$ rpki-client -vvf repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft File: 9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft (raw, json) Hash identifier: o37LyS6/n0SF2HcPbmm20K8EVewZCZfgycvgoldqVHs= Subject key identifier: 56:84:D4:87:F8:8A:57:A1:35:87:A1:D6:A9:88:80:7A:D7:42:E2:CF Authority key identifier: 9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 Certificate issuer: /CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Certificate serial: 2BEE9491CEB0D89A05BD8F25ACF0B345F747B08D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft Manifest number: 02C6 Signing time: Thu 03 Apr 2025 11:31:40 +0000 Manifest this update: Thu 03 Apr 2025 11:26:40 +0000 Manifest next update: Sun 06 Apr 2025 17:04:40 +0000 Files and hashes: 1: 3130332e3137322e3137302e302f32342d3234203d3e20313432333936.roa (hash: vqKRXz1Z+D53aNx6JJbbcFdSy7WexJ3003sbBpFgitw=) 2: 9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl (hash: ANJ80AAw0xx5GNmGAwMoE47ewuKEktTFH0JXvd2cNp4=) 3: 3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa (hash: mLpG+Ebaxu7VmgybbNggsrQpRLSxQf3knk2BCycnQVs=) 4: 3130332e3137322e3137302e302f32332d3233203d3e20313432333936.roa (hash: 3PhwNeSYDAcIik5pnRDMCcA0nHd3sCf3a5FivQ6ylJw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 17:04:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:ee:94:91:ce:b0:d8:9a:05:bd:8f:25:ac:f0:b3:45:f7:47:b0:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Validity Not Before: Apr 3 11:26:40 2025 GMT Not After : Apr 6 17:04:40 2025 GMT Subject: CN=5684D487F88A57A13587A1D6A988807AD742E2CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cd:1e:7b:f2:97:05:f3:c1:83:16:67:64:ec: 7d:73:aa:3f:ee:42:67:20:58:25:a7:35:5d:d2:c4: c1:31:32:db:e4:dc:c6:87:d7:a2:f1:d8:c0:44:af: d7:6c:56:6c:10:e6:8c:6c:43:0d:d1:ee:6f:27:5a: 34:e5:b2:02:91:3a:bf:77:0e:2e:7f:73:aa:4a:de: dc:ee:6a:ac:ec:97:bd:10:fc:1d:56:9d:a6:7d:64: f2:f6:6d:8c:ea:c8:c9:0f:f3:d5:3c:88:10:b8:8f: a4:e5:6f:8c:f6:a5:8f:c9:1e:69:cb:56:38:bf:d2: 36:3b:9b:30:ee:bc:03:0a:69:95:80:9b:6b:e1:5f: 87:98:1b:45:5f:18:7c:d2:53:cb:ba:79:3d:9d:e0: 77:fe:e1:bc:83:5f:52:d7:35:f7:2a:f6:7d:b8:3c: 0a:b1:0d:ff:c0:5a:8f:4a:3f:2c:64:b0:b3:1b:2c: 70:7e:15:99:78:59:61:9d:4d:14:77:f4:fb:3c:ff: be:35:44:89:7b:2e:b6:bb:72:80:38:15:7d:ea:bc: 44:d8:e0:d8:fb:67:a9:e8:7b:83:ea:20:5d:c9:4b: cb:8c:b8:80:fa:fb:d2:b9:18:ee:42:25:50:f7:ea: 65:41:df:0f:62:f8:c6:04:14:d0:76:66:cf:42:a3: 1f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:84:D4:87:F8:8A:57:A1:35:87:A1:D6:A9:88:80:7A:D7:42:E2:CF X509v3 Authority Key Identifier: keyid:9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:27:5f:24:ab:72:5d:94:5a:19:67:0f:ad:47:48:a0:7c:a1: d6:10:e5:2c:7f:20:9a:69:c2:98:1a:22:45:25:71:8d:21:84: fe:d1:bd:04:aa:04:07:28:44:d1:63:d0:b4:ba:cf:a9:8b:a5: 7c:7f:fe:29:e6:a0:b0:71:7b:8c:f0:79:96:4d:0c:47:ad:02: 75:c5:36:a3:fc:bf:bf:23:49:c7:d2:fe:3c:a8:e8:e9:8f:d1: 95:fa:3b:90:ff:9c:12:a0:ee:59:7d:44:46:d5:5d:b8:93:50: 18:bc:b7:42:7c:31:26:ea:df:16:1d:b5:39:3a:94:7b:a6:8b: 58:20:94:6d:1f:0e:ec:03:e1:58:b5:9a:b7:ab:35:87:21:a3: 3e:81:8a:2f:29:d4:ee:dc:c7:ce:b9:fb:3f:63:e7:8a:a4:a8: ad:e5:f9:af:c9:3b:5a:11:69:07:e0:43:53:3d:a0:55:87:b4: 71:c3:48:e0:4e:d9:17:4f:b0:2a:2a:36:62:f0:d4:8a:6d:5f: f0:61:f9:f1:b8:bb:b0:54:fc:8d:1c:fb:d3:75:6a:ad:23:f3: 8b:00:84:35:7b:5f:98:33:e5:72:df:11:51:bc:fa:b2:c6:9a: ad:b0:cb:a3:84:1c:a8:a1:ef:77:21:0c:7b:8a:31:61:10:2a: a8:fa:fc:2c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUK+6Ukc6w2JoFvY8lrPCzRfdHsI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYw NTZERjA5NDAeFw0yNTA0MDMxMTI2NDBaFw0yNTA0MDYxNzA0NDBaMDMxMTAvBgNV BAMTKDU2ODRENDg3Rjg4QTU3QTEzNTg3QTFENkE5ODg4MDdBRDc0MkUyQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuzR578pcF88GDFmdk7H1zqj/u QmcgWCWnNV3SxMExMtvk3MaH16Lx2MBEr9dsVmwQ5oxsQw3R7m8nWjTlsgKROr93 Di5/c6pK3tzuaqzsl70Q/B1WnaZ9ZPL2bYzqyMkP89U8iBC4j6Tlb4z2pY/JHmnL Vji/0jY7mzDuvAMKaZWAm2vhX4eYG0VfGHzSU8u6eT2d4Hf+4byDX1LXNfcq9n24 PAqxDf/AWo9KPyxksLMbLHB+FZl4WWGdTRR39Ps8/741RIl7Lra7coA4FX3qvETY 4Nj7Z6noe4PqIF3JS8uMuID6+9K5GO5CJVD36mVB3w9i+MYEFNB2Zs9Cox/xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVoTUh/iKV6E1h6HWqYiAetdC4s8wHwYDVR0j BBgwFoAUm/csi7fKNZvkZ0Grzk62nwVt8JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWRiNmM5Yi1kOGZjLTRkOGMtODBjYi1mZDIyNDEyMDhkZGUvMC85QkY3MkM4QkI3 Q0EzNTlCRTQ2NzQxQUJDRTRFQjY5RjA1NkRGMDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYwNTZE RjA5NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjFkYjZjOWItZDhmYy00ZDhjLTgw Y2ItZmQyMjQxMjA4ZGRlLzAvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2 OUYwNTZERjA5NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALInXySrcl2UWhlnD61HSKB8odYQ5Sx/IJpp wpgaIkUlcY0hhP7RvQSqBAcoRNFj0LS6z6mLpXx//inmoLBxe4zweZZNDEetAnXF NqP8v78jScfS/jyo6OmP0ZX6O5D/nBKg7ll9REbVXbiTUBi8t0J8MSbq3xYdtTk6 lHumi1gglG0fDuwD4Vi1mrerNYchoz6Bii8p1O7cx865+z9j54qkqK3l+a/JO1oR aQfgQ1M9oFWHtHHDSOBO2RdPsCoqNmLw1IptX/Bh+fG4u7BU/I0c+9N1aq0j84sA hDV7X5gz5XLfEVG8+rLGmq2wy6OEHKih73chDHuKMWEQKqj6/Cw= -----END CERTIFICATE-----Generated at Sat Apr 5 17:50:14 2025 by rpki-client