Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft
File:                     523EE8D6F461B8FD4106F482C46C1029B1013145.mft (raw, json)
Hash identifier:          G+6o9eADPUVGSFY50fCM2BP/gHtbEMJYf4tEt5+inEM=
Subject key identifier:   C4:06:A3:DA:E6:5C:9C:0E:FB:3B:FD:3A:A1:07:C1:7B:A8:DC:32:97
Authority key identifier: 52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45
Certificate issuer:       /CN=523EE8D6F461B8FD4106F482C46C1029B1013145
Certificate serial:       6A49B48D4131C8A3F3A012BDE3B9ACCE74F400BA
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft
Manifest number:          9D
Signing time:             Fri 27 Jun 2025 17:00:35 +0000
Manifest this update:     Fri 27 Jun 2025 16:55:35 +0000
Manifest next update:     Tue 01 Jul 2025 03:43:35 +0000
Files and hashes:         1: 3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa (hash: H0hxzRE1P/k0NGsIoy/0kaAKznrWHPdRQxgiRW4T5Qo=)
                          2: 3130332e31392e38312e302f32342d3234203d3e20313332363339.roa (hash: jKwlGthiQpzXwnHyIqfnx5NGkz2sE+y3uVu40s6f6sc=)
                          3: 3130332e3132392e3233302e302f32342d3234203d3e20313332363339.roa (hash: zP2/XdcDOhp440RXruEyN+zWviJE7i53kBfkBKlQJ0I=)
                          4: 523EE8D6F461B8FD4106F482C46C1029B1013145.crl (hash: ABIGUT83tGPRUg3suZToF73YFOeZDT1zLAayfM/NZQs=)
                          5: 3130332e31392e38302e302f32332d3234203d3e20313332363339.roa (hash: z0HZjcHieRuZ5HHeSmTqSUrJvHMtgbLp6o8sJVRupVI=)
                          6: 3130332e3132392e3233312e302f32342d3234203d3e20313332363339.roa (hash: jWc0sz86L+eDtr+nDMgQgH+2S7uRf5Y8Wu7u8v4zz0Q=)
                          7: 3130332e31392e38302e302f32342d3234203d3e20313332363339.roa (hash: YEDjMiqzXqQQzIDtWpx+jx5Bn+2TYkAiFHsRj0775yM=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl
                          rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 01 Jul 2025 03:43:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6a:49:b4:8d:41:31:c8:a3:f3:a0:12:bd:e3:b9:ac:ce:74:f4:00:ba
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=523EE8D6F461B8FD4106F482C46C1029B1013145
        Validity
            Not Before: Jun 27 16:55:35 2025 GMT
            Not After : Jul  1 03:43:35 2025 GMT
        Subject: CN=C406A3DAE65C9C0EFB3BFD3AA107C17BA8DC3297
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:d3:14:0e:66:04:96:e2:98:5c:29:bf:8b:3f:
                    47:b6:0c:8c:e2:50:2e:21:2e:70:69:52:c4:a7:d2:
                    cd:79:60:a4:67:00:ab:c7:42:02:1e:c2:28:89:15:
                    9e:92:8e:d2:bd:ff:e8:97:e2:78:d7:ea:bb:a4:9c:
                    29:87:59:05:1e:fb:e4:94:ef:d6:e3:f3:a9:63:64:
                    45:63:c9:6c:ad:59:f1:1a:e6:3e:9b:88:69:e0:95:
                    79:c5:a3:e7:81:ed:af:0d:90:43:75:b3:7b:6d:74:
                    c9:2f:f0:1f:c7:6b:3f:40:c7:fd:37:fe:35:c9:c5:
                    97:ae:7b:13:b5:05:28:2d:c5:f4:6b:db:1d:a9:18:
                    55:1e:08:2f:a5:5e:8e:d0:b4:09:64:1f:eb:d9:8c:
                    4e:4b:5f:95:e7:e4:b1:ce:e2:de:eb:10:55:81:c1:
                    6a:bb:18:6c:19:06:c1:3b:fc:f4:6b:c4:2f:0c:9e:
                    c2:02:46:9a:64:79:6f:26:07:fd:27:b2:34:4e:6e:
                    f4:86:9a:f2:36:26:1a:89:e2:86:46:b7:bc:42:9f:
                    06:02:72:91:94:81:b1:6d:33:37:22:8d:0c:d2:0b:
                    70:a1:79:36:d9:44:9d:92:af:7f:5b:69:71:5d:6f:
                    25:97:15:b4:73:43:65:59:40:1c:00:73:d8:bb:ce:
                    73:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:06:A3:DA:E6:5C:9C:0E:FB:3B:FD:3A:A1:07:C1:7B:A8:DC:32:97
            X509v3 Authority Key Identifier:
                keyid:52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:4d:6a:94:5f:ed:5b:7c:83:62:08:5c:80:13:22:28:26:c9:
         df:ab:73:8d:d8:1d:a6:bc:51:89:ce:1e:ea:39:97:d3:d6:6b:
         84:24:ec:5f:05:d9:b1:1b:a8:1f:de:fb:2c:f0:81:f1:cd:52:
         f5:2d:f6:75:b2:e8:8d:2b:29:8e:ca:4c:2f:59:fa:69:62:47:
         00:48:e5:1e:57:18:20:ce:b8:fb:f1:b2:64:e8:13:b2:3b:4e:
         65:38:a6:40:06:ba:39:34:11:2d:11:01:03:6e:15:2f:09:a4:
         ce:12:0b:7f:bd:ab:56:af:49:41:e5:b9:8b:38:96:63:ac:f7:
         d0:39:8e:fb:f9:35:68:dc:c4:9f:c1:41:0a:66:18:c0:72:7b:
         a1:c5:b9:ce:6b:84:d6:34:b1:3d:bf:9e:6b:ca:64:89:2c:b9:
         de:d5:44:e4:ca:f5:cb:9d:30:29:1b:b9:72:65:8a:a5:d4:57:
         56:3c:81:fb:ef:89:ff:a5:3b:96:50:e7:65:36:18:97:bc:16:
         06:21:be:54:88:5e:23:da:a8:70:ee:15:f6:ab:84:d4:3f:98:
         17:27:db:5b:35:38:d3:34:69:98:70:bd:8f:37:d7:ef:72:a1:
         c8:c8:4a:93:b4:e9:67:02:41:b8:c2:9b:00:7c:8e:e3:dc:f6:
         e1:8e:49:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----