Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
File:                     8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft (raw, json)
Hash identifier:          WyoLYrMP+/d8mZ/5+lJ59BzTsopi1VfAHEY2KaxOxWk=
Subject key identifier:   14:AE:F8:97:63:20:34:C7:43:29:60:DA:4E:9F:CB:E2:A1:65:23:64
Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF
Certificate issuer:       /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
Certificate serial:       5C8740619C2615468E4C6374567073ABDAEEB7CE
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
Manifest number:          0117
Signing time:             Sat 28 Feb 2026 14:01:17 +0000
Manifest this update:     Sat 28 Feb 2026 13:56:17 +0000
Manifest next update:     Tue 03 Mar 2026 16:17:17 +0000
Files and hashes:         1: 8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl (hash: npPr2CVosZYAyJL3vM5uF1QSEqF7etpQ+J8uS0PCMVg=)
                          2: 323430343a346563303a313a3a2f34382d3438203d3e20313338313339.roa (hash: X/C9vXKY/TY9dLHbewA4tddP0TItlp1o/B62rHS1ZLs=)
                          3: 3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa (hash: AZoy99OzaaD9x6sZSBHTE/6tOjO7s0t/ExrzVTGMWVY=)
                          4: 323430343a346563303a3a2f33322d3438203d3e20313338313339.roa (hash: A2G6b+fxTo20QvHK7lUw9boisWwmFFcOlzGIN95UCMI=)
                          5: 3130332e3133332e3134342e302f32342d3234203d3e20313338313339.roa (hash: 4N3xCB2x4rBoMiXQaq1TIxjQcspdHHBn4voGBhoXwMQ=)
                          6: 3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa (hash: aR62APrh1DccZKre5l7C6SLFps3TBPFdm3R3znGJ1fA=)
                          7: 3130332e3133332e3134362e302f32342d3234203d3e20313338313339.roa (hash: nNqPduu/JjsIMhgAQMQxpm1Co5pg16TuoWu2Q/HzWgA=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl
                          rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 03 Mar 2026 16:17:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5c:87:40:61:9c:26:15:46:8e:4c:63:74:56:70:73:ab:da:ee:b7:ce
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
        Validity
            Not Before: Feb 28 13:56:17 2026 GMT
            Not After : Mar  3 16:17:17 2026 GMT
        Subject: CN=14AEF897632034C7432960DA4E9FCBE2A1652364
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:f2:58:16:cf:1f:64:9f:81:a1:84:e9:61:28:
                    14:7c:2a:46:19:75:8c:fc:32:a7:36:cf:e0:41:f7:
                    ca:71:2c:f8:42:b4:65:d5:cf:f8:e7:0f:dc:d8:d4:
                    e4:8e:92:d8:80:2f:e0:a6:03:f6:ff:5b:5a:9a:85:
                    27:7f:f7:40:dd:73:10:5b:78:4d:d4:04:d6:ab:bc:
                    cb:09:4c:67:7b:32:df:37:28:c8:d9:10:9d:7e:38:
                    dd:40:11:cc:dc:10:fa:17:f5:94:59:45:0a:55:00:
                    9a:9d:79:df:fb:46:f8:f1:0d:c6:7c:5c:87:a3:cb:
                    6f:6f:ff:fc:05:09:83:12:99:ab:e5:66:da:39:a6:
                    2e:d5:e1:6a:dc:69:63:16:94:1e:bc:52:c4:ac:92:
                    e3:41:42:77:20:f3:de:15:5a:6f:e4:4f:e2:ba:c4:
                    fa:d1:d2:de:a8:c7:63:4a:96:d7:f5:f2:02:38:8e:
                    67:bd:ae:dc:51:63:42:77:80:42:f9:e5:6b:a1:b1:
                    b1:b3:21:39:a2:ac:dd:ba:e9:69:c2:2d:54:68:2f:
                    26:d2:6c:fe:b1:3b:c0:1d:13:85:64:b4:62:96:64:
                    95:e5:9f:cd:67:33:5b:7e:b0:ac:ae:99:d2:cf:78:
                    cc:8c:bb:75:4d:25:7f:ce:0a:b4:53:24:1e:e8:ce:
                    71:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                14:AE:F8:97:63:20:34:C7:43:29:60:DA:4E:9F:CB:E2:A1:65:23:64
            X509v3 Authority Key Identifier:
                keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bf:a6:f4:57:18:5f:19:ac:5b:e0:3a:c3:5e:8b:83:ce:6c:99:
         d2:50:0d:bc:7a:a6:00:40:f7:38:b6:4c:62:3e:ba:0f:7a:86:
         ed:63:10:91:8e:24:71:59:6b:c7:b8:99:2f:84:0f:8b:2a:88:
         6e:69:16:3d:0a:fa:0d:11:ef:91:6e:95:73:15:8f:c2:0d:14:
         f8:e6:53:19:48:f6:b9:04:f5:60:9f:aa:1e:7f:22:61:ea:8b:
         f6:73:2f:2f:be:61:a5:6b:a0:c7:7d:eb:12:1f:63:21:af:c2:
         11:ad:63:70:cd:b6:7e:08:cb:1c:ec:67:4d:c5:67:ad:5c:40:
         9f:65:eb:b5:23:5f:bb:24:da:0a:50:d9:05:59:b2:86:2b:95:
         15:ce:9f:c6:34:c1:f9:ab:f1:61:b2:bf:bd:e7:45:a7:95:5c:
         e7:0b:a0:e0:42:c8:d2:66:ec:cf:45:0d:ce:cb:99:d7:93:cd:
         bc:99:36:53:b5:3a:62:f0:7c:ba:2a:9e:a7:fa:3a:5b:16:1c:
         a3:1f:94:4f:09:67:91:9a:73:60:f1:d7:aa:d3:b5:fe:90:37:
         51:71:68:68:b1:07:a7:11:b5:e6:28:34:e3:d6:45:7e:80:5b:
         93:51:71:fb:1c:5f:c9:12:4a:93:39:50:ba:8a:8f:67:0a:25:
         63:75:0d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----