Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft
File:                     86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft (raw, json)
Hash identifier:          +eZfWyqtf4jqTFk6Ez/kczK03T3mStbb5xGRRYcBxiQ=
Subject key identifier:   EC:0F:76:26:1D:93:56:21:4A:6B:53:AF:93:7B:39:12:44:AB:5D:7D
Authority key identifier: 86:E6:79:5A:CA:B9:9C:F2:9C:E7:C7:E1:0D:7F:CC:E7:E2:FF:26:3E
Certificate issuer:       /CN=86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E
Certificate serial:       3F69A887FDBFE32CBDC715F52717782D15AFEE03
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft
Manifest number:          0242
Signing time:             Mon 20 Oct 2025 02:51:52 +0000
Manifest this update:     Mon 20 Oct 2025 02:46:52 +0000
Manifest next update:     Thu 23 Oct 2025 06:03:52 +0000
Files and hashes:         1: 3130332e3138362e39322e302f32342d3234203d3e20313439363937.roa (hash: scqosPwH5BL2/2imBhyJZEPHHItlqeTByFILkve6Gxg=)
                          2: 3130332e3138362e39322e302f32332d3234203d3e20313439363937.roa (hash: yvcS+4k20Y8iRZaWxf96+9kxISErdYY6WtdAGoUwpMc=)
                          3: 86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl (hash: Iz/9tfUsLBOMGUy57xe3wltMeAHWHM2kyQFek7bh9n0=)
                          4: 3130332e3138362e39332e302f32342d3234203d3e20313439363937.roa (hash: pI4Ee2HOCQgHXKn0phpNZPvS39KAXUpqkjdsByhi1e8=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl
                          rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Oct 2025 06:03:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3f:69:a8:87:fd:bf:e3:2c:bd:c7:15:f5:27:17:78:2d:15:af:ee:03
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E
        Validity
            Not Before: Oct 20 02:46:52 2025 GMT
            Not After : Oct 23 06:03:52 2025 GMT
        Subject: CN=EC0F76261D9356214A6B53AF937B391244AB5D7D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:aa:90:39:aa:14:3d:cd:c7:d2:8d:01:3a:c0:
                    4c:9a:31:dd:fa:bc:fc:39:60:87:27:4b:85:9a:33:
                    dc:d9:2a:f3:3e:55:93:6d:fa:51:63:02:72:a8:f7:
                    62:be:07:db:44:d3:5f:78:07:9f:fe:42:92:72:9c:
                    63:17:28:df:ed:51:7e:bb:2e:be:d9:9c:0e:23:5d:
                    9a:d6:d9:6c:0d:9a:65:6d:ff:62:1e:89:2a:69:f9:
                    10:47:82:75:e4:42:1d:b7:93:ac:4f:b6:af:2c:f3:
                    ff:28:b4:ff:29:f2:ab:88:9f:e5:03:59:15:f4:68:
                    b9:82:85:40:1b:42:0a:56:b4:0d:4e:c0:c0:97:80:
                    51:c7:12:04:18:83:56:fb:93:47:b4:7b:2d:02:d2:
                    ed:18:07:7c:22:7d:1e:a6:d2:75:4a:e2:96:f2:9f:
                    92:71:04:30:af:c7:90:38:f2:fe:a4:76:cf:74:8f:
                    09:18:3e:52:49:99:87:5c:a7:30:1a:1e:ae:a0:de:
                    45:b3:ed:84:fe:da:9b:38:e2:d6:13:ae:56:00:47:
                    79:be:38:99:11:cb:70:90:05:6e:2c:1c:7c:98:f6:
                    69:cc:e3:3c:71:5c:d7:9a:26:6d:43:52:c9:df:fc:
                    2a:be:d1:c1:38:ba:8e:e5:07:6e:99:98:dd:60:9f:
                    59:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:0F:76:26:1D:93:56:21:4A:6B:53:AF:93:7B:39:12:44:AB:5D:7D
            X509v3 Authority Key Identifier:
                keyid:86:E6:79:5A:CA:B9:9C:F2:9C:E7:C7:E1:0D:7F:CC:E7:E2:FF:26:3E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:be:60:ce:68:5e:2b:f1:da:36:b9:c1:08:c9:1c:8c:fa:5e:
         4d:4d:67:b8:88:64:bf:d8:5e:59:37:1c:24:a2:a8:4b:55:f4:
         fe:f4:45:6c:5a:fb:73:d7:9d:5d:41:2c:d3:5d:a5:68:79:df:
         4f:0f:7f:cf:ff:ed:53:a3:25:d7:db:43:f4:71:75:e2:00:17:
         1f:64:fc:c7:e7:5f:88:a4:83:73:38:45:2d:03:9b:b7:a9:f6:
         46:e0:cb:2d:16:a7:0f:f7:3a:46:d1:3a:d0:c4:3a:eb:d5:b6:
         14:28:dc:51:02:1f:07:0c:f3:d3:c7:c3:5e:bd:3d:07:4f:08:
         a4:b9:6b:22:34:62:94:ea:ac:85:f7:9a:b0:ac:e9:35:32:58:
         b3:d7:2d:b9:3b:64:21:10:89:43:7a:4b:e7:21:e1:ac:89:b8:
         cb:94:a2:a5:d0:b6:b0:8b:6c:4e:1e:4f:45:22:a0:30:e2:45:
         9f:d8:72:82:82:8d:71:23:fd:26:8b:b8:8d:94:37:27:75:f7:
         80:9e:0f:17:e3:59:8f:9b:4d:e9:e5:18:2b:d4:eb:62:ab:2b:
         75:12:42:eb:65:e0:06:96:ef:de:93:a5:48:4f:32:4e:81:3a:
         27:05:17:40:df:6a:da:16:fa:fe:9d:14:6c:2d:55:b7:21:14:
         2b:09:40:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:42:08 2025 by rpki-client