Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft
File:                     1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft (raw, json)
Hash identifier:          nbSUKFfBxLg6JSGERbJGuxT40c612ff6mQMnhGTHXmg=
Subject key identifier:   D6:A2:B4:BF:52:61:5D:49:BB:9D:6B:42:87:65:EE:64:58:54:B6:8F
Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F
Certificate issuer:       /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F
Certificate serial:       56173237E272FDED9D730BA2458A53C3CA66BA54
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft
Manifest number:          01A4
Signing time:             Sat 23 Aug 2025 06:10:05 +0000
Manifest this update:     Sat 23 Aug 2025 06:05:05 +0000
Manifest next update:     Tue 26 Aug 2025 10:07:05 +0000
Files and hashes:         1: 3131342e3134312e38382e302f32342d3234203d3e203338373733.roa (hash: uzdxCFJ60y1EqFPWBfLgLUEnJ7LWJrfPQeMyJb9m5FM=)
                          2: 3131342e3134312e39332e302f32342d3234203d3e20313338383138.roa (hash: FqS1mlGjIL0BP5gK9enlmVRuaz2y9/mIcmX+UTD+qKA=)
                          3: 3131342e3134312e39342e302f32342d3234203d3e20313338383138.roa (hash: CSQkGTmQt+s2JfwWnvim+F5o3slRbbgf9XyF9r9GepU=)
                          4: 1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl (hash: 12xvm6Z4WqJ9ezF1HG9CePYTDnO/x+GPo3itMifahD0=)
                          5: 3131342e3134312e38392e302f32342d3234203d3e203338373733.roa (hash: 8i3x4gBaZ9q2FeKL77QwQugTPoFrVoqppzokcKf7V9U=)
                          6: 3131342e3134312e39312e302f32342d3234203d3e20313338383138.roa (hash: IJ/QrpohwAAMEHf60VyOYZyE2rLKrvAARpcXl8wmM9I=)
                          7: 3131342e3134312e39352e302f32342d3234203d3e20313338383138.roa (hash: hHpqodeyU8amc0Yg+Vz1Yb1kEzG9g5qGdXKGONkFhDE=)
                          8: 3131342e3134312e39302e302f32342d3234203d3e203338373733.roa (hash: 9CQ6JFUhExdNBAYYYWcUpyzc1PDrxOfBKcNbdLlWf6U=)
                          9: 3131342e3134312e39322e302f32342d3234203d3e20313338383138.roa (hash: K3N55cBe6+W2+UEDhGR/EreK/NsWeZinIyNl1uxEyoA=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl
                          rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 26 Aug 2025 10:07:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            56:17:32:37:e2:72:fd:ed:9d:73:0b:a2:45:8a:53:c3:ca:66:ba:54
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F
        Validity
            Not Before: Aug 23 06:05:05 2025 GMT
            Not After : Aug 26 10:07:05 2025 GMT
        Subject: CN=D6A2B4BF52615D49BB9D6B428765EE645854B68F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:63:8a:c3:60:ba:a8:86:2b:14:8d:97:6b:40:
                    81:a6:d8:83:f2:32:df:47:ad:0c:13:f0:a1:ba:97:
                    a2:82:1b:68:4d:f9:d7:a5:d0:c3:03:80:c9:4e:61:
                    9a:89:99:c1:45:fe:20:2f:00:75:a9:b2:a9:72:07:
                    07:a4:f2:09:99:9c:94:31:52:e3:80:1a:10:c1:59:
                    23:21:e0:6f:40:cc:95:80:ba:29:17:c3:07:cd:58:
                    d7:06:35:f2:7b:ba:9f:d4:4d:75:95:c0:cd:ee:a1:
                    35:8e:5a:5f:76:ca:11:46:7b:82:a6:67:f5:24:d8:
                    21:95:92:96:d7:4b:0b:1c:83:1b:a6:96:30:28:19:
                    6b:36:45:1a:26:6a:7e:7d:b8:5a:60:41:83:93:f4:
                    d1:b4:d2:b2:b8:cb:1b:8a:8a:9e:1f:d3:4e:97:02:
                    84:cf:c3:ce:1d:6b:bd:8e:cb:da:60:a3:36:15:f3:
                    cf:f6:ea:9c:10:61:f5:20:47:49:a9:fe:58:cb:56:
                    d9:28:50:b5:66:71:0c:2c:35:e0:ba:3a:2b:2b:c0:
                    1a:78:b8:e2:d6:85:b3:74:eb:10:3b:4a:de:f6:b8:
                    eb:6a:f4:c1:e4:27:4f:de:8d:56:f8:2d:d6:da:8f:
                    11:e7:2e:cc:5c:7f:1e:8b:d3:01:e1:6f:3a:11:43:
                    d2:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:A2:B4:BF:52:61:5D:49:BB:9D:6B:42:87:65:EE:64:58:54:B6:8F
            X509v3 Authority Key Identifier:
                keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ae:e8:2a:70:3d:fd:d8:ea:4c:24:32:37:87:03:8e:d5:a4:55:
         32:fd:7d:26:09:a3:ed:03:0a:f3:1f:0c:08:c6:44:c3:21:b6:
         4d:73:60:a6:80:92:0e:a8:a0:9f:d7:47:ff:48:95:0f:64:de:
         d4:f4:68:7e:74:1e:e9:a4:79:e3:cb:ed:18:4c:f1:27:2f:40:
         c1:b3:3f:df:e5:f0:2e:cc:af:8d:db:74:32:17:c0:57:be:41:
         b0:82:3d:74:19:94:92:75:91:5d:e2:0c:a3:d7:df:1b:26:cd:
         99:8d:42:e7:4f:12:83:32:f3:ad:40:2c:ce:b7:18:6f:10:02:
         7a:e1:19:68:ce:fe:48:ee:8b:d9:7b:52:b7:69:b9:06:15:c1:
         44:24:c7:42:d8:ec:de:22:d7:42:ed:8b:eb:3d:9c:89:df:dd:
         0e:be:6a:7c:11:5d:9b:54:90:61:de:a0:c2:7e:70:8a:71:58:
         83:e4:ef:af:1a:5f:7e:93:37:36:3a:88:47:ce:9b:3e:f4:f9:
         bf:83:31:44:0f:7c:79:35:69:36:fd:79:47:a7:ca:43:43:49:
         e4:dc:a0:f3:8f:53:41:6a:75:27:8a:4a:b1:bb:43:f0:4a:98:
         1c:43:5f:e8:97:2e:c2:94:5f:04:72:f0:3f:a2:f1:d7:64:40:
         27:f1:b8:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----