Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft
File:                     2D0745D26E59440CB71FAFE996834493DA753248.mft (raw, json)
Hash identifier:          ILJrU1fL+4utzouijStLTI/Nf2eefCYXEBc/Uz/8rqs=
Subject key identifier:   CC:0F:65:82:B3:44:57:35:30:D2:1F:08:CB:51:99:CA:4D:F1:1D:D9
Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48
Certificate issuer:       /CN=2D0745D26E59440CB71FAFE996834493DA753248
Certificate serial:       62AAF993E380A57C70885FC583CC5C104EF55E6F
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft
Manifest number:          01CA
Signing time:             Tue 05 Aug 2025 09:40:49 +0000
Manifest this update:     Tue 05 Aug 2025 09:35:49 +0000
Manifest next update:     Fri 08 Aug 2025 21:27:49 +0000
Files and hashes:         1: 2D0745D26E59440CB71FAFE996834493DA753248.crl (hash: hJRFAugX60tRZYImNbJmsOBN89Eu2jwpPcBG7SbZUW0=)
                          2: 3130332e37332e3135382e302f32342d3234203d3e203234343239.roa (hash: ujITe6uXtdvP5WOayQADk+Rg7asyYqwio86khyT1Nho=)
                          3: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (hash: nxYZnXzCnu/G6Di5JhS1WLXdlQHk8fuEdbh3UpU3Jf8=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl
                          rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 08 Aug 2025 21:27:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            62:aa:f9:93:e3:80:a5:7c:70:88:5f:c5:83:cc:5c:10:4e:f5:5e:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248
        Validity
            Not Before: Aug  5 09:35:49 2025 GMT
            Not After : Aug  8 21:27:49 2025 GMT
        Subject: CN=CC0F6582B344573530D21F08CB5199CA4DF11DD9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:83:02:d8:da:75:af:80:e0:f9:c6:71:79:c0:
                    7f:df:a2:c4:5e:bc:cd:08:04:8c:3a:61:68:8b:48:
                    0e:8e:91:59:a5:d3:52:e4:46:84:12:e1:2b:75:d2:
                    36:56:d0:6e:79:2a:0c:d4:5c:3a:01:48:81:9e:c5:
                    a9:48:55:56:9f:cc:9b:51:29:82:fc:01:7b:25:67:
                    14:9a:92:b9:db:71:f3:8a:43:74:18:93:51:fb:b2:
                    04:a4:80:93:f0:15:28:70:46:26:cf:8c:4f:3c:fc:
                    5e:89:df:1e:14:80:08:99:ef:b9:bc:3e:44:11:15:
                    03:23:d0:79:b9:20:47:73:15:31:0d:40:e5:35:25:
                    47:9a:8d:a1:7f:be:5c:ad:23:91:6d:87:a8:cd:68:
                    84:f9:23:a6:c9:61:e7:b1:a3:ea:66:f8:5f:61:c6:
                    b6:27:6b:f5:9f:44:3e:7d:61:85:d3:44:01:1b:93:
                    17:5b:80:ab:d9:70:33:65:9c:13:c7:63:9c:1d:74:
                    5d:35:a4:85:20:16:38:41:7d:9b:80:a6:c5:09:f2:
                    68:08:f4:54:df:0c:ae:60:2f:d0:d0:13:aa:0b:3d:
                    62:95:2b:09:9e:d6:b0:48:da:c6:6f:a6:4f:36:86:
                    9b:05:82:75:92:5d:b1:f1:31:f4:7d:90:91:32:fb:
                    db:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:0F:65:82:B3:44:57:35:30:D2:1F:08:CB:51:99:CA:4D:F1:1D:D9
            X509v3 Authority Key Identifier:
                keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b8:ba:f2:c0:fe:c8:68:22:7b:ab:fd:b6:1d:c4:79:c5:1a:c3:
         9a:0a:df:3d:b0:33:69:a3:01:77:32:64:3a:75:6b:a1:58:6e:
         34:51:c4:f8:29:a3:8e:0f:39:d7:92:9f:c7:89:71:d0:07:01:
         4b:5e:38:03:9a:d8:d1:cc:62:fd:6c:bd:b3:69:ba:fc:67:24:
         ed:de:46:c4:18:49:88:d7:8f:f9:99:a5:44:c0:b8:fb:60:ed:
         c3:6b:f6:04:87:65:43:35:7e:61:c9:96:0a:84:6c:3b:70:13:
         99:66:df:1f:34:f2:0e:72:36:60:78:a4:03:9b:4e:73:cb:87:
         ce:0b:71:75:ac:f2:d9:bc:38:bf:02:94:8e:36:0c:4b:a4:f3:
         f4:eb:21:15:fb:28:66:02:88:b4:85:b1:98:b9:0f:84:99:00:
         5b:b4:9f:79:d5:b0:08:8b:c6:b3:b4:9d:f9:3b:0f:63:a6:1b:
         86:f1:0a:28:fe:ca:94:2a:bc:41:b5:b3:a2:f6:7a:b8:02:16:
         19:8d:0e:ca:e0:2d:48:cf:d6:9e:f0:c5:7a:12:78:b9:53:cb:
         3d:14:87:24:7a:bf:12:57:1c:5a:ed:82:19:bc:45:51:28:00:
         82:ab:10:2a:01:d0:6d:b9:7c:ba:8c:ff:8d:a1:70:48:6a:25:
         e5:fc:ad:43
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUYqr5k+OApXxwiF/Fg8xcEE71Xm8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE
QTc1MzI0ODAeFw0yNTA4MDUwOTM1NDlaFw0yNTA4MDgyMTI3NDlaMDMxMTAvBgNV
BAMTKENDMEY2NTgyQjM0NDU3MzUzMEQyMUYwOENCNTE5OUNBNERGMTFERDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3gwLY2nWvgOD5xnF5wH/fosRe
vM0IBIw6YWiLSA6OkVml01LkRoQS4St10jZW0G55KgzUXDoBSIGexalIVVafzJtR
KYL8AXslZxSakrnbcfOKQ3QYk1H7sgSkgJPwFShwRibPjE88/F6J3x4UgAiZ77m8
PkQRFQMj0Hm5IEdzFTENQOU1JUeajaF/vlytI5Fth6jNaIT5I6bJYeexo+pm+F9h
xrYna/WfRD59YYXTRAEbkxdbgKvZcDNlnBPHY5wddF01pIUgFjhBfZuApsUJ8mgI
9FTfDK5gL9DQE6oLPWKVKwme1rBI2sZvpk82hpsFgnWSXbHxMfR9kJEy+9uXAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUzA9lgrNEVzUw0h8Iy1GZyk3xHdkwHwYDVR0j
BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF
NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1
MzI0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2E0MDZjZGItMTc5MS00NzhkLTlk
MjgtOWUzN2E2ZjgwOWNjLzAvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0
OTNEQTc1MzI0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBALi68sD+yGgie6v9th3EecUaw5oK3z2wM2mj
AXcyZDp1a6FYbjRRxPgpo44POdeSn8eJcdAHAUteOAOa2NHMYv1svbNpuvxnJO3e
RsQYSYjXj/mZpUTAuPtg7cNr9gSHZUM1fmHJlgqEbDtwE5lm3x808g5yNmB4pAOb
TnPLh84LcXWs8tm8OL8ClI42DEuk8/TrIRX7KGYCiLSFsZi5D4SZAFu0n3nVsAiL
xrO0nfk7D2OmG4bxCij+ypQqvEG1s6L2ergCFhmNDsrgLUjP1p7wxXoSeLlTyz0U
hyR6vxJXHFrtghm8RVEoAIKrECoB0G25fLqM/42hcEhqJeX8rUM=
-----END CERTIFICATE-----
Generated at Thu Aug 7 00:30:30 2025 by rpki-client