Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft
File:                     21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json)
Hash identifier:          bCa9hy27fdM6fcuO8am7uUNmIKBFvSlcArmXfur5tsQ=
Subject key identifier:   50:91:05:66:AC:AD:CB:67:57:6C:FF:DD:6D:72:A4:3F:A0:F1:68:44
Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B
Certificate issuer:       /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B
Certificate serial:       2BDFD64F4BA0922BB3CEF9B4C252139C1541F6F8
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft
Manifest number:          04AE
Signing time:             Thu 24 Jul 2025 18:10:59 +0000
Manifest this update:     Thu 24 Jul 2025 18:05:59 +0000
Manifest next update:     Mon 28 Jul 2025 02:15:59 +0000
Files and hashes:         1: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: u2U1JgblUovYtY6j/y3pq3IAaaVuvGqRzKJFgLKR+Qg=)
                          2: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: RhfOeKNZ4j1KvALyW4SxaRw/kBv+Dgu0smuwmiknx1Y=)
                          3: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: IywsBHZCpESzPvpzBYMa3aM5xr+uzQrgr/hs4zyGEfk=)
                          4: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: J7Eqzk0rLCECjOwGjEdw1vCeBneDceSExg8FEmGDsVA=)
                          5: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: 7blkTXyq3RKCIws921Czw5yMKl/tVjEFOw3lq63q9I8=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl
                          rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 02:15:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2b:df:d6:4f:4b:a0:92:2b:b3:ce:f9:b4:c2:52:13:9c:15:41:f6:f8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B
        Validity
            Not Before: Jul 24 18:05:59 2025 GMT
            Not After : Jul 28 02:15:59 2025 GMT
        Subject: CN=50910566ACADCB67576CFFDD6D72A43FA0F16844
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f8:9a:58:06:a1:b0:0d:b6:1c:a3:10:c8:eb:21:
                    75:82:f3:54:22:b8:6c:e2:bf:ca:52:0b:bc:f4:15:
                    56:2e:f3:c6:eb:f4:0b:c9:dd:55:db:26:3e:d9:55:
                    c8:24:78:c8:e7:69:89:a2:39:32:95:93:ec:95:48:
                    2f:c5:a6:15:32:ee:ae:5b:16:d8:42:f8:14:74:6a:
                    5e:12:b6:7f:d8:eb:0b:ab:01:4b:f9:46:0c:58:c6:
                    8a:dc:21:bd:5e:84:b2:b8:07:08:e4:16:ea:90:31:
                    7c:d4:c0:1b:8f:b2:b8:0e:50:d3:67:08:70:d4:e1:
                    3b:75:f4:26:6d:99:3c:df:b9:40:a6:dc:e2:7b:12:
                    0d:ea:41:e7:0c:34:96:02:a1:ec:a5:bf:1d:e2:15:
                    fc:95:ae:df:5c:50:0f:62:32:98:9c:0b:67:d1:71:
                    ab:cf:a2:8d:c2:97:b6:50:f7:0e:83:48:47:4c:e4:
                    27:c5:29:d6:94:f3:84:cc:b8:42:63:ba:b7:7d:f9:
                    99:33:f4:f4:13:47:a1:1e:0a:c0:05:40:64:93:f7:
                    23:df:b5:4d:67:3a:e0:25:6e:bf:48:ae:59:6a:02:
                    36:f7:6f:94:fc:59:0e:6c:14:74:53:b5:2c:36:21:
                    d8:a7:44:fc:57:5c:91:73:ce:46:0d:85:8b:99:7c:
                    15:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:91:05:66:AC:AD:CB:67:57:6C:FF:DD:6D:72:A4:3F:A0:F1:68:44
            X509v3 Authority Key Identifier:
                keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         13:ed:54:20:c9:9d:88:2b:6e:3e:fc:7c:1c:7b:6a:16:62:74:
         fe:f9:88:cb:4f:92:69:6a:d4:cd:1e:ba:53:a8:bb:0b:c8:70:
         b0:82:5e:af:e5:69:bd:3f:88:71:af:83:ab:4d:86:8a:61:22:
         d8:d4:3e:84:4e:13:e7:ca:e1:36:f2:9c:95:a7:33:e5:11:31:
         3d:77:00:d6:10:08:2f:67:82:53:a0:c9:6d:03:f2:ec:21:6a:
         7b:8b:0c:61:ca:d7:87:09:eb:e8:6b:57:b9:c7:66:7a:7a:4d:
         4a:f8:ae:c5:09:70:8b:a0:78:51:95:8f:c8:db:42:a0:a7:16:
         cd:46:2f:33:fc:0e:d6:2d:a3:96:32:b4:b3:a9:7c:29:fc:87:
         7d:11:75:fd:cd:0b:d9:eb:51:45:e0:19:d6:5d:0c:3e:68:45:
         a7:bf:75:79:1e:77:14:06:ae:14:1b:09:d7:b3:a9:de:8b:35:
         43:0b:ba:14:6f:6b:57:07:33:dc:54:47:db:64:7a:0e:b4:58:
         e2:1f:22:d9:cb:07:53:a2:96:55:19:2f:93:fa:2b:1b:63:9b:
         29:d1:d0:f7:9f:ad:14:d8:63:0d:35:56:f8:37:1f:fb:e4:7a:
         c8:f6:d9:66:8c:70:ad:65:ef:38:d3:76:23:2e:d5:c5:bc:1c:
         e2:7e:fa:25
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUK9/WT0ugkiuzzvm0wlITnBVB9vgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE
RDAwOTExQjAeFw0yNTA3MjQxODA1NTlaFw0yNTA3MjgwMjE1NTlaMDMxMTAvBgNV
BAMTKDUwOTEwNTY2QUNBRENCNjc1NzZDRkZERDZENzJBNDNGQTBGMTY4NDQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4mlgGobANthyjEMjrIXWC81Qi
uGziv8pSC7z0FVYu88br9AvJ3VXbJj7ZVcgkeMjnaYmiOTKVk+yVSC/FphUy7q5b
FthC+BR0al4Stn/Y6wurAUv5RgxYxorcIb1ehLK4BwjkFuqQMXzUwBuPsrgOUNNn
CHDU4Tt19CZtmTzfuUCm3OJ7Eg3qQecMNJYCoeylvx3iFfyVrt9cUA9iMpicC2fR
cavPoo3Cl7ZQ9w6DSEdM5CfFKdaU84TMuEJjurd9+Zkz9PQTR6EeCsAFQGST9yPf
tU1nOuAlbr9IrllqAjb3b5T8WQ5sFHRTtSw2IdinRPxXXJFzzkYNhYuZfBXTAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUUJEFZqyty2dXbP/dbXKkP6DxaEQwHwYDVR0j
BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3
QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw
OTExQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmRhYmMwYmEtOTIyMi00YzQ1LTgz
NDItZWI4NjQzYzQ5NjdkLzAvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5Qzgz
NjNERDAwOTExQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBABPtVCDJnYgrbj78fBx7ahZidP75iMtPkmlq
1M0eulOouwvIcLCCXq/lab0/iHGvg6tNhophItjUPoROE+fK4TbynJWnM+URMT13
ANYQCC9nglOgyW0D8uwhanuLDGHK14cJ6+hrV7nHZnp6TUr4rsUJcIugeFGVj8jb
QqCnFs1GLzP8DtYto5YytLOpfCn8h30Rdf3NC9nrUUXgGdZdDD5oRae/dXkedxQG
rhQbCdezqd6LNUMLuhRva1cHM9xUR9tkeg60WOIfItnLB1OillUZL5P6KxtjmynR
0PefrRTYYw01Vvg3H/vkesj22WaMcK1l7zjTdiMu1cW8HOJ++iU=
-----END CERTIFICATE-----
Generated at Fri Jul 25 04:07:31 2025 by rpki-client