$ rpki-client -vvf repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft File: AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft (raw, json) Hash identifier: +Se4YjEBG/58TXc7pKXMyXiFRdccnC0Og3H0NP73SCY= Subject key identifier: 44:49:08:61:66:54:8F:9D:35:AA:17:8B:DE:76:D1:6A:DD:28:69:9F Authority key identifier: AF:5A:2A:D0:C9:E5:CB:1D:9E:F8:5E:6F:8F:44:03:10:F1:00:CE:38 Certificate issuer: /CN=AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38 Certificate serial: 7D4A40B7BCBB78C4692B454C237D07E9512B6529 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft Manifest number: 033C Signing time: Fri 04 Apr 2025 14:01:53 +0000 Manifest this update: Fri 04 Apr 2025 13:56:53 +0000 Manifest next update: Mon 07 Apr 2025 18:19:53 +0000 Files and hashes: 1: AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.crl (hash: 8StaIy0ThPlCfYRit6D0+NgyBmqoCbC/3oWkPbZm1nc=) 2: 3130332e3136392e342e302f32332d3234203d3e203137393935.roa (hash: e6zTKV5eeeBjTOLPA4Uct8apjvBjBaHZhQqPX177Lcs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.crl rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:4a:40:b7:bc:bb:78:c4:69:2b:45:4c:23:7d:07:e9:51:2b:65:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38 Validity Not Before: Apr 4 13:56:53 2025 GMT Not After : Apr 7 18:19:53 2025 GMT Subject: CN=4449086166548F9D35AA178BDE76D16ADD28699F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:35:00:1f:05:e5:0a:75:32:48:81:c0:70:66: 80:07:de:d7:e2:a2:e7:c8:66:b8:53:a9:47:73:c9: 5b:28:9e:76:c8:c6:e1:3b:0f:c0:7c:fe:ee:4d:5e: 85:d5:42:c3:bb:9b:85:63:d9:24:a2:b4:c3:fb:e4: 94:10:b0:62:21:4b:f8:26:bf:8a:55:0c:bf:4e:64: 01:7d:36:53:c3:2b:96:2d:a0:e9:9f:5c:04:38:3d: 35:c3:2a:bc:07:61:6b:37:7b:97:05:40:85:e0:5a: 89:95:f2:a4:e9:d6:59:3e:6a:e6:aa:97:28:5e:2a: 97:87:4c:52:73:85:30:7b:17:c7:0a:ad:06:36:c0: ea:bb:da:84:f7:07:5b:4e:2b:76:a4:b9:e2:00:a2: 67:01:5f:b2:08:53:6a:f1:04:e2:a1:20:b9:f6:a0: 41:2f:e7:a2:12:42:1f:5b:29:35:8f:58:73:15:7a: b1:15:68:a3:dd:e9:c7:30:79:5b:88:be:3c:58:80: 2e:05:d0:49:75:d9:e0:a5:34:42:fd:ec:9a:dd:ae: fd:5c:24:70:2f:25:11:23:29:bb:3d:95:88:82:ff: 35:20:70:b4:af:6c:92:18:42:4b:c0:07:5c:6f:12: e2:4a:30:b5:6c:f3:14:20:bc:d9:a7:62:e9:15:8f: 25:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:49:08:61:66:54:8F:9D:35:AA:17:8B:DE:76:D1:6A:DD:28:69:9F X509v3 Authority Key Identifier: keyid:AF:5A:2A:D0:C9:E5:CB:1D:9E:F8:5E:6F:8F:44:03:10:F1:00:CE:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:5f:c7:45:60:2d:d4:06:13:2e:1f:c4:3e:67:cd:01:f8:95: 71:4f:05:82:ca:aa:b1:2b:b7:15:06:58:42:01:00:14:c5:f6: 12:42:83:0d:dd:89:21:27:42:f9:7e:a5:1b:db:a9:17:c7:0a: 78:59:7e:0a:9c:ba:3d:26:d5:be:a5:2f:d6:b1:63:83:c5:27: 8c:73:2c:54:53:84:8d:8e:5d:80:23:05:84:ec:a9:c1:bf:d9: 47:db:5d:d3:8d:eb:6c:e9:4b:fb:29:66:3a:6a:d1:bb:da:f4: e6:ce:9d:49:4e:2f:ca:d7:f4:98:6a:f2:a6:9a:b1:08:8d:4b: e8:58:98:1c:84:60:9d:53:ad:c9:b9:b1:d1:38:df:cc:c1:8d: 7c:ad:20:04:9b:8b:83:8c:79:cd:c3:2b:7e:22:77:b0:13:1c: 91:87:69:28:8c:4b:ca:a1:93:38:d3:ae:18:55:46:84:89:63: ef:47:73:52:66:81:7f:7a:f3:8c:4b:2c:99:a3:d1:fc:24:d2: 8f:ba:39:3a:6f:b3:be:64:28:bc:5c:0c:f2:d3:74:51:7a:73: 91:1f:c8:63:93:69:f5:24:cd:5d:09:d9:3e:ea:13:99:3b:bf: fa:23:e0:0b:9e:56:fd:bf:1f:51:11:67:18:24:04:c8:80:55: a4:ae:42:b3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfUpAt7y7eMRpK0VMI30H6VErZSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1QTJBRDBDOUU1Q0IxRDlFRjg1RTZGOEY0NDAzMTBG MTAwQ0UzODAeFw0yNTA0MDQxMzU2NTNaFw0yNTA0MDcxODE5NTNaMDMxMTAvBgNV BAMTKDQ0NDkwODYxNjY1NDhGOUQzNUFBMTc4QkRFNzZEMTZBREQyODY5OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrNQAfBeUKdTJIgcBwZoAH3tfi oufIZrhTqUdzyVsonnbIxuE7D8B8/u5NXoXVQsO7m4Vj2SSitMP75JQQsGIhS/gm v4pVDL9OZAF9NlPDK5YtoOmfXAQ4PTXDKrwHYWs3e5cFQIXgWomV8qTp1lk+auaq lyheKpeHTFJzhTB7F8cKrQY2wOq72oT3B1tOK3akueIAomcBX7IIU2rxBOKhILn2 oEEv56ISQh9bKTWPWHMVerEVaKPd6ccweVuIvjxYgC4F0El12eClNEL97Jrdrv1c JHAvJREjKbs9lYiC/zUgcLSvbJIYQkvAB1xvEuJKMLVs8xQgvNmnYukVjyXvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUREkIYWZUj501qheL3nbRat0oaZ8wHwYDVR0j BBgwFoAUr1oq0Mnlyx2e+F5vj0QDEPEAzjgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDFlNGFjOS1jMDZiLTQzNDMtODUyNi0zYTFmMWIxYjVkODIvMC9BRjVBMkFEMEM5 RTVDQjFEOUVGODVFNkY4RjQ0MDMxMEYxMDBDRTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1QTJBRDBDOUU1Q0IxRDlFRjg1RTZGOEY0NDAzMTBGMTAw Q0UzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDQxZTRhYzktYzA2Yi00MzQzLTg1 MjYtM2ExZjFiMWI1ZDgyLzAvQUY1QTJBRDBDOUU1Q0IxRDlFRjg1RTZGOEY0NDAz MTBGMTAwQ0UzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGFfx0VgLdQGEy4fxD5nzQH4lXFPBYLKqrEr txUGWEIBABTF9hJCgw3diSEnQvl+pRvbqRfHCnhZfgqcuj0m1b6lL9axY4PFJ4xz LFRThI2OXYAjBYTsqcG/2UfbXdON62zpS/spZjpq0bva9ObOnUlOL8rX9Jhq8qaa sQiNS+hYmByEYJ1Trcm5sdE438zBjXytIASbi4OMec3DK34id7ATHJGHaSiMS8qh kzjTrhhVRoSJY+9Hc1JmgX9684xLLJmj0fwk0o+6OTpvs75kKLxcDPLTdFF6c5Ef yGOTafUkzV0J2T7qE5k7v/oj4AueVv2/H1ERZxgkBMiAVaSuQrM= -----END CERTIFICATE-----Generated at Sun Apr 6 11:31:53 2025 by rpki-client