$ rpki-client -vvf repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft File: 14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft (raw, json) Hash identifier: n8VwImrVYfdAYcB6CojNmwA6aHVuEQ7Mrbv65+BbKwM= Subject key identifier: E1:7B:D0:3B:04:F4:3B:68:03:75:6A:15:30:BE:DB:7F:51:F8:1B:1D Authority key identifier: 14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B Certificate issuer: /CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Certificate serial: 4D94963588008FDADCE2C8FEAC72C5145CB1C20F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft Manifest number: 49 Signing time: Mon 17 Feb 2025 23:10:58 +0000 Manifest this update: Mon 17 Feb 2025 23:05:58 +0000 Manifest next update: Fri 21 Feb 2025 02:27:58 +0000 Files and hashes: 1: 3230322e34372e3137352e302f32342d3234203d3e20313532303333.roa (hash: dVzkaZwBc16NerGBbnPkInQRl7szohhHPD7ETdIV3jg=) 2: 14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl (hash: UXdPZT8mSRhmnnu3N7dhGhgvEaeYdjjsIO6WeXtQOF8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 02:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:94:96:35:88:00:8f:da:dc:e2:c8:fe:ac:72:c5:14:5c:b1:c2:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Validity Not Before: Feb 17 23:05:58 2025 GMT Not After : Feb 21 02:27:58 2025 GMT Subject: CN=E17BD03B04F43B6803756A1530BEDB7F51F81B1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e6:b8:84:09:22:92:51:52:5a:09:f5:4b:5c: 04:62:67:84:4b:ce:28:f0:e3:55:61:46:ba:c7:ac: 5c:84:44:f1:27:4f:a2:9b:b4:08:8c:84:62:0a:6a: be:f9:0d:30:1b:be:59:aa:ca:f4:f7:83:68:f6:38: 19:c6:ad:78:0c:b5:b7:8c:17:6b:4f:6c:d0:4f:10: 00:58:3c:b7:d0:ca:c4:bd:20:84:cc:1f:03:5c:d1: 49:4b:a4:5d:4a:a8:ec:be:d0:60:70:9b:b8:3a:48: b6:7b:45:c4:95:92:3c:63:10:62:53:f3:ce:99:61: 18:a0:6e:af:9a:fb:27:d1:50:10:2d:1a:37:4e:93: aa:7a:60:30:a7:7f:2d:eb:0f:1c:f0:86:29:47:55: f5:b2:20:50:99:31:ca:9e:87:7a:bc:43:4f:f0:da: 03:42:a0:a2:41:0a:9b:8d:9c:9f:66:f7:93:57:56: 3f:6f:e7:45:1d:62:07:3d:f4:db:28:44:52:de:68: 37:2c:17:70:c0:33:7d:1f:cd:81:e9:31:cd:fb:e3: 15:29:d0:8b:40:ef:f2:b9:03:05:9d:e5:ca:d4:5d: ab:51:67:1f:16:88:f3:eb:fa:0c:a0:69:03:04:dd: 45:2c:c6:4f:21:9e:72:7c:25:5d:09:67:c2:fd:a9: 30:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:7B:D0:3B:04:F4:3B:68:03:75:6A:15:30:BE:DB:7F:51:F8:1B:1D X509v3 Authority Key Identifier: keyid:14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:a0:46:4b:9f:69:da:84:14:52:a1:a2:81:7d:90:1e:f8:8a: 1f:d4:dc:32:b6:21:3c:db:d6:8e:df:48:8e:db:5d:8c:aa:01: d3:15:5d:d8:68:36:b2:eb:cd:17:d4:72:ed:04:17:9d:2c:7c: ad:35:47:cf:d3:32:33:c9:7a:d9:10:59:11:9a:08:1e:04:01: a4:48:22:01:0b:0c:4b:45:2f:28:a1:d3:ff:fb:2e:50:5d:60: 91:ae:e9:d1:c1:5e:75:cc:99:5e:a0:e5:49:75:2a:21:a7:79: c3:de:28:bd:c2:45:26:e1:3c:09:96:ff:29:3a:01:82:59:49: ac:77:29:27:08:c4:47:09:8b:05:ec:38:cd:04:78:0d:78:ac: 6f:fb:e2:46:29:f5:ee:9a:22:96:cf:57:4b:90:c3:d5:43:8c: e7:9b:ef:4b:bf:1b:17:92:b7:f7:84:ec:be:5b:ee:94:fa:8b: 86:7c:94:4d:37:27:52:a6:a1:e4:db:9f:68:30:96:ad:56:8d: 88:df:dc:47:58:96:f4:bd:63:8c:79:76:d8:56:70:e5:fa:5b: 31:08:75:a9:50:12:84:e9:b7:5e:12:41:f7:df:c9:ca:a7:cc: fb:77:79:9a:68:7b:96:6e:95:66:17:10:73:eb:0d:48:86:d7: 84:7b:8b:09 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTZSWNYgAj9rc4sj+rHLFFFyxwg8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3 Nzk1N0UzQjAeFw0yNTAyMTcyMzA1NThaFw0yNTAyMjEwMjI3NThaMDMxMTAvBgNV BAMTKEUxN0JEMDNCMDRGNDNCNjgwMzc1NkExNTMwQkVEQjdGNTFGODFCMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC25riECSKSUVJaCfVLXARiZ4RL zijw41VhRrrHrFyERPEnT6KbtAiMhGIKar75DTAbvlmqyvT3g2j2OBnGrXgMtbeM F2tPbNBPEABYPLfQysS9IITMHwNc0UlLpF1KqOy+0GBwm7g6SLZ7RcSVkjxjEGJT 886ZYRigbq+a+yfRUBAtGjdOk6p6YDCnfy3rDxzwhilHVfWyIFCZMcqeh3q8Q0/w 2gNCoKJBCpuNnJ9m95NXVj9v50UdYgc99NsoRFLeaDcsF3DAM30fzYHpMc374xUp 0ItA7/K5AwWd5crUXatRZx8WiPPr+gygaQME3UUsxk8hnnJ8JV0JZ8L9qTAHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4XvQOwT0O2gDdWoVML7bf1H4Gx0wHwYDVR0j BBgwFoAUFM+Z3vobknbr7mEYDfR3AXeVfjswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OTdmNTE2MS0wNzBmLTQzMzktYWY0ZS1iYzMzZmRmYjY3YjgvMC8xNENGOTlERUZB MUI5Mjc2RUJFRTYxMTgwREY0NzcwMTc3OTU3RTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3Nzk1 N0UzQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDk3ZjUxNjEtMDcwZi00MzM5LWFm NGUtYmMzM2ZkZmI2N2I4LzAvMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3 MDE3Nzk1N0UzQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK+gRkufadqEFFKhooF9kB74ih/U3DK2ITzb 1o7fSI7bXYyqAdMVXdhoNrLrzRfUcu0EF50sfK01R8/TMjPJetkQWRGaCB4EAaRI IgELDEtFLyih0//7LlBdYJGu6dHBXnXMmV6g5Ul1KiGnecPeKL3CRSbhPAmW/yk6 AYJZSax3KScIxEcJiwXsOM0EeA14rG/74kYp9e6aIpbPV0uQw9VDjOeb70u/GxeS t/eE7L5b7pT6i4Z8lE03J1KmoeTbn2gwlq1WjYjf3EdYlvS9Y4x5dthWcOX6WzEI dalQEoTpt14SQfffycqnzPt3eZpoe5ZulWYXEHPrDUiG14R7iwk= -----END CERTIFICATE-----Generated at Wed Feb 19 22:00:17 2025 by rpki-client