$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft File: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft (raw, json) Hash identifier: oREY/YRGpY3ZYHscjr/qM/DT6bmQd0fbqA+gG8zdGbw= Subject key identifier: DD:D9:71:A7:1C:FF:41:A3:12:C8:16:03:81:DF:26:44:E3:3E:07:DD Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 7C069DC0979324FD071D285FE32A9A09EEAE4728 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft Manifest number: BF Signing time: Tue 08 Apr 2025 17:20:00 +0000 Manifest this update: Tue 08 Apr 2025 17:15:00 +0000 Manifest next update: Sat 12 Apr 2025 01:25:00 +0000 Files and hashes: 1: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl (hash: mSf+vibWZ+Pzt4S/Q8hPlb80Q5/JEUpTCFDBVx/SBzQ=) 2: 3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa (hash: lquMzYc1A9WezJfZrkZ7IH+M206UU3pQd22VWaKYVvM=) 3: 3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa (hash: dGVpmdtEGT3h+fNYGvG5smP/PxkVYYYHGNHC/rEeLpo=) 4: 3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa (hash: PTT9MsWDPwZ9cRzvcXmuxxhA2JhY1zsKHAXPKrnZx/M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:25:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:06:9d:c0:97:93:24:fd:07:1d:28:5f:e3:2a:9a:09:ee:ae:47:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Apr 8 17:15:00 2025 GMT Not After : Apr 12 01:25:00 2025 GMT Subject: CN=DDD971A71CFF41A312C8160381DF2644E33E07DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b8:e7:3c:b3:d3:85:04:ad:c3:84:65:5f:01: f0:15:2b:4d:ef:27:6e:17:53:ad:12:2b:e2:85:de: 28:55:c4:03:d6:c6:dc:fb:7b:0e:ea:6e:6d:15:6d: 59:13:6d:06:bc:71:80:bb:f8:ce:c0:c8:df:24:93: 98:2d:fd:c6:cd:c1:eb:fe:1d:ec:90:e8:41:06:32: 6a:77:6c:dc:5d:4d:99:2b:c8:02:49:b0:21:95:c8: 2d:a4:e7:2e:ad:e9:b3:d3:a9:88:fb:4c:f0:1e:00: 82:1e:14:00:ba:28:83:8b:51:9a:d6:c9:72:85:94: d1:80:64:67:94:ac:d6:6c:1c:20:88:f3:46:a2:d3: 09:97:c2:3c:08:3d:cd:b4:22:06:cc:b0:b1:5c:eb: 14:4d:25:a2:7d:70:97:a6:1f:35:4f:6c:68:22:87: ef:b0:6f:4b:34:a3:97:ef:de:04:a4:40:77:93:7e: 96:aa:f0:52:33:1f:12:94:48:a5:1f:d9:47:40:b9: 3b:9c:1b:20:49:b7:1e:14:e9:b6:0e:cc:ea:7a:7f: 8f:81:6a:3d:c6:52:c4:81:dd:fa:51:be:92:b6:c1: a3:de:13:a3:27:76:e3:d2:a0:44:a6:8d:7a:52:c6: 39:4f:51:da:a0:d3:06:27:3c:b8:c2:f1:99:e5:95: 0d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D9:71:A7:1C:FF:41:A3:12:C8:16:03:81:DF:26:44:E3:3E:07:DD X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:10:ce:a0:52:4d:de:ec:5b:fb:a1:35:b5:d8:3d:7b:78:0a: a0:55:2f:51:ee:33:11:e7:a5:6c:34:11:e3:03:fb:cd:1e:fc: 4c:fa:69:3c:81:c7:7b:2a:b8:b3:06:48:ec:e1:a7:6f:93:8a: 06:1d:8a:e2:ef:fd:c9:d2:e2:1a:ae:51:22:e1:d9:29:e1:8a: 9c:e5:5b:47:4e:e1:83:d7:f9:05:04:2b:e2:2a:35:fc:f7:5e: a4:19:4c:a0:c9:8e:be:c1:ca:e9:a7:16:34:da:a4:4e:1a:99: 54:ed:a3:85:c9:4f:68:9d:48:ba:a6:73:3b:ae:48:6e:ba:9e: 4c:26:b5:9d:86:4d:02:90:e9:55:2d:3a:6a:bb:e0:ef:39:68: 9d:df:fc:ba:7f:9c:69:f9:94:92:a8:87:df:ab:84:5d:a0:5f: 1e:29:8c:b8:07:78:11:f3:09:98:54:02:8b:32:0d:bf:63:81: 33:12:4f:dc:59:ec:56:a1:a1:df:0b:a9:5b:37:45:df:0e:72: 74:71:29:1c:2e:89:41:79:3c:fe:1f:d6:39:6a:07:aa:99:10: 8c:46:4b:b3:6e:db:cd:98:5b:12:42:31:29:80:16:80:e7:96: dd:af:c1:7d:29:f9:76:35:ba:af:d4:5f:1b:1c:a5:c7:24:41: 42:31:0c:98 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfAadwJeTJP0HHShf4yqaCe6uRygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNTA0MDgxNzE1MDBaFw0yNTA0MTIwMTI1MDBaMDMxMTAvBgNV BAMTKERERDk3MUE3MUNGRjQxQTMxMkM4MTYwMzgxREYyNjQ0RTMzRTA3REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5uOc8s9OFBK3DhGVfAfAVK03v J24XU60SK+KF3ihVxAPWxtz7ew7qbm0VbVkTbQa8cYC7+M7AyN8kk5gt/cbNwev+ HeyQ6EEGMmp3bNxdTZkryAJJsCGVyC2k5y6t6bPTqYj7TPAeAIIeFAC6KIOLUZrW yXKFlNGAZGeUrNZsHCCI80ai0wmXwjwIPc20IgbMsLFc6xRNJaJ9cJemHzVPbGgi h++wb0s0o5fv3gSkQHeTfpaq8FIzHxKUSKUf2UdAuTucGyBJtx4U6bYOzOp6f4+B aj3GUsSB3fpRvpK2waPeE6MnduPSoESmjXpSxjlPUdqg0wYnPLjC8ZnllQ1VAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3dlxpxz/QaMSyBYDgd8mROM+B90wHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQyNThlNWMtMDQ1Ni00NmEzLTk2 MzItNzA5Yzc2NzEwNGJiLzAvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVB RDc0M0VGNTQ0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHYQzqBSTd7sW/uhNbXYPXt4CqBVL1HuMxHn pWw0EeMD+80e/Ez6aTyBx3squLMGSOzhp2+TigYdiuLv/cnS4hquUSLh2Snhipzl W0dO4YPX+QUEK+IqNfz3XqQZTKDJjr7ByumnFjTapE4amVTto4XJT2idSLqmczuu SG66nkwmtZ2GTQKQ6VUtOmq74O85aJ3f/Lp/nGn5lJKoh9+rhF2gXx4pjLgHeBHz CZhUAosyDb9jgTMST9xZ7Fahod8LqVs3Rd8OcnRxKRwuiUF5PP4f1jlqB6qZEIxG S7Nu282YWxJCMSmAFoDnlt2vwX0p+XY1uq/UXxscpcckQUIxDJg= -----END CERTIFICATE-----Generated at Thu Apr 10 00:23:02 2025 by rpki-client