Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft
File:                     1952B074D19D5AB562D7EE537AD3059EA097353B.mft (raw, json)
Hash identifier:          pkSU3Nbd8O2YHitDfPfZA0nzxDoOWWVeu1GIgQ0nvok=
Subject key identifier:   2F:D2:51:EA:C2:5D:C3:05:B2:3A:56:9E:9A:1B:CD:90:3E:36:F5:DA
Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B
Certificate issuer:       /CN=1952B074D19D5AB562D7EE537AD3059EA097353B
Certificate serial:       3BAA8F2B0EF298A571AA0A3B3EC70A3D70AD3F6A
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft
Manifest number:          01E4
Signing time:             Tue 01 Jul 2025 00:51:31 +0000
Manifest this update:     Tue 01 Jul 2025 00:46:31 +0000
Manifest next update:     Fri 04 Jul 2025 11:58:31 +0000
Files and hashes:         1: 323430363a616563303a313a3a2f34382d3438203d3e20313431363735.roa (hash: EFHYC7XhG7MQGG+p71C9PeqM87F/0AnjgXarEbD+y4E=)
                          2: 3130332e3135382e32362e302f32342d3234203d3e20313431363735.roa (hash: ykRWiMSaAsP4Z39Whyu3kvlehUT+9RaQnqBPMyF4FR0=)
                          3: 323430363a616563303a323a3a2f34382d3438203d3e20313431363735.roa (hash: sJCm2ee/pkpEqZ3CTb0n1XRlqsVPP4kAsamQV7lnrGA=)
                          4: 1952B074D19D5AB562D7EE537AD3059EA097353B.crl (hash: tdJLcvhLkYFrfve+M9Fl38iGU7ehDkQQki/uLz57ric=)
                          5: 323430363a616563303a3a2f34382d3438203d3e20313431363735.roa (hash: AS7ErBWYOh3ltpqaacXCmV2CVPom+cE/4rFVdqtAK+c=)
                          6: 3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa (hash: 83g1exgFqaTQKU38X1D6x0BtWT5D2KATwMghhQSp0Hg=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl
                          rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 04 Jul 2025 11:58:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3b:aa:8f:2b:0e:f2:98:a5:71:aa:0a:3b:3e:c7:0a:3d:70:ad:3f:6a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B
        Validity
            Not Before: Jul  1 00:46:31 2025 GMT
            Not After : Jul  4 11:58:31 2025 GMT
        Subject: CN=2FD251EAC25DC305B23A569E9A1BCD903E36F5DA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:5e:65:10:c3:a1:71:c1:1f:10:56:c3:e5:ed:
                    79:80:53:74:1e:49:1f:b1:a2:ce:88:02:7b:e9:01:
                    42:10:17:9e:a9:12:7a:ad:8c:d3:32:9d:25:3a:fb:
                    b5:39:69:23:73:ce:0c:dc:3d:59:17:a5:2c:32:a6:
                    30:7d:3a:4e:03:e4:28:14:6f:50:bc:94:8f:3e:49:
                    c3:d7:14:da:9f:ec:22:e0:49:3f:1e:03:4a:5a:74:
                    15:b3:ba:07:b9:88:24:ce:7a:fe:25:07:b4:c8:a3:
                    34:eb:01:63:97:3b:73:d2:00:96:61:12:fe:a9:c7:
                    9f:35:b1:57:98:ed:b7:50:e1:0a:c5:29:9e:77:c0:
                    eb:43:b9:06:95:a9:02:e5:bd:9e:15:65:b8:0b:a5:
                    ce:70:16:af:78:7e:fb:10:8b:2a:02:c2:ed:6e:d6:
                    7b:fc:40:66:f3:5c:8c:69:91:a2:7c:7b:5d:f8:58:
                    7c:e2:13:2c:5e:3e:86:27:e7:12:e9:f8:27:d9:a4:
                    dd:b2:91:96:0b:02:d7:06:28:32:92:da:58:7d:2d:
                    af:67:fc:4f:d3:28:07:f1:72:43:5e:39:09:72:a0:
                    29:54:23:9e:48:46:17:79:9b:82:de:81:97:bb:3d:
                    d6:ba:18:8f:d4:aa:27:07:a9:33:47:51:3a:02:ef:
                    0e:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2F:D2:51:EA:C2:5D:C3:05:B2:3A:56:9E:9A:1B:CD:90:3E:36:F5:DA
            X509v3 Authority Key Identifier:
                keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         73:e6:6a:14:e9:d0:6b:02:1e:04:b3:ff:3b:31:3a:d7:73:77:
         c0:c0:4a:8a:fd:d9:aa:c3:9f:33:c1:09:ee:9a:58:26:d9:44:
         b5:b0:33:c5:77:72:33:45:26:a8:2a:54:78:95:4a:9d:c5:d6:
         a4:be:d9:f6:36:59:90:c8:80:37:86:f9:f8:8a:02:9e:0f:a5:
         54:12:8e:ee:ab:f4:51:57:99:de:a9:0e:f6:b7:1a:da:fc:34:
         d1:d0:64:b7:ba:d9:d8:c9:c1:9b:74:e9:f5:41:3e:3b:ce:03:
         46:f2:5a:28:b0:99:60:43:4c:ee:6b:27:f3:c0:2b:a3:e6:69:
         87:c5:ca:3e:05:bf:fe:ec:16:44:16:a6:78:8b:b9:61:b0:5d:
         a8:ce:9b:7b:fd:3b:3c:9d:4b:f7:4c:3b:5f:94:e6:ac:61:ef:
         00:a1:4f:ff:e9:be:73:93:8b:12:01:7c:25:85:58:15:33:80:
         ee:18:3c:86:ad:f9:db:6b:16:bf:5a:dc:44:5f:1f:9d:5c:c2:
         ed:44:9f:a8:56:1d:81:48:78:15:01:e6:c6:3e:13:ff:da:e0:
         65:c7:65:7a:df:71:a4:98:c2:1b:bc:76:a2:02:4c:e1:95:f3:
         a3:c2:f8:88:6e:81:59:80:9b:89:7f:d3:e1:07:1e:13:c6:d2:
         6a:e0:b8:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 11:51:55 2025 by rpki-client