Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft
File:                     1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft (raw, json)
Hash identifier:          Saf1v4ADEY2jYSgJhSp4aT+3m2jo11+EH9K/LAK2l+w=
Subject key identifier:   B1:DB:FD:92:27:5B:9D:7A:33:CA:5B:2A:7F:A1:E9:AB:E6:6B:B7:D5
Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F
Certificate issuer:       /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F
Certificate serial:       575F44E498D3AAD9AF391D7B9EE4CF60CED57D7B
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft
Manifest number:          018B
Signing time:             Fri 27 Jun 2025 17:30:04 +0000
Manifest this update:     Fri 27 Jun 2025 17:25:04 +0000
Manifest next update:     Tue 01 Jul 2025 05:11:04 +0000
Files and hashes:         1: 3131342e3134312e39312e302f32342d3234203d3e20313338383138.roa (hash: IJ/QrpohwAAMEHf60VyOYZyE2rLKrvAARpcXl8wmM9I=)
                          2: 3131342e3134312e38382e302f32342d3234203d3e203338373733.roa (hash: uzdxCFJ60y1EqFPWBfLgLUEnJ7LWJrfPQeMyJb9m5FM=)
                          3: 3131342e3134312e39332e302f32342d3234203d3e20313338383138.roa (hash: FqS1mlGjIL0BP5gK9enlmVRuaz2y9/mIcmX+UTD+qKA=)
                          4: 3131342e3134312e39322e302f32342d3234203d3e20313338383138.roa (hash: K3N55cBe6+W2+UEDhGR/EreK/NsWeZinIyNl1uxEyoA=)
                          5: 1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl (hash: 8004EIOM95f8N15HfZbQ2j1WDH3+oIQsqhQeoq6WRN4=)
                          6: 3131342e3134312e39352e302f32342d3234203d3e20313338383138.roa (hash: hHpqodeyU8amc0Yg+Vz1Yb1kEzG9g5qGdXKGONkFhDE=)
                          7: 3131342e3134312e39302e302f32342d3234203d3e203338373733.roa (hash: 9CQ6JFUhExdNBAYYYWcUpyzc1PDrxOfBKcNbdLlWf6U=)
                          8: 3131342e3134312e39342e302f32342d3234203d3e20313338383138.roa (hash: CSQkGTmQt+s2JfwWnvim+F5o3slRbbgf9XyF9r9GepU=)
                          9: 3131342e3134312e38392e302f32342d3234203d3e203338373733.roa (hash: 8i3x4gBaZ9q2FeKL77QwQugTPoFrVoqppzokcKf7V9U=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl
                          rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 01 Jul 2025 05:11:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            57:5f:44:e4:98:d3:aa:d9:af:39:1d:7b:9e:e4:cf:60:ce:d5:7d:7b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F
        Validity
            Not Before: Jun 27 17:25:04 2025 GMT
            Not After : Jul  1 05:11:04 2025 GMT
        Subject: CN=B1DBFD92275B9D7A33CA5B2A7FA1E9ABE66BB7D5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:19:08:56:35:35:c9:26:9e:8e:87:7b:f8:e7:
                    0e:20:d5:a3:26:03:cd:34:94:7d:7d:08:c3:40:43:
                    b6:13:f3:94:0b:49:ee:cd:47:eb:af:6d:0c:61:3c:
                    dd:81:ec:1d:1e:ca:77:1e:d2:6d:d5:8a:41:1a:d0:
                    d2:bd:d7:20:50:90:fb:e5:a7:1f:ae:6a:ca:88:1f:
                    89:0f:cb:93:57:a5:61:ad:51:10:5c:cf:ad:b9:27:
                    b6:53:77:2d:e3:e2:fd:47:76:3b:34:e3:e2:e7:18:
                    e2:09:b2:c6:22:d9:e6:c0:b1:b9:8a:45:ea:c2:a7:
                    dc:6d:84:c9:d8:ae:52:cd:10:09:02:03:d0:8f:1d:
                    84:29:34:89:9a:c9:7e:35:57:cc:5e:d2:39:ed:51:
                    5d:99:2c:fb:ca:c9:ba:8d:19:88:e0:5b:81:91:38:
                    aa:9c:32:60:d8:57:cc:a3:12:96:97:ba:60:72:fd:
                    64:1c:14:5c:97:4c:ce:67:a0:fb:9c:7b:8b:07:bd:
                    a6:07:c5:d5:e8:a4:e9:cc:0e:56:4b:28:be:d5:b9:
                    8e:9e:1c:2d:e4:53:93:b5:d3:34:74:c3:c1:6c:82:
                    80:f2:48:ce:97:3f:1e:9e:bb:9e:21:0c:22:61:85:
                    dd:b7:b3:75:45:f8:5f:00:62:ba:6e:7a:31:25:49:
                    10:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:DB:FD:92:27:5B:9D:7A:33:CA:5B:2A:7F:A1:E9:AB:E6:6B:B7:D5
            X509v3 Authority Key Identifier:
                keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:0d:13:b2:5c:c5:44:1a:7f:e1:21:ef:61:0e:ce:1e:b9:79:
         0b:43:f0:48:bb:13:53:9f:56:da:47:e2:07:c8:5f:cd:40:19:
         d4:f6:97:39:db:42:ec:fb:75:37:b3:4c:19:93:da:b6:53:ae:
         57:5c:0c:eb:00:10:1d:a3:54:62:aa:89:ac:b3:c9:0a:15:67:
         9b:61:c1:25:45:ad:12:d8:43:17:e2:61:b8:ba:8d:7f:e5:85:
         e8:77:11:e5:26:72:a9:67:88:2c:63:68:f2:2d:b1:c7:59:e5:
         aa:23:b8:3f:d3:4e:2c:c0:b6:d9:57:2f:12:31:9d:4e:4e:59:
         b3:21:7f:e4:2a:d1:77:76:9a:ea:31:e8:35:90:39:c6:74:71:
         2c:d4:c9:62:07:4f:db:99:4e:93:7d:8e:99:ee:e5:bf:40:33:
         cd:08:5e:42:5d:d7:06:11:6d:66:9f:ec:26:d6:f3:f3:16:92:
         d0:5a:76:a7:3f:ee:3e:80:7c:5d:f4:d8:1a:d4:e4:1b:a9:b3:
         c3:ca:d8:c5:44:7d:27:d2:51:91:45:4b:bb:20:71:82:02:c8:
         3a:06:80:b7:b0:0c:5e:f1:9f:cf:d1:9c:98:b8:00:85:49:fb:
         ba:fb:3c:07:ff:f3:cc:f2:0c:2b:e2:39:10:e0:08:7e:20:96:
         f9:94:37:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----