Manifest

$ rpki-client -vvf rpki-rsync.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/AA42E2E4EE53543BA04EE4744C57336151FA4CE7.mft
File:                     AA42E2E4EE53543BA04EE4744C57336151FA4CE7.mft (raw, json)
Hash identifier:          1jCW717csn3mNl/0rat1OQNcpb8wEPIQMmf97UcEVhk=
Subject key identifier:   59:85:3B:E0:9D:53:02:A3:E1:42:96:EC:36:85:22:60:0C:42:3C:01
Authority key identifier: AA:42:E2:E4:EE:53:54:3B:A0:4E:E4:74:4C:57:33:61:51:FA:4C:E7
Certificate issuer:       /CN=AA42E2E4EE53543BA04EE4744C57336151FA4CE7
Certificate serial:       5F578472BB117606A2F868CB7C1CE122EF6182D1
Authority info access:    rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AA42E2E4EE53543BA04EE4744C57336151FA4CE7.cer
Subject info access:      rsync://rpki-rsync.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/AA42E2E4EE53543BA04EE4744C57336151FA4CE7.mft
Manifest number:          67
Signing time:             Sat 18 Jul 2026 00:02:27 +0000
Manifest this update:     Fri 17 Jul 2026 23:57:27 +0000
Manifest next update:     Sun 19 Jul 2026 02:32:27 +0000
Files and hashes:         1: 3135372e32302e3234342e302f32342d3234203d3e20313338303839.roa (hash: SkrbD60j+7Lskvvrp9vktxOHNyXUZfRbUIZo6hU5Tds=)
                          2: AA42E2E4EE53543BA04EE4744C57336151FA4CE7.crl (hash: bC8gDHqD4KRhzqtd6Peaa1SEVE7HQyPOl6TA3u9b56Q=)
Validation:               OK
Signature path:           rsync://rpki-rsync.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/AA42E2E4EE53543BA04EE4744C57336151FA4CE7.crl
                          rsync://rpki-rsync.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/AA42E2E4EE53543BA04EE4744C57336151FA4CE7.mft
                          rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AA42E2E4EE53543BA04EE4744C57336151FA4CE7.cer
                          rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl
                          rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 18 Jul 2026 22:39:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5f:57:84:72:bb:11:76:06:a2:f8:68:cb:7c:1c:e1:22:ef:61:82:d1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=AA42E2E4EE53543BA04EE4744C57336151FA4CE7
        Validity
            Not Before: Jul 17 23:57:27 2026 GMT
            Not After : Jul 19 02:32:27 2026 GMT
        Subject: CN=59853BE09D5302A3E14296EC368522600C423C01
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:a0:14:ef:40:f0:a9:a5:32:4f:62:73:17:10:
                    e1:69:0e:0b:24:dc:d0:a1:59:0e:8d:65:54:b9:5e:
                    2b:e5:af:29:db:8b:7b:dc:e6:e9:72:67:1b:8d:e4:
                    7e:65:4b:61:75:a9:79:71:be:d7:19:a7:ee:c3:84:
                    e0:f1:e8:3e:45:21:de:53:d0:f9:58:45:fe:91:af:
                    ee:80:53:21:28:ab:1b:f0:54:9c:ff:25:16:92:f8:
                    cb:3c:ec:85:22:6a:3e:47:31:d5:eb:d0:48:01:55:
                    0a:28:01:da:e3:17:02:66:86:10:68:1b:37:e3:45:
                    35:1e:f6:93:ee:85:5e:65:b9:76:2c:32:d5:58:7b:
                    aa:2a:0d:c9:91:e6:2e:e2:80:57:79:83:03:49:15:
                    0d:1e:7a:0e:63:f2:8d:24:4f:9e:f1:30:a8:3e:50:
                    fd:52:cb:a1:82:70:f6:5e:14:fb:dc:fa:2e:37:78:
                    98:93:25:96:60:88:6a:81:33:95:2b:56:43:ba:43:
                    46:5d:a6:4a:bf:77:dd:03:be:78:0e:cf:79:3c:2e:
                    d5:b4:69:7f:72:58:ae:30:09:e2:05:1c:d0:09:7a:
                    fc:36:43:be:cc:e4:3d:ff:35:9c:50:0f:1a:79:6a:
                    1d:da:ff:7c:fd:e9:d7:30:f2:d4:48:65:cc:8b:36:
                    24:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:85:3B:E0:9D:53:02:A3:E1:42:96:EC:36:85:22:60:0C:42:3C:01
            X509v3 Authority Key Identifier:
                keyid:AA:42:E2:E4:EE:53:54:3B:A0:4E:E4:74:4C:57:33:61:51:FA:4C:E7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/AA42E2E4EE53543BA04EE4744C57336151FA4CE7.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AA42E2E4EE53543BA04EE4744C57336151FA4CE7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/AA42E2E4EE53543BA04EE4744C57336151FA4CE7.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:b2:c3:a6:98:9a:df:51:87:14:9f:b7:2c:c2:f7:89:e8:60:
         f0:ac:4f:a7:57:65:53:d6:56:4c:b4:59:c6:cd:fa:1c:1d:e4:
         db:84:0c:19:91:2e:da:01:75:85:11:3d:9a:c0:a1:a2:24:c8:
         d7:ea:6c:80:30:69:67:d6:99:73:92:b8:26:2f:d0:24:c0:b5:
         9f:f4:87:42:31:43:ab:2b:40:91:af:42:fd:cb:05:c6:32:ec:
         bc:f6:f6:d8:fd:26:52:65:36:e9:6c:d0:ea:42:ab:bc:4c:07:
         da:b1:da:08:aa:60:bf:4c:1c:22:b0:2f:85:2e:fc:8b:fa:e5:
         ef:f2:5a:96:1e:25:cc:36:44:02:29:c6:fe:3e:c1:5b:45:18:
         88:3c:3e:28:46:4c:c4:a0:d4:e8:58:95:a5:c4:2d:86:ef:5c:
         5a:bb:ba:95:4b:bd:51:db:53:ce:54:be:8f:49:7c:04:37:e2:
         24:bc:b4:39:35:ac:03:d2:b8:59:cc:b4:53:38:4b:0a:c9:d0:
         f5:ba:60:a9:51:5f:51:7f:f6:53:65:34:32:55:96:98:d2:13:
         d6:a7:db:d0:f7:3b:77:66:cf:b8:54:88:92:c6:00:00:0a:b2:
         33:ce:c9:db:fd:ad:0b:65:53:0b:22:d7:f9:4f:e6:40:69:14:
         b1:ff:a5:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:48:58 2026 by rpki-client