Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft
File:                     FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft (raw, json)
Hash identifier:          isLlzngwDmcoAyeqgtpys/d6odYq7LukVtvNLa3XJq0=
Subject key identifier:   6F:D3:1B:5B:40:2D:74:1F:94:69:C6:42:26:29:F9:03:AA:8F:CF:09
Authority key identifier: FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23
Certificate issuer:       /CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623
Certificate serial:       7BF006D37CFF08F19DD3AF0040B17A69C22C5E77
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft
Manifest number:          25
Signing time:             Sat 15 Jun 2024 17:22:01 +0000
Manifest this update:     Sat 15 Jun 2024 17:17:01 +0000
Manifest next update:     Wed 19 Jun 2024 03:11:01 +0000
Files and hashes:         1: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl (hash: XZ4EAQdNgfMeLFR1q40zi5jjbFJeT7Xwbr/vddSig54=)
                          2: 3135372e32302e3132362e302f32332d3234203d3e20313532343130.roa (hash: GL8AMlujo4AkVOx8qStsJ350J7+imQl7NqV6QHZ7vWQ=)

Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl
                          rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 18 Jun 2024 16:36:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7b:f0:06:d3:7c:ff:08:f1:9d:d3:af:00:40:b1:7a:69:c2:2c:5e:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623
        Validity
            Not Before: Jun 15 17:17:01 2024 GMT
            Not After : Jun 19 03:11:01 2024 GMT
        Subject: CN=6FD31B5B402D741F9469C6422629F903AA8FCF09
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:52:53:d5:48:95:d4:e0:73:20:ec:06:51:41:
                    92:29:8b:f9:db:89:41:03:f7:68:24:67:60:5a:d5:
                    94:fb:98:a3:37:81:d5:70:41:eb:81:56:fd:f6:e2:
                    b9:7d:90:e5:2f:24:28:a5:b5:a2:f8:ea:00:df:97:
                    f8:f0:34:0f:75:e5:d0:43:b4:6f:26:7f:0a:6f:cf:
                    f5:64:84:24:c0:24:0f:6f:cd:5f:a8:62:ac:eb:4a:
                    6e:4c:3b:64:34:2f:75:ed:58:5c:76:77:61:79:06:
                    84:af:b8:0e:41:f0:65:a1:3c:6f:61:56:82:ca:99:
                    f8:42:9c:77:17:ff:36:2c:d5:16:fe:a2:79:97:75:
                    6f:2a:51:f8:57:a3:47:8f:74:5f:ac:43:9b:bd:35:
                    4f:57:22:2e:8e:99:92:7d:92:78:76:b7:c7:c9:51:
                    44:e0:d8:e7:eb:43:b7:f2:10:4d:8a:29:d4:28:96:
                    d5:54:48:9e:21:96:a4:fa:b8:8a:f8:e8:19:f2:7a:
                    24:01:f1:68:16:d3:2f:12:cd:fa:cd:00:6d:6d:4e:
                    64:ca:4c:4a:e5:c6:44:ac:2d:71:1e:13:50:a4:e3:
                    d6:e4:c3:d8:0d:2f:54:0f:68:2e:fe:69:c0:19:75:
                    3c:93:ca:b3:64:15:65:e1:f5:c8:bc:e2:fb:9f:fe:
                    4e:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:D3:1B:5B:40:2D:74:1F:94:69:C6:42:26:29:F9:03:AA:8F:CF:09
            X509v3 Authority Key Identifier:
                keyid:FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         88:1f:bf:4e:7c:87:f6:9c:32:02:97:c8:31:e3:86:dd:af:25:
         fa:05:38:0f:e4:5f:bf:22:c4:88:22:89:16:5a:9c:c5:42:c6:
         06:20:18:5d:9a:d5:56:0c:2e:5b:27:e5:80:a2:e8:78:eb:2e:
         88:19:11:fe:02:d2:b3:86:1b:cd:c9:b0:9c:40:ac:86:aa:f8:
         68:9b:03:e9:74:19:f3:40:d4:57:a5:8d:2d:3c:4e:d1:34:5d:
         07:5a:51:26:8b:b8:91:5f:92:64:64:48:a2:dd:0e:f1:99:57:
         16:15:be:6c:bf:3f:50:39:fe:3e:75:9a:c2:f6:ee:a7:c8:6e:
         0f:0a:43:5d:62:c3:97:d5:3e:d8:61:6f:7b:72:61:42:01:a5:
         ba:b2:52:cf:ec:f3:bd:19:97:00:39:4a:74:bc:1e:35:42:96:
         0f:94:5d:01:9d:ea:5b:64:44:a1:10:64:c0:fc:9f:5b:c8:e7:
         cc:99:a2:24:2e:be:e6:dc:16:17:4d:7d:aa:cb:dc:1b:fa:d9:
         cf:70:16:6c:44:d6:b6:92:61:87:e6:7f:48:33:e5:0f:6b:71:
         40:c8:4e:02:d0:36:4a:28:f6:50:d7:51:f3:83:52:95:98:b4:
         d5:7b:bf:c5:bb:9f:c4:7f:43:2b:ee:2f:ca:c1:87:0d:53:d6:
         a6:00:6c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 18:19:20 2024 by rpki-client on console-fra.rpki-client.org