Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft
File: 40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft (raw, json)
Hash identifier: FrDngqa29T5upOFVS+1jvP+A800ahL46lXvL8aRO3jg=
Subject key identifier: A3:50:1A:10:05:DB:20:34:18:38:BF:3D:A0:88:C6:1B:9C:F8:0A:24
Authority key identifier: 40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA
Certificate issuer: /CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA
Certificate serial: 1E4A44DA533F14BED6612D04F05008302AB5917B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft
Manifest number: 0138
Signing time: Mon 27 Apr 2026 12:02:17 +0000
Manifest this update: Mon 27 Apr 2026 11:57:17 +0000
Manifest next update: Thu 30 Apr 2026 20:12:17 +0000
Files and hashes: 1: 3135372e36362e302e302f32332d3234203d3e20313430343737.roa (hash: yBju0MDFhL8uMJfmhps7SGNhOm4xqJV+hqct3Jk+rrI=)
2: 40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl (hash: 51oVgYW7tEadsaCVdp5Q2NxjfWPwA17lW4BtqmwEt4I=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:4a:44:da:53:3f:14:be:d6:61:2d:04:f0:50:08:30:2a:b5:91:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA
Validity
Not Before: Apr 27 11:57:17 2026 GMT
Not After : Apr 30 20:12:17 2026 GMT
Subject: CN=A3501A1005DB20341838BF3DA088C61B9CF80A24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:4e:6f:b0:22:ad:56:aa:ca:71:57:20:4a:b7:
db:2e:6a:f2:e5:43:4c:78:a7:df:3c:95:4d:4d:83:
6f:36:9c:00:bb:64:85:39:00:b3:59:f2:98:9b:e8:
16:1c:a0:8e:50:04:e1:b1:c2:c0:91:30:4d:11:90:
7e:0b:79:70:76:ef:56:be:8d:b3:b9:df:93:0e:84:
29:71:9f:69:9b:12:5d:6e:45:e4:bb:a5:c2:6e:db:
e0:cc:8d:26:f2:f2:a4:4e:2c:4f:d3:92:c0:67:85:
36:f9:6c:9c:70:0e:ec:c6:b9:be:20:07:28:60:3f:
0a:02:bd:4a:8e:19:20:6a:b7:3b:e3:23:ad:4a:66:
41:9c:dc:65:5a:81:60:9e:be:78:d0:6c:89:e7:30:
f4:c7:56:9f:3b:d2:90:fd:8f:15:88:da:50:64:13:
8a:c3:8a:fe:0a:53:38:42:06:34:ba:8b:bd:19:c9:
1d:b2:4b:d4:ef:1e:7f:27:aa:c9:c9:a4:bb:34:03:
9a:c2:73:1a:07:a5:24:75:6c:1a:44:bf:cc:f1:1a:
dc:50:66:8b:bf:18:19:5b:7c:1f:ca:e7:d6:ba:8e:
03:6e:14:d7:2f:c7:23:47:77:1f:7f:17:a2:10:20:
5c:4f:4c:12:5c:92:ce:55:57:43:9f:17:e2:f5:86:
19:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:50:1A:10:05:DB:20:34:18:38:BF:3D:A0:88:C6:1B:9C:F8:0A:24
X509v3 Authority Key Identifier:
keyid:40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:ec:ee:ad:30:5c:ad:1b:f4:33:bc:a9:65:9a:0a:36:8f:e4:
4b:25:70:3d:d1:60:ca:d7:94:40:59:eb:3d:c3:af:69:c4:d9:
44:59:cb:e8:54:e4:72:ec:20:b1:5a:ce:6f:4e:3b:9a:18:8b:
d9:df:51:2b:c4:92:d9:22:6d:1f:a9:ef:c0:e9:b7:8c:86:83:
35:92:95:6c:4a:95:d7:5d:2c:30:d6:2d:5a:01:9e:6a:41:51:
fd:3a:53:e0:84:b3:2b:2e:f5:77:4d:56:f6:60:aa:47:43:cd:
97:a5:f1:4f:70:2d:92:31:ff:be:e4:f8:ca:cc:3e:b4:39:26:
db:14:34:ba:57:be:a0:b5:88:bd:94:b0:d8:18:e2:15:b0:df:
99:7e:ca:00:55:e7:be:d7:56:97:d2:9c:2e:f9:84:de:28:28:
ea:59:de:6d:6a:a2:f7:76:de:e0:86:83:c3:f9:9c:3a:27:93:
4a:c8:8d:ea:58:25:f2:c6:5a:c7:cf:75:22:bf:f3:8e:db:cd:
be:a6:40:37:c9:3a:ec:8c:6a:9f:11:ef:7c:3f:45:9e:3b:e3:
dc:b1:40:c0:d4:a0:45:28:8b:14:80:0f:e5:f6:de:fa:58:c2:
24:67:43:91:a8:89:66:cf:0b:ef:e1:d2:d5:76:36:f3:19:2b:
3c:28:b9:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 04:12:58 2026 by rpki-client