Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft
File:                     CA5B0322788B7A041373A944677E83F0D48FF4E7.mft (raw, json)
Hash identifier:          Wvsk9jKyMXQC3y3QHl6JpW0o2gFeO9B7LG2k++e+zRI=
Subject key identifier:   BD:FB:D4:AF:A6:EB:10:84:04:E1:3C:A2:11:F7:0F:18:50:79:96:7B
Authority key identifier: CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7
Certificate issuer:       /CN=CA5B0322788B7A041373A944677E83F0D48FF4E7
Certificate serial:       4AB6D699BC95A1EBE19B2C11E5AB4392FCCE2337
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft
Manifest number:          A5
Signing time:             Tue 01 Jul 2025 17:11:05 +0000
Manifest this update:     Tue 01 Jul 2025 17:06:05 +0000
Manifest next update:     Sat 05 Jul 2025 02:14:05 +0000
Files and hashes:         1: CA5B0322788B7A041373A944677E83F0D48FF4E7.crl (hash: 1AFzyLdq5gjAowGis1pTxVWK+615j1NDE/oFzGtOW4s=)
                          2: 3130332e37312e3136302e302f32322d3234203d3e20313339393831.roa (hash: lDykVwxJoW4GFsi2L2TOWuZVobAaZLaNG/GuK7uwVOw=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl
                          rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 04 Jul 2025 15:45:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4a:b6:d6:99:bc:95:a1:eb:e1:9b:2c:11:e5:ab:43:92:fc:ce:23:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=CA5B0322788B7A041373A944677E83F0D48FF4E7
        Validity
            Not Before: Jul  1 17:06:05 2025 GMT
            Not After : Jul  5 02:14:05 2025 GMT
        Subject: CN=BDFBD4AFA6EB108404E13CA211F70F185079967B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:b0:65:43:d7:9e:03:09:93:80:ea:24:89:d7:
                    2b:10:98:4b:c5:eb:cb:c3:1d:46:b5:3a:91:59:43:
                    16:3f:2f:dc:cc:21:2f:4e:81:44:5f:4e:0e:3b:1a:
                    69:d2:b0:e5:29:52:a5:c7:ff:dd:c6:3b:47:7e:2c:
                    23:68:b3:a9:d4:4e:97:3c:63:9a:82:0e:79:69:d5:
                    70:6d:b4:7b:1b:6c:71:bb:48:e7:44:70:56:5a:b5:
                    da:94:b4:e4:8d:0f:2c:b8:a8:95:a0:ac:11:ab:78:
                    5c:42:7e:2d:67:1f:95:0a:8d:0c:58:91:a3:c6:e8:
                    3e:8a:d3:21:c0:ed:07:84:9c:7e:4d:f0:31:60:73:
                    46:4e:cf:9e:ce:9d:70:11:9e:6f:43:89:a6:89:79:
                    d0:45:a0:1f:5e:6d:a0:a3:db:d2:4f:86:24:45:ba:
                    47:9d:b4:8e:1d:2a:7b:95:1a:2e:03:36:41:d3:ce:
                    29:2a:db:9f:12:a6:ca:40:fe:14:aa:7c:bc:62:9b:
                    ff:c9:f2:a0:90:65:e0:fc:65:4b:44:0d:75:f7:70:
                    81:e2:db:24:ae:19:ff:c4:7d:a4:df:6e:9e:c0:e4:
                    e9:6e:b9:49:5c:51:bf:45:30:2b:5e:0d:fa:bf:da:
                    d2:c9:96:aa:4a:5e:8d:1a:ef:f9:56:a6:e4:3c:a6:
                    51:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:FB:D4:AF:A6:EB:10:84:04:E1:3C:A2:11:F7:0F:18:50:79:96:7B
            X509v3 Authority Key Identifier:
                keyid:CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:8f:a3:d7:f1:31:f0:fc:4e:4d:26:e4:61:73:32:04:3d:73:
         bc:e4:69:f2:c1:17:03:82:20:02:bf:d9:ef:80:ab:06:c1:18:
         d4:4c:c9:b4:16:68:2b:e1:2e:ff:2e:c8:38:4b:26:d2:45:21:
         04:f2:be:05:56:f0:4a:03:5a:8f:87:8a:29:fb:03:c4:2c:f5:
         ec:fc:f7:ff:58:d5:b4:97:5e:f9:f6:ac:64:81:31:5b:07:02:
         42:df:2a:b9:5b:f7:c2:8f:8e:84:a1:18:77:af:bf:a4:81:96:
         db:f7:f2:e7:61:31:fd:ef:4a:44:06:f6:02:1a:82:2f:0b:ab:
         26:c3:a8:8e:57:68:c9:9a:25:39:9f:64:59:ca:6e:95:4e:cf:
         2f:f7:08:96:e8:a7:96:52:c9:a5:be:ca:a5:3e:d5:66:53:44:
         f3:b7:9b:0b:0d:4e:99:55:de:65:2a:fc:ed:16:2e:b6:79:9b:
         59:07:66:64:65:09:ca:1f:a3:9d:9d:f5:13:e5:fd:92:e8:17:
         ff:3d:80:07:21:d7:32:09:0a:01:da:1d:8a:77:69:fd:3a:0f:
         47:67:69:ee:af:bd:29:3c:77:94:93:98:cc:dc:61:71:b9:f8:
         45:08:4e:84:fd:82:27:8e:a6:a6:40:64:91:b6:b9:77:49:e2:
         3e:64:ec:b6
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUSrbWmbyVoevhmywR5atDkvzOIzcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBE
NDhGRjRFNzAeFw0yNTA3MDExNzA2MDVaFw0yNTA3MDUwMjE0MDVaMDMxMTAvBgNV
BAMTKEJERkJENEFGQTZFQjEwODQwNEUxM0NBMjExRjcwRjE4NTA3OTk2N0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9sGVD154DCZOA6iSJ1ysQmEvF
68vDHUa1OpFZQxY/L9zMIS9OgURfTg47GmnSsOUpUqXH/93GO0d+LCNos6nUTpc8
Y5qCDnlp1XBttHsbbHG7SOdEcFZatdqUtOSNDyy4qJWgrBGreFxCfi1nH5UKjQxY
kaPG6D6K0yHA7QeEnH5N8DFgc0ZOz57OnXARnm9DiaaJedBFoB9ebaCj29JPhiRF
ukedtI4dKnuVGi4DNkHTzikq258SpspA/hSqfLxim//J8qCQZeD8ZUtEDXX3cIHi
2ySuGf/EfaTfbp7A5OluuUlcUb9FMCteDfq/2tLJlqpKXo0a7/lWpuQ8plHnAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUvfvUr6brEIQE4TyiEfcPGFB5lnswHwYDVR0j
BBgwFoAUylsDIniLegQTc6lEZ36D8NSP9OcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
ZWJhODY3YS04Zjg0LTQ2NjMtYjMyMC1mNDM1MjgyYjlmZmUvMC9DQTVCMDMyMjc4
OEI3QTA0MTM3M0E5NDQ2NzdFODNGMEQ0OEZGNEU3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBENDhG
RjRFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGViYTg2N2EtOGY4NC00NjYzLWIz
MjAtZjQzNTI4MmI5ZmZlLzAvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgz
RjBENDhGRjRFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBABmPo9fxMfD8Tk0m5GFzMgQ9c7zkafLBFwOC
IAK/2e+AqwbBGNRMybQWaCvhLv8uyDhLJtJFIQTyvgVW8EoDWo+Hiin7A8Qs9ez8
9/9Y1bSXXvn2rGSBMVsHAkLfKrlb98KPjoShGHevv6SBltv38udhMf3vSkQG9gIa
gi8LqybDqI5XaMmaJTmfZFnKbpVOzy/3CJbop5ZSyaW+yqU+1WZTRPO3mwsNTplV
3mUq/O0WLrZ5m1kHZmRlCcofo52d9RPl/ZLoF/89gAch1zIJCgHaHYp3af06D0dn
ae6vvSk8d5STmMzcYXG5+EUIToT9gieOpqZAZJG2uXdJ4j5k7LY=
-----END CERTIFICATE-----
Generated at Tue Jul 1 20:24:55 2025 by rpki-client