Manifest

$ rpki-client -vvf rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.mft
File:                     3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.mft (raw, json)
Hash identifier:          DM3Y21A+2wxOHBatQAXS/QYb5IdKsUhkqiWwezeXLUs=
Subject key identifier:   BF:90:99:ED:8D:46:9D:2D:2A:6C:A3:E5:4B:D6:01:94:49:00:CF:35
Authority key identifier: 38:99:C9:2D:D0:D4:2F:93:D7:DA:85:40:34:FD:88:BA:B4:A5:AF:D2
Certificate issuer:       /CN=3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2
Certificate serial:       7EEBAAC0914BE42A383E567CDD06B9AB68C72D8B
Authority info access:    rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.cer
Subject info access:      rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.mft
Manifest number:          6A
Signing time:             Fri 17 Jul 2026 21:03:48 +0000
Manifest this update:     Fri 17 Jul 2026 20:58:48 +0000
Manifest next update:     Sat 18 Jul 2026 23:15:48 +0000
Files and hashes:         1: 3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.crl (hash: 1EkDa1W5pwe45GHn4G4icHKhP6KEHWhvZAYXuxVmGGI=)
                          2: 3130332e3133312e31392e302f32342d3234203d3e20313338303839.roa (hash: X+ZlO7h/pL9t4N4Gq7NgEd0rssKL3EkGKfZrYxmlYG4=)
                          3: 3130332e3133312e31382e302f32342d3234203d3e20313338303839.roa (hash: 35sB3F+pYRWs2vzmYiPiuHmOw2zefVJi3xxGSLrd8Oc=)
                          4: 3130332e3133312e31382e302f32332d3234203d3e20313338303839.roa (hash: lzLPq+5ACK3Fp2G9Qq15Ai5VNsw2ESnTuC604MZBsC4=)
Validation:               OK
Signature path:           rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.crl
                          rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.mft
                          rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.cer
                          rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
                          rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 18 Jul 2026 20:49:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7e:eb:aa:c0:91:4b:e4:2a:38:3e:56:7c:dd:06:b9:ab:68:c7:2d:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2
        Validity
            Not Before: Jul 17 20:58:48 2026 GMT
            Not After : Jul 18 23:15:48 2026 GMT
        Subject: CN=BF9099ED8D469D2D2A6CA3E54BD601944900CF35
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:dc:2b:d3:7a:50:9b:0d:27:0e:ee:22:ac:ba:
                    59:a3:67:e1:ae:e4:be:ba:fb:b3:58:8b:aa:34:44:
                    b2:d8:f4:12:7d:f6:67:a4:14:c3:28:d4:33:4d:39:
                    9e:38:86:02:79:66:17:90:89:6e:dd:5c:fc:ae:61:
                    e3:86:45:b6:59:ba:a2:d3:33:a9:1f:62:69:a6:55:
                    96:e2:d0:ff:21:3e:66:c3:16:39:aa:d2:99:13:be:
                    38:a0:50:c1:ec:5e:54:67:78:8f:fa:d2:ab:7a:6f:
                    87:be:2b:b0:f8:98:45:c0:7d:59:3d:df:ba:58:32:
                    eb:70:4c:2d:d2:fa:fa:42:28:a2:f6:1b:be:8f:fd:
                    7b:2a:66:f7:d0:ef:d6:3b:22:a1:05:76:34:99:e8:
                    e0:a5:01:16:52:bb:b2:33:a2:3c:ad:39:79:98:83:
                    46:72:2b:66:7a:a9:22:71:e5:d3:a0:d4:11:70:a3:
                    46:df:6d:74:18:c6:0a:35:fe:c5:02:1e:92:d5:24:
                    f6:4e:fa:74:94:83:d0:6b:ff:6a:00:67:46:23:dc:
                    7a:aa:14:85:59:80:20:a4:93:53:39:21:50:22:bf:
                    b1:1d:4e:2a:ba:21:1f:f6:33:f5:b4:8e:ad:b2:e2:
                    bc:6f:ad:e2:e1:ba:f6:ef:1b:e4:87:d6:20:e0:82:
                    aa:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:90:99:ED:8D:46:9D:2D:2A:6C:A3:E5:4B:D6:01:94:49:00:CF:35
            X509v3 Authority Key Identifier:
                keyid:38:99:C9:2D:D0:D4:2F:93:D7:DA:85:40:34:FD:88:BA:B4:A5:AF:D2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3899C92DD0D42F93D7DA854034FD88BAB4A5AFD2.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:2c:eb:1d:14:95:cb:61:a5:51:28:51:ca:9a:c3:46:78:56:
         6d:e9:75:9c:96:96:0f:e7:36:cd:7d:95:e2:56:94:51:81:92:
         a5:c2:8d:75:05:85:aa:72:9e:12:59:e6:29:0b:05:7d:62:5e:
         e4:f0:57:49:1e:a4:26:e3:af:b5:52:d5:5f:20:6d:c8:b0:e6:
         cf:a1:31:75:97:c5:af:66:43:d7:b1:2a:c6:af:fc:00:5c:9c:
         ff:00:af:ef:6c:a3:9c:e0:e7:40:d7:c3:5f:6e:0d:b4:d2:84:
         77:39:26:d5:bb:3b:29:98:17:2b:06:ad:9d:0a:85:8f:27:bb:
         43:ba:d5:de:73:c0:c5:5e:36:9a:4d:da:db:62:c3:17:ca:fc:
         3f:38:9b:4b:b0:cf:42:30:85:64:96:73:31:1e:24:f5:6e:b0:
         93:87:d8:26:45:18:8e:a2:0a:11:d6:55:1a:69:6a:aa:04:1f:
         de:73:7b:53:b4:7a:e5:ff:61:87:43:f3:cf:50:12:03:8f:78:
         0f:6d:45:29:6c:0f:86:21:fd:c0:c7:25:12:b5:ad:84:2c:1e:
         14:b9:9e:e8:bb:5f:0e:ce:ee:20:33:f4:9a:d1:1d:6e:00:7a:
         f4:98:f9:81:65:c9:58:c4:8f:8c:6f:9e:72:e3:2b:a8:9d:f2:
         ec:8d:96:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:49:07 2026 by rpki-client