Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft
File:                     BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft (raw, json)
Hash identifier:          qMtlNl+wyQc8qChD+HI/szgihhykNQzxC6sjsX+dVFI=
Subject key identifier:   02:D6:2F:3F:3D:B5:A4:6D:61:2B:31:39:91:C8:C9:7C:6B:85:ED:52
Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A
Certificate issuer:       /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A
Certificate serial:       6565B5BDB1029704E8114304E169CCF7825EC6C5
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft
Manifest number:          013B
Signing time:             Mon 27 Apr 2026 04:33:40 +0000
Manifest this update:     Mon 27 Apr 2026 04:28:40 +0000
Manifest next update:     Thu 30 Apr 2026 14:39:40 +0000
Files and hashes:         1: 3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa (hash: gHM5luFeEetgfWqiMHhu+lVFx8B4n56uDW1XsI2WvsE=)
                          2: BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl (hash: HNIyWZ9F9GprHmApxlh6ejvSBslbuADavX0VdYJ0e6s=)
                          3: 3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa (hash: Qnnyi7gDeduqFHoOxDm0ej6IIeZV5kqDiu4+i5De3ZI=)
                          4: 3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa (hash: foPeH94YxJOh2Wqv5gS26d6PmcQkpAdiKm2Z3R4p/G4=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            65:65:b5:bd:b1:02:97:04:e8:11:43:04:e1:69:cc:f7:82:5e:c6:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A
        Validity
            Not Before: Apr 27 04:28:40 2026 GMT
            Not After : Apr 30 14:39:40 2026 GMT
        Subject: CN=02D62F3F3DB5A46D612B313991C8C97C6B85ED52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:a8:a9:e6:32:d4:fc:01:3a:f6:3b:fb:be:ba:
                    0d:50:5c:9d:6f:17:5f:94:f3:de:d7:62:50:ca:ab:
                    0d:aa:1b:8d:98:46:d1:e5:b9:19:fb:3d:58:58:48:
                    3f:68:09:4a:52:3b:cf:57:4b:77:9b:f6:2e:1c:3e:
                    43:b7:04:6b:94:1f:d4:f0:a3:c1:37:a7:f9:3d:5a:
                    6b:2f:9f:a8:f2:2c:81:4a:16:0c:ca:ae:80:fa:5a:
                    12:94:18:b8:78:9b:57:74:25:d6:19:c8:fd:44:0d:
                    bc:6b:0a:5d:25:d6:39:49:31:c3:2c:98:36:7e:16:
                    e5:92:09:56:c3:87:8a:1d:cf:ab:92:9e:7b:91:eb:
                    bd:5e:68:75:d6:70:a1:5b:a4:62:50:2a:43:7b:e0:
                    5a:eb:2d:c9:7d:09:a8:84:2f:15:85:da:c9:02:b4:
                    19:47:e3:da:3f:c0:68:ec:78:d0:83:d6:77:59:26:
                    64:67:0d:a0:ef:65:1e:57:56:a6:96:7e:86:8f:c9:
                    69:69:11:a7:50:c1:1d:6d:cb:b5:28:0b:12:72:df:
                    d7:3b:a9:ba:f6:d6:0b:bd:e3:a2:a4:4e:7a:cb:af:
                    2b:c5:3e:e1:94:81:d4:eb:64:fc:47:6b:45:9f:7a:
                    56:5c:fc:3b:c0:84:c2:a2:5c:c8:30:fd:31:18:37:
                    7d:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:D6:2F:3F:3D:B5:A4:6D:61:2B:31:39:91:C8:C9:7C:6B:85:ED:52
            X509v3 Authority Key Identifier:
                keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:3c:f2:05:99:9b:71:2b:dd:ef:56:5a:5d:e5:30:bc:e6:87:
         75:39:2f:15:9c:ae:21:e3:68:f7:b8:bd:a9:a9:bf:15:e4:30:
         49:6c:31:a9:2d:b1:c2:de:c5:46:26:b9:e5:24:84:f8:e1:4d:
         42:95:71:24:bf:7e:1b:7e:3d:b3:02:a9:25:f9:58:08:28:1c:
         3c:3b:51:c8:13:62:99:c8:d2:f5:17:2e:23:0d:26:57:bf:d1:
         30:32:2a:ae:49:16:03:9d:21:2d:67:d6:af:4c:20:51:51:94:
         88:7a:3f:18:bc:a0:d9:34:33:10:95:86:b1:a3:bd:09:40:83:
         4a:7c:76:81:4b:56:b1:d9:2b:c8:a1:d5:3a:cc:44:0b:b9:17:
         14:14:02:1b:4f:01:25:70:e6:b0:8e:73:49:05:2e:d7:97:c6:
         ac:86:27:07:04:70:e8:ce:82:ca:66:18:ff:8c:21:8f:66:d8:
         2b:6e:a4:b8:f2:9a:c8:3e:29:b2:68:4a:25:25:26:af:91:37:
         59:65:9a:b7:d8:7d:85:45:63:ac:b1:ba:1c:71:14:3c:7d:59:
         ca:3d:d0:1d:15:c7:e6:fd:97:29:12:2f:ed:68:1b:c6:3a:6b:
         2c:29:a8:15:8d:5f:48:9e:e8:f7:a1:dc:2c:c2:ad:b1:0b:33:
         7d:6a:b5:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----