Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft
File:                     21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json)
Hash identifier:          NhxIXaCIsiUMgqKP1bWIPQQFvhsxs2v2fBxHRLm6pRg=
Subject key identifier:   EA:B9:43:2E:6C:58:CC:F0:09:AA:4C:B4:A2:0F:53:E0:56:3C:5C:89
Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B
Certificate issuer:       /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B
Certificate serial:       0ADACC261BDB0E298A18AB29B2A316EABA00FB11
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft
Manifest number:          04AD
Signing time:             Tue 22 Jul 2025 14:00:58 +0000
Manifest this update:     Tue 22 Jul 2025 13:55:58 +0000
Manifest next update:     Fri 25 Jul 2025 18:03:58 +0000
Files and hashes:         1: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: RhfOeKNZ4j1KvALyW4SxaRw/kBv+Dgu0smuwmiknx1Y=)
                          2: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: J7Eqzk0rLCECjOwGjEdw1vCeBneDceSExg8FEmGDsVA=)
                          3: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: mGd73MdyNfQI2ri9ypD4owZTxwsUbbV6quh2fKDsFok=)
                          4: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: IywsBHZCpESzPvpzBYMa3aM5xr+uzQrgr/hs4zyGEfk=)
                          5: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: 7blkTXyq3RKCIws921Czw5yMKl/tVjEFOw3lq63q9I8=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl
                          rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 25 Jul 2025 18:03:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0a:da:cc:26:1b:db:0e:29:8a:18:ab:29:b2:a3:16:ea:ba:00:fb:11
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B
        Validity
            Not Before: Jul 22 13:55:58 2025 GMT
            Not After : Jul 25 18:03:58 2025 GMT
        Subject: CN=EAB9432E6C58CCF009AA4CB4A20F53E0563C5C89
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:ff:bc:28:e8:a9:c7:87:0d:bc:91:68:a7:90:
                    1f:64:f9:fc:dd:e4:8a:9c:06:60:60:b0:a3:1a:f0:
                    d8:ae:3a:39:35:63:55:a8:a8:bb:8d:3d:6c:0e:ba:
                    5f:5d:7d:35:be:f9:ba:e8:d5:bb:f9:73:99:bf:cc:
                    63:4f:c3:31:f0:cf:84:3a:2f:3d:e3:39:e3:c1:8c:
                    a3:2a:82:69:55:e2:90:2e:f2:0f:55:ba:ed:52:0e:
                    d1:0b:84:32:21:91:fd:81:6c:cc:67:d9:b5:e1:89:
                    e6:2f:21:34:fc:bd:e9:5e:e2:e6:51:e7:74:56:1d:
                    67:89:e2:f4:bb:8b:d1:6e:bd:62:e3:73:54:c4:a6:
                    72:aa:ee:52:be:6b:ed:9e:d0:3e:4a:2f:f6:84:71:
                    14:bd:63:6b:e1:d7:55:bb:2b:b2:a3:5c:1f:d0:d2:
                    dd:27:4e:1a:d1:b1:76:75:ca:44:45:a3:69:a8:56:
                    41:3e:1f:bf:04:dc:2a:1d:1c:fd:5f:61:06:af:8b:
                    ef:bf:9b:99:4e:03:b2:4e:88:27:2f:e7:e3:9e:97:
                    6d:63:40:a2:50:cc:fc:a3:bc:8a:52:07:19:80:f8:
                    80:6e:0f:5d:15:c9:7b:f1:96:02:5c:b6:e7:e3:1d:
                    57:20:b3:fd:08:81:0f:25:20:56:30:e0:16:c4:2c:
                    ad:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:B9:43:2E:6C:58:CC:F0:09:AA:4C:B4:A2:0F:53:E0:56:3C:5C:89
            X509v3 Authority Key Identifier:
                keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6a:d3:33:b5:cb:70:2b:7f:3c:be:81:ea:64:62:ec:ae:67:3c:
         50:a3:f4:77:95:39:7b:a5:37:a2:2d:40:c6:b7:fe:ea:98:32:
         a2:29:29:c3:36:59:47:c3:bb:04:13:b1:d9:9d:7d:cc:3b:3e:
         d3:7f:2b:08:c7:d8:91:f4:1d:9f:c3:7e:5b:8d:32:9e:d9:87:
         33:33:71:6e:01:95:e8:14:6e:a9:1a:b7:f3:56:78:47:5e:d9:
         11:ed:2e:17:60:96:4d:7d:c7:63:47:75:26:27:60:c0:8f:f3:
         2e:72:27:fd:36:d0:02:f1:ce:a7:b6:40:49:99:53:1f:e2:fd:
         69:e9:54:cc:f3:52:5b:62:f7:19:f8:86:aa:64:e0:af:a3:d9:
         97:ca:a9:c8:36:af:8d:ec:27:13:8d:d6:20:73:72:80:5f:a4:
         9e:31:14:11:6d:73:ab:33:3a:21:79:11:d0:31:30:5a:93:f6:
         d6:2e:a9:ed:8d:6b:91:7e:f2:72:e7:87:82:9f:d1:6c:29:bf:
         a3:c4:d1:d9:35:71:a1:75:b6:7e:b1:95:b8:56:b7:e2:a3:55:
         cd:c4:bf:60:ae:db:38:61:be:4c:fa:69:91:bd:de:a6:38:cc:
         60:2c:d4:cc:2d:9f:bb:26:13:9d:d4:79:c8:ee:9e:2b:35:ae:
         38:0c:08:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 03:55:06 2025 by rpki-client