Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft
File:                     F389B5570A768F4811B6377427EE5A9710A3078F.mft (raw, json)
Hash identifier:          dW0jR59EJ/jjN3LrbysKS+EiqryXo78MHTvBpIwoqfk=
Subject key identifier:   26:A0:D5:4E:D2:37:7D:3E:23:AE:CC:DB:58:06:09:29:78:15:A3:40
Authority key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F
Certificate issuer:       /CN=F389B5570A768F4811B6377427EE5A9710A3078F
Certificate serial:       09F248DD26F738C4088D36F262AA2D9513E1A181
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft
Manifest number:          0345
Signing time:             Tue 05 Aug 2025 13:40:51 +0000
Manifest this update:     Tue 05 Aug 2025 13:35:51 +0000
Manifest next update:     Sat 09 Aug 2025 01:33:51 +0000
Files and hashes:         1: 3230322e39332e32342e302f32312d3231203d3e203233393532.roa (hash: lCpd9EDW6kxJeEntdCCqy3nxOkL8KJcbnO36OKZILBc=)
                          2: 3230322e39332e32372e302f32342d3234203d3e203233393532.roa (hash: PKWTtW8nxl97mf6uggx7DQTu7mPXIE9nl3tapJJEXZg=)
                          3: 3230322e39332e32342e302f32342d3234203d3e203233393532.roa (hash: kfaAp03dyflQljxrva7g4HC0eTaNF+N0ortCVYgdoCc=)
                          4: 3230322e39332e32382e302f32342d3234203d3e203233393532.roa (hash: JwKnQTdgTXzvOyRVd4mostiUpvJc30Z/4Hc/DZwjPkw=)
                          5: 3230322e39332e33312e302f32342d3234203d3e203233393532.roa (hash: JUNEmwAQ3OD9z4dCAUDRWMfxMppfea30FX3ZfMpQ2Ss=)
                          6: 3230322e39332e32352e302f32342d3234203d3e203233393532.roa (hash: augoYD+h3jPQ0MqbdmFoGx/xv5+vOTa/6Jcvw0aS3oI=)
                          7: 3230322e39332e32392e302f32342d3234203d3e203233393532.roa (hash: Up+DcyPm785j9NlRpEoposKBRtppwgof2aDCtVfivl0=)
                          8: F389B5570A768F4811B6377427EE5A9710A3078F.crl (hash: ffANFT9IHjiVMqgq6ML+G2QXzX5ouLY/hXt1FGCy8I8=)
                          9: 3230322e39332e33302e302f32342d3234203d3e203233393532.roa (hash: UrTuhs6hr6z8RmxXE0waBTEObzjTqxDo0ru50RV8iPg=)
                          10: 3230322e39332e32362e302f32342d3234203d3e203233393532.roa (hash: OdoRUtVMpCFrGJ6E6eEou6i5jvfLhQMLpWAp7LUsjsw=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl
                          rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 09 Aug 2025 01:33:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            09:f2:48:dd:26:f7:38:c4:08:8d:36:f2:62:aa:2d:95:13:e1:a1:81
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F389B5570A768F4811B6377427EE5A9710A3078F
        Validity
            Not Before: Aug  5 13:35:51 2025 GMT
            Not After : Aug  9 01:33:51 2025 GMT
        Subject: CN=26A0D54ED2377D3E23AECCDB580609297815A340
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:cb:79:06:7e:24:2f:a7:6d:41:80:ef:ed:b7:
                    f5:b0:f1:50:d6:75:00:ac:79:4a:03:09:f0:02:94:
                    a5:36:32:a2:6d:a6:ce:a4:91:cc:b3:61:92:82:4c:
                    b7:c0:42:34:13:df:30:c9:8f:81:aa:44:f1:90:74:
                    3c:38:ef:29:b0:f7:54:12:80:33:89:10:2d:5b:41:
                    25:d9:df:f4:b8:93:18:a0:a8:20:40:a0:a9:65:23:
                    7f:cf:33:c6:fb:84:41:f3:63:e2:6d:c0:5d:2a:43:
                    c3:4e:a0:9b:be:50:5c:a6:19:10:dd:00:e8:6a:0b:
                    53:ba:6d:8f:15:36:96:d5:e3:b6:57:06:7a:25:f7:
                    2d:b5:c8:61:12:16:16:0b:1d:0b:38:f1:fe:c2:0f:
                    d0:f5:7c:97:47:c3:02:9b:c2:9b:fd:39:5f:56:2b:
                    65:cb:e3:17:38:cf:11:16:8e:52:f6:3b:c4:d6:19:
                    7a:de:91:38:dd:1e:9b:5b:7f:eb:d2:48:e1:ed:ed:
                    bf:34:61:0a:11:98:a6:58:f4:43:b9:77:22:8c:c6:
                    a3:e0:07:9d:a6:df:3a:3f:a7:5e:95:ee:90:7b:fa:
                    62:cb:d1:2e:e4:6c:d0:6c:23:14:78:41:b7:d4:29:
                    6c:09:d2:71:22:8d:72:af:b5:3b:6d:bf:08:b5:f9:
                    ea:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:A0:D5:4E:D2:37:7D:3E:23:AE:CC:DB:58:06:09:29:78:15:A3:40
            X509v3 Authority Key Identifier:
                keyid:F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d3:59:41:5a:34:55:2d:a2:40:1e:01:43:e2:59:58:30:f6:87:
         f1:97:75:96:30:ce:cd:0a:c6:a6:da:93:06:80:e4:1e:96:63:
         c6:36:2f:08:3c:6c:18:26:05:8d:d3:30:c0:4d:23:b8:5a:84:
         dd:b9:d8:56:6c:a8:cc:d6:1d:2a:5e:d8:c1:84:d1:2e:ce:ff:
         89:38:0b:24:91:50:dd:d0:e3:84:d3:fa:11:03:5e:e3:f7:21:
         1d:b8:57:c1:6c:9e:85:1b:d8:4c:18:dc:0f:b4:e7:04:2b:03:
         73:7a:8f:59:2b:b5:2a:51:9f:e7:2d:e1:1e:bf:44:b1:4a:92:
         44:5c:de:d1:08:59:a3:80:e7:64:16:2d:ee:ab:5e:86:00:27:
         1e:9e:64:9d:43:12:68:66:d4:32:56:d6:f0:0f:dc:f2:e9:10:
         f7:3a:e6:ce:8e:56:47:44:34:30:2b:1c:90:85:97:13:1e:94:
         52:f8:5c:ce:0b:a4:2c:fb:fd:d8:54:0c:1f:d0:7c:0f:3e:3b:
         21:94:11:84:16:d4:29:39:11:79:a2:db:d8:f4:bd:68:b8:2d:
         e2:a3:06:70:77:ff:25:24:d5:0d:bd:8c:b1:fc:0f:09:05:e6:
         f9:3d:9f:40:1c:a2:3b:78:0e:a1:66:ae:7b:d2:b7:64:2c:10:
         55:b7:cc:f0
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUCfJI3Sb3OMQIjTbyYqotlRPhoYEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcx
MEEzMDc4RjAeFw0yNTA4MDUxMzM1NTFaFw0yNTA4MDkwMTMzNTFaMDMxMTAvBgNV
BAMTKDI2QTBENTRFRDIzNzdEM0UyM0FFQ0NEQjU4MDYwOTI5NzgxNUEzNDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYy3kGfiQvp21BgO/tt/Ww8VDW
dQCseUoDCfAClKU2MqJtps6kkcyzYZKCTLfAQjQT3zDJj4GqRPGQdDw47ymw91QS
gDOJEC1bQSXZ3/S4kxigqCBAoKllI3/PM8b7hEHzY+JtwF0qQ8NOoJu+UFymGRDd
AOhqC1O6bY8VNpbV47ZXBnol9y21yGESFhYLHQs48f7CD9D1fJdHwwKbwpv9OV9W
K2XL4xc4zxEWjlL2O8TWGXrekTjdHptbf+vSSOHt7b80YQoRmKZY9EO5dyKMxqPg
B52m3zo/p16V7pB7+mLL0S7kbNBsIxR4QbfUKWwJ0nEijXKvtTttvwi1+eolAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUJqDVTtI3fT4jrszbWAYJKXgVo0AwHwYDVR0j
BBgwFoAU84m1Vwp2j0gRtjd0J+5alxCjB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
YzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMC9GMzg5QjU1NzBB
NzY4RjQ4MTFCNjM3NzQyN0VFNUE5NzEwQTMwNzhGLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcxMEEz
MDc4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2M4YWIzZTAtY2E2OC00MmY2LTk4
ZjYtNjU0YTI1MmE4NjQ4LzAvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVB
OTcxMEEzMDc4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBANNZQVo0VS2iQB4BQ+JZWDD2h/GXdZYwzs0K
xqbakwaA5B6WY8Y2Lwg8bBgmBY3TMMBNI7hahN252FZsqMzWHSpe2MGE0S7O/4k4
CySRUN3Q44TT+hEDXuP3IR24V8FsnoUb2EwY3A+05wQrA3N6j1krtSpRn+ct4R6/
RLFKkkRc3tEIWaOA52QWLe6rXoYAJx6eZJ1DEmhm1DJW1vAP3PLpEPc65s6OVkdE
NDArHJCFlxMelFL4XM4LpCz7/dhUDB/QfA8+OyGUEYQW1Ck5EXmi29j0vWi4LeKj
BnB3/yUk1Q29jLH8DwkF5vk9n0Acojt4DqFmrnvSt2QsEFW3zPA=
-----END CERTIFICATE-----
Generated at Thu Aug 7 00:32:43 2025 by rpki-client