$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft File: 295CEF87CDB74B1A43287E630C3FE568272D2F33.mft (raw, json) Hash identifier: HZjWSD3v1uU/TeRrJKLhglDhgfrkdgVkhFiYFS0/iys= Subject key identifier: A7:F5:0F:95:62:0B:96:23:62:77:3D:B9:F0:EA:3E:05:51:93:21:DE Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 131D6703BAD8FE301397FE4745F8C97C6B68AE13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft Manifest number: 04C8 Signing time: Fri 04 Apr 2025 04:22:33 +0000 Manifest this update: Fri 04 Apr 2025 04:17:33 +0000 Manifest next update: Mon 07 Apr 2025 09:52:33 +0000 Files and hashes: 1: 34332e3232352e3138342e302f32322d3234203d3e2039343232.roa (hash: UDms7HIaDGeGiYCJtIOU53UdSKHvDK+0OFralrpfjuY=) 2: 3232332e3133302e32322e302f32332d3234203d3e2039343232.roa (hash: T0qy24Jw4nMkx0vavFP/FymLrM7UIs0+axCAYFq5t24=) 3: 3130332e3234362e302e302f32322d3234203d3e2039343232.roa (hash: Ccc9Rz2j35EkvfbNz2T6X50a6oTWv2x4bbeSyVrqI+E=) 4: 3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa (hash: P7Z6XRJZfWLIwLc37QAohPD8GShqj3t7azYOQZsaPgs=) 5: 3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa (hash: nBKHI+10Ut06FOJtH41J5R/AAE9svDrS9ER1fZDd350=) 6: 3230322e34332e3232382e302f32322d3234203d3e2039343232.roa (hash: d4njcKCxXvuiPQpiLgPI2iTaalRvfXwt51s7xl9S/7E=) 7: 295CEF87CDB74B1A43287E630C3FE568272D2F33.crl (hash: 4mVnXyNrApubnnNkXxiTc4P1mmPjvVFT3f1Q/Y3j0O0=) 8: 3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa (hash: M8Jg7RXp9q2IokSrSE72Qz1D7tYQ3VERLgs0YJ8PYrM=) 9: 3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa (hash: 0qgtJcGFp2PSnsHTLVJD3e7NXsCz70cPkWqnqoXUWi0=) 10: 3232332e3133302e32302e302f32332d3234203d3e20313338313238.roa (hash: 4XaAtrPhzGDBzDHWlHXMB0whCb6rytr+C1+HuznU5f0=) 11: 3130362e302e34382e302f32322d3234203d3e2039343232.roa (hash: gU2bGz0QcfX7jz+4pmy6dDNu6epMK9rp4iwrG6+Vboc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 09:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:1d:67:03:ba:d8:fe:30:13:97:fe:47:45:f8:c9:7c:6b:68:ae:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Apr 4 04:17:33 2025 GMT Not After : Apr 7 09:52:33 2025 GMT Subject: CN=A7F50F95620B962362773DB9F0EA3E05519321DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:56:ab:1b:50:cc:b9:b8:d8:01:b5:74:fd:34: 12:7b:58:e8:27:a0:3b:ae:94:f2:d2:82:10:5c:c6: 11:e8:c3:3e:32:9a:1f:a9:11:26:24:10:13:4a:0a: 60:63:59:1b:1b:02:8f:30:1f:9f:52:62:7c:ac:ee: a3:81:10:e7:86:db:4f:d8:88:2a:ad:f1:2d:c9:f6: 7d:d4:df:2f:5d:64:3b:ee:8f:c0:29:35:2f:6d:07: db:76:9b:77:57:00:cb:a2:03:4c:9f:02:96:37:23: 4e:e5:e5:77:05:b5:3f:99:e6:d6:b0:6c:e5:07:b3: b2:68:d2:0b:48:61:49:6e:97:8e:4f:10:33:0e:7a: 94:d9:2e:16:a0:df:31:26:c3:92:ba:e3:df:5e:09: ba:e9:2e:81:87:4f:8b:7e:0f:03:f6:62:c2:9a:e0: f2:d3:24:65:5d:67:de:de:97:5e:e9:9e:f8:76:21: 16:b1:46:3f:08:d2:27:15:0e:1b:34:f2:9c:a1:80: d3:26:c9:d7:ac:cd:69:62:f2:b2:ed:32:61:a8:03: 03:98:07:51:24:bd:8c:84:77:4e:cf:ed:20:94:75: 51:3a:32:25:4f:6c:1e:6c:69:e4:1b:34:d4:63:4d: 23:a9:93:54:80:7f:12:aa:b3:91:e8:cc:35:a5:42: 4f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:F5:0F:95:62:0B:96:23:62:77:3D:B9:F0:EA:3E:05:51:93:21:DE X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:1b:0a:9d:a0:6b:d3:38:08:5b:9c:07:13:91:db:df:22:a9: 08:35:fa:c2:9c:50:31:43:6e:38:a5:ba:a1:aa:8f:b9:78:10: a9:da:a9:ed:e0:3b:50:20:75:04:08:e5:b4:f5:1b:05:c9:e4: 20:2a:9a:dc:81:85:e3:db:9c:a1:3a:9f:7f:c1:a1:18:3d:3e: e8:e8:c5:71:06:37:33:35:c5:48:9d:73:54:fd:f7:98:23:bc: a7:2e:21:2d:52:ac:af:ca:17:e6:aa:31:bf:cd:30:41:a8:8e: 11:f5:31:69:5f:09:1c:7a:b3:96:7e:53:44:7d:70:2f:49:62: c2:a4:a3:99:30:8a:f7:49:60:3a:29:4d:91:e1:57:11:89:85: 86:e4:a5:10:27:0f:5f:21:60:87:79:56:6a:5c:fc:7e:c7:ab: 82:e0:ce:51:73:7a:3e:79:87:75:a4:3f:2b:62:ab:8d:00:9a: c9:65:4a:e9:30:29:e6:22:b3:eb:f0:29:1e:b6:8b:0d:ed:0a: a3:f9:9f:da:12:41:c1:18:e8:95:39:aa:81:85:49:14:45:fa: 95:52:ff:13:f4:ee:e0:2d:38:85:2f:c5:ac:2c:34:d9:b0:44: 44:fa:a4:ed:ea:82:0c:d9:4f:1a:cc:84:d5:1c:4e:1a:80:0e: be:c8:93:e3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEx1nA7rY/jATl/5HRfjJfGtorhMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA0MDQwNDE3MzNaFw0yNTA0MDcwOTUyMzNaMDMxMTAvBgNV BAMTKEE3RjUwRjk1NjIwQjk2MjM2Mjc3M0RCOUYwRUEzRTA1NTE5MzIxREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUVqsbUMy5uNgBtXT9NBJ7WOgn oDuulPLSghBcxhHowz4ymh+pESYkEBNKCmBjWRsbAo8wH59SYnys7qOBEOeG20/Y iCqt8S3J9n3U3y9dZDvuj8ApNS9tB9t2m3dXAMuiA0yfApY3I07l5XcFtT+Z5taw bOUHs7Jo0gtIYUlul45PEDMOepTZLhag3zEmw5K6499eCbrpLoGHT4t+DwP2YsKa 4PLTJGVdZ97el17pnvh2IRaxRj8I0icVDhs08pyhgNMmydeszWli8rLtMmGoAwOY B1EkvYyEd07P7SCUdVE6MiVPbB5saeQbNNRjTSOpk1SAfxKqs5HozDWlQk8HAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUp/UPlWILliNidz258Oo+BVGTId4wHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTg3ZDc5YmEtZmI1NS00OWE1LTk2 N2ItMWVkYzc0OWQwMTI4LzAvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1 NjgyNzJEMkYzMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKMbCp2ga9M4CFucBxOR298iqQg1+sKcUDFD bjiluqGqj7l4EKnaqe3gO1AgdQQI5bT1GwXJ5CAqmtyBhePbnKE6n3/BoRg9Pujo xXEGNzM1xUidc1T995gjvKcuIS1SrK/KF+aqMb/NMEGojhH1MWlfCRx6s5Z+U0R9 cC9JYsKko5kwivdJYDopTZHhVxGJhYbkpRAnD18hYId5Vmpc/H7Hq4LgzlFzej55 h3WkPytiq40AmsllSukwKeYis+vwKR62iw3tCqP5n9oSQcEY6JU5qoGFSRRF+pVS /xP07uAtOIUvxawsNNmwRET6pO3qggzZTxrMhNUcThqADr7Ik+M= -----END CERTIFICATE-----Generated at Sat Apr 5 22:44:43 2025 by rpki-client