Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft
File:                     43A0899A11D5A51202F1304338672AF19B201A74.mft (raw, json)
Hash identifier:          4uhpeYJ58fHbIIu94xUQwxsPR1NFR+WYUaoxrUQjd3o=
Subject key identifier:   A9:67:65:1A:04:DC:31:AC:72:1A:3A:9E:A9:BC:B7:69:B9:43:C0:18
Authority key identifier: 43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74
Certificate issuer:       /CN=43A0899A11D5A51202F1304338672AF19B201A74
Certificate serial:       27C574401AA7465DDE275A02DA7C1CF4B8EA360E
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft
Manifest number:          03BE
Signing time:             Sun 29 Jun 2025 21:01:58 +0000
Manifest this update:     Sun 29 Jun 2025 20:56:58 +0000
Manifest next update:     Thu 03 Jul 2025 08:15:58 +0000
Files and hashes:         1: 43A0899A11D5A51202F1304338672AF19B201A74.crl (hash: BJni9bzuWdRpRWHwEPZWPcPaYxEi3yfNuQUoZHMqEqk=)
                          2: 3130332e32392e3231322e302f32322d3234203d3e203538333737.roa (hash: bEv5NJFvGjCqOM99MFNub18kUBXqluJLuz63DD7/xZ4=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl
                          rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 02 Jul 2025 07:23:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            27:c5:74:40:1a:a7:46:5d:de:27:5a:02:da:7c:1c:f4:b8:ea:36:0e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=43A0899A11D5A51202F1304338672AF19B201A74
        Validity
            Not Before: Jun 29 20:56:58 2025 GMT
            Not After : Jul  3 08:15:58 2025 GMT
        Subject: CN=A967651A04DC31AC721A3A9EA9BCB769B943C018
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:04:d8:30:14:10:5d:f6:5f:25:e8:bd:22:c7:
                    07:50:c9:e4:39:6e:f7:c0:c2:aa:88:5b:91:a0:e6:
                    7d:f1:29:9d:d9:76:07:81:15:8c:36:a3:c2:4a:af:
                    47:b3:a5:14:74:18:77:cf:0c:9e:85:de:2c:97:2b:
                    f9:ce:b8:f9:03:56:8d:35:ba:6b:dd:4b:a6:85:af:
                    9a:7f:70:78:d1:60:d8:ed:db:fa:54:fb:92:25:31:
                    fc:a7:ec:2f:af:0b:35:0c:89:9e:18:65:e5:3b:54:
                    09:87:81:91:c6:3e:cc:28:1c:aa:e3:35:6d:ce:83:
                    52:c1:b5:87:ea:c5:51:b3:91:14:19:c4:99:86:bf:
                    8d:3c:1b:0f:ba:a4:56:e9:95:10:72:58:ab:de:b5:
                    ad:3a:55:31:6a:ec:33:9c:79:c6:b4:78:0e:bd:85:
                    16:6b:ee:c2:82:61:a6:3f:3c:de:d0:82:d0:da:cf:
                    63:d2:f0:42:ac:66:ba:66:f9:fe:ad:54:96:b7:11:
                    25:4c:0d:2c:70:c0:8d:01:39:48:30:94:45:1a:46:
                    b1:0f:5d:f2:d7:30:76:76:0a:5c:e8:1d:9d:21:99:
                    65:f2:3d:14:f2:61:55:d2:67:d3:b7:6b:93:a2:72:
                    66:84:28:56:2b:ac:ae:f3:85:f9:f0:35:47:8a:82:
                    7b:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A9:67:65:1A:04:DC:31:AC:72:1A:3A:9E:A9:BC:B7:69:B9:43:C0:18
            X509v3 Authority Key Identifier:
                keyid:43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:b1:53:52:30:be:03:0b:ed:92:a8:c8:a8:7f:1d:7b:b7:50:
         8d:60:c2:78:0e:54:e1:b4:4a:79:57:b9:bd:c8:4d:22:17:56:
         9e:ac:9b:8a:69:2a:e3:2f:bb:9f:41:52:60:09:9c:32:dc:5a:
         4e:2e:e0:95:b7:73:43:f6:96:52:b8:37:dc:bb:b1:ee:e7:6c:
         e8:ee:9d:18:31:8e:b1:1a:7a:1a:be:21:cf:43:0c:7f:d9:f2:
         be:d2:dd:05:ba:cb:7b:31:6e:dd:08:6a:42:0a:98:b0:70:db:
         b2:60:e4:f3:0d:22:4b:4d:08:1c:bb:5b:06:81:7e:01:a1:50:
         4f:69:44:04:92:ea:ce:1a:3a:12:17:fc:10:ec:45:e7:72:b7:
         ef:5b:39:63:8d:34:94:56:2b:42:5f:22:fb:22:f7:45:7e:44:
         c1:d5:0c:76:17:55:8c:50:cf:2b:9c:73:c0:d8:09:d9:e0:bd:
         8a:d7:68:81:c3:0b:73:94:b6:f9:2d:66:6c:10:de:4b:6f:ac:
         4b:08:b5:fb:83:b5:a8:ce:19:fb:e2:a8:39:34:38:5f:d4:04:
         0e:39:aa:03:bb:4e:dd:95:e6:a4:2f:cc:91:71:2f:44:30:1f:
         a7:b3:c1:c6:c0:6d:dc:70:d9:1a:57:4b:aa:ea:fd:ed:ae:f1:
         c3:1b:02:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 01:30:41 2025 by rpki-client