Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/2be29902-e0f4-429a-9a26-439b9bfee489/1/DFF6098A4921B357E69571FC3EB289143D85ADBD.mft
File: DFF6098A4921B357E69571FC3EB289143D85ADBD.mft (raw, json)
Hash identifier: u7ODxu6RvpeQoylJ9KYKoze5kMEyohuNxr5ADhBJOSo=
Subject key identifier: 49:F3:03:6B:E7:3D:3F:05:51:3C:0B:ED:79:BF:24:81:B4:CF:63:09
Authority key identifier: DF:F6:09:8A:49:21:B3:57:E6:95:71:FC:3E:B2:89:14:3D:85:AD:BD
Certificate issuer: /CN=DFF6098A4921B357E69571FC3EB289143D85ADBD
Certificate serial: 76BB72A255EF097540C33B313B41E79605020E71
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DFF6098A4921B357E69571FC3EB289143D85ADBD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2be29902-e0f4-429a-9a26-439b9bfee489/1/DFF6098A4921B357E69571FC3EB289143D85ADBD.mft
Manifest number: 17
Signing time: Mon 27 Apr 2026 08:31:30 +0000
Manifest this update: Mon 27 Apr 2026 08:26:30 +0000
Manifest next update: Thu 30 Apr 2026 20:28:30 +0000
Files and hashes: 1: DFF6098A4921B357E69571FC3EB289143D85ADBD.crl (hash: kl8xdoGcb9y0cImJPQlu3dv7KFRGwLDqqk340h4pn0g=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:bb:72:a2:55:ef:09:75:40:c3:3b:31:3b:41:e7:96:05:02:0e:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFF6098A4921B357E69571FC3EB289143D85ADBD
Validity
Not Before: Apr 27 08:26:30 2026 GMT
Not After : Apr 30 20:28:30 2026 GMT
Subject: CN=49F3036BE73D3F05513C0BED79BF2481B4CF6309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:5e:fc:1a:eb:8b:52:c5:da:e9:75:6f:f9:e2:
1a:65:3b:c0:08:6e:25:35:94:e3:2f:1f:85:4d:f8:
51:ef:63:16:d7:5a:0d:1f:e0:78:6d:2c:a6:fb:2d:
17:b2:41:bc:90:30:b3:31:b6:3f:b2:92:3d:ce:66:
1a:90:c9:ac:b8:e8:18:94:01:b0:a6:8b:cc:66:87:
92:9a:b4:f2:4a:a8:4b:a7:81:2f:30:a4:4e:2f:1a:
e7:8a:eb:03:5b:c2:7c:d5:f5:80:e8:70:08:fe:18:
0a:cc:15:6d:8d:bc:27:20:7e:75:cf:25:08:fc:86:
0f:a6:05:68:2d:1c:45:dc:ab:f9:a8:15:3a:5c:03:
ac:cd:36:d2:d3:1f:ba:d6:07:0d:26:09:d5:11:d9:
bf:1e:dd:e7:c8:d6:33:b5:8b:ec:f4:e7:5e:f7:91:
3a:e5:f9:a6:0a:19:e9:62:84:bc:99:cd:a2:bf:b8:
eb:94:be:6d:99:f5:cb:54:51:90:fe:45:37:43:9c:
f1:7c:b9:5a:ee:79:fa:36:0c:c9:41:dd:28:a8:d0:
26:68:34:2f:67:6b:4c:34:21:96:79:64:71:60:38:
25:42:84:5a:04:35:53:da:b3:dc:b4:29:55:96:76:
1b:76:30:ba:99:fa:fe:ba:95:a0:32:c1:70:f0:1f:
88:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F3:03:6B:E7:3D:3F:05:51:3C:0B:ED:79:BF:24:81:B4:CF:63:09
X509v3 Authority Key Identifier:
keyid:DF:F6:09:8A:49:21:B3:57:E6:95:71:FC:3E:B2:89:14:3D:85:AD:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2be29902-e0f4-429a-9a26-439b9bfee489/1/DFF6098A4921B357E69571FC3EB289143D85ADBD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/DFF6098A4921B357E69571FC3EB289143D85ADBD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2be29902-e0f4-429a-9a26-439b9bfee489/1/DFF6098A4921B357E69571FC3EB289143D85ADBD.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:b9:b6:ad:34:cf:49:6b:cd:26:b2:12:7a:ec:cf:d2:fd:fa:
0d:cf:61:e2:23:27:78:85:fd:f5:3c:02:88:e5:26:fb:3f:90:
2b:05:ae:21:c6:45:81:2d:d8:7d:8c:55:78:18:41:62:33:84:
13:1d:69:2d:c4:f1:3a:06:95:a2:46:88:c2:03:e9:c8:1b:ac:
06:68:e2:53:a6:a5:9a:0a:75:6c:4b:fb:d1:02:33:cb:52:c2:
c4:a7:75:f9:5d:d3:f8:80:e1:5a:49:29:03:38:ce:d7:51:76:
33:5a:3c:45:92:28:d4:77:df:59:0f:1f:4e:c6:f0:ac:08:0e:
b8:df:59:5d:27:e1:6a:b8:4b:17:68:f6:72:67:9c:97:44:8d:
5a:1a:ab:60:c8:0f:a4:01:33:99:e8:d2:e2:a6:6c:57:eb:69:
1b:47:62:5a:d7:b1:b4:d2:f3:0a:b2:71:28:f3:cf:90:5e:e7:
82:8a:d5:f0:49:8b:1c:10:3d:5a:5f:1b:1e:96:c2:f9:24:17:
cc:11:c0:40:13:4d:0e:76:2d:cd:35:6d:9b:5c:c0:45:f8:48:
1b:0a:3c:b5:3b:ce:88:47:ed:f3:cf:4a:3a:c7:a5:13:b7:98:
92:06:a8:41:e9:52:9d:85:20:03:2d:73:45:c4:2f:46:06:da:
42:2c:46:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 04:15:17 2026 by rpki-client