Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
File:                     8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft (raw, json)
Hash identifier:          v45uciRf74f+WQRdXKd0+6/JuC3HJ5LE+s+0M/5h09U=
Subject key identifier:   A6:35:EB:89:C6:AF:EA:FC:58:07:11:18:EE:F9:2F:57:22:37:D9:7D
Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF
Certificate issuer:       /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
Certificate serial:       47CDB6ED7F0E4DE8CBE8141199F79685659EFB71
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
Manifest number:          AB
Signing time:             Sun 29 Jun 2025 11:11:05 +0000
Manifest this update:     Sun 29 Jun 2025 11:06:05 +0000
Manifest next update:     Wed 02 Jul 2025 15:25:05 +0000
Files and hashes:         1: 3130332e3133332e3134362e302f32342d3234203d3e20313338313339.roa (hash: nNqPduu/JjsIMhgAQMQxpm1Co5pg16TuoWu2Q/HzWgA=)
                          2: 3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa (hash: aR62APrh1DccZKre5l7C6SLFps3TBPFdm3R3znGJ1fA=)
                          3: 3130332e3133332e3134342e302f32342d3234203d3e20313338313339.roa (hash: 4N3xCB2x4rBoMiXQaq1TIxjQcspdHHBn4voGBhoXwMQ=)
                          4: 8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl (hash: CUQ0KhmjKoAy39aTBCTeYD6oNm2hgYuWyH1PCdUfk4U=)
                          5: 3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa (hash: AZoy99OzaaD9x6sZSBHTE/6tOjO7s0t/ExrzVTGMWVY=)
                          6: 323430343a346563303a313a3a2f34382d3438203d3e20313338313339.roa (hash: X/C9vXKY/TY9dLHbewA4tddP0TItlp1o/B62rHS1ZLs=)
                          7: 323430343a346563303a3a2f33322d3438203d3e20313338313339.roa (hash: A2G6b+fxTo20QvHK7lUw9boisWwmFFcOlzGIN95UCMI=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl
                          rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 02 Jul 2025 07:23:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            47:cd:b6:ed:7f:0e:4d:e8:cb:e8:14:11:99:f7:96:85:65:9e:fb:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
        Validity
            Not Before: Jun 29 11:06:05 2025 GMT
            Not After : Jul  2 15:25:05 2025 GMT
        Subject: CN=A635EB89C6AFEAFC58071118EEF92F572237D97D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:ec:e0:92:0f:25:65:00:94:4b:fd:3b:02:4c:
                    ef:00:ac:a2:c4:0c:ed:e7:65:c7:0e:ea:af:35:95:
                    85:91:30:24:50:44:cf:d2:24:38:92:ca:6b:b1:cc:
                    08:74:a9:7e:4f:48:01:05:fc:f3:2f:e6:18:da:8e:
                    9b:d1:23:14:a7:04:a4:09:97:7e:94:64:41:62:ca:
                    72:48:c3:23:98:46:23:96:02:b4:2f:a5:65:4a:b9:
                    e3:21:05:f9:50:13:23:bc:56:d8:0f:95:eb:57:4c:
                    0a:8e:dc:b9:6b:81:b4:43:e2:f0:0e:24:4b:ec:4d:
                    76:37:53:ef:7e:f9:38:45:82:a3:87:fb:f5:38:40:
                    55:a3:77:14:ea:02:a2:2e:7b:af:a3:96:3e:b9:5b:
                    b8:24:eb:4b:06:36:2d:ec:37:7c:1d:b8:c1:28:b4:
                    00:39:4b:dd:ab:92:3f:d1:99:30:96:fa:7e:ad:20:
                    c0:5e:19:86:b8:05:45:31:41:2c:d3:da:6e:a4:49:
                    88:b7:d1:4e:cd:dc:c4:51:5e:3a:a1:08:97:06:bb:
                    15:46:3f:ac:e7:9c:aa:03:d3:59:7a:5d:fe:5d:0c:
                    f2:68:28:be:d7:ca:06:84:de:e2:4c:57:59:7a:bc:
                    8c:7e:83:50:ff:14:2b:b3:aa:e2:6d:c4:01:9a:6a:
                    b6:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:35:EB:89:C6:AF:EA:FC:58:07:11:18:EE:F9:2F:57:22:37:D9:7D
            X509v3 Authority Key Identifier:
                keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:15:64:67:30:07:c7:f6:d9:29:0f:48:4b:42:50:c7:60:bf:
         ec:12:ca:5d:85:e2:33:99:94:0e:f4:27:f8:27:2f:e9:8b:56:
         50:43:0b:66:9f:63:a5:93:47:67:9c:b9:da:eb:ca:8c:6b:8d:
         5f:7f:ed:40:92:8b:70:72:81:87:b6:99:f3:08:a2:7c:54:e9:
         1c:be:43:e3:5e:11:7b:5c:73:3f:60:41:a5:c3:f2:34:bf:0a:
         76:c1:db:1e:ae:05:0f:19:88:0b:38:17:26:46:e8:3c:81:bd:
         34:c6:68:cb:2c:33:00:b1:16:29:62:0c:40:4a:96:2a:55:37:
         5a:2b:39:9a:c9:dc:44:9e:00:1b:4c:41:ae:5f:74:37:a2:b7:
         6d:d6:c4:4d:99:3f:50:aa:a1:26:8b:fb:c3:b9:8c:dd:e1:de:
         eb:93:bb:28:d6:b4:7b:a2:ba:69:75:87:ef:76:4f:c7:ab:40:
         16:e1:62:68:92:49:65:67:6b:3c:a2:a3:5d:35:cf:a8:52:fe:
         b6:73:7d:ed:47:ac:af:55:05:6f:1d:ce:11:72:e2:3e:f8:8f:
         ee:46:6f:6c:2a:62:fb:16:07:e1:cc:7e:3c:c0:95:97:ae:c1:
         12:dc:c2:59:d3:23:ad:94:23:2f:c2:01:e4:98:6c:e3:9d:45:
         13:79:fd:a3
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUR8227X8OTejL6BQRmfeWhWWe+3EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0
MzUzRjZGRjAeFw0yNTA2MjkxMTA2MDVaFw0yNTA3MDIxNTI1MDVaMDMxMTAvBgNV
BAMTKEE2MzVFQjg5QzZBRkVBRkM1ODA3MTExOEVFRjkyRjU3MjIzN0Q5N0QwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl7OCSDyVlAJRL/TsCTO8ArKLE
DO3nZccO6q81lYWRMCRQRM/SJDiSymuxzAh0qX5PSAEF/PMv5hjajpvRIxSnBKQJ
l36UZEFiynJIwyOYRiOWArQvpWVKueMhBflQEyO8VtgPletXTAqO3LlrgbRD4vAO
JEvsTXY3U+9++ThFgqOH+/U4QFWjdxTqAqIue6+jlj65W7gk60sGNi3sN3wduMEo
tAA5S92rkj/RmTCW+n6tIMBeGYa4BUUxQSzT2m6kSYi30U7N3MRRXjqhCJcGuxVG
P6znnKoD01l6Xf5dDPJoKL7XygaE3uJMV1l6vIx+g1D/FCuzquJtxAGaarZnAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUpjXricav6vxYBxEY7vkvVyI32X0wHwYDVR0j
BBgwFoAUi6K14H+tVyjH3vv0/BC9BENT9v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
Yzc2Yzg1Zi05YTRmLTRhZmMtOTY5Yi04ZGEyNTM2YzVjMjQvMC84QkEyQjVFMDdG
QUQ1NzI4QzdERUZCRjRGQzEwQkQwNDQzNTNGNkZGLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0MzUz
RjZGRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGM3NmM4NWYtOWE0Zi00YWZjLTk2
OWItOGRhMjUzNmM1YzI0LzAvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJE
MDQ0MzUzRjZGRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBAIoVZGcwB8f22SkPSEtCUMdgv+wSyl2F4jOZ
lA70J/gnL+mLVlBDC2afY6WTR2ecudrryoxrjV9/7UCSi3BygYe2mfMIonxU6Ry+
Q+NeEXtccz9gQaXD8jS/CnbB2x6uBQ8ZiAs4FyZG6DyBvTTGaMssMwCxFiliDEBK
lipVN1orOZrJ3ESeABtMQa5fdDeit23WxE2ZP1CqoSaL+8O5jN3h3uuTuyjWtHui
uml1h+92T8erQBbhYmiSSWVnazyio101z6hS/rZzfe1HrK9VBW8dzhFy4j74j+5G
b2wqYvsWB+HMfjzAlZeuwRLcwlnTI62UIy/CAeSYbOOdRRN5/aM=
-----END CERTIFICATE-----