Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft
File:                     88BD1AAEA16D8A24550416CDB95E232152249B3E.mft (raw, json)
Hash identifier:          lKUnDNhQGCkoS8ktkdmCb0S77M6f+5R43uVnxnTzvvY=
Subject key identifier:   63:A2:C7:63:C4:BA:4C:8D:66:FD:7E:DC:A5:4D:04:D1:43:84:5C:56
Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E
Certificate issuer:       /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E
Certificate serial:       3489AC85C88CCCB7C1876E3980F8E876EF0E2F23
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft
Manifest number:          02E2
Signing time:             Thu 24 Jul 2025 04:32:19 +0000
Manifest this update:     Thu 24 Jul 2025 04:27:19 +0000
Manifest next update:     Sun 27 Jul 2025 13:06:19 +0000
Files and hashes:         1: 3130332e3133382e37302e302f32342d3234203d3e20313338383834.roa (hash: k0M2XXKfU9k9Nif7dWEUq5fC7OBAzB0Ygp6xrywPUqs=)
                          2: 88BD1AAEA16D8A24550416CDB95E232152249B3E.crl (hash: EdIbpUcJlhAMiyiaSkTpotKqXuwxYCXFaNMkSEm3CCM=)
                          3: 323430343a636534303a3a2f33322d3332203d3e20313338383834.roa (hash: DcgpR3dumYc3Eoce65U1RiuqJ3FJu3j4JD+CZ1GSu4U=)
                          4: 323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa (hash: C+T8dBvggaTCEh5/1ll1reorawVQeZDheWzvM6XklTw=)
                          5: 3130332e3133382e37302e302f32332d3233203d3e20313338383834.roa (hash: 0oC6hCIX4duxQdOJVzVwn+akSK/l98G+66CJXryC3ns=)
                          6: 323430343a636534303a3a2f34382d3438203d3e20313338383834.roa (hash: 18b0Gg5/45qsHWWMKCPhmvKnsrcZsZ/fmda1ZKbjIBk=)
                          7: 323430343a636534303a313a3a2f34382d3438203d3e20313338383834.roa (hash: /mZXNu9+SQReAU7jMOiZ9/UmtltzHLxdMGIPnZIiib4=)
                          8: 323430343a636534303a3a2f33362d3336203d3e20313338383834.roa (hash: Qn8e6r99j+EuTQtrHbDbOQqJz+jY/ebvh6ZX3n1vOEk=)
                          9: 323430343a636534303a333a3a2f34382d3438203d3e20313338383834.roa (hash: Em18K+MRLc18yaX14YQfb1826gcDLLiSRdz/WlnRnnE=)
                          10: 323430343a636534303a313030303a3a2f33362d3336203d3e20313338383834.roa (hash: 4N83F1FY8HtDNTq6OMGSFNYU4XLLuDbuSDKgz6IAVpA=)
                          11: 3130332e3133382e37312e302f32342d3234203d3e20313338383834.roa (hash: fYqB3hAfKrlAMalkQPBsDTPyMiJqV+nU7PcLz8QhSAc=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl
                          rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 27 Jul 2025 13:06:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            34:89:ac:85:c8:8c:cc:b7:c1:87:6e:39:80:f8:e8:76:ef:0e:2f:23
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E
        Validity
            Not Before: Jul 24 04:27:19 2025 GMT
            Not After : Jul 27 13:06:19 2025 GMT
        Subject: CN=63A2C763C4BA4C8D66FD7EDCA54D04D143845C56
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:af:6e:31:2b:4b:f0:b2:b4:c4:d6:b2:ee:21:
                    3e:75:78:e3:28:81:38:48:2f:60:27:d6:91:ad:69:
                    56:90:79:e8:1d:c5:70:15:7c:20:0b:f8:7c:a2:99:
                    e9:30:88:dc:5c:eb:ee:3a:8e:05:d4:be:6a:04:3f:
                    a9:c6:52:c6:e9:76:d4:81:98:b7:8b:bc:9e:92:c2:
                    58:80:99:1d:74:93:0d:e6:88:8a:41:e1:20:5b:34:
                    be:1e:95:bc:bd:7c:6f:01:ac:40:39:27:49:ce:e2:
                    82:4b:70:93:d0:d7:3e:c5:fc:a7:20:ef:37:65:68:
                    2d:46:67:26:12:38:8a:3b:7c:e7:8b:f9:13:d8:86:
                    8a:91:f4:cb:8a:00:9a:32:15:4e:91:c4:57:dd:01:
                    bb:52:d1:5c:72:24:fd:84:e6:4b:85:73:7a:84:dd:
                    25:14:cb:c3:58:e2:10:5c:0e:46:50:3f:75:7a:f1:
                    f1:29:ca:ed:3b:b6:47:89:38:c1:33:e5:ea:0c:13:
                    01:34:60:cf:6d:03:95:94:6c:b1:c6:b0:f5:6d:1f:
                    49:34:a8:88:f3:73:a6:90:22:62:78:09:49:06:84:
                    57:59:3d:01:3a:36:7d:35:e7:f8:9f:d8:1a:fd:9a:
                    3a:b3:90:3b:e6:f2:d7:00:11:f6:1e:5c:f6:a7:c2:
                    20:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:A2:C7:63:C4:BA:4C:8D:66:FD:7E:DC:A5:4D:04:D1:43:84:5C:56
            X509v3 Authority Key Identifier:
                keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:12:23:f7:08:dd:4a:24:d7:91:94:4b:79:05:32:02:75:22:
         d3:52:b6:f5:b3:43:02:f1:0d:37:db:49:f3:38:e4:27:8b:9c:
         6a:15:cd:f9:65:cf:5a:68:9e:77:eb:81:df:65:a6:f6:cd:0d:
         84:02:60:2b:dc:e6:2a:a5:59:5a:21:1e:4e:ef:87:34:48:a3:
         bd:20:23:50:dd:05:1d:bf:35:1a:2a:5b:50:78:df:1d:f7:25:
         ef:f1:2b:f7:e9:16:f1:5e:f3:5d:1e:ca:00:61:75:4b:84:b7:
         69:7f:b0:89:10:82:23:c1:68:2b:82:07:de:96:07:de:97:a5:
         68:1f:dc:c3:60:e7:6d:fe:2b:8b:f5:77:b1:3e:aa:89:8e:13:
         c6:6c:2b:75:c6:04:8b:6b:79:ac:2a:69:6d:98:a6:cc:27:8a:
         99:34:aa:d0:5f:0f:91:ff:ed:09:30:ba:de:88:ed:71:d1:e3:
         e1:62:e7:b8:02:b6:f5:48:f5:8b:4e:85:74:1c:e4:95:0f:7c:
         7e:70:23:2b:68:2f:40:d0:cd:6f:7d:81:0e:a8:ab:e4:19:62:
         52:30:12:34:2d:7f:5b:4b:ae:8c:7d:3c:8f:17:8a:fd:56:fa:
         e0:d0:26:6f:0c:aa:49:a8:1b:ef:86:d8:b3:ef:a5:b6:36:c5:
         ab:77:8a:b9
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUNImshciMzLfBh245gPjodu8OLyMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1
MjI0OUIzRTAeFw0yNTA3MjQwNDI3MTlaFw0yNTA3MjcxMzA2MTlaMDMxMTAvBgNV
BAMTKDYzQTJDNzYzQzRCQTRDOEQ2NkZEN0VEQ0E1NEQwNEQxNDM4NDVDNTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDer24xK0vwsrTE1rLuIT51eOMo
gThIL2An1pGtaVaQeegdxXAVfCAL+HyimekwiNxc6+46jgXUvmoEP6nGUsbpdtSB
mLeLvJ6SwliAmR10kw3miIpB4SBbNL4elby9fG8BrEA5J0nO4oJLcJPQ1z7F/Kcg
7zdlaC1GZyYSOIo7fOeL+RPYhoqR9MuKAJoyFU6RxFfdAbtS0VxyJP2E5kuFc3qE
3SUUy8NY4hBcDkZQP3V68fEpyu07tkeJOMEz5eoMEwE0YM9tA5WUbLHGsPVtH0k0
qIjzc6aQImJ4CUkGhFdZPQE6Nn015/if2Br9mjqzkDvm8tcAEfYeXPanwiCbAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUY6LHY8S6TI1m/X7cpU0E0UOEXFYwHwYDVR0j
BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx
NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0
OUIzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjIwYzZkNjktNjI5MC00MDJmLWE4
NGUtZDI4OWM2ZTkzYTczLzAvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIz
MjE1MjI0OUIzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBAJ4SI/cI3Uok15GUS3kFMgJ1ItNStvWzQwLx
DTfbSfM45CeLnGoVzfllz1ponnfrgd9lpvbNDYQCYCvc5iqlWVohHk7vhzRIo70g
I1DdBR2/NRoqW1B43x33Je/xK/fpFvFe810eygBhdUuEt2l/sIkQgiPBaCuCB96W
B96XpWgf3MNg523+K4v1d7E+qomOE8ZsK3XGBItreawqaW2Ypswnipk0qtBfD5H/
7Qkwut6I7XHR4+Fi57gCtvVI9YtOhXQc5JUPfH5wIytoL0DQzW99gQ6oq+QZYlIw
EjQtf1tLrox9PI8Xiv1W+uDQJm8MqkmoG++G2LPvpbY2xat3irk=
-----END CERTIFICATE-----
Generated at Thu Jul 24 15:03:57 2025 by rpki-client