Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft
File:                     1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft (raw, json)
Hash identifier:          GiDvxib1uUmbEsK93jywPUtyH072vlap+qns/74XPAg=
Subject key identifier:   BC:CC:3F:5B:0E:59:12:C9:79:6A:3B:FB:1A:E5:93:4D:99:50:C5:7F
Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F
Certificate issuer:       /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F
Certificate serial:       2F249C80B2810EF9E313E97F24CC69AA1359476B
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft
Manifest number:          0205
Signing time:             Thu 26 Mar 2026 08:40:05 +0000
Manifest this update:     Thu 26 Mar 2026 08:35:05 +0000
Manifest next update:     Sun 29 Mar 2026 16:32:05 +0000
Files and hashes:         1: 3131342e3134312e39302e302f32342d3234203d3e203338373733.roa (hash: 31rqAW06+FuDJELvsb/0uxq0ocORo684ERfMQVWzj54=)
                          2: 3131342e3134312e39332e302f32342d3234203d3e20313338383138.roa (hash: 8bb25AjKY+CfhaHD2T35vRoSHcpGFrksD2snYFX7/PA=)
                          3: 3131342e3134312e38392e302f32342d3234203d3e203338373733.roa (hash: vo3txQHD1GP/JznijvlkQTtQaeBbi729kAiguRxIkyE=)
                          4: 3131342e3134312e39322e302f32342d3234203d3e20313338383138.roa (hash: YqkCvMl0PPv/SjM86CmSE7YV2BzpnMMQxQbEuJOY7ws=)
                          5: 3131342e3134312e39352e302f32342d3234203d3e20313338383138.roa (hash: qVIOTxzkHoMtUEEPyvvgBkFKT9oB5BtmkPkZiQLq0ng=)
                          6: 3131342e3134312e39312e302f32342d3234203d3e20313338383138.roa (hash: p/6KK4JMbgCv5VkdanC2JpAp7VpmlbyPcWCjqL4KniM=)
                          7: 3131342e3134312e39342e302f32342d3234203d3e20313338383138.roa (hash: FBwLiD7U4sCYynBhJGjAu+VAe5YUj9+FUjVO+L+zaEo=)
                          8: 1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl (hash: Vvx185mNPZdVRMNQWt2tlg1cuVnGU78ypqlZ339RtdY=)
                          9: 3131342e3134312e38382e302f32342d3234203d3e203338373733.roa (hash: rfAEDfb98EmJrbbYSOsJh0R3GKeVtrdV920jQ6JYXXk=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl
                          rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 29 Mar 2026 16:25:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2f:24:9c:80:b2:81:0e:f9:e3:13:e9:7f:24:cc:69:aa:13:59:47:6b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F
        Validity
            Not Before: Mar 26 08:35:05 2026 GMT
            Not After : Mar 29 16:32:05 2026 GMT
        Subject: CN=BCCC3F5B0E5912C9796A3BFB1AE5934D9950C57F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:e3:8c:90:63:d1:a3:70:32:42:ed:2b:d1:2c:
                    b6:ec:d2:8a:07:93:bb:ae:7e:9e:34:b8:93:4a:e9:
                    9d:2c:5e:9b:2b:d7:54:f4:fc:b6:88:78:ca:02:84:
                    6a:be:1f:0a:42:8e:d1:3b:ad:de:57:95:96:61:59:
                    f1:ce:ae:96:0e:1e:b6:8d:55:14:aa:09:28:23:dd:
                    b7:8d:2d:ca:67:b7:1b:8a:75:bd:91:98:f7:a9:06:
                    3d:3b:75:6e:9d:7f:b0:16:82:97:38:7e:07:08:cf:
                    15:75:32:12:ca:0a:17:9b:b4:cc:0c:45:60:0c:96:
                    0d:62:4f:1f:de:fd:52:1a:e9:a2:68:e3:3a:69:dd:
                    db:fa:c4:df:73:da:ac:ff:04:8a:72:81:af:32:4b:
                    76:ad:74:a4:ff:76:a1:c4:4b:8e:f7:2e:b7:71:eb:
                    ab:f4:9f:4b:3d:40:1f:fd:bb:b8:69:29:d8:a2:bf:
                    56:37:4b:82:0e:bc:b1:ab:46:98:01:f5:f6:c0:74:
                    f3:1a:3b:88:2f:de:b6:fa:21:a9:c8:82:d4:5a:de:
                    41:cb:72:dc:cc:e1:41:95:22:8e:a8:88:b1:fd:f2:
                    4e:f4:46:5c:6f:86:e3:c0:2f:5c:e7:3b:12:0e:10:
                    11:1e:36:1e:6d:0c:6e:16:76:43:26:ff:a6:7a:5e:
                    58:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:CC:3F:5B:0E:59:12:C9:79:6A:3B:FB:1A:E5:93:4D:99:50:C5:7F
            X509v3 Authority Key Identifier:
                keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:bd:3b:da:0b:d4:75:7a:56:7a:42:55:a5:e6:78:de:1f:27:
         a9:79:43:30:43:2f:8e:b4:aa:e0:85:d7:0b:2b:09:99:88:14:
         74:fa:ea:1e:c9:c2:e1:dc:44:ea:33:87:b5:9f:8b:ec:34:ab:
         a1:6a:15:d8:35:44:93:ba:86:39:0e:55:b5:f0:8d:8f:de:20:
         9f:2a:2d:fd:67:30:d1:0f:2e:14:0b:01:38:a5:9f:42:10:3b:
         8b:23:24:f0:dd:f9:e1:e3:bc:fc:5a:c1:21:f7:e0:dc:93:3a:
         9d:ee:27:64:32:1d:2f:36:3f:32:a8:4f:c9:74:46:ba:31:3c:
         39:99:ae:e8:f9:3a:69:86:51:9e:ae:e9:ef:c0:20:b5:7d:bd:
         5b:05:0f:74:fe:cb:a0:60:48:b6:85:e1:c5:39:79:a4:27:cf:
         aa:0c:4d:9a:cf:51:4a:7d:45:89:07:d3:42:e0:08:34:05:b3:
         0a:38:dd:7f:6e:40:f0:18:08:f1:93:2d:cf:78:84:55:8d:df:
         c8:b5:3a:c5:ad:6d:31:5e:1b:d7:d5:e6:11:5d:6c:cc:d6:70:
         2a:6c:03:8a:e0:1f:b0:c9:59:79:36:99:61:29:57:73:a0:b9:
         96:5e:bc:f5:e1:32:7b:73:32:62:91:c1:4b:3e:23:09:fd:c7:
         f4:c3:1d:99
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIULyScgLKBDvnjE+l/JMxpqhNZR2swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcw
REMxNDY0RjAeFw0yNjAzMjYwODM1MDVaFw0yNjAzMjkxNjMyMDVaMDMxMTAvBgNV
BAMTKEJDQ0MzRjVCMEU1OTEyQzk3OTZBM0JGQjFBRTU5MzREOTk1MEM1N0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC044yQY9GjcDJC7SvRLLbs0ooH
k7uufp40uJNK6Z0sXpsr11T0/LaIeMoChGq+HwpCjtE7rd5XlZZhWfHOrpYOHraN
VRSqCSgj3beNLcpntxuKdb2RmPepBj07dW6df7AWgpc4fgcIzxV1MhLKChebtMwM
RWAMlg1iTx/e/VIa6aJo4zpp3dv6xN9z2qz/BIpyga8yS3atdKT/dqHES473Lrdx
66v0n0s9QB/9u7hpKdiiv1Y3S4IOvLGrRpgB9fbAdPMaO4gv3rb6IanIgtRa3kHL
ctzM4UGVIo6oiLH98k70RlxvhuPAL1znOxIOEBEeNh5tDG4WdkMm/6Z6Xlh/AgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUvMw/Ww5ZEsl5ajv7GuWTTZlQxX8wHwYDVR0j
BBgwFoAUG/mdTc1b9QO+lyOr9VHd1w3BRk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
N2ZjNTRmYi03MjRlLTQzMTYtYjliYy0xYzRiMDZlYTU3YWUvMC8xQkY5OUQ0RENE
NUJGNTAzQkU5NzIzQUJGNTUxRERENzBEQzE0NjRGLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcwREMx
NDY0Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzdmYzU0ZmItNzI0ZS00MzE2LWI5
YmMtMWM0YjA2ZWE1N2FlLzAvMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURE
RDcwREMxNDY0Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBAGW9O9oL1HV6VnpCVaXmeN4fJ6l5QzBDL460
quCF1wsrCZmIFHT66h7JwuHcROozh7Wfi+w0q6FqFdg1RJO6hjkOVbXwjY/eIJ8q
Lf1nMNEPLhQLATiln0IQO4sjJPDd+eHjvPxawSH34NyTOp3uJ2QyHS82PzKoT8l0
RroxPDmZruj5OmmGUZ6u6e/AILV9vVsFD3T+y6BgSLaF4cU5eaQnz6oMTZrPUUp9
RYkH00LgCDQFswo43X9uQPAYCPGTLc94hFWN38i1OsWtbTFeG9fV5hFdbMzWcCps
A4rgH7DJWXk2mWEpV3OguZZevPXhMntzMmKRwUs+Iwn9x/TDHZk=
-----END CERTIFICATE-----