$ rpki-client -vvf repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft File: 14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft (raw, json) Hash identifier: zbfjkiv6a/OrdBq0tOH5iZYgFHoOOEf4ZfsOOPrq28E= Subject key identifier: F5:96:11:38:BA:C5:58:B0:F6:02:75:15:74:BA:7E:D7:5F:D0:24:8B Authority key identifier: 14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B Certificate issuer: /CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Certificate serial: 55B3EBFB4C8E91BE27CDED8E8BFF094FC1C10E1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft Manifest number: 64 Signing time: Sat 19 Apr 2025 06:51:00 +0000 Manifest this update: Sat 19 Apr 2025 06:46:00 +0000 Manifest next update: Tue 22 Apr 2025 09:14:00 +0000 Files and hashes: 1: 3230322e34372e3137352e302f32342d3234203d3e20313532303333.roa (hash: dVzkaZwBc16NerGBbnPkInQRl7szohhHPD7ETdIV3jg=) 2: 14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl (hash: 7gR8raxnWA69T+J4u0PS+aFqojAf3Lf2tGtk2jfjvqE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 09:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:b3:eb:fb:4c:8e:91:be:27:cd:ed:8e:8b:ff:09:4f:c1:c1:0e:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Validity Not Before: Apr 19 06:46:00 2025 GMT Not After : Apr 22 09:14:00 2025 GMT Subject: CN=F5961138BAC558B0F602751574BA7ED75FD0248B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:aa:20:3f:a1:ca:2e:1c:f1:da:70:88:46:e7: a5:81:80:1f:f1:28:e9:f1:72:fe:e2:0a:b8:ad:2f: a4:30:f0:16:20:d1:0d:42:04:3d:10:1d:98:f4:02: 83:42:53:59:e5:2c:65:1c:f8:22:bf:a5:ab:cb:18: 8d:f3:95:cb:79:06:7f:22:73:3a:34:fc:2e:00:c6: 95:30:05:92:6c:a0:7c:e4:78:f0:83:95:a1:8f:4b: f3:16:45:1b:98:36:61:17:b6:4c:48:fc:25:b1:75: cf:64:78:f2:79:6e:f7:c5:f2:a1:a9:ba:f2:7f:30: de:39:c3:e0:c6:26:d4:e9:79:6a:a4:e8:de:93:74: cf:ec:de:4d:0a:86:c4:6e:9e:89:38:26:92:c5:c6: aa:64:3e:2c:c3:06:cb:78:b9:99:00:86:aa:e5:8b: b2:9a:60:14:aa:37:12:cf:dd:cc:b7:19:02:99:f1: d3:23:bf:66:b2:01:d2:f3:58:25:7a:68:10:c2:c6: 81:2f:d2:1a:b4:0a:cc:10:e1:b9:66:b7:bc:66:e9: de:e6:29:e4:b4:35:7e:4e:49:90:b7:1c:1c:ae:5c: bb:da:1b:9e:d9:c3:b4:c1:2f:fb:6a:92:92:c1:f7: db:0c:49:ca:df:8f:2e:ea:93:a8:8f:99:09:a6:8a: e3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:96:11:38:BA:C5:58:B0:F6:02:75:15:74:BA:7E:D7:5F:D0:24:8B X509v3 Authority Key Identifier: keyid:14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:9d:ea:9e:cb:9e:df:e3:46:41:ef:0f:22:17:53:a4:b8:38: 7e:30:52:d0:4e:d7:e1:ad:e3:4b:53:f2:13:91:4f:9c:fb:85: 86:2a:27:f9:1c:83:ed:c3:36:8b:03:f9:c5:32:97:4a:d4:42: c6:11:ee:cd:04:61:12:ef:03:fb:eb:b0:50:ba:10:fd:c8:b5: 2b:b9:d1:be:ab:ea:55:ad:09:55:01:4a:41:32:12:0b:26:45: 85:dc:ba:f1:49:10:b4:7a:5f:39:5e:41:3f:96:db:39:a8:91: 15:fc:e3:5a:98:ae:28:32:5d:ab:a3:21:67:06:44:2d:ba:4f: 8c:8d:32:d5:7f:d2:56:f3:c8:3b:a3:f5:08:21:36:38:45:98: 37:69:69:e4:0c:f7:84:f0:e1:8f:87:12:ee:d9:3a:c9:b8:fa: 23:67:24:47:9e:98:90:55:3a:49:d6:59:e4:62:17:5a:15:50: 81:9f:ba:6f:00:bc:84:40:e8:db:eb:6f:e7:84:af:93:93:cc: 55:82:3f:4f:4a:61:1d:d1:46:dd:8c:10:00:ec:de:a2:e4:12: b3:38:9c:2e:b5:f4:57:63:49:f6:6e:65:17:40:19:76:77:d0: 14:d4:2c:17:57:67:b2:1e:77:e5:3a:22:c2:45:0f:06:c0:8a: 2b:5d:4f:88 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVbPr+0yOkb4nze2Oi/8JT8HBDhwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3 Nzk1N0UzQjAeFw0yNTA0MTkwNjQ2MDBaFw0yNTA0MjIwOTE0MDBaMDMxMTAvBgNV BAMTKEY1OTYxMTM4QkFDNTU4QjBGNjAyNzUxNTc0QkE3RUQ3NUZEMDI0OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5qiA/ocouHPHacIhG56WBgB/x KOnxcv7iCritL6Qw8BYg0Q1CBD0QHZj0AoNCU1nlLGUc+CK/pavLGI3zlct5Bn8i czo0/C4AxpUwBZJsoHzkePCDlaGPS/MWRRuYNmEXtkxI/CWxdc9kePJ5bvfF8qGp uvJ/MN45w+DGJtTpeWqk6N6TdM/s3k0KhsRunok4JpLFxqpkPizDBst4uZkAhqrl i7KaYBSqNxLP3cy3GQKZ8dMjv2ayAdLzWCV6aBDCxoEv0hq0CswQ4blmt7xm6d7m KeS0NX5OSZC3HByuXLvaG57Zw7TBL/tqkpLB99sMScrfjy7qk6iPmQmmiuPXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9ZYROLrFWLD2AnUVdLp+11/QJIswHwYDVR0j BBgwFoAUFM+Z3vobknbr7mEYDfR3AXeVfjswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OTdmNTE2MS0wNzBmLTQzMzktYWY0ZS1iYzMzZmRmYjY3YjgvMC8xNENGOTlERUZB MUI5Mjc2RUJFRTYxMTgwREY0NzcwMTc3OTU3RTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3Nzk1 N0UzQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDk3ZjUxNjEtMDcwZi00MzM5LWFm NGUtYmMzM2ZkZmI2N2I4LzAvMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3 MDE3Nzk1N0UzQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE6d6p7Lnt/jRkHvDyIXU6S4OH4wUtBO1+Gt 40tT8hORT5z7hYYqJ/kcg+3DNosD+cUyl0rUQsYR7s0EYRLvA/vrsFC6EP3ItSu5 0b6r6lWtCVUBSkEyEgsmRYXcuvFJELR6XzleQT+W2zmokRX841qYrigyXaujIWcG RC26T4yNMtV/0lbzyDuj9QghNjhFmDdpaeQM94Tw4Y+HEu7ZOsm4+iNnJEeemJBV OknWWeRiF1oVUIGfum8AvIRA6Nvrb+eEr5OTzFWCP09KYR3RRt2MEADs3qLkErM4 nC619FdjSfZuZRdAGXZ30BTULBdXZ7Ied+U6IsJFDwbAiitdT4g= -----END CERTIFICATE-----Generated at Sun Apr 20 17:34:32 2025 by rpki-client