Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft
File:                     B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft (raw, json)
Hash identifier:          dx13pGkKHsmUUqedecl66KaCyBQvW09OSi/VjmDtMvA=
Subject key identifier:   36:7A:57:CB:D2:55:9B:66:E3:EB:EB:D8:7A:5D:8D:B3:E8:DE:91:6D
Authority key identifier: B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1
Certificate issuer:       /CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1
Certificate serial:       3A6AE70BF3A3A33659D83909766F92EA4FB5A119
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft
Manifest number:          02F2
Signing time:             Tue 24 Mar 2026 10:12:09 +0000
Manifest this update:     Tue 24 Mar 2026 10:07:09 +0000
Manifest next update:     Fri 27 Mar 2026 13:16:09 +0000
Files and hashes:         1: 3130332e33302e3232302e302f32342d3234203d3e203338313438.roa (hash: o3fKHuVWFD6jkUIoyhNcY5O2uYQKepNEkJqsRTcT0Zs=)
                          2: 3130332e33302e3232322e302f32342d3234203d3e203338313438.roa (hash: +SJaFJQyqBdRsoSnVqf1c6YDNbR+iItpuCQMYo/GJwM=)
                          3: 3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa (hash: q36ZaNZnng4e3YSesfRm7Xhg/e4wHbxv2r58SbE/Hyw=)
                          4: 3130332e33302e3232302e302f32322d3233203d3e203338313438.roa (hash: dip5cfpPOxv7j5avMlkj27CtA1ffgVlncphql09alQk=)
                          5: 3130332e33302e3232332e302f32342d3234203d3e203338313438.roa (hash: Oz3xD+pukxgYWpnFQL+j6A86Gc4jUZiZu2sP1l7btM0=)
                          6: 3130332e33302e3232312e302f32342d3234203d3e203338313438.roa (hash: 7jwgwmu5p9Vx0nJtBBICc1jR6TLu2T+YBURAKlHLhFY=)
                          7: 323430313a396230303a3a2f33322d3438203d3e203338313438.roa (hash: KdtiKUAOdh5Pdj0OkOpsBFHlVClUvcCXmF1ngZraMiI=)
                          8: B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl (hash: dqqrNx/OvvrA+C5s+5WDKz+4VCT5lfJLa9q/xUFRqZE=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl
                          rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 27 Mar 2026 13:16:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3a:6a:e7:0b:f3:a3:a3:36:59:d8:39:09:76:6f:92:ea:4f:b5:a1:19
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1
        Validity
            Not Before: Mar 24 10:07:09 2026 GMT
            Not After : Mar 27 13:16:09 2026 GMT
        Subject: CN=367A57CBD2559B66E3EBEBD87A5D8DB3E8DE916D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:a1:1b:38:e1:dd:f5:13:67:9a:2b:71:ca:33:
                    45:e8:05:da:05:49:a7:33:5d:d3:40:a5:c1:46:3d:
                    e1:27:59:47:71:75:58:b1:65:d7:91:43:3b:2c:e1:
                    76:80:8b:bf:b1:81:be:66:35:95:9c:b0:45:af:cc:
                    ae:2d:46:e3:f5:cf:40:87:85:16:f8:62:3c:18:96:
                    b1:de:f4:7a:a4:4c:4b:57:a5:b2:8e:f1:2f:0e:07:
                    8e:4b:b3:fc:96:72:b6:0c:0f:4e:8e:82:43:b3:ae:
                    d5:ff:63:a0:8e:a4:b0:83:39:01:66:47:28:b9:cc:
                    6b:7e:d7:c2:3f:a7:2f:0d:82:f5:47:c4:59:20:32:
                    2d:79:c5:76:28:a0:2f:ee:33:cc:3f:bb:d2:fd:a3:
                    9e:07:ec:77:84:d8:e8:04:e6:82:1b:1c:0c:57:4c:
                    da:93:15:ef:f5:19:77:28:06:cb:c1:00:67:8d:81:
                    4d:05:bb:cc:3b:6c:c9:91:3b:65:62:45:3f:f0:5b:
                    c4:e4:a8:c1:31:d7:53:32:94:81:e3:8e:ef:41:d8:
                    48:fd:de:fa:9e:ff:f9:51:1f:4b:c0:c6:9e:16:7d:
                    17:23:68:58:9a:16:1b:bc:6d:97:c1:de:e1:96:6b:
                    d5:55:07:7b:e6:7f:05:9e:3b:5a:59:e6:01:83:b8:
                    4c:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                36:7A:57:CB:D2:55:9B:66:E3:EB:EB:D8:7A:5D:8D:B3:E8:DE:91:6D
            X509v3 Authority Key Identifier:
                keyid:B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:df:10:a8:0c:30:97:c5:9c:58:3d:c8:88:15:97:88:27:71:
         d7:30:ff:b5:bb:1a:28:dd:44:6d:ed:aa:73:6b:6c:e6:5e:1e:
         11:92:d7:3d:4d:df:db:76:88:ee:d3:41:86:47:e9:c8:56:b5:
         14:fb:2a:8b:54:0f:82:ba:47:a9:ca:4d:dc:96:41:d4:4e:a4:
         65:4c:59:92:ad:71:0b:47:62:a5:77:60:12:7a:2f:03:7d:a5:
         1d:c7:04:53:1d:5c:49:74:9a:aa:94:cf:e0:fe:4f:a2:5d:81:
         3c:bc:f3:ac:15:47:88:a3:05:db:0f:4f:6e:54:ed:7a:f4:b8:
         4d:e7:f8:70:fa:f6:0e:3c:1f:3f:43:4a:c7:eb:fa:eb:7b:95:
         1a:55:f0:1d:cb:f1:1e:43:dd:98:b2:11:b6:ed:cd:04:ae:e2:
         17:ce:f6:b0:12:b4:61:53:f5:2b:f3:fb:78:6a:2b:8f:39:66:
         8e:b7:6a:d0:00:2a:8d:d1:a7:a1:cf:42:62:9b:5c:75:53:73:
         bf:89:5f:d9:ec:17:3a:1c:a8:fd:e0:8e:d9:55:64:9d:65:1e:
         b3:1b:8e:22:a0:52:1e:ec:95:8f:cf:5d:f5:64:c9:87:14:8e:
         ae:29:d7:aa:90:4e:0c:c8:1c:2c:50:a6:5b:13:d4:7c:bb:05:
         34:30:9d:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----