Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft
File:                     21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json)
Hash identifier:          R20umePWaQ0PZEDdorAQEjfADdLexAouNGWt7pOwDkc=
Subject key identifier:   8C:3E:A3:70:AC:88:3B:E5:6B:81:8D:9E:87:3F:B8:3F:47:90:38:31
Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B
Certificate issuer:       /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B
Certificate serial:       748DAFAF9778F7EC25CAB03A6B7C97A10FBEB8C0
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft
Manifest number:          04AC
Signing time:             Sun 20 Jul 2025 07:02:22 +0000
Manifest this update:     Sun 20 Jul 2025 06:57:22 +0000
Manifest next update:     Wed 23 Jul 2025 13:55:22 +0000
Files and hashes:         1: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: 7blkTXyq3RKCIws921Czw5yMKl/tVjEFOw3lq63q9I8=)
                          2: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: RhfOeKNZ4j1KvALyW4SxaRw/kBv+Dgu0smuwmiknx1Y=)
                          3: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: 1B1D8qVf1+WD8agVU+V9vYR9R53Rk9tqC1OmpW698Xw=)
                          4: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: J7Eqzk0rLCECjOwGjEdw1vCeBneDceSExg8FEmGDsVA=)
                          5: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: IywsBHZCpESzPvpzBYMa3aM5xr+uzQrgr/hs4zyGEfk=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl
                          rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 23 Jul 2025 13:55:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            74:8d:af:af:97:78:f7:ec:25:ca:b0:3a:6b:7c:97:a1:0f:be:b8:c0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B
        Validity
            Not Before: Jul 20 06:57:22 2025 GMT
            Not After : Jul 23 13:55:22 2025 GMT
        Subject: CN=8C3EA370AC883BE56B818D9E873FB83F47903831
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:f6:f9:70:b5:9d:7d:2b:4a:f9:e3:d3:21:43:
                    25:cd:29:33:75:33:60:55:e9:1b:c3:81:9d:d8:cc:
                    91:64:c7:ea:ef:c1:21:81:ab:42:07:e8:b2:a5:6c:
                    a1:b9:e4:8e:8e:68:68:1a:49:98:d7:4f:3d:f1:92:
                    d0:82:5a:26:65:90:c2:40:07:1a:9a:b8:ec:3d:b5:
                    48:ad:ac:57:bb:77:3f:35:70:7a:f4:ed:c1:63:af:
                    b0:ca:e3:77:60:9d:b7:3b:89:18:63:8d:7f:c6:a2:
                    84:90:fe:c9:70:60:24:48:b1:31:38:db:d9:d6:f8:
                    1b:c0:3f:b5:2e:32:1c:27:a1:e2:9e:47:af:ad:56:
                    a6:0c:7a:6b:ea:88:1b:dc:7e:ba:6f:ff:99:41:39:
                    6e:7c:98:92:14:7e:9a:2a:85:0c:c9:b5:33:6d:e9:
                    79:7a:fa:b3:6f:85:9d:7a:b1:51:47:23:23:bd:96:
                    47:a8:db:07:63:7d:b8:2b:99:b9:68:94:29:85:0a:
                    71:b2:00:54:26:4b:5c:49:98:d1:b7:cd:0e:c6:12:
                    bc:be:a3:a4:c8:82:12:4e:b9:45:2e:80:fa:cc:f7:
                    33:b3:cc:d7:47:65:ac:8a:1d:8c:7c:4a:51:eb:2a:
                    f1:8b:fd:a2:bf:93:40:14:a1:f9:bd:8f:e4:4c:0e:
                    17:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8C:3E:A3:70:AC:88:3B:E5:6B:81:8D:9E:87:3F:B8:3F:47:90:38:31
            X509v3 Authority Key Identifier:
                keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         56:22:81:f6:db:d5:b1:94:30:0c:60:05:18:ab:f3:00:1d:be:
         30:24:d8:fa:da:78:4e:63:ef:16:ed:a1:c9:db:8a:88:dc:55:
         c6:0e:ec:f1:cf:2c:73:86:3a:a4:41:e1:39:de:84:82:2b:38:
         76:5b:ac:42:22:63:14:2b:09:0f:11:97:6a:ce:5f:cf:26:be:
         10:d5:cf:1d:cc:d5:41:97:23:da:9f:8e:80:42:1f:1b:9c:d3:
         91:0c:cd:b4:a7:4b:5d:2c:3d:9e:c1:8a:6e:fc:fa:d9:d1:57:
         c8:b3:c5:07:e7:01:81:02:43:a0:68:b6:67:bf:6c:b8:a5:77:
         5d:8f:b2:d9:a8:10:a1:17:3d:cc:ef:03:e2:d7:6d:9c:f8:39:
         d3:3a:29:b7:35:ad:d7:80:44:3c:18:ef:e1:c7:7b:da:74:be:
         74:02:ba:b9:76:19:4e:07:55:64:98:e3:ee:7c:af:4e:e3:ad:
         21:c4:9f:3a:59:29:67:8f:ce:e2:53:b7:5f:de:a9:f7:c3:e4:
         7e:73:f8:24:e0:86:49:8c:ae:48:79:d8:a3:d4:77:89:2b:02:
         36:fb:08:b7:e6:71:7f:56:81:c1:52:38:af:79:0e:46:66:ad:
         7c:54:9a:28:bf:7c:04:48:45:cd:a7:68:fc:d3:d4:6a:a2:9c:
         d2:50:a3:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 18:13:11 2025 by rpki-client