Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft
File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json)
Hash identifier: +yMOTHqaXlo/Zgs/iDBqU6U/GnggIK8sHOjbp2La4E0=
Subject key identifier: 2D:6C:63:0A:F7:B0:7E:14:0E:F6:83:A4:C2:89:6E:DE:2B:1F:5F:04
Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1
Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1
Certificate serial: 02E4B56E0BF798A8F0CF8C8D6D93FC72A0A44DE8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft
Manifest number: 0178
Signing time: Mon 27 Apr 2026 20:32:10 +0000
Manifest this update: Mon 27 Apr 2026 20:27:10 +0000
Manifest next update: Thu 30 Apr 2026 21:45:10 +0000
Files and hashes: 1: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: E/OOK6OfxELWQ4VoHCo/YpLWDsWb/6FGvs/avM4AaWo=)
2: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xTPoIlaNmn7dCA4oz4xbGajx7u9U25QUsQJawDHmNA8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:e4:b5:6e:0b:f7:98:a8:f0:cf:8c:8d:6d:93:fc:72:a0:a4:4d:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1
Validity
Not Before: Apr 27 20:27:10 2026 GMT
Not After : Apr 30 21:45:10 2026 GMT
Subject: CN=2D6C630AF7B07E140EF683A4C2896EDE2B1F5F04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:48:12:3e:d9:f6:24:a4:78:e3:ba:7c:3d:2f:
a5:88:56:37:d3:e9:76:8b:d3:57:10:d0:43:46:a9:
f7:d5:fa:42:a9:f9:a5:ef:f5:9b:30:d0:fc:58:09:
4c:95:05:9c:8c:67:a3:e4:aa:a3:b9:06:76:ae:40:
db:2d:22:f8:87:a2:b0:a8:63:dc:cc:de:c8:f7:0c:
d3:81:6a:0e:cb:b5:36:d6:08:5a:09:91:85:40:1e:
97:2b:c3:01:3d:65:13:22:8a:85:9f:c7:f1:11:77:
ff:40:8a:e4:4c:a1:94:38:6c:82:96:d6:db:8c:63:
29:21:37:81:3c:59:88:e2:06:a7:08:e9:ce:9f:27:
7d:f0:7b:b6:af:37:af:b1:82:8f:bc:35:d0:89:eb:
ed:53:39:c4:c3:ff:81:56:78:55:75:25:d4:f3:c8:
88:8b:b7:28:20:11:ca:6b:cd:fc:0b:82:08:90:42:
b5:ca:dd:5c:ca:b6:77:cb:fa:14:7a:8a:db:8d:19:
48:18:f8:74:5a:e8:50:9e:19:1a:33:7a:39:58:09:
b7:5e:c2:b9:7c:f4:c5:06:fb:5e:3a:bc:73:42:51:
f2:e0:07:7c:81:ef:d2:53:5c:89:52:7a:88:6a:ca:
f8:5a:cd:5d:fb:eb:a9:87:f5:f6:d8:21:a1:c1:e4:
bb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:6C:63:0A:F7:B0:7E:14:0E:F6:83:A4:C2:89:6E:DE:2B:1F:5F:04
X509v3 Authority Key Identifier:
keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:f0:8f:71:0b:b7:de:ec:55:04:d3:9c:35:8c:a7:ca:6d:90:
65:45:e0:3e:39:00:b4:d4:d4:82:04:48:64:fb:cf:7b:0d:83:
88:7f:6a:b8:7d:cf:f7:22:6a:1d:25:df:1d:43:4a:c2:fe:de:
0d:35:40:4b:c7:e9:51:c1:5e:4f:f6:ca:54:d3:f4:c1:57:95:
fc:7a:92:e2:cf:35:f0:12:29:b6:07:8a:41:e1:e0:50:6d:b2:
4e:40:f5:f5:18:f4:ca:03:3f:79:ac:e4:5c:b1:9e:b5:64:9c:
e0:e9:25:12:70:5f:17:cb:d5:84:11:21:5a:2b:1e:5a:ab:94:
07:1b:21:2e:e8:3f:6d:59:d2:c0:a3:3b:46:d6:78:a1:44:0f:
f2:a3:6b:88:2c:43:3f:9f:44:98:c6:60:39:f8:1d:7c:58:5d:
75:85:31:b3:a6:bd:d6:a8:e1:30:57:5d:e7:f4:81:68:5f:7d:
69:4b:1d:ed:82:1c:12:08:69:86:45:e7:ba:30:0f:c7:48:a5:
a8:71:d0:b1:8e:c9:6a:7a:54:a7:fb:62:81:d2:b7:b2:76:96:
f6:fc:0d:47:56:3f:50:0b:76:80:c2:de:36:4c:fd:7c:ac:82:
2a:72:f0:3d:11:bb:99:b1:eb:1e:4d:35:91:af:30:c3:44:c1:
2d:ce:02:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 04:16:33 2026 by rpki-client