Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft
File:                     BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft (raw, json)
Hash identifier:          BX762V8tmJT+vZVoYxqvq3k8pCQsCxPkMPbcsnJmpfk=
Subject key identifier:   BD:C6:A8:4C:9D:1C:E3:6D:6A:BC:ED:DF:C1:1F:5E:64:4D:D7:7F:4C
Authority key identifier: BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B
Certificate issuer:       /CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B
Certificate serial:       2288FA9F7BF743D704E62C874CA01C3CAA24702C
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft
Manifest number:          0502
Signing time:             Tue 05 Aug 2025 12:12:23 +0000
Manifest this update:     Tue 05 Aug 2025 12:07:23 +0000
Manifest next update:     Fri 08 Aug 2025 18:59:23 +0000
Files and hashes:         1: 34352e36342e3130302e302f32322d3234203d3e203435373836.roa (hash: sLI9kyH4UUKtJ48DuSDvIEt/kI9PlelTvUCSLOep6GI=)
                          2: 3131312e36372e38302e302f32332d3234203d3e203535363931.roa (hash: 6r7ytzVqOZCu9ltnazdoDFZyu1sN5kdyWtk6OiFCZME=)
                          3: 3131312e36372e38382e302f32332d3234203d3e203234353337.roa (hash: Kkkq08Mmxr8hsDH69JGbHxLxb84nfHJXao32g/p1mFQ=)
                          4: 3131312e36372e37362e302f32342d3234203d3e203536323333.roa (hash: q6kGIkTw1IEwFZ8E1rrhCKF72eKLzmU0iFvN+CMeGms=)
                          5: 3138322e35302e3234302e302f32302d3234203d3e203435373836.roa (hash: duzHqAm6QedJQSgIxWwqnRHJ98BpWQZp6Vy/UDaP+2w=)
                          6: BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl (hash: 33hr7zehaRTeop06aLibCXphNqM5aPM9fnm9kpbQsbw=)
                          7: 323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa (hash: /ZSyzzH4osQQo8OEYTUKDqHS0TOIh680hRVxT7riSK4=)
                          8: 3130332e32312e38342e302f32322d3234203d3e203435373836.roa (hash: TQgzpMcLfaNgOb2UQ22DmepvwTBX2ZphizKn7sBXlfU=)
                          9: 3230322e36312e3130302e302f32332d3234203d3e203435373836.roa (hash: a8mTP5wqsK0/6i33hi9F2fx0vcrLrr8F0sXVOsBm+uM=)
                          10: 3131312e36372e38362e302f32332d3234203d3e203234353337.roa (hash: tDz28BGDnFd3MGcS96yd4J0BbOjvcShV8THChhLQTrA=)
                          11: 3131312e36372e37332e302f32342d3234203d3e203536323333.roa (hash: LN/QrtLQN7eBHDeVxv+de8QzLZrhiGE5e9eCTFW2W9s=)
                          12: 3131312e36372e36342e302f31392d3234203d3e203435373836.roa (hash: WtJvSkSMcWIFCYDWJoeYFOWIHYYIU2e63ZAjyF2Lb8o=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl
                          rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 08 Aug 2025 18:59:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            22:88:fa:9f:7b:f7:43:d7:04:e6:2c:87:4c:a0:1c:3c:aa:24:70:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B
        Validity
            Not Before: Aug  5 12:07:23 2025 GMT
            Not After : Aug  8 18:59:23 2025 GMT
        Subject: CN=BDC6A84C9D1CE36D6ABCEDDFC11F5E644DD77F4C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:4c:9e:94:e2:98:15:4d:2c:96:74:2a:08:c1:
                    84:40:c1:eb:9a:ef:ca:59:85:ad:4c:d6:e8:78:29:
                    0e:22:43:02:69:59:6b:a8:56:37:28:9a:1b:30:05:
                    6f:d4:1e:71:a2:c2:c5:a6:ab:36:72:25:82:97:20:
                    5c:11:2b:54:61:04:f2:4a:d7:61:55:ed:a5:f4:22:
                    ba:7e:f0:91:73:49:83:c9:a4:1e:31:dd:79:71:2c:
                    75:4d:20:a3:7c:37:19:a2:67:e6:5f:37:6a:71:00:
                    54:9f:8f:1d:e1:e5:29:2e:64:e0:b7:eb:bc:dc:d5:
                    12:17:6f:26:df:ae:e2:0e:d4:2c:d0:03:fd:5e:e0:
                    31:93:e7:15:5e:ea:e8:28:f5:cf:f9:a7:de:87:c7:
                    0a:1b:c9:c4:8a:43:8b:ac:6c:33:4b:e9:cb:b5:e4:
                    37:a0:ad:80:3e:9f:56:c5:72:3c:97:90:f7:b9:a3:
                    0a:d8:d6:33:95:ed:d2:e8:79:68:37:dc:ee:2d:62:
                    ee:2d:7e:00:36:51:09:52:98:87:ce:2b:e4:90:b3:
                    2a:fd:95:ab:8d:7b:c8:97:97:86:fb:73:8a:9a:b7:
                    31:2b:0f:bc:5b:38:ee:8c:98:82:fb:dc:c7:eb:8b:
                    08:62:08:07:7a:d5:47:7d:20:72:7c:52:2e:c2:23:
                    3f:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:C6:A8:4C:9D:1C:E3:6D:6A:BC:ED:DF:C1:1F:5E:64:4D:D7:7F:4C
            X509v3 Authority Key Identifier:
                keyid:BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:ec:7b:a4:b4:7e:0e:20:13:49:8b:4d:b1:33:aa:99:9b:29:
         44:7b:85:3e:f9:a5:a5:6f:1c:81:56:a0:18:cc:a9:8a:d3:93:
         75:dc:8e:00:10:69:24:75:d5:c3:d8:a2:10:59:f9:43:f0:a0:
         94:4b:bf:4f:db:f8:1d:e7:03:d0:9d:83:fd:9f:14:c8:73:9d:
         78:5c:f0:25:7e:86:41:c6:c8:ff:6f:e8:fd:76:9d:df:b4:8b:
         17:bf:3a:ce:ef:ec:47:ef:fe:dc:22:0b:3d:95:07:7a:fa:2c:
         87:52:06:fd:e5:d1:56:af:59:e7:0e:58:00:e2:1c:e5:17:bd:
         d9:2c:c8:18:c6:c1:ef:93:8e:ed:c1:76:16:c9:26:00:30:a1:
         f6:6c:13:07:1b:c7:f7:2a:d9:84:4a:3b:ff:a4:2b:f6:8b:fa:
         63:39:ec:a7:b4:db:61:91:12:d0:2c:f9:4f:1a:a6:30:a4:da:
         eb:9a:29:14:4a:1f:8b:c3:a1:91:c0:bf:f6:b5:9b:e9:23:28:
         10:99:a4:28:d6:b6:01:31:b8:c2:c1:73:c4:7d:b1:bd:76:2b:
         e4:bf:0e:2f:10:34:4f:2d:c2:92:1a:1e:ce:4c:40:e1:36:b6:
         1f:ea:4f:68:3e:ed:6a:6e:61:29:4d:35:ea:19:24:44:3d:97:
         cf:f2:0e:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:12:42 2025 by rpki-client