Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft
File:                     CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft (raw, json)
Hash identifier:          Mh4SMzAxVrZbq8S2UHUp4b33cqkvw4UeXv21hnmlDUE=
Subject key identifier:   B0:5B:35:06:CE:96:6B:DA:5C:3C:08:CC:E3:04:87:33:B1:03:94:42
Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C
Certificate issuer:       /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C
Certificate serial:       1EC9B38CC0342D7CFC107FAD529963EABDF717F9
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft
Manifest number:          041A
Signing time:             Wed 27 Mar 2024 04:01:15 +0000
Manifest this update:     Wed 27 Mar 2024 03:56:15 +0000
Manifest next update:     Sat 30 Mar 2024 15:23:15 +0000
Files and hashes:         1: 3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa (hash: LSzUMoVvmiAEZu3xuJ4+608FfpEFwxeakvsDBs0f8CQ=)
                          2: 323430333a353763303a3a2f33322d3438203d3e20313333383135.roa (hash: XxMdqqymwnXaFzBio3OOU6QSxneZX5Wc0L1Yuf8qvgo=)
                          3: 323430333a626163303a3a2f33322d3438203d3e20313333383135.roa (hash: 62AOXONPCfPBRxAtpNp6448deYzXkfkQpY21xizhiY0=)
                          4: 3130332e35322e34342e302f32322d3234203d3e20313333383135.roa (hash: Q1RZouAbRj9rNWYYHBYFWZvoZELLl8OZIK8cMQWUDXA=)
                          5: CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl (hash: n2urguGisGbHHUsQAEP3lz3VDAuW4zBUX3rI5FS3Hz8=)

Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl
                          rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 29 Mar 2024 16:36:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1e:c9:b3:8c:c0:34:2d:7c:fc:10:7f:ad:52:99:63:ea:bd:f7:17:f9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C
        Validity
            Not Before: Mar 27 03:56:15 2024 GMT
            Not After : Mar 30 15:23:15 2024 GMT
        Subject: CN=B05B3506CE966BDA5C3C08CCE3048733B1039442
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:2f:14:33:41:52:ea:5e:54:79:a6:18:76:51:
                    14:96:18:1e:28:51:27:1f:7b:94:1a:f1:8c:52:39:
                    55:fa:38:ee:91:40:a6:90:c5:65:2f:ba:92:6d:d5:
                    15:73:b8:d6:07:e2:80:93:0a:dd:f3:a8:6d:1c:25:
                    94:87:b6:2a:b3:81:63:61:17:f0:72:8b:40:09:ec:
                    46:2b:aa:a8:ec:64:8c:d0:6c:a2:d3:aa:b2:bc:06:
                    51:a3:20:c9:a9:63:2c:f6:65:c3:67:37:be:2f:e6:
                    e0:f8:05:3a:6f:93:75:be:29:2d:91:50:ca:be:3f:
                    8d:aa:2d:33:16:eb:0d:51:17:1b:be:6b:34:c2:4c:
                    51:ed:14:4c:19:1a:f7:9f:cf:f8:5f:d2:ca:17:57:
                    d0:ff:6a:e4:1b:0e:38:62:0b:2b:3b:ca:23:51:d1:
                    37:2b:c4:dc:14:35:30:69:52:96:14:1b:17:a9:4a:
                    25:9f:31:cb:83:49:df:bf:34:d7:a9:0a:26:0b:a0:
                    93:5a:ab:7c:46:b3:37:94:74:3f:46:c6:28:18:6c:
                    73:e8:92:3c:a4:50:77:ca:9d:fa:f6:27:0a:04:09:
                    54:12:1d:a4:5e:0d:dc:f0:7e:e5:e3:ec:96:80:02:
                    5e:37:4b:d0:53:a3:e9:f6:8e:4b:1c:60:e8:90:82:
                    3c:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:5B:35:06:CE:96:6B:DA:5C:3C:08:CC:E3:04:87:33:B1:03:94:42
            X509v3 Authority Key Identifier:
                keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:e1:73:eb:8b:53:04:7f:0a:ee:8d:f4:1e:64:0e:4e:ce:90:
         d8:82:df:ba:af:58:da:fe:65:e3:0f:b7:ad:32:80:1c:08:e0:
         90:5d:52:84:2d:f0:22:a6:2a:fa:f6:db:82:e3:45:b8:da:0b:
         3d:d6:b1:94:02:a1:9d:fe:55:a1:cd:cb:24:4b:44:e8:39:68:
         22:52:69:22:7f:c7:66:d3:f1:f8:ef:7b:c0:4e:3d:53:d9:15:
         4b:74:34:72:e8:af:76:60:e5:85:c6:e4:89:b6:87:b9:2e:cd:
         8a:b8:9b:06:d9:19:94:93:cb:94:23:7e:ef:a5:33:3c:bc:f6:
         dc:4f:b8:df:96:6d:4c:b7:84:df:10:68:e6:45:af:46:6a:34:
         76:8e:30:a1:2b:65:01:19:7a:d7:90:e1:80:1a:52:99:93:16:
         c1:e3:1e:d9:9b:a4:d6:0e:47:9a:2c:80:45:8f:02:3c:ed:37:
         2f:b1:fd:2a:f2:2d:17:a9:f9:a8:ad:cf:f3:86:5d:06:2a:76:
         bb:12:6b:de:7c:a6:87:2d:44:3c:87:2f:98:d1:ba:9f:df:26:
         5c:4c:9b:c1:06:7a:57:19:24:e6:24:7a:74:f0:24:a8:c5:9f:
         3a:19:91:00:d7:34:44:6a:e4:81:5d:fd:13:13:c0:f0:74:f2:
         a4:39:38:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 27 04:37:32 2024 by rpki-client on console-ams.rpki-client.org