Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft
File:                     735D87BA86773AC70137CF53116358A1F3B19766.mft (raw, json)
Hash identifier:          7rYy0Zpsl/8taRtfDCnWJAPRxP1o0S7YOX85g3fJNh0=
Subject key identifier:   61:8D:8C:77:86:78:62:23:E7:54:46:60:3D:FB:37:18:46:DD:D5:E6
Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66
Certificate issuer:       /CN=735D87BA86773AC70137CF53116358A1F3B19766
Certificate serial:       32E8C629690B79E601A1987E63EAA5FDCEB8CFA0
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft
Manifest number:          024B
Signing time:             Wed 22 Oct 2025 22:51:04 +0000
Manifest this update:     Wed 22 Oct 2025 22:46:04 +0000
Manifest next update:     Sun 26 Oct 2025 06:56:04 +0000
Files and hashes:         1: 3230322e37302e34382e302f32302d3234203d3e203138303034.roa (hash: Vj9b7eOBgij03V9LOKkEMCElDrFIB3RU0Drnp1lzskU=)
                          2: 3130332e332e3230382e302f32322d3234203d3e203138303034.roa (hash: ixUeVPdiiujjqdz2cxBs4b9W1yytwj3hYRmTEjubFdc=)
                          3: 735D87BA86773AC70137CF53116358A1F3B19766.crl (hash: I1um8GV1UvQEvu1NcgbukTfQpucjc5zn4idM9EJeiBk=)
                          4: 3131352e3137382e3232342e302f31392d3234203d3e203138303034.roa (hash: cuW15q9SnbE27U2Jg8nnNYvxOwHbFyEv1g42R3Sx4E0=)
                          5: 3230322e37332e3232342e302f32312d3234203d3e203138303034.roa (hash: MYkgPF54ZFrZUvgyAUVZduFZA6VqGujX+c3smzb0mEg=)
                          6: 3131352e3137382e3136302e302f31392d3234203d3e203138303034.roa (hash: cA/F4dRQqVseyocCpcE2agAw/XVimr3HwwnooMdskYo=)
                          7: 3131352e3137382e3139322e302f31392d3234203d3e203138303034.roa (hash: bNf7w52cmLw3GYp+mMaw3papmg1ZcgmFTgd1v4VSUIU=)
                          8: 3130332e3233342e3132302e302f32322d3234203d3e203138303034.roa (hash: MNca57frzbraXQ+A5sffHCuXC7kbkp16cgNgxDCrZrE=)
                          9: 3131342e37392e302e302f31382d3234203d3e203138303034.roa (hash: hML4QQ0UsZ/MNuzlhXm7ZxAfBsEoo8p/TG6zTdeHPYA=)
                          10: 323430373a613630303a3a2f33322d3338203d3e203138303034.roa (hash: SoFui+6+9U4okutKDEEDEO8cNoDM72pJozwIgVHrak0=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl
                          rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Oct 2025 06:56:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            32:e8:c6:29:69:0b:79:e6:01:a1:98:7e:63:ea:a5:fd:ce:b8:cf:a0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766
        Validity
            Not Before: Oct 22 22:46:04 2025 GMT
            Not After : Oct 26 06:56:04 2025 GMT
        Subject: CN=618D8C7786786223E75446603DFB371846DDD5E6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:26:3f:a6:f5:e0:f5:c7:c2:2e:e4:02:a5:d1:
                    24:5d:4c:13:b4:95:02:ae:9f:1c:27:ef:fc:48:64:
                    2a:20:7e:dc:4e:7d:71:f9:25:4e:c2:82:59:5d:fe:
                    0b:0d:43:32:c7:51:58:ee:db:e7:e1:36:aa:19:5c:
                    5f:0b:25:98:14:e1:73:cd:36:29:b2:3b:58:25:68:
                    da:37:6a:98:63:95:33:c6:0d:88:df:b7:bd:60:39:
                    be:b4:e7:a5:07:b5:12:04:56:6a:77:49:c9:2f:b9:
                    8c:e7:55:f3:6d:be:cb:c0:22:02:47:66:8a:c8:7d:
                    34:7c:fc:fb:45:26:52:4b:95:8c:c5:2c:c2:21:0c:
                    75:d9:4f:ce:aa:48:d2:98:ba:37:af:44:fb:d9:99:
                    d4:20:21:37:df:56:26:c5:de:98:2a:b0:2e:ae:32:
                    b3:30:b3:34:ab:69:c2:5e:c2:07:38:51:b0:0c:d6:
                    cd:6a:93:f1:cb:58:4c:cb:d7:6a:27:cb:c3:01:07:
                    85:e8:40:72:ca:08:94:c2:f2:6c:9f:ee:c8:9c:f4:
                    a0:c0:5c:0d:27:b9:fe:24:50:32:a0:d7:86:cc:0d:
                    91:05:5e:0d:1f:af:da:dc:2c:a4:5e:14:38:03:aa:
                    5d:9b:42:39:2b:2d:57:9a:9d:03:3f:8a:7e:90:97:
                    b8:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:8D:8C:77:86:78:62:23:E7:54:46:60:3D:FB:37:18:46:DD:D5:E6
            X509v3 Authority Key Identifier:
                keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         13:8a:80:32:0d:e6:5b:09:ec:28:37:b3:d7:a9:7f:a4:16:66:
         cc:29:41:69:56:37:87:66:11:53:0e:71:59:1a:c2:05:fe:e1:
         28:e4:17:4f:de:55:b7:87:de:c3:0e:9c:fb:da:c8:b8:a1:09:
         ca:f1:50:e8:07:ac:8f:74:56:52:a2:b6:57:cc:b2:47:71:f8:
         91:69:98:c1:0e:6c:87:41:c6:27:20:53:f6:09:fc:dc:45:32:
         07:8c:aa:7c:80:83:2a:b9:37:9f:ca:de:c5:72:4b:9c:0a:42:
         d2:49:7b:ab:8f:2c:06:44:04:1c:7e:be:9f:fc:61:66:eb:02:
         2f:c8:c0:80:76:f7:83:e8:d2:87:3b:70:2b:73:fb:f0:a7:36:
         34:51:97:a6:2e:18:27:63:3f:0a:11:25:02:c4:5a:6e:11:9f:
         43:77:de:3a:82:5f:32:8d:3f:92:a2:32:55:c7:e0:71:51:54:
         6d:3b:a8:da:b6:c2:ae:d5:53:78:f4:76:db:9e:6c:92:0e:30:
         78:af:a6:ba:b6:f6:17:5c:c2:05:a3:dd:4e:ff:68:c3:ac:65:
         e3:02:f9:c8:57:50:b3:05:64:ad:4f:54:2e:ac:59:af:3f:b4:
         4f:37:04:16:02:b4:76:ef:a4:fa:81:e1:17:6d:e6:00:45:51:
         96:ba:03:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----