Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft
File:                     BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft (raw, json)
Hash identifier:          1Yq3Sa1bumJfuieUt7Edz02+Umngxn06dF2+JRYFr/8=
Subject key identifier:   9D:3C:F5:89:B9:18:D4:19:EC:68:3E:7D:54:80:CA:8E:7D:CB:D4:9F
Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37
Certificate issuer:       /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337
Certificate serial:       0C171DEF7A0C5D41FF7288961B18D6D92B68CC8C
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft
Manifest number:          0506
Signing time:             Sat 23 Aug 2025 06:21:20 +0000
Manifest this update:     Sat 23 Aug 2025 06:16:20 +0000
Manifest next update:     Tue 26 Aug 2025 08:45:20 +0000
Files and hashes:         1: 3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa (hash: IzocfQbAm6re271rkdggFPq3VGCEGAEeE3AdaJEm7ps=)
                          2: 3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa (hash: 8j0jRsDzFx9gAhfck8T4zhTfxl09chfxnR3KSNz+QGw=)
                          3: 323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa (hash: BlERiRMKFqkgyqTsj7YKl6ODg1kHmptUNWRLGRCZ1OE=)
                          4: 323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa (hash: v92EWX5PrX2ocfEiVVqNZStsTUP7VHqvGQh9Jsm+CN4=)
                          5: 323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa (hash: pbhhW/T4QYFpANmSbko4Pn15Hrxc5CLsjrjH+moakkM=)
                          6: 323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa (hash: 7PxedSipsNTZyiV9fxG1frgwTkAEJ+zZ1V+jTL4oKzQ=)
                          7: BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl (hash: QvvYIa85KAswtViHMAJYYraBT9AhV7mlVceLrpTcano=)
                          8: 3130332e3135352e3131362e302f32342d3234203d3e20313431303536.roa (hash: JGFlFhH6nweNzgQ11TLkyB/qqq3QQSYaNP8bQViVV64=)
                          9: 323430363a366434303a3a2f33322d3332203d3e20313431303536.roa (hash: vPGDL5Uz+m1Ri6z0hdVmq01za5aH2UUg8pKyvgRNgpw=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl
                          rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 26 Aug 2025 08:45:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0c:17:1d:ef:7a:0c:5d:41:ff:72:88:96:1b:18:d6:d9:2b:68:cc:8c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337
        Validity
            Not Before: Aug 23 06:16:20 2025 GMT
            Not After : Aug 26 08:45:20 2025 GMT
        Subject: CN=9D3CF589B918D419EC683E7D5480CA8E7DCBD49F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:bf:27:8e:68:ab:d7:bb:99:c3:b3:6a:1a:3f:
                    3a:80:8a:6a:c6:03:77:b9:98:07:1a:1c:c9:43:45:
                    e2:68:9e:d8:9d:64:71:b1:d0:d2:c3:1b:9f:1d:bc:
                    85:8a:58:b1:54:b8:32:40:5f:f5:1c:01:b2:8d:78:
                    a1:ee:f6:62:70:18:c9:9a:28:bb:c4:c1:fe:ee:43:
                    82:5f:88:e4:06:76:06:3c:f2:3c:4a:61:91:1f:22:
                    48:2a:bd:e8:3d:93:b4:4d:44:ac:80:e9:1d:ac:ed:
                    3c:e2:0f:93:a0:c8:17:89:74:c8:f9:9c:05:93:85:
                    82:63:90:02:c1:f0:5c:82:dd:d4:a8:a2:40:8d:59:
                    03:f7:96:19:dd:b5:4f:82:d7:97:ec:54:f5:f1:95:
                    57:f7:69:a0:f9:ed:f4:c7:b1:7c:7f:58:7b:01:92:
                    be:04:6e:ef:5d:aa:9c:bf:a1:61:ad:b3:96:97:90:
                    c5:97:f3:7f:57:96:50:42:04:1e:65:30:46:a4:82:
                    8c:70:d0:ed:83:7a:12:d9:0e:f4:f7:b5:7c:a6:5e:
                    24:9b:22:08:de:89:02:d3:b6:ba:26:21:a1:65:19:
                    82:85:8e:58:ea:7d:e5:00:6d:5b:88:39:52:0a:cb:
                    97:5b:7b:85:6e:b7:e3:40:4d:28:26:33:00:81:d1:
                    66:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9D:3C:F5:89:B9:18:D4:19:EC:68:3E:7D:54:80:CA:8E:7D:CB:D4:9F
            X509v3 Authority Key Identifier:
                keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:02:68:56:c0:ac:79:39:28:91:6f:c8:28:cb:59:02:74:22:
         60:0f:b4:6f:8d:ae:1d:99:84:59:1c:da:58:44:4e:18:11:4e:
         58:6d:4f:80:8b:be:1c:a3:a4:d4:82:f9:d4:ad:e0:42:96:52:
         da:a2:80:6f:5d:4e:a5:70:25:83:98:f3:aa:6f:a3:76:34:d1:
         03:5a:73:12:56:4a:de:97:c4:6b:0e:aa:4d:f3:72:97:e6:3e:
         4a:a1:68:44:31:19:d7:ff:1d:fb:d7:80:4d:cb:33:c6:d3:ce:
         ef:09:00:d3:5b:4d:d8:1c:55:ca:6e:b3:0f:07:86:e1:5b:d5:
         d6:c8:9a:f3:ab:e4:15:20:f2:b4:2e:05:dd:db:cc:88:14:e6:
         2e:4e:da:9c:dd:3c:da:a6:92:44:af:fe:bb:0a:33:84:e3:90:
         48:0e:14:3f:73:8a:c4:66:55:fe:7e:cd:23:f2:7b:eb:e3:3a:
         27:1b:6e:43:dc:1a:9c:c1:96:1b:80:44:51:f5:ad:dc:aa:37:
         cf:48:35:0c:aa:44:1f:19:8f:3d:0c:7a:56:9c:1e:25:d8:84:
         f0:e9:6e:c8:82:bb:69:9b:fa:e8:cd:f3:97:a0:8f:ed:db:01:
         c9:b6:94:89:08:cc:3d:42:2f:92:ca:6e:e8:65:4f:9c:0f:ab:
         16:f8:20:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----