$ rpki-client -vvf repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft File: 588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft (raw, json) Hash identifier: Gh4OG+OkZZZuRLnmD4z3QTtFUY03EIc3D9pAQw3TPzI= Subject key identifier: 51:4B:D5:3E:74:E5:68:60:94:D7:A2:C9:3A:F2:1C:1F:EA:A9:C2:57 Authority key identifier: 58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69 Certificate issuer: /CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069 Certificate serial: 0BDD2EAFE04F3CF85A4D3D589DCBE6CC060B595E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft Manifest number: 68 Signing time: Tue 11 Mar 2025 20:01:41 +0000 Manifest this update: Tue 11 Mar 2025 19:56:41 +0000 Manifest next update: Sat 15 Mar 2025 01:34:41 +0000 Files and hashes: 1: 588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl (hash: hZzj5+iozBUcvkjrRx/ohOEK/24g3V8oOFrgiAvAjHA=) 2: 3136302e32322e31322e302f32342d3234203d3e20313532373935.roa (hash: c7u9a3tNo+sinKbXEOZIkxb5lpQ3V3xHWxLJ0wK62sQ=) 3: 3136302e32322e31332e302f32342d3234203d3e20313532373935.roa (hash: 4zrjWTGjIfmRVD7KoG+5XB5sYDfQiVJOsTHraO00txU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 15 Mar 2025 01:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:dd:2e:af:e0:4f:3c:f8:5a:4d:3d:58:9d:cb:e6:cc:06:0b:59:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069 Validity Not Before: Mar 11 19:56:41 2025 GMT Not After : Mar 15 01:34:41 2025 GMT Subject: CN=514BD53E74E5686094D7A2C93AF21C1FEAA9C257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:63:da:9d:31:ae:91:22:8a:fa:ff:4c:2d:df: d0:b7:11:9d:34:d2:b5:3d:bb:2c:ab:01:6f:1b:c3: 48:23:26:c2:76:bf:6e:35:cb:26:a9:ea:6c:ea:30: cc:89:a4:85:6d:6f:56:22:24:ea:03:3d:36:ad:05: 35:4e:27:9d:c1:36:5d:ce:d3:b6:46:72:c1:d6:67: c7:c5:bb:05:54:20:6b:e4:8c:2d:1e:6a:64:c9:8c: c3:9b:99:90:29:91:5a:59:c6:cd:f5:a4:b3:41:99: 37:5b:bd:f8:4c:cd:b6:28:9e:b7:aa:98:c8:5a:b5: 77:d6:ed:df:c8:96:9f:32:a8:7f:d1:cd:45:52:17: 7c:74:c3:70:d5:4c:8d:03:80:64:15:05:0f:a8:a6: ee:0f:47:66:76:ea:0b:40:8b:f0:fc:ed:8c:2b:02: b8:3f:b9:20:fa:2c:57:59:ed:61:48:46:1a:b2:55: 4e:e8:7e:c7:04:46:b5:e2:6c:58:45:44:45:fc:b6: de:e7:80:6e:1c:67:14:05:23:d0:41:46:12:ea:bf: c9:b8:f8:7b:ab:ad:bf:b7:51:7c:29:44:19:13:ad: 15:37:88:8c:6e:30:e9:9e:52:ca:ed:e0:7f:e1:39: fa:d4:e3:02:82:54:b6:ee:75:4c:5b:cf:2f:73:9b: f9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:4B:D5:3E:74:E5:68:60:94:D7:A2:C9:3A:F2:1C:1F:EA:A9:C2:57 X509v3 Authority Key Identifier: keyid:58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:54:f1:fb:af:b5:0e:77:a6:29:d3:90:e6:07:f3:e9:d2:68: 04:52:20:e0:0d:61:2d:b0:e4:0e:0e:ff:f2:6c:7e:b7:5e:43: d8:49:72:e7:f7:77:68:d4:94:28:87:7f:82:fa:26:cf:ab:d2: 9c:f9:54:9d:da:0f:9e:2b:a4:21:85:6e:87:b7:05:04:58:30: 9a:e4:92:3f:d5:a3:b1:b3:f4:67:39:39:52:83:f5:54:0a:fa: da:22:3c:06:f9:75:24:c3:d8:ba:b8:15:7a:32:34:79:40:19: 86:31:b0:50:f1:37:3b:47:d2:f9:35:57:82:2e:57:2d:66:3c: 16:00:2d:75:57:0f:e7:0e:cb:a0:98:30:cd:cc:03:6c:6a:37: 9d:93:05:8d:69:4e:c0:3f:4b:55:7d:92:3b:f5:7e:c2:25:ed: 18:3c:7f:8c:2b:5e:84:0f:33:86:21:f7:b8:d5:54:da:f0:28: 5b:3e:61:65:8a:7a:66:a7:24:32:39:2b:a0:ea:0c:c5:fb:2f: dc:ab:00:f7:8b:c6:ce:ec:56:37:5d:0c:7a:5c:9e:52:1f:49: 21:d3:b8:3e:ca:6e:9d:d6:c1:5c:11:7e:d4:fa:3c:7b:9e:48: 56:1c:5f:06:c0:5e:15:3b:cb:99:a1:fb:2a:8a:8d:2c:62:c1: 25:fd:05:7a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUC90ur+BPPPhaTT1YncvmzAYLWV4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0NjdF MEU0RDA2OTAeFw0yNTAzMTExOTU2NDFaFw0yNTAzMTUwMTM0NDFaMDMxMTAvBgNV BAMTKDUxNEJENTNFNzRFNTY4NjA5NEQ3QTJDOTNBRjIxQzFGRUFBOUMyNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVY9qdMa6RIor6/0wt39C3EZ00 0rU9uyyrAW8bw0gjJsJ2v241yyap6mzqMMyJpIVtb1YiJOoDPTatBTVOJ53BNl3O 07ZGcsHWZ8fFuwVUIGvkjC0eamTJjMObmZApkVpZxs31pLNBmTdbvfhMzbYonreq mMhatXfW7d/Ilp8yqH/RzUVSF3x0w3DVTI0DgGQVBQ+opu4PR2Z26gtAi/D87Ywr Arg/uSD6LFdZ7WFIRhqyVU7ofscERrXibFhFREX8tt7ngG4cZxQFI9BBRhLqv8m4 +Hurrb+3UXwpRBkTrRU3iIxuMOmeUsrt4H/hOfrU4wKCVLbudUxbzy9zm/mNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUUvVPnTlaGCU16LJOvIcH+qpwlcwHwYDVR0j BBgwFoAUWI3Q/OS8JDzJxtaK4E6EZ+Dk0GkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MTk5ZTU0MS0xODYxLTRkNmEtOGUyOC1iMDI4NDU4NjE0OTYvMC81ODhERDBGQ0U0 QkMyNDNDQzlDNkQ2OEFFMDRFODQ2N0UwRTREMDY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0NjdFMEU0 RDA2OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDE5OWU1NDEtMTg2MS00ZDZhLThl MjgtYjAyODQ1ODYxNDk2LzAvNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0 NjdFMEU0RDA2OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADxU8fuvtQ53pinTkOYH8+nSaARSIOANYS2w 5A4O//JsfrdeQ9hJcuf3d2jUlCiHf4L6Js+r0pz5VJ3aD54rpCGFboe3BQRYMJrk kj/Vo7Gz9Gc5OVKD9VQK+toiPAb5dSTD2Lq4FXoyNHlAGYYxsFDxNztH0vk1V4Iu Vy1mPBYALXVXD+cOy6CYMM3MA2xqN52TBY1pTsA/S1V9kjv1fsIl7Rg8f4wrXoQP M4Yh97jVVNrwKFs+YWWKemanJDI5K6DqDMX7L9yrAPeLxs7sVjddDHpcnlIfSSHT uD7Kbp3WwVwRftT6PHueSFYcXwbAXhU7y5mh+yqKjSxiwSX9BXo= -----END CERTIFICATE-----Generated at Thu Mar 13 21:32:56 2025 by rpki-client