Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft
File:                     BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft (raw, json)
Hash identifier:          mN0cT6Zuagz2nImHa6iW+drbwA1vlqOJbGvwqdM3EJw=
Subject key identifier:   8A:B7:04:F4:67:AA:4B:65:76:56:8A:55:78:78:28:BE:BD:C2:B6:F6
Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37
Certificate issuer:       /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337
Certificate serial:       151447DDD7E34F3E87B1F9289F1F2C85333D22E5
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft
Manifest number:          04CC
Signing time:             Sat 19 Apr 2025 00:11:20 +0000
Manifest this update:     Sat 19 Apr 2025 00:06:20 +0000
Manifest next update:     Tue 22 Apr 2025 02:19:20 +0000
Files and hashes:         1: 323430363a366434303a3a2f33322d3332203d3e20313431303536.roa (hash: vPGDL5Uz+m1Ri6z0hdVmq01za5aH2UUg8pKyvgRNgpw=)
                          2: 323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa (hash: v92EWX5PrX2ocfEiVVqNZStsTUP7VHqvGQh9Jsm+CN4=)
                          3: 323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa (hash: 7PxedSipsNTZyiV9fxG1frgwTkAEJ+zZ1V+jTL4oKzQ=)
                          4: 323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa (hash: pbhhW/T4QYFpANmSbko4Pn15Hrxc5CLsjrjH+moakkM=)
                          5: 3130332e3135352e3131362e302f32342d3234203d3e20313431303536.roa (hash: fLXVT7lGT6QWujn3tIusyMzrLDKrWbnN+mifeaCOu/U=)
                          6: BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl (hash: UrYSjgQDbIpTlT1z7J0GHBffMtQot4Gx76rNkpdVmrY=)
                          7: 323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa (hash: BlERiRMKFqkgyqTsj7YKl6ODg1kHmptUNWRLGRCZ1OE=)
                          8: 3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa (hash: /TQ9lPnPYqONrVYXhhohcl7UP563J9mX/0O81vxmXto=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl
                          rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 22 Apr 2025 02:19:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            15:14:47:dd:d7:e3:4f:3e:87:b1:f9:28:9f:1f:2c:85:33:3d:22:e5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337
        Validity
            Not Before: Apr 19 00:06:20 2025 GMT
            Not After : Apr 22 02:19:20 2025 GMT
        Subject: CN=8AB704F467AA4B6576568A55787828BEBDC2B6F6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:d2:20:36:44:c2:f6:73:bf:1a:19:79:bd:cc:
                    6d:13:c8:13:18:e6:2e:49:29:4b:a3:d8:91:14:56:
                    d6:25:bd:73:43:27:ca:8a:ff:24:c7:2d:9c:e8:c6:
                    16:36:3c:c3:d3:c9:15:80:3b:de:87:4e:42:96:1e:
                    37:86:68:05:36:63:b0:0d:a9:37:6c:09:69:95:d2:
                    66:d5:a2:1c:88:67:72:8a:a4:6f:fb:da:40:71:85:
                    3f:4b:57:ba:e3:b4:5d:4e:10:db:bf:25:76:f7:71:
                    cf:ba:c4:45:dd:bb:c2:5f:bc:16:d5:79:62:53:85:
                    22:26:ec:57:61:c0:db:2f:c6:80:c1:1d:81:1f:71:
                    41:04:ae:6b:9c:29:19:e4:9e:7d:bf:86:6f:f0:95:
                    65:ed:42:0e:9c:4f:1d:02:43:11:2b:d1:28:45:61:
                    21:ae:16:ef:60:8d:04:11:ce:48:8e:c7:f4:25:01:
                    a1:a7:23:2b:22:96:f5:b3:62:7f:d9:32:dc:1a:e3:
                    e4:3f:59:53:35:c1:93:74:50:b0:5e:92:86:9e:76:
                    64:87:41:86:af:76:7f:d9:65:85:1b:3d:61:d4:28:
                    5d:6e:56:01:e2:47:74:8e:40:27:5c:3d:98:cf:61:
                    d6:8a:cc:57:3c:83:e0:db:56:d8:a9:e7:e5:50:8f:
                    60:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8A:B7:04:F4:67:AA:4B:65:76:56:8A:55:78:78:28:BE:BD:C2:B6:F6
            X509v3 Authority Key Identifier:
                keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:db:3d:28:9c:c7:5e:93:36:2f:1b:2a:0f:2c:27:d9:38:be:
         f7:56:bb:70:21:f4:e0:88:25:a2:66:4d:f4:d8:43:50:dc:19:
         12:5a:a1:5d:df:24:89:53:28:41:c8:3c:cf:42:7f:89:52:2e:
         54:05:1b:dc:af:1a:6b:e4:04:76:f3:71:fd:0b:dc:73:3a:73:
         ac:c4:d8:04:65:0f:25:e1:64:9b:4d:37:49:d0:c7:90:05:bc:
         c5:b8:33:ab:77:57:92:d4:32:20:a0:b4:f8:ed:f1:2b:5f:90:
         d5:07:9a:e7:18:16:58:48:b3:9a:9e:0c:03:b8:20:3b:97:fe:
         69:ef:e1:e5:d0:06:0f:3c:84:81:ab:fc:3e:20:a7:57:7a:61:
         67:16:34:5a:bf:f6:86:80:e2:92:85:a2:50:bb:3f:61:37:fb:
         27:61:c2:5c:0b:0b:f3:3d:9f:b0:bb:96:19:f9:cc:51:6d:f7:
         8e:58:80:0d:2a:76:cc:fe:d5:a2:d7:a1:51:98:7a:47:1a:31:
         43:80:c0:97:3c:be:28:02:1e:44:c0:5d:8a:4a:f8:03:ee:bc:
         9f:9e:20:b7:ff:88:d8:d3:9b:af:4f:58:7d:50:06:a2:46:40:
         63:b1:7f:6d:d2:af:f6:96:00:b4:25:7d:e0:b2:08:9b:61:fd:
         8f:d9:68:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----