Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft
File:                     B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft (raw, json)
Hash identifier:          gGFTCed4VsalU8zSb8ycsRfa3HM8W/Z8luQJgIoNho8=
Subject key identifier:   5D:0D:37:DD:6C:24:21:93:5F:05:37:0C:8C:59:92:76:24:76:9B:0E
Authority key identifier: B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1
Certificate issuer:       /CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1
Certificate serial:       2B641EE38B81462F12A3FB3E11B54BD1B45752A8
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft
Manifest number:          028A
Signing time:             Tue 05 Aug 2025 11:41:55 +0000
Manifest this update:     Tue 05 Aug 2025 11:36:55 +0000
Manifest next update:     Fri 08 Aug 2025 11:48:55 +0000
Files and hashes:         1: 3130332e33302e3232322e302f32342d3234203d3e203338313438.roa (hash: ZPi+JZqMM8ZilEO1UdhpjL1kpie3JMIqiKeJGeN+nJU=)
                          2: 3130332e33302e3232332e302f32342d3234203d3e203338313438.roa (hash: 8BH7HUPp+qT0dOPwFMHWiAT720E6kg8wn1sWk04/fIM=)
                          3: 3130332e33302e3232312e302f32342d3234203d3e203338313438.roa (hash: w9cZPX/3pDPz2+LwzvjA2m3xBMWMxQj8fam9ODXwU7Y=)
                          4: 3130332e33302e3232302e302f32342d3234203d3e203338313438.roa (hash: 5MfpBewFDSPuWTooHE8O1IkKqC/swjstgMNE2K+S+q4=)
                          5: 3130332e33302e3232302e302f32322d3233203d3e203338313438.roa (hash: d/qApoJ7mr0vuB+K0fvN+XpOWjHSmWf3V1Wp1hQdcro=)
                          6: 323430313a396230303a3a2f33322d3438203d3e203338313438.roa (hash: hc6ECrtKO1f8LRbUaOngruzuLZGjjKMcrVpSYHLGH+4=)
                          7: B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl (hash: XIZ6p0vOmGByiXD1jCRB3E7QyPpZb5vj3Xjge2yjaXw=)
                          8: 3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa (hash: Q0JPOTRHz7S3KCYgxrzfh7sPXe85gqUb+g55+vjlzmE=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl
                          rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 08 Aug 2025 11:48:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2b:64:1e:e3:8b:81:46:2f:12:a3:fb:3e:11:b5:4b:d1:b4:57:52:a8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1
        Validity
            Not Before: Aug  5 11:36:55 2025 GMT
            Not After : Aug  8 11:48:55 2025 GMT
        Subject: CN=5D0D37DD6C2421935F05370C8C59927624769B0E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:9f:2d:c4:c7:a8:97:b4:a1:e8:9c:e6:62:73:
                    3e:f5:3d:d7:ad:fe:fd:7d:35:39:3e:66:f9:44:86:
                    25:24:f6:09:1e:30:83:4d:5c:8c:84:28:fb:29:07:
                    98:93:03:ae:dd:f5:af:1e:75:f8:df:68:46:55:c2:
                    5c:1a:c3:45:63:de:c4:a4:16:70:89:19:9b:69:95:
                    ba:e1:b8:88:23:d7:8f:3e:cd:7b:19:e5:78:ee:c8:
                    4c:0d:e7:c2:0c:cb:c6:99:95:47:16:0c:1a:d5:db:
                    f8:6f:d6:2e:23:b5:66:f2:36:bd:58:71:b6:f1:53:
                    ff:15:8f:0e:17:f5:83:be:3f:0f:08:ed:c2:09:5d:
                    6d:a9:cd:44:d8:8e:e0:07:ae:29:41:19:9d:62:45:
                    af:e9:ec:1f:75:2b:08:fa:33:06:ec:27:60:00:57:
                    9e:90:9b:1b:1e:d2:58:a3:31:44:16:a6:2a:f7:5b:
                    13:e7:d5:ed:10:47:07:b1:e6:01:9f:37:16:8c:7d:
                    34:49:24:e1:8a:95:43:57:18:2a:df:c5:c3:82:89:
                    eb:9e:1b:03:d4:37:52:8b:07:e2:ba:93:59:00:99:
                    68:ef:8e:e2:43:3c:1d:d7:af:aa:9b:8d:0f:83:1f:
                    f2:72:99:c8:a7:9d:41:3b:5e:e5:33:39:12:5e:44:
                    3c:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:0D:37:DD:6C:24:21:93:5F:05:37:0C:8C:59:92:76:24:76:9B:0E
            X509v3 Authority Key Identifier:
                keyid:B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:39:6e:0b:a7:b9:9e:11:2d:ca:ec:1a:f1:bd:08:31:ed:7d:
         cf:e6:30:fd:d7:25:5a:13:22:f2:1f:19:1d:a4:73:82:f7:97:
         3a:1b:13:15:2e:01:a6:43:ff:31:78:74:34:ea:08:46:ff:7c:
         35:dc:43:8c:5e:68:73:52:b1:62:1d:b2:61:6d:a7:d9:b1:3f:
         e4:d3:3f:01:19:95:8b:9f:fe:3c:b8:b5:0d:74:29:36:d5:a3:
         cb:2a:36:9a:c4:bf:7d:54:14:0d:6f:80:c5:98:9f:48:c3:de:
         37:71:38:05:5e:18:16:34:64:28:f2:14:6f:5e:7e:82:a3:e1:
         03:37:23:46:ae:1d:84:c4:a6:c6:ce:f7:4e:3e:6d:60:b6:df:
         fd:b2:29:64:39:6a:69:d3:2d:88:43:8d:34:fb:48:09:1f:04:
         04:58:a6:47:a0:c7:27:45:e0:b4:6d:b4:16:a4:0d:2c:b2:ee:
         df:d6:20:fd:a1:ba:ab:ee:c5:0d:96:3e:9d:69:f8:62:e1:ff:
         c0:52:61:6a:90:56:33:56:ec:ba:4c:cd:88:17:89:81:b6:5c:
         a0:d4:ae:c2:a4:25:65:40:ae:cb:e6:d8:71:90:20:d1:12:6c:
         e4:58:a0:55:d5:80:52:bf:8b:cb:e1:8e:a2:c1:49:1e:43:2d:
         aa:4f:6a:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 16:20:32 2025 by rpki-client