Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft
File:                     8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft (raw, json)
Hash identifier:          bVa6orJ4pvpWQ7jAgQxCUzHxnJswIAsP24gaeGHfI2E=
Subject key identifier:   89:1F:B8:72:62:9C:9A:1F:B9:E2:18:9A:3F:2F:B2:69:DD:C2:31:1E
Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A
Certificate issuer:       /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A
Certificate serial:       7FE6028C2DB3B01F1308B37C77E1211DCB12490E
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft
Manifest number:          0612
Signing time:             Mon 02 Mar 2026 00:40:42 +0000
Manifest this update:     Mon 02 Mar 2026 00:35:42 +0000
Manifest next update:     Thu 05 Mar 2026 02:39:42 +0000
Files and hashes:         1: 3230322e37332e32352e302f32342d3234203d3e20313431383932.roa (hash: L3e7xhgbdKiD6xLSCC6o4EcC4VabYtoVoPe/Fd1r3p4=)
                          2: 3230322e37332e32362e302f32342d3234203d3e20313431383932.roa (hash: QqG89TEZjAnI8K1IrPR29kJtDOMjh4sJXdy9wDe7GkQ=)
                          3: 3130332e31382e37362e302f32322d3234203d3e203535373031.roa (hash: oa5lMgIER/j9/ZBqK2jTnvVzB4d9A9ON67O4sbQz5Lo=)
                          4: 3130332e33312e3233322e302f32322d3234203d3e203535373031.roa (hash: BrB/GW7Td9VbCbmZFNch6tbk4BKMd6sCGKbNPlrCa44=)
                          5: 34392e302e302e302f32322d3234203d3e203535373031.roa (hash: yzJFuCgJdtqHHRWns+YkV15nd/BuBUJW5VOi1zg7H6Q=)
                          6: 8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl (hash: xympwa7z46J9DJmrhibwWTPbKofk6WtrVGiPE2yIK2w=)
                          7: 3230322e37332e32342e302f32342d3234203d3e203535373031.roa (hash: 4zJcjhi99V9+23NjQKwrFy3Y4HQGoSDMxwY4qblbwdg=)
                          8: 34332e3235322e3233382e302f32342d3234203d3e203535373031.roa (hash: Nnf66JxT1+eZbCkYQn8x6cz4I9We7qQ0T90RTh7FkG0=)
                          9: 3230322e37332e32372e302f32342d3234203d3e203535373031.roa (hash: 7FX65tSRyznIseHKWjzPuHzH3CNvHvrWJempYLyB19A=)
                          10: 34332e3235322e3233362e302f32332d3234203d3e203535373031.roa (hash: Dc8BdtAPO03Z1L5MRp5Y72lj+merY2MxA64B93hGmbo=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl
                          rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 05 Mar 2026 02:39:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7f:e6:02:8c:2d:b3:b0:1f:13:08:b3:7c:77:e1:21:1d:cb:12:49:0e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A
        Validity
            Not Before: Mar  2 00:35:42 2026 GMT
            Not After : Mar  5 02:39:42 2026 GMT
        Subject: CN=891FB872629C9A1FB9E2189A3F2FB269DDC2311E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:53:c5:de:02:38:bd:b0:ea:15:ae:9c:8b:c1:
                    4a:01:20:1e:a3:0d:21:d8:b4:42:5b:c6:ff:99:58:
                    ab:d1:17:6e:79:d9:49:6e:d8:6e:49:47:7f:da:2c:
                    d1:12:92:b0:c7:e8:80:c0:15:a7:fa:65:af:b7:b4:
                    bb:f4:fc:72:1a:b6:99:6c:03:da:3c:c8:75:65:f0:
                    3a:d2:c6:de:3e:ab:39:64:0b:13:5d:99:3f:34:7e:
                    8d:ba:f1:9b:0b:21:4a:2b:c1:b5:47:6c:90:a2:31:
                    29:aa:e5:51:20:66:3f:fd:4d:86:3b:08:b9:88:9b:
                    1f:dd:25:0c:0d:17:37:43:a6:bf:34:40:6a:5d:eb:
                    d2:6c:79:84:ef:c6:3a:f3:0c:81:48:4e:54:24:24:
                    a4:69:f1:c8:2f:a5:9b:26:fb:3b:18:c4:62:84:86:
                    fb:3c:20:9d:25:f0:bd:03:13:51:de:4b:18:db:a4:
                    5a:0a:41:9e:80:05:e9:17:63:13:07:fb:9a:2e:50:
                    23:be:1f:57:e7:a2:8b:bc:ee:f6:f3:a5:c3:65:c7:
                    69:a4:93:44:fa:fa:a1:36:62:8f:13:7f:c7:19:47:
                    6d:a3:78:90:05:d9:42:a3:de:c0:3b:c6:83:ee:06:
                    f0:7a:88:77:30:f9:90:0b:f8:3c:ac:b0:6b:62:14:
                    2b:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:1F:B8:72:62:9C:9A:1F:B9:E2:18:9A:3F:2F:B2:69:DD:C2:31:1E
            X509v3 Authority Key Identifier:
                keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:86:70:51:ac:a6:67:be:6b:16:6a:94:89:eb:09:b2:bd:e4:
         35:8b:26:df:2f:94:d9:4e:86:6c:cc:14:ed:52:a7:76:f5:3c:
         58:dc:d5:c5:33:80:c3:75:47:fa:a8:37:6f:a2:1d:94:03:f0:
         75:52:dc:6a:a8:f4:1a:d9:f4:8d:9d:91:bf:8f:eb:23:07:7f:
         a0:6b:b2:df:b4:43:51:8d:aa:54:96:b9:b7:40:db:4c:c4:c4:
         83:93:f8:4e:51:e3:96:21:9c:8d:5b:c4:3f:a9:5b:cf:f6:fe:
         73:4e:bd:d9:c2:65:8d:eb:dc:4e:a6:37:e5:a3:b6:8b:3f:87:
         ba:94:87:74:e3:31:f8:e2:7b:0f:4f:98:ff:70:29:73:81:81:
         66:19:a1:de:42:43:5a:c8:f0:f9:ce:7d:39:6f:e2:33:47:b4:
         e9:09:43:50:b6:88:15:96:22:c0:89:47:e3:fd:59:79:55:e5:
         62:e6:e2:cc:ed:fd:fd:fb:fa:9b:84:92:b8:6e:a2:33:d7:36:
         24:4e:01:f7:d7:b1:48:ca:89:f8:d5:46:90:17:e8:2d:50:63:
         77:8a:96:90:72:38:dc:99:13:23:4d:ec:87:65:8b:35:e7:62:
         95:dd:b4:72:c1:e4:b4:75:8b:0b:0d:69:ba:86:b7:68:7f:eb:
         5b:7b:a6:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----