Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft
File:                     D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json)
Hash identifier:          ZHvF7D1WASEB5dtvl4T4IwxGGHt+Gtk4TfhKA9PzJ6k=
Subject key identifier:   A3:6F:48:9A:5A:83:BE:08:D9:65:CB:92:A0:18:BD:F8:30:07:42:91
Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57
Certificate issuer:       /CN=D237DEA20D73B3F216B98336BA8307D913DDB257
Certificate serial:       67C679587ED8BA669595D51CA88047CB14C84E11
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft
Manifest number:          0129
Signing time:             Wed 29 Apr 2026 00:51:15 +0000
Manifest this update:     Wed 29 Apr 2026 00:46:15 +0000
Manifest next update:     Sat 02 May 2026 09:50:15 +0000
Files and hashes:         1: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: BCCb4nL5XMmpMdSkxCXPUSQLEmxZCQI28MZITBtZgyY=)
                          2: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: eyJcLgwqfLDN5yf54+8qcXB3Eo84ClH1ySCmSpCcr34=)
                          3: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: /XQcveyg4jv0OLVMXGF7RkM1OgqinZHYHqjopRTiyzg=)
                          4: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:c6:79:58:7e:d8:ba:66:95:95:d5:1c:a8:80:47:cb:14:c8:4e:11
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257
        Validity
            Not Before: Apr 29 00:46:15 2026 GMT
            Not After : May  2 09:50:15 2026 GMT
        Subject: CN=A36F489A5A83BE08D965CB92A018BDF830074291
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:06:db:b6:e4:06:95:fa:55:d2:61:ab:c8:0e:
                    e6:2a:6d:e2:48:66:ef:59:f3:0a:10:fe:f5:19:39:
                    69:3d:e0:4b:ed:35:4f:11:df:b5:9f:cf:2b:11:c3:
                    10:da:68:04:60:ea:92:4e:7e:10:7f:ec:cb:86:55:
                    6a:2d:48:e0:fa:4f:df:78:9d:33:1c:7e:7a:6c:66:
                    34:16:aa:de:b3:4a:09:34:e9:44:47:16:a3:e2:32:
                    41:39:08:27:cb:5a:84:6b:e9:fd:7c:ae:88:19:4b:
                    77:2f:57:22:4b:d8:83:47:04:ab:89:cd:81:3c:4b:
                    fb:64:c6:9b:d7:dc:49:02:aa:b4:1c:96:ee:f4:0f:
                    e5:33:35:f0:12:6c:18:93:4e:c6:75:23:cc:99:2c:
                    81:cd:19:a6:89:8d:00:6c:f5:c6:d1:8f:7b:81:58:
                    df:27:99:76:57:b7:ce:e9:eb:8a:36:c8:f9:7b:58:
                    5d:e7:f8:b4:d8:a1:cf:f7:29:2d:97:e3:b1:12:c9:
                    c8:03:07:9a:49:aa:f0:47:03:f0:c8:de:64:51:b4:
                    49:b2:9d:fc:15:6e:2e:62:f6:1e:84:a9:f4:6e:f7:
                    d7:7d:41:98:69:67:a3:9d:ed:57:c3:09:dd:b3:bc:
                    26:65:14:52:70:01:9b:b0:20:7f:af:07:77:d7:db:
                    33:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A3:6F:48:9A:5A:83:BE:08:D9:65:CB:92:A0:18:BD:F8:30:07:42:91
            X509v3 Authority Key Identifier:
                keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:6c:05:3d:8f:cc:75:44:f5:fa:6e:a4:94:82:bb:ee:7e:a6:
         e9:74:e3:8a:5c:0d:0e:58:09:0d:65:b6:d3:a0:e6:9c:ca:7c:
         37:9a:12:27:b3:70:8c:53:a7:b8:22:b8:73:91:31:31:c4:c0:
         48:fd:24:18:65:8c:d7:fe:0e:70:72:34:2a:06:5a:5c:00:cc:
         fc:44:13:34:49:f9:65:ba:95:ee:6d:73:2b:cf:5a:4d:e9:7f:
         50:4a:53:d8:f2:44:12:45:ab:c3:5d:f7:9b:cc:75:fa:99:95:
         4e:7d:a3:75:0a:b3:4f:83:40:e9:e9:d4:17:19:2a:07:fd:e6:
         43:78:8c:b2:be:df:bb:93:55:ce:50:d7:8e:ba:fd:e7:72:95:
         1a:4d:14:2a:64:89:4c:fe:87:92:49:80:d4:78:c7:27:96:02:
         55:e9:16:aa:69:a8:41:da:52:22:7b:1d:8d:6e:dd:31:75:ac:
         71:16:00:d8:55:33:ca:ac:e8:02:5e:5d:60:d5:bc:07:82:d7:
         f0:4f:6a:5f:29:76:3c:13:1a:60:1b:f5:c0:47:19:a4:87:ce:
         f0:c9:f6:5d:e4:68:8b:0c:74:07:c2:00:50:b1:e2:66:d2:f1:
         b3:ee:de:a1:3f:a5:f0:00:61:bb:8e:4f:bf:b5:2e:05:6c:81:
         9d:60:09:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----