Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft
File:                     FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft (raw, json)
Hash identifier:          b82hFepsFGpqBGnKRIi2HnznosDQVG/kgCdc7p0O6/8=
Subject key identifier:   67:E9:B2:8A:D3:A9:65:6B:0B:E2:2F:9C:26:7B:EB:A4:EF:7A:79:79
Authority key identifier: FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23
Certificate issuer:       /CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623
Certificate serial:       2B9C1F180A677168DE0183EFA515DAC6B2C46897
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft
Manifest number:          0156
Signing time:             Mon 27 Apr 2026 19:22:37 +0000
Manifest this update:     Mon 27 Apr 2026 19:17:37 +0000
Manifest next update:     Thu 30 Apr 2026 20:13:37 +0000
Files and hashes:         1: 3135372e32302e3132362e302f32332d3234203d3e20313532343130.roa (hash: JACumO3VAE1t5FuWuqXfdX1npziOW8EOlg7XX4OQbh8=)
                          2: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl (hash: i0mdevOfJJ5zozjPByieDFD8/WjhiY0JwXhcqWK0LnY=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2b:9c:1f:18:0a:67:71:68:de:01:83:ef:a5:15:da:c6:b2:c4:68:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623
        Validity
            Not Before: Apr 27 19:17:37 2026 GMT
            Not After : Apr 30 20:13:37 2026 GMT
        Subject: CN=67E9B28AD3A9656B0BE22F9C267BEBA4EF7A7979
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:20:20:c6:6a:d4:32:90:45:71:6a:69:70:20:
                    45:37:89:cc:82:f0:46:0d:83:87:8e:8a:f8:52:64:
                    f4:03:c4:31:f2:d8:ae:cc:42:3b:0f:23:2d:34:8a:
                    17:9e:44:7a:0f:a6:1c:02:09:d8:05:e8:9d:d1:ec:
                    d9:a8:1f:08:ae:ab:72:e8:ea:65:83:6d:2a:c2:6a:
                    ae:4a:01:39:de:77:a2:a5:52:98:f6:bb:07:a6:bd:
                    76:bb:a2:17:4e:35:60:9e:4a:90:ad:82:70:5b:f6:
                    8a:72:cb:b5:64:a9:67:e0:4d:63:67:84:66:d8:67:
                    8c:9d:9d:92:9d:96:bd:5e:42:88:c1:7b:47:c8:f2:
                    e0:6a:d1:12:84:ea:bf:5f:d4:cc:f9:02:f1:02:83:
                    47:79:0c:0f:34:d4:8a:9f:41:3e:ec:9c:2b:4b:49:
                    a9:a0:5e:9e:35:9e:9e:db:2e:8a:62:b4:40:35:08:
                    85:b2:8f:e5:7b:57:67:a0:ae:86:0c:8c:6c:74:f2:
                    f3:8d:9a:e1:f7:4c:16:33:85:55:c6:2a:96:87:53:
                    87:c6:fd:3b:d9:07:47:bc:78:50:c9:7f:c0:8e:83:
                    d5:a3:f1:cc:23:bf:03:13:e9:bb:e9:56:f8:9d:cd:
                    dd:d2:64:73:64:08:b6:d4:8f:c4:75:16:f8:86:77:
                    e6:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:E9:B2:8A:D3:A9:65:6B:0B:E2:2F:9C:26:7B:EB:A4:EF:7A:79:79
            X509v3 Authority Key Identifier:
                keyid:FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:bf:86:ca:ba:62:60:66:61:95:08:bd:71:27:cf:2b:2a:1c:
         6f:38:12:b2:86:74:19:4c:b6:4a:ee:dd:34:f4:9b:5d:1d:f9:
         94:5e:e0:d1:9f:3b:e8:63:d9:05:83:27:0d:7a:b2:31:82:61:
         08:1e:84:ba:87:d9:22:d2:1a:29:f8:1f:80:b2:50:91:c5:98:
         3a:ba:d6:50:a9:a7:f6:b7:2f:a7:8e:78:08:0e:38:8e:da:84:
         64:f0:bf:40:05:f8:28:d2:2b:fe:f4:83:26:ae:98:fb:c5:92:
         72:47:b8:b6:3a:33:5b:eb:b5:95:77:bc:8f:03:af:f2:77:c4:
         4b:e7:62:19:5d:8a:66:40:a8:12:d9:ff:78:e6:07:02:6f:a1:
         c7:e6:ec:be:5f:a6:87:fd:83:b6:2d:e6:d9:98:25:c1:13:bb:
         d0:a7:a4:c0:3f:94:56:de:49:2e:6f:01:46:3b:e5:d6:a8:d7:
         b9:e7:bc:02:65:17:a7:98:b4:4e:59:d0:f7:4c:d4:44:da:2b:
         58:5e:59:8c:da:17:49:3c:ba:a3:55:f4:74:56:94:b3:d6:66:
         14:a4:14:7b:10:12:f2:1b:69:fa:7b:47:61:22:fb:d8:d5:22:
         b8:8a:e0:f1:ea:55:8c:3a:19:c7:50:9b:ca:86:44:eb:1d:f6:
         53:45:83:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----