Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft
File:                     1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft (raw, json)
Hash identifier:          Jp6zPHV4gQ/WTP/1w3mFgdqNVSlgSw/z6D87rOeCV1c=
Subject key identifier:   48:92:E1:49:70:EA:3F:5B:47:D4:47:22:57:58:B1:C6:BE:D0:7E:E0
Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F
Certificate issuer:       /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F
Certificate serial:       7681A57A6C1D3AE25B25D27FF870036E4B8996AE
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft
Manifest number:          01BD
Signing time:             Sun 19 Oct 2025 00:40:05 +0000
Manifest this update:     Sun 19 Oct 2025 00:35:05 +0000
Manifest next update:     Wed 22 Oct 2025 06:31:05 +0000
Files and hashes:         1: 3131342e3134312e39342e302f32342d3234203d3e20313338383138.roa (hash: CSQkGTmQt+s2JfwWnvim+F5o3slRbbgf9XyF9r9GepU=)
                          2: 3131342e3134312e39312e302f32342d3234203d3e20313338383138.roa (hash: IJ/QrpohwAAMEHf60VyOYZyE2rLKrvAARpcXl8wmM9I=)
                          3: 3131342e3134312e39352e302f32342d3234203d3e20313338383138.roa (hash: hHpqodeyU8amc0Yg+Vz1Yb1kEzG9g5qGdXKGONkFhDE=)
                          4: 3131342e3134312e39302e302f32342d3234203d3e203338373733.roa (hash: 9CQ6JFUhExdNBAYYYWcUpyzc1PDrxOfBKcNbdLlWf6U=)
                          5: 3131342e3134312e38382e302f32342d3234203d3e203338373733.roa (hash: uzdxCFJ60y1EqFPWBfLgLUEnJ7LWJrfPQeMyJb9m5FM=)
                          6: 3131342e3134312e39332e302f32342d3234203d3e20313338383138.roa (hash: FqS1mlGjIL0BP5gK9enlmVRuaz2y9/mIcmX+UTD+qKA=)
                          7: 3131342e3134312e38392e302f32342d3234203d3e203338373733.roa (hash: 8i3x4gBaZ9q2FeKL77QwQugTPoFrVoqppzokcKf7V9U=)
                          8: 1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl (hash: KlYW/7CyYTV3QaElne3uGOqGjUb3+M8KmwMJJPQwZcc=)
                          9: 3131342e3134312e39322e302f32342d3234203d3e20313338383138.roa (hash: K3N55cBe6+W2+UEDhGR/EreK/NsWeZinIyNl1uxEyoA=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl
                          rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 22 Oct 2025 06:31:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            76:81:a5:7a:6c:1d:3a:e2:5b:25:d2:7f:f8:70:03:6e:4b:89:96:ae
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F
        Validity
            Not Before: Oct 19 00:35:05 2025 GMT
            Not After : Oct 22 06:31:05 2025 GMT
        Subject: CN=4892E14970EA3F5B47D447225758B1C6BED07EE0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:f8:43:62:d0:2e:33:15:c6:41:df:35:58:be:
                    2c:8a:0d:ef:16:ff:bc:40:88:80:2a:f2:15:67:09:
                    66:a6:b2:45:d3:4a:1a:d4:e8:49:18:f8:11:87:08:
                    fe:58:33:a8:ea:e6:d5:23:40:24:18:e8:f1:be:3a:
                    ee:49:db:1f:fc:2c:71:2a:50:d1:6b:c6:1c:a5:1b:
                    2e:46:8a:64:65:3d:0a:6a:f0:3d:12:2b:8c:ee:ef:
                    f0:8c:d6:00:e3:0e:fb:9b:36:64:d7:65:bb:af:8e:
                    45:29:9a:8e:34:e3:3d:10:e2:0d:90:d1:64:cb:f5:
                    9d:60:26:4e:9d:ee:d1:64:08:e0:43:54:41:ea:cd:
                    49:9e:3b:1e:72:6a:e7:50:17:3c:79:32:42:9e:93:
                    09:64:5c:f7:a1:fe:60:22:40:cd:90:4e:fb:bc:cb:
                    72:a7:f8:4f:d5:00:8b:72:61:48:b3:56:65:b0:ea:
                    9f:b7:48:9b:07:18:5c:13:21:b5:2f:21:70:d2:78:
                    09:61:a2:f7:bb:a3:09:93:88:65:9c:7c:9d:e2:4f:
                    81:ee:db:1a:8d:b8:39:a3:0e:ab:6f:34:11:39:a1:
                    41:b6:17:3b:99:9a:dc:ee:3c:a9:cb:ef:14:d6:ab:
                    6c:7e:f7:7d:88:c4:13:0a:d1:10:88:14:ab:97:36:
                    af:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:92:E1:49:70:EA:3F:5B:47:D4:47:22:57:58:B1:C6:BE:D0:7E:E0
            X509v3 Authority Key Identifier:
                keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         99:54:f4:93:a8:b5:f3:c6:ff:b9:26:b5:21:63:b2:ee:0e:8a:
         33:92:ea:d2:fb:df:90:ab:3d:7c:4e:08:93:cf:9e:aa:6d:7a:
         ab:68:78:14:3b:fc:79:54:e8:f1:28:d7:3e:f3:fa:89:a1:d1:
         4a:cc:75:74:32:43:a0:93:fa:2e:1e:00:c3:cc:8d:5b:56:ba:
         83:38:6b:51:54:70:be:1e:99:04:b5:c6:2a:b5:1a:21:17:1c:
         f8:81:3e:b7:6a:48:1e:83:08:1c:2d:c2:a2:23:07:d8:63:44:
         4d:69:0e:70:67:c5:a0:71:1c:24:bb:89:8e:e2:e3:4a:56:52:
         fd:cb:bf:13:41:37:e3:be:b9:12:15:c3:c4:0f:d1:d6:93:5f:
         95:0d:2e:b8:d5:87:e8:01:88:3a:ca:51:2e:55:e8:e8:9b:37:
         3f:98:1e:60:2e:11:7b:db:61:b7:ce:d8:fd:88:e5:64:1e:5c:
         5f:c7:af:02:26:19:c6:f5:72:97:e1:04:9a:1e:03:49:1c:d3:
         9b:42:1c:54:2f:95:8e:ed:c4:ad:8c:c7:b7:ae:68:af:17:37:
         3d:13:4e:35:9a:d8:fb:af:7a:5e:f4:5a:62:43:a1:01:4c:78:
         c6:b1:a9:52:ae:df:6d:28:b3:34:55:ff:73:4a:43:10:b3:cb:
         f3:ae:4b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----