Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft
File:                     523EE8D6F461B8FD4106F482C46C1029B1013145.mft (raw, json)
Hash identifier:          PLfWfu44fhizESE9FHc9kzcyQq8hvAFPr6g8cg+sfdw=
Subject key identifier:   9C:59:CD:2B:6A:DC:17:84:3B:18:9F:88:6D:4E:46:2F:09:89:83:CF
Authority key identifier: 52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45
Certificate issuer:       /CN=523EE8D6F461B8FD4106F482C46C1029B1013145
Certificate serial:       658B4659E1F703AD1A2995B552787A4E415B4383
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft
Manifest number:          CF
Signing time:             Sun 19 Oct 2025 05:40:37 +0000
Manifest this update:     Sun 19 Oct 2025 05:35:37 +0000
Manifest next update:     Wed 22 Oct 2025 06:53:37 +0000
Files and hashes:         1: 3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa (hash: H0hxzRE1P/k0NGsIoy/0kaAKznrWHPdRQxgiRW4T5Qo=)
                          2: 3130332e31392e38302e302f32332d3234203d3e20313332363339.roa (hash: z0HZjcHieRuZ5HHeSmTqSUrJvHMtgbLp6o8sJVRupVI=)
                          3: 3130332e3132392e3233312e302f32342d3234203d3e20313332363339.roa (hash: jWc0sz86L+eDtr+nDMgQgH+2S7uRf5Y8Wu7u8v4zz0Q=)
                          4: 523EE8D6F461B8FD4106F482C46C1029B1013145.crl (hash: HMYqSaSbizHrZoDsJGPSnTlUctVEoHFVYtJnllkSJp0=)
                          5: 3130332e31392e38312e302f32342d3234203d3e20313332363339.roa (hash: jKwlGthiQpzXwnHyIqfnx5NGkz2sE+y3uVu40s6f6sc=)
                          6: 3130332e31392e38302e302f32342d3234203d3e20313332363339.roa (hash: YEDjMiqzXqQQzIDtWpx+jx5Bn+2TYkAiFHsRj0775yM=)
                          7: 3130332e3132392e3233302e302f32342d3234203d3e20313332363339.roa (hash: zP2/XdcDOhp440RXruEyN+zWviJE7i53kBfkBKlQJ0I=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl
                          rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 22 Oct 2025 06:53:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            65:8b:46:59:e1:f7:03:ad:1a:29:95:b5:52:78:7a:4e:41:5b:43:83
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=523EE8D6F461B8FD4106F482C46C1029B1013145
        Validity
            Not Before: Oct 19 05:35:37 2025 GMT
            Not After : Oct 22 06:53:37 2025 GMT
        Subject: CN=9C59CD2B6ADC17843B189F886D4E462F098983CF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:8c:a5:de:9b:27:40:5d:9f:4d:60:b7:f1:27:
                    55:c7:f8:b2:a2:ff:f0:ef:5b:fb:13:9c:07:65:68:
                    59:93:02:b6:f8:6e:9e:cc:c1:5d:4e:8b:18:21:51:
                    db:2e:ec:e9:55:c5:05:82:27:2f:30:1f:0d:7c:5f:
                    d5:23:1d:e7:85:26:d2:e8:a7:fb:22:0b:2e:93:7b:
                    b0:c5:db:7c:53:34:ec:50:6e:93:27:bd:56:51:3e:
                    2a:1d:c2:84:87:ab:c8:30:a9:5b:3b:2c:6d:91:04:
                    64:fe:3b:48:22:b6:4e:c8:9a:b3:86:a4:76:96:d6:
                    39:c5:1b:25:71:bb:76:dd:ba:4f:a0:c7:ef:d2:83:
                    be:c3:b2:6a:32:5b:4a:de:a2:d7:0f:31:25:d4:51:
                    a3:ce:54:9f:ee:56:ae:a9:26:81:44:c8:6c:2f:88:
                    92:4e:be:1e:9d:4e:6f:a5:44:49:6b:21:29:3c:1f:
                    07:03:5b:72:c5:c0:a3:ce:b2:9d:45:9c:88:ac:b4:
                    67:57:18:64:22:aa:ab:5a:ed:73:e1:7a:e1:80:b3:
                    93:a7:85:c9:a7:9e:7e:90:66:d2:05:70:ec:f0:67:
                    c1:2c:43:93:9f:76:ff:97:9a:12:18:b6:f5:71:a1:
                    36:27:a7:ad:23:43:8b:49:49:25:e2:2e:98:f0:00:
                    aa:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:59:CD:2B:6A:DC:17:84:3B:18:9F:88:6D:4E:46:2F:09:89:83:CF
            X509v3 Authority Key Identifier:
                keyid:52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         27:ef:96:6d:3c:37:c1:7b:75:8b:38:c9:99:a4:eb:44:58:3c:
         45:e3:9f:a2:6a:67:1b:14:3e:6d:43:5f:40:1c:f8:bd:f1:c9:
         36:67:73:de:a5:f0:73:89:f4:d0:56:a8:7b:45:ea:5e:d6:a3:
         35:21:b8:69:23:bb:10:7f:4d:ec:d1:df:36:01:c1:60:ab:9c:
         bf:73:1a:c4:af:3f:3a:47:12:36:13:1c:bc:ac:b2:06:93:2f:
         6f:5a:97:c2:40:a1:ca:29:cd:1f:21:76:d2:c5:66:50:3e:96:
         5d:96:7d:c7:bc:2d:70:e3:50:a0:67:96:ff:b3:30:97:c2:10:
         10:c1:15:b0:ef:02:8d:0d:96:ad:c8:e7:80:82:5f:11:9a:d1:
         b6:80:cd:50:d1:3e:0b:af:3a:08:6d:3a:23:2a:93:d3:72:8b:
         ae:92:a7:7b:b9:13:1c:8a:58:6f:27:98:78:bc:df:e3:62:51:
         26:0d:bd:ec:fe:09:13:f7:01:99:20:d3:d7:6b:0f:e4:2b:f6:
         b6:c3:01:ab:fa:3c:a9:3a:30:95:77:bf:3a:20:aa:e5:4f:0b:
         b5:10:00:63:cd:e1:c7:be:54:f9:65:f2:1a:1b:6a:ee:f5:92:
         e6:0d:e1:60:41:43:20:08:da:68:9d:76:13:78:97:08:45:af:
         ba:2a:44:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----