Manifest

$ rpki-client -vvf rpki-rsync.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/A58E55B7CCE754B9CB71A0C874161981234B001D.mft
File:                     A58E55B7CCE754B9CB71A0C874161981234B001D.mft (raw, json)
Hash identifier:          CNF7Q3tPbv6yhYAR07hZYmRJmG6NW4r6Zy3elQQH8C0=
Subject key identifier:   DF:64:6E:71:12:FD:39:7B:C7:DB:75:62:D7:70:C9:38:6C:B5:A9:18
Authority key identifier: A5:8E:55:B7:CC:E7:54:B9:CB:71:A0:C8:74:16:19:81:23:4B:00:1D
Certificate issuer:       /CN=A58E55B7CCE754B9CB71A0C874161981234B001D
Certificate serial:       4BFD5EA7E566AA16860687E22387B222EF46C8B1
Authority info access:    rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A58E55B7CCE754B9CB71A0C874161981234B001D.cer
Subject info access:      rsync://rpki-rsync.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/A58E55B7CCE754B9CB71A0C874161981234B001D.mft
Manifest number:          69
Signing time:             Sun 19 Jul 2026 07:41:37 +0000
Manifest this update:     Sun 19 Jul 2026 07:36:37 +0000
Manifest next update:     Mon 20 Jul 2026 09:02:37 +0000
Files and hashes:         1: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: HohwK1jgAliW1qLFON0wv/kfIfQEid5eomkEHXmmaro=)
                          2: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: Ff6Wy4wyEywRk6LONIzh1Zz/4K7kEOV4YAssJYfhUsI=)
                          3: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: HB5+30LBsGIIfrOeoz4NikxPDJ/kMoZQRDczvkwPbL0=)
                          4: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: vr59TWn1/ZjjHekiAiHOdHxbOj07TAVp/Qt6Ye+eebQ=)
                          5: A58E55B7CCE754B9CB71A0C874161981234B001D.crl (hash: Ie6VOyA2LkKqTfb+JZ5dGJqWyzKLKRkyKV5RhHLSQJ4=)
Validation:               OK
Signature path:           rsync://rpki-rsync.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/A58E55B7CCE754B9CB71A0C874161981234B001D.crl
                          rsync://rpki-rsync.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/A58E55B7CCE754B9CB71A0C874161981234B001D.mft
                          rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A58E55B7CCE754B9CB71A0C874161981234B001D.cer
                          rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
                          rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 20 Jul 2026 09:01:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4b:fd:5e:a7:e5:66:aa:16:86:06:87:e2:23:87:b2:22:ef:46:c8:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A58E55B7CCE754B9CB71A0C874161981234B001D
        Validity
            Not Before: Jul 19 07:36:37 2026 GMT
            Not After : Jul 20 09:02:37 2026 GMT
        Subject: CN=DF646E7112FD397BC7DB7562D770C9386CB5A918
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:cc:5a:a5:96:a1:b8:11:32:e3:83:1e:1a:73:
                    6f:be:d9:e6:50:7a:dc:5f:e6:20:54:41:8a:6b:87:
                    07:60:1d:f3:63:cd:d7:72:f0:1f:43:b4:91:0d:98:
                    53:7d:18:71:93:9e:41:b3:b5:74:f5:94:08:db:1e:
                    90:2d:b8:a0:5b:75:27:79:30:65:f8:ce:f3:c2:97:
                    27:56:7a:3f:90:b7:ec:79:2f:a9:8c:8b:fb:71:48:
                    8c:42:f0:86:b6:27:2d:fd:f0:2b:c9:72:12:db:99:
                    b7:48:3b:c5:bc:b6:36:84:5f:90:26:60:c8:68:91:
                    e2:df:18:24:30:4e:fe:f2:ed:e7:7c:4f:b0:1f:62:
                    9e:16:6f:c2:f0:64:d4:cc:d7:1e:18:06:1e:d2:fe:
                    24:9e:1d:88:f5:92:32:b6:31:7b:19:ef:c4:a5:8c:
                    af:25:5a:ae:a6:1f:71:5c:c9:00:c7:6d:c4:14:20:
                    b1:ad:09:6a:24:b4:dd:b1:bb:25:81:15:69:1d:93:
                    2d:6b:37:1d:89:35:18:34:ae:9a:78:cb:c5:b5:17:
                    1f:81:e6:df:93:da:73:63:f0:51:30:e1:22:39:61:
                    50:05:e8:34:83:88:5c:5c:59:ea:c8:63:73:9c:89:
                    b8:65:1c:db:e4:5c:25:2e:01:fc:10:cf:21:f9:9b:
                    20:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DF:64:6E:71:12:FD:39:7B:C7:DB:75:62:D7:70:C9:38:6C:B5:A9:18
            X509v3 Authority Key Identifier:
                keyid:A5:8E:55:B7:CC:E7:54:B9:CB:71:A0:C8:74:16:19:81:23:4B:00:1D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/A58E55B7CCE754B9CB71A0C874161981234B001D.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A58E55B7CCE754B9CB71A0C874161981234B001D.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/A58E55B7CCE754B9CB71A0C874161981234B001D.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:da:aa:de:4c:4b:31:04:27:d3:17:fe:bc:b4:9a:8e:27:8a:
         87:e1:ec:bd:e3:11:8b:35:cc:24:44:15:59:89:8a:8d:82:1c:
         83:37:5d:e7:9e:bb:e3:8f:e0:cb:52:62:33:d4:60:b8:5c:21:
         8b:42:3e:31:19:5f:f7:a1:94:11:5a:e1:84:8a:ca:05:51:2c:
         9a:fd:9f:43:c5:47:80:c9:87:23:5e:35:bd:12:5c:c5:0c:05:
         d9:a7:e4:0f:56:78:68:03:16:a8:9c:0d:22:11:d7:b7:53:f2:
         91:91:e5:36:a1:6c:06:bd:2e:97:85:c9:a6:74:b5:dd:53:6c:
         e0:0d:ac:50:b3:65:cc:c8:48:94:19:34:7a:70:8e:19:d5:dd:
         8b:4c:87:e8:75:11:7d:c2:6a:2d:f1:0e:f8:c4:fe:88:69:0b:
         be:3b:7d:2b:f0:9c:02:c0:6b:da:5a:ae:c1:da:f6:ac:72:4a:
         e5:83:66:0e:5b:2a:14:2f:b9:d5:56:cd:47:bc:1d:90:89:40:
         ab:06:58:c2:6d:5f:fa:42:ca:dc:81:5e:bc:74:cf:ad:25:04:
         fc:7c:51:42:07:5f:83:c8:5a:6e:b6:15:20:4b:ec:fc:af:ae:
         0d:d4:3c:95:98:ac:c2:12:c5:df:e3:20:09:2a:d6:99:b8:4f:
         ae:f2:fb:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 19 23:22:39 2026 by rpki-client