Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft
File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json)
Hash identifier: nEP3V5RIT7To0cl0TRDCA/I+lP14c2oNNe/tviRaq5k=
Subject key identifier: 74:95:B1:CD:1D:10:B2:36:C8:EF:42:44:DA:EE:46:8E:91:46:5D:29
Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17
Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117
Certificate serial: 3AB462EB8C816114E882B4C63971F346F0AA10FE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft
Manifest number: 0146
Signing time: Tue 28 Apr 2026 01:12:43 +0000
Manifest this update: Tue 28 Apr 2026 01:07:43 +0000
Manifest next update: Fri 01 May 2026 08:49:43 +0000
Files and hashes: 1: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: XHVllAX/UXDKrZwLLYWAgUneaiPswSM3kgLSE6ruL6s=)
2: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: 1XEPTFeLwnKkJgBWO1Mee/SRiEu1cRBCfRvTjwt/Bkg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:b4:62:eb:8c:81:61:14:e8:82:b4:c6:39:71:f3:46:f0:aa:10:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117
Validity
Not Before: Apr 28 01:07:43 2026 GMT
Not After : May 1 08:49:43 2026 GMT
Subject: CN=7495B1CD1D10B236C8EF4244DAEE468E91465D29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e3:fb:17:7c:8c:2b:ff:1d:ca:a7:79:27:d8:
0c:6e:b6:7c:b0:50:15:4f:cd:55:7a:ac:01:fa:30:
73:cc:3f:8a:5f:cc:84:ef:39:6e:98:74:62:b1:90:
15:aa:f3:f6:6a:76:c8:f7:59:11:b8:e2:d6:30:7b:
2e:94:92:1b:5e:33:cf:17:67:e8:47:71:ff:62:e9:
06:ad:b6:87:3b:d3:85:9b:a6:2b:4c:a4:3d:21:49:
8a:01:d6:08:d7:9a:42:0f:11:4e:6a:95:fc:71:0a:
62:db:2c:fe:92:bd:0b:25:a9:2a:7c:fb:d2:22:2f:
4a:43:e7:b9:57:03:47:37:1f:89:43:e2:a5:75:88:
77:58:23:91:85:c3:63:4d:ff:84:56:34:50:21:b7:
16:0e:a7:e9:5a:46:d9:e1:5e:2d:b3:4d:06:f1:84:
ef:f4:de:9d:3d:87:12:b7:33:e1:0a:0f:49:cd:e3:
53:a3:fc:5e:c4:1f:63:73:15:3b:cd:6f:7f:26:2d:
ae:5b:76:94:b6:61:4c:05:fb:51:e2:2e:1b:42:87:
31:ce:a2:1b:57:4c:4d:d5:cc:49:63:58:34:a4:f2:
4f:3f:77:df:e7:d7:1b:4e:fa:e7:83:37:48:9c:b8:
c9:ad:05:9f:bf:bb:16:c9:81:21:2c:ca:2e:c3:da:
dc:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:95:B1:CD:1D:10:B2:36:C8:EF:42:44:DA:EE:46:8E:91:46:5D:29
X509v3 Authority Key Identifier:
keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:d7:d7:8f:fd:81:a5:8f:d1:2f:ef:82:a9:54:85:ab:78:ad:
44:c8:1e:e0:aa:5f:c9:62:f9:e4:6a:22:57:e5:94:72:f2:72:
3c:5b:8b:cb:ed:5e:06:da:5d:70:49:10:84:f9:f2:96:fa:fb:
20:a6:19:47:50:42:68:fa:7c:0a:8c:e1:ab:a9:cb:0f:a5:2c:
a7:b0:36:af:d8:85:85:17:cd:f3:0b:2b:7c:b7:f9:69:7f:f6:
c0:5a:03:ac:28:f8:aa:23:3c:94:c6:ac:e4:47:dc:41:6f:47:
34:45:a8:22:89:c8:ff:48:b7:07:26:ac:ee:44:2d:8c:98:e4:
c9:20:80:20:f5:1f:12:f9:f6:ec:b9:41:a2:63:e8:f9:1d:75:
6e:0f:a7:98:53:16:a0:82:a8:d4:76:e7:b0:ef:8e:a8:26:a3:
2c:75:92:4f:3d:b4:17:e5:b9:18:45:3c:89:a9:05:1b:7e:5f:
8a:4a:04:87:c4:11:a0:16:8e:27:2f:f2:9d:b9:4b:b5:03:a7:
73:49:af:d0:3e:b7:c9:a8:7f:71:e9:f4:3e:e7:1a:1d:30:06:
c1:21:cc:f8:9a:15:e9:14:2d:36:5d:1b:d6:3e:a4:c9:2f:6e:
03:e7:52:5b:6a:da:f2:45:1a:e8:de:d5:2d:cf:b6:b2:11:d1:
8a:a7:66:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 04:15:42 2026 by rpki-client