Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
File:                     8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft (raw, json)
Hash identifier:          rRdmyGX4fHee0lHiT3Rk6AfoPcORobnUKsLxUGDA/S8=
Subject key identifier:   D3:5B:DF:A8:16:5A:EE:06:AC:D6:08:61:F3:14:2A:CF:42:0D:98:4D
Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF
Certificate issuer:       /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
Certificate serial:       0B0AC646EEE09D08B73F94518490A914F055C6F3
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
Manifest number:          49
Signing time:             Mon 25 Nov 2024 07:11:12 +0000
Manifest this update:     Mon 25 Nov 2024 07:06:12 +0000
Manifest next update:     Thu 28 Nov 2024 10:22:12 +0000
Files and hashes:         1: 3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa (hash: ckcEAiUerTw8OlV2oYpTy5H+CAG653DGO/K4XWLlOAI=)
                          2: 323430343a346563303a3a2f33322d3438203d3e20313338313339.roa (hash: UhQecfNxj8X/lijkkF3QMUbBYbhulqbz4NupX/9Ftj0=)
                          3: 3130332e3133332e3134362e302f32342d3234203d3e20313338313339.roa (hash: rR7bpk/0yOPyaFxZxG4YURIJYceUP6YuTxyTXIFALC0=)
                          4: 3130332e3133332e3134342e302f32342d3234203d3e20313338313339.roa (hash: trJzf/3V2TXLETMLeMmW5kc6tHPncrif1YJPzBJGU4g=)
                          5: 3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa (hash: zATAdHlerThlnoLqIXcIigUWHlTNDbxHnh+h5ej5+QQ=)
                          6: 323430343a346563303a313a3a2f34382d3438203d3e20313338313339.roa (hash: /vlPZRBS8x8sUKynWBssFKgaoHTjkB9j0OlMrcZub0I=)
                          7: 8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl (hash: Q2hDedHONK7ULlvElwSZV1ScctczhBiVRt/uysbemJE=)

Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl
                          rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 28 Nov 2024 10:22:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0b:0a:c6:46:ee:e0:9d:08:b7:3f:94:51:84:90:a9:14:f0:55:c6:f3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
        Validity
            Not Before: Nov 25 07:06:12 2024 GMT
            Not After : Nov 28 10:22:12 2024 GMT
        Subject: CN=D35BDFA8165AEE06ACD60861F3142ACF420D984D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:26:0a:3f:41:90:ba:e2:f9:28:e0:da:f0:3a:
                    d4:01:4f:67:99:09:da:85:a8:8d:0a:1d:66:d8:b8:
                    86:0d:0f:62:2b:57:7d:e1:2d:d2:5e:e2:d0:79:74:
                    ca:d1:c9:52:40:25:70:be:06:11:5e:2f:fc:2f:3d:
                    3c:a3:f1:6a:f1:fe:c6:8d:ae:00:77:8e:c8:15:7c:
                    ca:1b:69:b3:64:eb:9c:d2:42:03:df:f2:f5:11:e2:
                    ab:0c:d3:0b:a7:2c:fb:1a:c0:e7:88:a1:9e:44:02:
                    9b:f0:b1:fa:a2:dc:8b:5e:24:f4:9f:c1:de:b2:ef:
                    5f:a6:3d:e8:10:c8:c5:29:b4:e9:e9:1f:b0:74:9c:
                    2d:fc:57:18:be:35:f9:02:cd:44:2c:95:73:91:a4:
                    b0:be:7a:e3:1a:20:81:a7:78:8d:e7:4b:2a:ab:89:
                    0a:82:6f:dc:97:f3:f9:6a:34:fd:bd:f6:90:b4:88:
                    d5:ce:be:ca:ae:a2:af:b3:10:03:bd:1f:df:f3:f8:
                    5b:6e:39:f7:24:42:ab:fd:d1:38:86:0c:48:7f:18:
                    7e:ce:ef:39:6d:db:fb:57:eb:f6:a8:a8:0b:23:b2:
                    34:7b:82:e7:93:f3:0e:dd:ca:19:1c:79:28:84:d8:
                    6c:86:e5:28:5d:61:40:fc:ec:36:62:c9:18:ab:de:
                    e0:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:5B:DF:A8:16:5A:EE:06:AC:D6:08:61:F3:14:2A:CF:42:0D:98:4D
            X509v3 Authority Key Identifier:
                keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:93:c1:0c:4b:42:62:6f:00:2f:08:3f:eb:d9:2b:c9:c3:ff:
         d9:65:2b:54:94:29:d1:cb:9e:0c:f8:c2:37:1e:61:32:a0:ef:
         da:11:3f:5c:e5:2b:98:31:37:55:b8:a9:47:41:7e:20:28:71:
         11:6a:81:0c:d2:a7:31:e9:16:8a:52:38:6f:43:66:f3:65:29:
         9b:d8:2d:46:46:1d:e3:02:15:92:8b:1e:81:46:da:38:14:06:
         80:4a:a7:0e:a1:8e:31:b8:cf:48:59:1a:c8:93:25:21:8e:dd:
         3d:94:a2:bc:bc:ac:7d:72:c5:49:5f:92:4b:aa:c8:43:4b:a8:
         33:81:0e:b2:a8:8a:58:dd:c7:70:b2:3d:a7:1a:d8:83:9c:b9:
         50:02:31:86:75:54:1d:29:a5:d1:8c:5c:4a:87:bd:d1:7b:9f:
         7d:4f:fa:f3:a3:fb:ca:02:2c:a0:14:38:c8:a3:e2:72:29:e5:
         01:ee:2f:e9:b9:21:ae:ec:db:77:84:13:9a:c3:4f:fa:49:64:
         47:4d:e8:93:4b:2f:dd:2d:53:66:e9:cf:a1:8d:43:fb:8b:ac:
         5e:07:1d:d5:9a:35:99:08:d4:53:d6:73:ae:cc:ab:fe:57:f1:
         e3:b4:59:56:75:5f:97:48:d7:79:ab:15:a4:0a:e5:ee:8a:9d:
         68:fa:9a:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----