Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
File:                     8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft (raw, json)
Hash identifier:          Zy8ov44A/C5h6c1KPtf+PknK6ujK+pRem8xn0x1dC/Y=
Subject key identifier:   5A:FE:42:55:13:DC:2B:7D:2B:0C:CE:CC:7D:FB:6E:CC:63:6F:E1:58
Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF
Certificate issuer:       /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
Certificate serial:       1B3C6292577E2FCA3C8FDD1001000D3D86C6D1CC
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
Manifest number:          82
Signing time:             Thu 03 Apr 2025 11:31:05 +0000
Manifest this update:     Thu 03 Apr 2025 11:26:05 +0000
Manifest next update:     Sun 06 Apr 2025 21:28:05 +0000
Files and hashes:         1: 3130332e3133332e3134362e302f32342d3234203d3e20313338313339.roa (hash: rR7bpk/0yOPyaFxZxG4YURIJYceUP6YuTxyTXIFALC0=)
                          2: 3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa (hash: zATAdHlerThlnoLqIXcIigUWHlTNDbxHnh+h5ej5+QQ=)
                          3: 323430343a346563303a3a2f33322d3438203d3e20313338313339.roa (hash: UhQecfNxj8X/lijkkF3QMUbBYbhulqbz4NupX/9Ftj0=)
                          4: 3130332e3133332e3134342e302f32342d3234203d3e20313338313339.roa (hash: trJzf/3V2TXLETMLeMmW5kc6tHPncrif1YJPzBJGU4g=)
                          5: 323430343a346563303a313a3a2f34382d3438203d3e20313338313339.roa (hash: /vlPZRBS8x8sUKynWBssFKgaoHTjkB9j0OlMrcZub0I=)
                          6: 8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl (hash: s7Kd5LD1CNWSY0mjYY4BHUc/VE8I1L26epoaGvTW9XI=)
                          7: 3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa (hash: ckcEAiUerTw8OlV2oYpTy5H+CAG653DGO/K4XWLlOAI=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl
                          rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 06 Apr 2025 21:28:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1b:3c:62:92:57:7e:2f:ca:3c:8f:dd:10:01:00:0d:3d:86:c6:d1:cc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
        Validity
            Not Before: Apr  3 11:26:05 2025 GMT
            Not After : Apr  6 21:28:05 2025 GMT
        Subject: CN=5AFE425513DC2B7D2B0CCECC7DFB6ECC636FE158
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:ad:ba:3f:7d:cd:3b:5b:25:25:13:ef:f5:81:
                    2d:94:36:15:86:00:dd:84:68:de:82:91:f8:04:0d:
                    c9:7a:fd:b6:bb:61:d9:05:59:93:7a:bf:24:41:9d:
                    fd:de:52:d6:a9:1f:48:40:5a:17:b9:f0:31:31:9e:
                    27:00:fb:2b:47:44:04:a2:cd:f6:49:03:70:09:67:
                    5f:e7:ff:f4:22:5b:6b:5d:30:29:0c:dc:41:9c:45:
                    11:8b:b7:5d:c7:a4:0d:da:c8:f7:e4:86:5f:7d:ef:
                    f0:6c:0f:05:94:0c:b6:5f:13:bd:11:bc:be:0c:a2:
                    9e:06:56:38:d6:cd:57:f8:2f:97:c8:04:eb:4e:c6:
                    46:f9:9b:db:be:8e:5c:37:95:00:4f:de:55:cf:0a:
                    0c:d9:13:dd:02:b2:41:33:2d:99:77:96:a2:9f:0f:
                    63:ee:d8:f6:ac:58:88:42:1c:48:6b:7c:ec:be:03:
                    19:79:e5:e6:b3:86:e5:a3:26:5c:62:9b:47:37:9c:
                    a7:f5:8a:d9:4a:8d:a0:bb:4a:db:2c:c5:46:cd:84:
                    f6:27:a9:74:68:f7:7c:a4:04:fe:d7:63:dd:34:95:
                    9b:30:42:0a:7f:df:f8:1a:7b:71:ff:22:5d:b7:1d:
                    bb:da:ca:94:50:4a:ed:9b:cb:39:0a:d4:ec:d9:11:
                    c1:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5A:FE:42:55:13:DC:2B:7D:2B:0C:CE:CC:7D:FB:6E:CC:63:6F:E1:58
            X509v3 Authority Key Identifier:
                keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:ab:63:c4:cd:ab:72:2e:9c:3f:9f:b6:32:0e:f0:4d:81:64:
         22:e1:0b:fe:2d:34:49:92:03:2d:cd:a5:61:8c:12:8a:3f:9d:
         c0:32:cf:5c:f5:bd:d8:78:38:36:bd:27:99:f1:b8:4c:e7:26:
         9e:bb:a1:db:61:e7:78:19:e8:18:22:a0:23:6c:32:1c:d2:1c:
         b8:ad:81:ee:86:ed:cb:27:2f:86:1d:19:89:bc:81:0b:33:7c:
         5b:4d:9e:e5:72:31:78:10:ab:c2:26:36:f2:1f:6d:c7:f0:be:
         a2:cf:82:ef:86:50:d4:ea:27:13:6c:96:2f:78:7c:50:65:f4:
         6f:bd:f3:8c:0d:45:3d:d4:76:c7:ab:c7:57:65:ce:76:8c:2e:
         f6:b9:b3:86:70:f5:e2:15:3d:86:10:ee:4c:a0:16:8d:3b:2a:
         0e:40:9e:b9:7b:74:ef:45:8a:48:c5:d8:d3:c6:fe:c5:5d:c3:
         14:13:d9:5b:f4:6a:11:09:1f:e6:ce:5f:f1:03:b2:53:25:73:
         88:21:75:c3:fc:da:a1:4f:de:1a:3b:8a:7b:cc:9f:b0:fb:e8:
         de:27:12:6f:5f:05:f4:b8:2f:56:57:48:e3:c8:9b:fa:21:17:
         48:4c:7c:0a:be:3c:36:66:4a:4f:36:52:ce:dd:b4:d7:dc:f9:
         27:e7:a2:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----