Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft
File:                     DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft (raw, json)
Hash identifier:          fujxkCrmZPA4zKEVW+pd6aC3YXSSi0QFh1Syo/C00OI=
Subject key identifier:   16:4D:AA:35:53:86:B5:4A:5A:81:5E:B9:7F:FA:1C:7C:BA:16:E8:EF
Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59
Certificate issuer:       /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859
Certificate serial:       367E52156F4D646011250690FA41D2DC3C951ECE
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft
Manifest number:          04F9
Signing time:             Fri 22 Aug 2025 23:31:16 +0000
Manifest this update:     Fri 22 Aug 2025 23:26:16 +0000
Manifest next update:     Tue 26 Aug 2025 07:14:16 +0000
Files and hashes:         1: 3130332e31342e3131302e302f32332d3234203d3e203536323333.roa (hash: tDRK/Vdz8u2hhC9LdyJ4AT+BwDcg/REr12fUhDIA9Bo=)
                          2: 3130332e3233332e38382e302f32332d3234203d3e203536323333.roa (hash: 7Q0dwA0Rc1pnpyLnXxos7sM1Wj4t+yMR55gSNZ0dsoU=)
                          3: 34332e3235322e3134342e302f32332d3234203d3e203536323333.roa (hash: u7MPei7+iN4f1OLKumfeRBmfOe2wgHqRvP7yaGUByuA=)
                          4: 3132302e38392e39342e302f32332d3234203d3e203536323333.roa (hash: dkwLIgjutNqyS1fEiwY5jB8EjSSH9/0tY66Lo4b2moY=)
                          5: 3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa (hash: BlXsQ1QjfVoT6J0SDJFst3KLhMp6LiWyqHWFZlBXj2o=)
                          6: DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl (hash: iUoFsqOcrADQqKFqBNjJcByW6JJzm2JKDJqf8QESkI4=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl
                          rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 26 Aug 2025 07:14:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            36:7e:52:15:6f:4d:64:60:11:25:06:90:fa:41:d2:dc:3c:95:1e:ce
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859
        Validity
            Not Before: Aug 22 23:26:16 2025 GMT
            Not After : Aug 26 07:14:16 2025 GMT
        Subject: CN=164DAA355386B54A5A815EB97FFA1C7CBA16E8EF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:04:34:a5:eb:89:c2:02:c5:a7:11:09:47:0a:
                    13:9a:93:38:ca:e3:e4:46:47:93:37:40:e4:e7:e3:
                    ef:7c:05:6d:59:20:f8:6e:55:1b:1b:4c:1b:24:29:
                    1f:89:ac:c4:a7:d9:1d:bb:1d:d6:d4:ee:4e:9c:0c:
                    62:4b:d3:8a:48:e4:79:dd:39:47:d1:98:04:f9:84:
                    6f:f1:2f:09:07:a0:7c:8d:c0:45:b2:37:c3:81:56:
                    fb:3b:93:87:ef:a0:bd:bd:65:95:1c:94:e1:5d:c5:
                    9f:4a:02:56:2c:7c:c8:5a:de:b1:45:06:11:65:9e:
                    61:d4:b4:9c:fd:3d:02:b6:8b:44:92:e0:19:b1:87:
                    10:aa:ac:82:1f:f3:ee:6a:98:62:e5:e2:22:55:64:
                    3d:f5:02:3e:b0:51:7f:a1:c3:be:62:66:a4:db:ae:
                    f1:23:06:33:5c:03:2c:0b:f7:0a:4d:45:37:75:ac:
                    03:c8:f2:cd:76:b3:ec:ae:89:74:d5:25:e6:df:8b:
                    94:75:f5:6e:b3:3e:75:71:f6:f4:97:e2:17:bb:7c:
                    62:e5:56:a9:6f:15:25:9b:cc:e1:c5:f4:15:a4:5c:
                    92:58:d8:b7:17:fd:e9:10:19:b4:ec:3d:aa:ec:f1:
                    8e:c2:76:62:39:cc:a4:c9:c0:36:28:c5:6b:02:b9:
                    05:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:4D:AA:35:53:86:B5:4A:5A:81:5E:B9:7F:FA:1C:7C:BA:16:E8:EF
            X509v3 Authority Key Identifier:
                keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:ba:20:4a:b2:55:50:2a:f9:62:ed:1b:1d:34:52:19:87:58:
         ed:6d:ee:74:cc:84:6e:7e:16:27:fc:16:ff:27:dc:78:2a:49:
         b4:7c:3e:f0:d9:ad:5c:4b:8e:53:e6:6a:51:6c:0f:b1:35:ff:
         7f:a9:97:80:f4:fd:bd:b8:f9:f2:e5:65:2d:ef:f8:9c:26:c4:
         f6:1c:02:72:13:cd:ca:2f:ea:ad:45:a9:8f:33:ff:6a:f3:bb:
         92:5a:39:5d:a1:74:bb:f2:c1:54:73:fb:2d:dd:ed:6f:b8:bc:
         40:8e:7d:79:24:39:b5:88:bf:85:ca:37:b3:09:23:46:73:f0:
         44:97:02:c6:2c:c2:82:df:08:97:ea:54:c9:32:3e:33:c2:1c:
         55:12:f1:92:fd:16:df:22:5c:4e:58:fc:f2:b2:b3:65:92:15:
         ed:54:b2:3f:5e:0b:38:7e:c7:6e:88:00:9b:4d:f6:05:89:ed:
         6b:2c:35:ab:b1:f4:ef:9a:82:47:69:22:e1:c7:36:31:e3:49:
         e5:92:2e:df:8e:ec:82:d5:e2:d3:bf:2f:27:de:22:ac:5c:13:
         bc:30:d8:be:2b:da:85:35:12:36:7f:bc:0d:fe:03:42:b8:93:
         7b:c0:4b:e8:0c:fb:e3:ad:4e:84:d4:f8:f7:1e:5c:83:e2:d6:
         26:ee:3f:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:01:19 2025 by rpki-client