Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft
File:                     B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft (raw, json)
Hash identifier:          3tY4p770ilHdm4sjfM3dMvwxgdxHaXE4aKQQkagHa68=
Subject key identifier:   B2:2A:33:2E:B7:81:0A:01:8F:D3:8E:24:58:1B:FD:A6:1B:F7:BF:29
Authority key identifier: B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1
Certificate issuer:       /CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1
Certificate serial:       419DCF6B0537DBA7C0D3025D0F747FABB80AC9D3
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft
Manifest number:          02E7
Signing time:             Sat 28 Feb 2026 11:52:04 +0000
Manifest this update:     Sat 28 Feb 2026 11:47:04 +0000
Manifest next update:     Tue 03 Mar 2026 12:18:04 +0000
Files and hashes:         1: 3130332e33302e3232322e302f32342d3234203d3e203338313438.roa (hash: +SJaFJQyqBdRsoSnVqf1c6YDNbR+iItpuCQMYo/GJwM=)
                          2: 3130332e33302e3232302e302f32322d3233203d3e203338313438.roa (hash: dip5cfpPOxv7j5avMlkj27CtA1ffgVlncphql09alQk=)
                          3: 3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa (hash: q36ZaNZnng4e3YSesfRm7Xhg/e4wHbxv2r58SbE/Hyw=)
                          4: 323430313a396230303a3a2f33322d3438203d3e203338313438.roa (hash: KdtiKUAOdh5Pdj0OkOpsBFHlVClUvcCXmF1ngZraMiI=)
                          5: 3130332e33302e3232332e302f32342d3234203d3e203338313438.roa (hash: Oz3xD+pukxgYWpnFQL+j6A86Gc4jUZiZu2sP1l7btM0=)
                          6: B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl (hash: 0VaNE0HCLvV9lttWG8EzWgNMvr/DZZSpqced8xkyyPk=)
                          7: 3130332e33302e3232302e302f32342d3234203d3e203338313438.roa (hash: o3fKHuVWFD6jkUIoyhNcY5O2uYQKepNEkJqsRTcT0Zs=)
                          8: 3130332e33302e3232312e302f32342d3234203d3e203338313438.roa (hash: 7jwgwmu5p9Vx0nJtBBICc1jR6TLu2T+YBURAKlHLhFY=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl
                          rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 03 Mar 2026 12:18:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            41:9d:cf:6b:05:37:db:a7:c0:d3:02:5d:0f:74:7f:ab:b8:0a:c9:d3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1
        Validity
            Not Before: Feb 28 11:47:04 2026 GMT
            Not After : Mar  3 12:18:04 2026 GMT
        Subject: CN=B22A332EB7810A018FD38E24581BFDA61BF7BF29
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:8b:cc:b7:b0:e1:57:a4:7d:84:08:18:87:48:
                    ad:92:a1:4d:e6:82:01:a1:65:bd:3d:a8:a3:67:75:
                    08:3f:13:33:a5:be:c5:d8:44:0d:39:f9:03:71:9a:
                    e7:e1:08:07:16:67:07:65:82:85:8e:81:a0:52:c7:
                    4a:ba:8a:0b:51:1d:3f:34:11:e2:f5:42:2f:a0:f8:
                    11:91:54:70:be:8e:b1:62:d4:8d:81:f0:59:ab:8e:
                    84:2f:cf:f1:40:f0:b5:ad:e1:f8:9c:ee:93:80:ba:
                    c0:e4:84:b7:85:47:5c:5d:95:e7:fa:04:f8:c3:9f:
                    ea:29:bb:3d:b7:11:e4:3a:ce:e1:21:74:cc:f2:f3:
                    ce:58:91:f9:49:82:cd:f5:2c:2c:59:4a:57:3c:9a:
                    63:f3:32:d8:8b:ce:0e:4e:3a:c1:ae:fd:01:3a:a2:
                    2a:86:17:9e:0f:52:d8:dd:30:25:b9:6f:51:48:b1:
                    09:e0:1b:0f:ca:ac:85:a3:4b:c8:7b:03:24:a7:1c:
                    d1:89:a0:8d:8e:9d:1e:25:fc:18:08:91:d6:f9:d4:
                    e1:5b:13:61:13:97:f0:9f:c7:37:89:65:07:b1:04:
                    58:1c:35:1f:c2:f8:ac:85:62:05:08:aa:c6:06:10:
                    70:3a:16:80:91:71:59:cf:cd:1a:a8:4e:2a:28:f9:
                    7f:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:2A:33:2E:B7:81:0A:01:8F:D3:8E:24:58:1B:FD:A6:1B:F7:BF:29
            X509v3 Authority Key Identifier:
                keyid:B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:5d:78:f3:61:53:e0:fd:e3:fe:6b:94:85:80:94:f8:52:92:
         f8:9d:0f:5e:10:9a:9d:08:fa:70:c0:31:66:19:78:d8:e7:2a:
         da:6f:8e:57:17:f4:db:37:cc:40:7d:69:c4:1c:1a:47:35:f0:
         6b:eb:e2:16:70:f2:69:5b:28:29:98:69:d5:40:49:60:de:c8:
         9f:84:ce:b9:3c:b6:c4:dc:ed:78:82:02:89:0a:cd:a0:ca:71:
         c5:20:1b:08:d7:45:af:a6:13:65:7c:75:eb:79:69:c4:66:b7:
         28:ce:06:3c:95:4b:90:58:b4:80:6d:f2:3e:83:89:33:0f:12:
         fa:dc:91:0e:80:6f:eb:53:00:eb:13:72:2d:62:df:ef:89:e5:
         7c:e0:f7:28:25:dc:0b:36:67:61:7a:7d:9b:e6:a5:45:75:00:
         57:a1:bf:7b:b8:ec:65:88:97:f1:a3:e7:79:ac:69:fd:66:f6:
         ad:72:95:1a:d8:27:e7:20:d0:94:cf:d4:27:2f:b0:14:f1:6f:
         5b:f1:f8:22:fa:91:83:05:63:06:f3:e0:dc:2d:0c:1a:c3:60:
         ac:c4:82:a9:17:ce:95:f2:c5:9f:a8:9f:db:84:cb:27:c6:6d:
         08:10:e1:f3:e4:b9:95:51:21:d1:a5:f4:6d:5f:31:32:b5:cf:
         8b:4b:48:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----