Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
File:                     8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft (raw, json)
Hash identifier:          CvCLB5z9e2LXs0KS8UeOrEDBDjapZ9n2zht1GAtxa8w=
Subject key identifier:   39:50:71:19:3A:53:D8:58:DC:8E:9F:03:9F:EA:D9:06:9D:81:A2:CD
Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF
Certificate issuer:       /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
Certificate serial:       6A07531BACCE901E62754B20D6AB3ED066959543
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
Manifest number:          9E
Signing time:             Wed 04 Jun 2025 19:11:15 +0000
Manifest this update:     Wed 04 Jun 2025 19:06:15 +0000
Manifest next update:     Sun 08 Jun 2025 04:33:15 +0000
Files and hashes:         1: 3130332e3133332e3134342e302f32342d3234203d3e20313338313339.roa (hash: trJzf/3V2TXLETMLeMmW5kc6tHPncrif1YJPzBJGU4g=)
                          2: 323430343a346563303a3a2f33322d3438203d3e20313338313339.roa (hash: UhQecfNxj8X/lijkkF3QMUbBYbhulqbz4NupX/9Ftj0=)
                          3: 3130332e3133332e3134362e302f32342d3234203d3e20313338313339.roa (hash: rR7bpk/0yOPyaFxZxG4YURIJYceUP6YuTxyTXIFALC0=)
                          4: 8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl (hash: X9zkcfnJWbF7QBddfV+h5oNqva9MNe0AsE1o8wSWLAo=)
                          5: 323430343a346563303a313a3a2f34382d3438203d3e20313338313339.roa (hash: /vlPZRBS8x8sUKynWBssFKgaoHTjkB9j0OlMrcZub0I=)
                          6: 3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa (hash: zATAdHlerThlnoLqIXcIigUWHlTNDbxHnh+h5ej5+QQ=)
                          7: 3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa (hash: ckcEAiUerTw8OlV2oYpTy5H+CAG653DGO/K4XWLlOAI=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl
                          rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 08 Jun 2025 04:33:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6a:07:53:1b:ac:ce:90:1e:62:75:4b:20:d6:ab:3e:d0:66:95:95:43
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
        Validity
            Not Before: Jun  4 19:06:15 2025 GMT
            Not After : Jun  8 04:33:15 2025 GMT
        Subject: CN=395071193A53D858DC8E9F039FEAD9069D81A2CD
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:26:e0:76:7f:98:e0:95:be:df:8d:f6:8a:83:
                    b1:dd:82:18:d0:2b:8f:e3:17:ea:ba:2b:c0:47:93:
                    86:4f:bf:ce:61:37:a6:97:5a:70:fc:45:a6:61:25:
                    74:a0:1e:fb:67:e6:48:4f:fd:6e:7c:f2:30:c2:15:
                    9b:ac:49:52:db:2b:16:76:9f:33:84:53:2f:46:bc:
                    98:31:a4:8b:e7:05:3c:43:3a:d5:57:b4:22:8c:39:
                    78:68:00:b7:31:53:1e:a7:5b:e2:68:e4:bc:cf:55:
                    ad:7d:5e:f2:9b:ca:94:ae:91:1d:13:32:1e:de:33:
                    66:1d:1e:80:29:3b:3f:a0:fc:16:38:51:b2:e9:85:
                    de:c7:89:1e:8f:18:aa:64:e7:a0:de:d9:61:59:5d:
                    01:7a:c5:2f:96:e4:50:e7:dc:e3:c0:bd:f0:7c:17:
                    f8:bf:b6:71:8b:78:53:b2:f3:6a:12:9e:9b:70:8a:
                    79:85:7a:78:80:82:c2:bb:75:f7:22:e0:b6:0d:cf:
                    78:5b:9c:3d:76:f3:ca:ce:b0:d1:bc:a8:58:c0:94:
                    8f:14:32:ae:6c:00:76:bd:88:2d:5e:5d:8b:14:1b:
                    e4:5c:a2:6a:ed:10:94:32:34:e5:2e:24:b1:5f:34:
                    98:16:ad:ae:b9:dd:45:b8:1b:71:11:69:95:7b:1a:
                    91:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:50:71:19:3A:53:D8:58:DC:8E:9F:03:9F:EA:D9:06:9D:81:A2:CD
            X509v3 Authority Key Identifier:
                keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:66:88:8f:fa:11:ed:af:80:3b:f7:64:00:ce:09:4d:3a:15:
         d4:3a:ac:39:c2:12:8f:6b:e3:63:62:21:48:ce:c3:e3:13:da:
         9d:1c:2a:05:89:ab:32:15:8e:56:dd:54:63:a8:ee:6a:49:46:
         f7:ab:67:34:ee:30:82:c5:64:a5:25:cf:5c:89:c5:1e:d1:53:
         e5:08:e2:1f:8b:45:11:ee:30:54:f5:cb:1d:e2:21:23:d8:38:
         ca:41:dd:89:e0:dc:e7:a4:8d:43:df:f1:e7:5b:46:da:77:47:
         89:46:01:f7:a0:a7:87:ea:fa:97:f5:30:b4:6a:dd:d1:75:90:
         71:da:1a:d4:10:63:3e:8f:80:a9:71:84:00:44:94:c6:01:28:
         f0:c5:11:7b:d1:d7:ac:5f:68:fb:e6:f0:92:bd:5f:9c:ea:64:
         49:b5:90:f0:f6:b7:6b:a6:d3:f7:34:6c:f1:64:d7:b2:b0:70:
         a1:e2:fd:4b:22:a6:c7:df:03:95:62:1c:25:8c:95:45:c3:c0:
         f7:6e:b4:c4:ca:03:67:19:d0:f2:ee:a1:0c:99:97:c3:e7:5d:
         5d:79:0f:87:b4:c8:ea:9f:e2:31:24:ee:ec:c2:c2:58:6c:5f:
         00:59:ab:34:78:20:b1:27:12:19:9e:ac:08:f5:ed:9f:db:e7:
         33:f4:2b:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----