:27:07 +0000
Manifest next update:     Fri 01 May 2026 05:02:07 +0000
Files and hashes:         1: 3130332e33362e35332e302f32342d3234203d3e2039333431.roa (hash: 9XabV5C+bxTzwQpxWRFJ2J0ODxVlFWpwxY4ZIRRll5s=)
                          2: 3130332e33362e35322e302f32332d3233203d3e2039333431.roa (hash: avxCSiDbdDW7kOsh1a+dBlMPbboYpQF+S49u7QzrJXw=)
                          3: DD68C98D519CC8D624F664B026AEB9B289EE819C.crl (hash: HscbDce2KjWf8jhWGfd6Bu2cRKCWQps0bBor5w+uFVI=)
                          4: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (hash: 4vYKKc9gCQNLGbY6CdycYfIML4Cvt54/Y7bjgPLGEYU=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            47:5f:a7:bb:58:b2:63:76:8f:c2:91:60:ab:ab:7f:60:f5:fe:3f:23
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C
        Validity
            Not Before: Apr 27 23:27:07 2026 GMT
            Not After : May  1 05:02:07 2026 GMT
        Subject: CN=65F572C1D9F82F223B316E7AF1D8AE8406C021A1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:9e:27:28:17:87:6b:03:83:bd:9f:68:47:44:
                    d3:5f:06:ca:ef:6e:60:70:74:f8:5c:89:cb:b1:cb:
                    13:16:9e:fe:15:a5:ab:e9:5c:90:82:47:70:2c:aa:
                    3a:a9:0d:8c:fe:23:c6:9b:a7:5b:9a:c7:0c:a0:85:
                    23:32:d3:ba:58:bf:26:cb:22:42:7d:76:86:00:34:
                    d3:e9:72:15:ea:ff:dc:1c:49:97:a5:eb:71:30:40:
                    eb:03:39:4f:ff:5b:75:7d:bc:70:a4:6b:a5:19:cc:
                    e5:26:89:91:04:83:3d:96:ea:26:b1:89:a6:29:bd:
                    c7:16:80:aa:a9:d6:14:ae:0c:c9:0b:e5:2e:1e:d2:
                    de:81:ec:1d:78:3d:d7:95:ad:b5:99:96:c9:63:27:
                    b5:e0:99:3a:b0:82:31:0a:cb:0e:14:a4:73:0d:25:
                    9d:ef:b5:74:dc:16:4b:a2:c9:f6:58:64:ef:a8:6b:
                    7f:4e:06:7b:12:41:c0:85:db:62:2c:ca:8e:2e:ce:
                    af:f4:77:c3:95:c8:03:dd:7b:86:b9:37:23:6c:22:
                    92:69:41:97:d0:84:fe:1a:a9:04:36:a7:29:ce:c1:
                    5a:cf:4e:a7:70:38:1c:f9:2f:da:d0:70:fc:cc:85:
                    e1:b7:49:39:02:2b:f3:49:5d:23:8f:f2:f5:e1:b3:
                    10:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                65:F5:72:C1:D9:F8:2F:22:3B:31:6E:7A:F1:D8:AE:84:06:C0:21:A1
            X509v3 Authority Key Identifier:
                keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c3:ce:f6:5e:5e:12:23:fd:36:08:6c:a4:d7:6f:5b:ae:93:2c:
         06:3f:2c:16:14:02:26:d7:51:bf:a4:c5:36:5b:2c:ee:23:4b:
         7e:be:78:fb:d1:e3:d3:3f:0c:07:d4:90:16:6f:5e:bb:38:8a:
         bf:3f:7b:2b:8f:c2:a4:66:47:96:6d:09:a2:c2:fc:27:38:32:
         2e:00:1e:df:cb:cb:bb:c8:6c:73:3b:df:6c:c6:7b:8c:54:81:
         39:5f:a9:b6:4c:46:0a:a7:0f:da:87:da:92:51:a3:b3:61:e8:
         08:62:36:7d:5b:75:f1:97:76:dc:68:e8:ff:80:9d:e5:69:a2:
         54:fb:d0:b7:9e:a3:cd:2e:25:b8:9a:d5:c8:65:62:a3:88:d6:
         20:f1:ba:b7:f4:36:d2:bf:1a:3a:5d:0a:12:91:45:4c:62:7b:
         35:90:e2:37:78:15:a4:93:57:58:33:c1:f6:c0:b6:89:45:61:
         73:9d:82:d9:5c:90:ea:ca:f5:00:7b:5a:a1:67:63:5e:32:69:
         8b:76:86:65:91:57:ef:8c:a2:b2:94:45:c0:f4:d3:21:6f:a3:
         ae:d2:f6:45:f1:df:5d:97:02:83:29:f4:04:ef:ae:d4:05:c2:
         00:89:1a:02:86:4d:fe:72:db:90:fd:fa:5e:11:de:fd:c9:94:
         57:75:78:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----