Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft
File: A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft (raw, json)
Hash identifier: A2FMIurxSvgcvqNX7IzfA23toGupChIl+tPogw+xHzU=
Subject key identifier: 87:AD:DB:46:E8:AE:06:70:41:F0:BE:DD:3D:F4:F1:51:F9:22:1E:3D
Authority key identifier: A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4
Certificate issuer: /CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4
Certificate serial: 5B5D66D350FD63521D22D22D8D84FF0B80B2108B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft
Manifest number: BF
Signing time: Mon 27 Apr 2026 04:33:51 +0000
Manifest this update: Mon 27 Apr 2026 04:28:51 +0000
Manifest next update: Thu 30 Apr 2026 15:13:51 +0000
Files and hashes: 1: A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl (hash: NwQ+rSXAKGHaqTURRCtLoqii3QszfNmsPLawccyqzzI=)
2: 3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa (hash: u/+nMafNSlBh3MWibaApdEuRrXiSll2yWAqljACJnmg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:5d:66:d3:50:fd:63:52:1d:22:d2:2d:8d:84:ff:0b:80:b2:10:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4
Validity
Not Before: Apr 27 04:28:51 2026 GMT
Not After : Apr 30 15:13:51 2026 GMT
Subject: CN=87ADDB46E8AE067041F0BEDD3DF4F151F9221E3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c1:a2:37:28:52:83:03:c0:de:3a:c5:01:7a:
d0:67:fc:ae:9c:45:c7:ce:58:c7:0f:7e:ba:aa:a0:
4e:aa:be:65:b9:19:04:f3:0f:e8:24:ce:d2:e4:4c:
83:ae:ac:5b:d9:b2:54:55:e3:46:d5:3c:21:70:cf:
36:ca:f6:fc:a8:76:8a:8d:ff:27:17:1e:42:cd:7f:
77:2d:2d:fe:28:3c:50:94:2f:b6:bf:e4:12:f5:26:
ac:98:d1:1f:50:cb:b2:ed:f8:d1:56:bf:42:58:a6:
ed:9d:7f:ae:e7:0b:a4:92:be:8d:fc:49:bd:8c:f1:
58:33:19:0e:89:65:b3:f5:af:1d:4e:a2:8d:dc:5b:
9a:21:5a:c8:5b:ec:56:c9:3c:66:7a:a2:84:94:07:
8f:bf:99:6e:8e:d8:36:b2:3b:75:0b:07:9c:9d:d1:
2e:fb:41:fa:ba:b6:11:aa:6f:10:a7:94:a7:96:48:
0d:0c:d5:61:16:10:d3:94:73:54:22:53:55:67:a4:
2b:f3:99:18:c3:d8:9f:25:85:31:06:fa:64:95:c5:
5a:ce:56:68:40:0e:bf:a3:ae:73:b2:42:28:7c:ca:
c5:45:d2:5c:2f:c4:cf:82:9e:f5:22:17:d2:5a:53:
4d:ff:97:a4:e6:51:20:a7:18:7e:f5:f5:3c:4c:0d:
88:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:AD:DB:46:E8:AE:06:70:41:F0:BE:DD:3D:F4:F1:51:F9:22:1E:3D
X509v3 Authority Key Identifier:
keyid:A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:5e:2f:bd:82:5d:0b:20:30:15:8c:bb:f8:01:3b:e5:1d:67:
10:7a:e4:ce:d9:bb:f8:d1:47:b0:b4:c4:f6:72:5e:d9:b4:6f:
ca:6c:63:fb:a6:9d:a0:15:1e:9f:84:c5:71:1b:b2:cb:57:0b:
af:02:87:59:f4:bb:90:32:a6:b0:b0:3e:06:2c:49:bd:92:26:
5b:ee:83:f0:60:26:3a:a7:53:ec:1d:19:0c:2f:d2:37:78:9d:
44:72:27:73:8b:54:2c:1a:ab:14:25:d7:a3:84:8d:b0:6f:6d:
70:af:c4:cc:5a:d3:b9:8f:bf:15:ea:b3:9f:47:c9:a3:3f:fa:
8b:2b:ae:e4:d9:eb:dd:29:24:61:de:03:cb:e4:24:99:63:b6:
bb:3e:f2:b5:d6:c3:60:90:fe:32:77:b1:6b:8e:19:d7:72:2e:
92:c0:b9:f0:15:47:08:48:5b:be:a5:3b:fa:b8:3a:3f:f1:d6:
28:c0:bc:3b:bb:0b:e0:f9:2d:cc:5f:fc:e0:2c:46:19:98:88:
80:b6:04:8a:3e:81:c2:a3:a7:46:4c:5c:cd:10:cb:a2:d0:a5:
bd:65:6e:b2:70:2d:20:e5:ba:01:d6:b1:51:8b:17:b1:f7:82:
37:e1:c6:b1:a1:34:a7:4f:9c:52:5d:11:9c:26:e4:6a:3d:2b:
e8:4f:1a:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 04:16:32 2026 by rpki-client