Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft
File:                     D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft (raw, json)
Hash identifier:          2yicHPSLxzVp/URIzkhqs/zBHng1tM3W/FGtqc2BjLQ=
Subject key identifier:   12:01:2D:36:40:81:CE:5A:89:82:70:55:60:A2:F5:1E:28:E4:34:93
Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD
Certificate issuer:       /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD
Certificate serial:       3F3B3A3B43DBEC3EADA213A227CC39ABF6CBC438
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft
Manifest number:          051B
Signing time:             Sun 19 Oct 2025 22:30:44 +0000
Manifest this update:     Sun 19 Oct 2025 22:25:44 +0000
Manifest next update:     Thu 23 Oct 2025 09:31:44 +0000
Files and hashes:         1: 34332e3235322e3130342e302f32322d3234203d3e203435333035.roa (hash: PKIt6KT96DVg2otgI4L6Lbo6X1IxxuQSsidS83qyqJk=)
                          2: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (hash: qTnm5CGA/RYtoBdoUqEMNKhCi+L95N248VCqrGjA3NM=)
                          3: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl (hash: MiXLfsugObA2v4vp2yWWUorynh4BdDoezPSrAWYlFYk=)
                          4: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (hash: VtiYvCa1bjH6ANhQ1ZiFk2JkSbje5+lBzE3EKLizBTk=)
                          5: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (hash: C0CDuWEVU0SX0hds00E1HGuGHRio6g8DwzULftVgj6I=)
                          6: 3230322e35362e3136342e302f32322d3234203d3e203435333035.roa (hash: Ks6djmjYrG5U+knwJmAadX8Vs5do9/GjSatcKmwDXgM=)
                          7: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (hash: ZeQ/G35c/J7hJXCvQZ6ieAUy4NBWFOv66XK2TZxgUwU=)
                          8: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (hash: hlUw25q5eNWFZZoKL6XJ7rDIzMv9Ha/qCoX1PFqE3P4=)
                          9: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (hash: lR3gX6Bwr4ANHz1p/BofTqPyE1vSZC884k0IFEXkQqw=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl
                          rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Oct 2025 09:31:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3f:3b:3a:3b:43:db:ec:3e:ad:a2:13:a2:27:cc:39:ab:f6:cb:c4:38
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD
        Validity
            Not Before: Oct 19 22:25:44 2025 GMT
            Not After : Oct 23 09:31:44 2025 GMT
        Subject: CN=12012D364081CE5A8982705560A2F51E28E43493
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:46:3e:3a:f5:ab:ff:f4:a0:11:c4:e4:86:f7:
                    43:be:6c:83:c4:8c:f6:9f:a7:5c:35:7f:29:51:2c:
                    1a:f3:8e:3b:5b:83:a7:1d:47:4b:ad:49:1e:d0:7a:
                    31:f8:7f:26:b6:37:32:24:a6:ee:61:a2:ec:f0:db:
                    20:63:b2:f5:67:4e:5e:c0:31:7f:e3:92:a7:9b:ce:
                    43:46:e5:ba:ec:3d:d7:88:48:94:8f:88:7b:e3:aa:
                    f4:1f:a9:72:3d:31:19:ec:e7:6c:cd:64:57:99:e8:
                    cf:8f:95:11:05:a6:de:d7:07:7a:74:06:dc:7d:cb:
                    f0:e2:98:ee:49:4b:99:ca:84:cd:3d:ed:9b:ce:76:
                    4b:51:b2:f1:ee:ea:c7:e2:e4:ff:a3:d3:e4:48:d3:
                    4d:03:16:d3:a3:35:81:1b:03:a6:b6:9c:f7:8b:6f:
                    1c:60:7d:9b:68:10:3d:d9:1f:b9:f3:5d:80:b0:c3:
                    7f:74:bd:71:ae:51:5d:0b:31:64:13:67:e6:1c:72:
                    40:f5:c0:1d:d4:1c:97:2d:4c:ed:7e:34:4f:5b:f9:
                    ec:8b:66:dd:c8:6e:9e:1e:ff:09:ee:fa:ad:0e:0d:
                    c5:8a:b7:41:2d:ae:9e:b2:09:62:93:0b:e1:76:35:
                    e9:45:c7:ca:ca:38:11:1d:63:a5:f1:75:48:77:c6:
                    e6:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:01:2D:36:40:81:CE:5A:89:82:70:55:60:A2:F5:1E:28:E4:34:93
            X509v3 Authority Key Identifier:
                keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:a4:6d:0a:0b:89:7e:dc:29:9f:c3:69:4a:fb:47:5b:59:ca:
         fe:83:8e:1e:92:45:58:60:b2:f0:32:6c:e8:1f:d9:1a:8b:76:
         2f:18:39:bf:cb:05:10:53:f1:fc:56:68:5a:1c:72:f9:8f:1f:
         3e:d9:db:f0:4a:dd:c3:4c:86:0b:02:ef:ad:6a:ef:f3:c2:99:
         c0:ab:f8:c3:4c:c0:cf:45:78:69:7b:fb:34:88:7c:f0:46:5a:
         81:a5:1e:51:15:f6:79:62:a1:d2:10:47:73:ed:db:97:9c:2e:
         43:c7:9c:8b:ec:74:68:ac:b8:30:96:c9:3e:96:88:4b:a5:c4:
         e5:fa:a1:83:c8:ad:a8:31:38:04:c8:8d:3e:de:f6:73:8e:0b:
         db:47:5e:94:65:99:86:82:1c:e2:28:63:3d:0d:dc:56:83:dd:
         47:2d:1c:2b:6c:ff:fc:09:a2:34:7c:52:40:a8:8f:c0:ef:b5:
         a6:4c:76:54:82:31:fa:67:5a:2f:d3:bd:8a:e1:6c:24:37:1a:
         39:2c:6a:8a:2c:eb:f6:e1:59:c4:0d:25:27:8d:d4:1a:0a:4b:
         fa:9e:00:6e:14:88:88:77:59:a7:6e:c2:30:1e:38:f9:60:d5:
         c3:e4:d7:f9:1b:6f:f9:1a:c7:cc:30:2a:41:f4:22:a6:90:b7:
         3f:e2:f3:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:29:14 2025 by rpki-client