Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft
File: AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft (raw, json)
Hash identifier: 6oYGIxEuJa0VCSnhz8kXnT0TfctXoeXNJwttekU0S30=
Subject key identifier: 91:12:9A:84:9B:BF:48:A8:9F:D2:FB:3A:03:67:D0:3A:FB:6C:38:D0
Authority key identifier: AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21
Certificate issuer: /CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21
Certificate serial: 6FF8652F8B5EED2C5F9AF2271C16E06EF2980016
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft
Manifest number: 0117
Signing time: Tue 28 Apr 2026 22:21:58 +0000
Manifest this update: Tue 28 Apr 2026 22:16:58 +0000
Manifest next update: Sat 02 May 2026 10:11:58 +0000
Files and hashes: 1: 3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa (hash: okMulqCwmQrHdU+kO0nYzAvF/vvi8wTCEKi+VdDT9lQ=)
2: AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl (hash: 7QCrG4fDCdmr8kpVK7ujeRQGDhaXv5g6F2c36VuxbXU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:f8:65:2f:8b:5e:ed:2c:5f:9a:f2:27:1c:16:e0:6e:f2:98:00:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21
Validity
Not Before: Apr 28 22:16:58 2026 GMT
Not After : May 2 10:11:58 2026 GMT
Subject: CN=91129A849BBF48A89FD2FB3A0367D03AFB6C38D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:76:22:68:ee:bb:a0:d9:9a:0e:b2:b3:25:3f:
de:b7:f0:40:3c:7d:64:9a:9d:00:f8:17:c3:39:e8:
7b:04:6f:3c:31:5d:b9:25:9a:28:58:78:c4:e1:26:
c9:10:63:62:02:d4:3d:b3:60:d5:f2:b2:ce:89:d9:
a2:14:96:df:ea:b4:c6:6e:72:d5:7b:34:f6:3f:45:
d3:c6:b8:0b:50:85:77:ab:35:65:8b:7e:e0:a3:d5:
54:9e:9f:9d:df:7e:b4:d4:cb:84:59:9a:5a:10:c9:
a4:2e:4d:d2:29:d8:a1:69:64:e4:7d:1b:1f:80:b0:
2f:0b:f4:b0:aa:d0:c2:4e:fe:47:a5:a6:2f:b2:95:
f6:2b:16:5f:09:56:36:71:78:0d:39:af:77:08:69:
ee:2a:81:a6:0f:e5:64:50:db:d0:1c:04:68:ef:89:
39:85:89:99:24:b9:e3:33:5d:e1:b4:a7:6c:b1:dc:
1b:65:1b:2e:91:39:10:7f:d5:2f:fe:24:71:b3:eb:
af:cb:82:08:26:2f:87:d3:c2:f0:6c:d1:95:c8:31:
0a:a2:81:f8:2a:6d:c5:c6:b6:0a:64:1f:4c:f1:6a:
42:08:2b:a1:d8:73:f2:c9:06:f2:49:45:46:12:bb:
0b:ff:a7:b4:1e:5d:c2:60:d9:a4:cf:54:e8:91:64:
bf:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:12:9A:84:9B:BF:48:A8:9F:D2:FB:3A:03:67:D0:3A:FB:6C:38:D0
X509v3 Authority Key Identifier:
keyid:AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:46:d6:e5:7c:ae:46:a9:ab:f6:da:fb:f8:69:5c:7a:b4:ea:
d8:68:a0:1a:ca:26:50:af:78:b9:89:15:0f:72:69:8d:e3:7c:
04:1a:d1:df:07:ce:59:95:9d:d7:f4:66:5f:13:86:b7:1f:ce:
54:71:23:8d:f3:05:e4:1b:d5:e9:b9:15:5b:63:f9:24:a1:4e:
93:92:1a:c6:b7:14:6a:03:a5:7c:db:ba:ee:01:6a:9e:34:f8:
45:98:94:93:ee:b1:6b:bf:74:a5:f3:ba:d1:ce:0d:09:91:25:
0d:8b:69:39:54:0a:29:f5:8e:49:6e:3e:f5:0e:93:ec:2d:57:
26:c9:f0:ce:5c:57:2b:8a:0d:79:d3:d0:df:f8:73:44:a5:11:
7e:83:f8:8e:90:4b:ad:67:55:ec:37:2f:73:3e:ab:53:09:14:
fc:52:39:10:c5:f0:e4:10:ce:29:c7:0c:f9:7a:fd:6c:65:24:
8d:0a:be:86:53:86:3c:e8:e2:41:ea:48:d8:1c:c0:28:64:5b:
29:aa:7d:7e:f7:0d:a6:e9:45:5e:52:66:57:f2:c5:35:de:26:
f6:07:07:7b:4f:2c:dc:94:43:6f:bc:ce:cb:88:12:c1:d8:a5:
91:d7:40:0f:a7:4c:de:bc:48:10:3d:5d:34:f9:c0:ae:5a:15:
0b:64:42:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 04:10:24 2026 by rpki-client