$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft File: 4AA76DED689FD4420809D0962087A03BCF018FEA.mft (raw, json) Hash identifier: tSD+HipamV7xcSD1rB6Oua94rcMFAAfPVxL4wCHEbAg= Subject key identifier: 8C:29:E9:D3:C9:70:BE:B8:D5:5B:E2:59:FB:19:FF:F3:DA:0C:BD:9B Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA Certificate serial: 488F12887ED1DC9BB40B43DB881AFBCAF5A104CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft Manifest number: 7C Signing time: Sat 05 Apr 2025 08:11:37 +0000 Manifest this update: Sat 05 Apr 2025 08:06:37 +0000 Manifest next update: Tue 08 Apr 2025 18:04:37 +0000 Files and hashes: 1: 4AA76DED689FD4420809D0962087A03BCF018FEA.crl (hash: 3gvPubIYBNecn8MwYaaom2oyll4vyrImzgrtYSSoBUA=) 2: 3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa (hash: fDg3pcJLO4nMKHIhIadc4UOWwJA6xSlIAC7zIOEu60s=) 3: 3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa (hash: t1oPzu4VEOt7+PmdI8majMljNsaF8ctMOjhLL1SL0Go=) 4: 3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa (hash: O0N8YnmOgvwU8r8KKC4SJAWcGP/YV+Rw0wgGJ4ZOg7I=) 5: 323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa (hash: ONsSDNwNCKSQA0g6zXrNIJFeG1JttoPkAupg3mK+FJ4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:8f:12:88:7e:d1:dc:9b:b4:0b:43:db:88:1a:fb:ca:f5:a1:04:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA Validity Not Before: Apr 5 08:06:37 2025 GMT Not After : Apr 8 18:04:37 2025 GMT Subject: CN=8C29E9D3C970BEB8D55BE259FB19FFF3DA0CBD9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c4:c9:9d:ca:19:2e:99:08:98:31:75:33:9a: eb:12:18:6a:52:91:0f:d0:1f:52:d3:17:23:4d:e0: d3:fd:97:01:d5:61:9e:71:d2:39:ae:1b:3e:2c:35: 54:36:b4:71:71:4d:68:2c:a7:26:5b:3d:c8:27:a7: 07:f1:1b:73:98:69:63:e6:20:c4:18:9b:e4:a7:51: dd:7b:4d:69:40:fe:31:ba:0a:44:06:75:41:be:54: 85:7c:e1:30:f8:f3:0e:09:23:46:e3:98:0e:65:80: 6d:21:fb:0d:8d:5a:c8:fb:84:e0:82:3f:40:9c:2e: 7a:20:b5:a3:a3:2e:50:56:0d:4f:14:4a:0a:60:f7: 12:ef:0a:d6:a1:69:f4:c2:d4:3a:97:9e:72:f3:0d: 31:67:1b:fd:b3:a3:05:9e:24:51:05:ae:e3:b8:6d: 99:e5:f0:6a:e1:68:23:7a:ca:8e:b0:dc:3c:67:9b: da:ce:f1:24:7c:7f:f3:69:d6:3f:40:ce:6c:ae:7d: a5:db:7c:7d:99:28:7b:29:7b:08:fb:ed:17:49:ec: 83:48:9e:6c:cb:f6:f9:0a:09:fc:6e:e3:eb:d9:81: 11:3f:eb:3a:5e:d9:d3:f4:5a:44:82:d6:bb:d3:da: f3:a3:3d:37:b2:84:14:23:fb:14:68:db:cb:91:74: 1c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:29:E9:D3:C9:70:BE:B8:D5:5B:E2:59:FB:19:FF:F3:DA:0C:BD:9B X509v3 Authority Key Identifier: keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d8:7d:4f:04:67:40:9b:6f:ab:72:2e:44:8f:e4:3a:9a:20:e1: 82:48:2f:78:e8:ca:18:63:46:00:2c:ac:93:d0:37:11:e1:12: 9c:ab:45:a0:dc:41:c2:8c:f2:04:91:58:45:47:80:06:ba:09: 73:18:28:ad:c9:a8:7b:21:30:01:18:c0:bf:c6:98:4a:32:68: 64:7e:5e:71:e5:3e:b2:b3:7c:72:88:85:d3:88:07:e5:08:65: f9:78:93:0a:95:ca:e3:e3:1c:98:e7:93:ff:ee:04:46:e5:36: c8:23:e3:61:db:b1:7b:3c:7b:a8:0e:fe:49:38:d7:96:5b:d6: 12:69:cd:21:80:1b:66:54:f9:48:df:9f:44:aa:7d:8a:cd:ed: 45:8e:f7:4d:8e:e5:b8:40:d9:25:28:6d:d8:c6:1b:f6:6e:85: 03:4e:92:78:63:ba:1b:ad:b2:5e:f6:68:e6:aa:be:b2:55:00: 09:04:df:9f:7a:8d:7f:73:c8:45:5d:89:ee:e4:b4:47:21:98: 12:14:31:a7:b9:ca:c5:de:c7:00:88:b8:90:77:0f:02:15:6d: e2:bb:90:28:85:7c:a7:e2:44:8f:14:b7:e9:df:7f:1b:e4:3d: 0b:02:92:46:b4:c6:24:1b:2f:dd:a7:21:d4:ae:e4:d9:f6:68: 4e:b0:07:8a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSI8SiH7R3Ju0C0PbiBr7yvWhBMowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JD RjAxOEZFQTAeFw0yNTA0MDUwODA2MzdaFw0yNTA0MDgxODA0MzdaMDMxMTAvBgNV BAMTKDhDMjlFOUQzQzk3MEJFQjhENTVCRTI1OUZCMTlGRkYzREEwQ0JEOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAxMmdyhkumQiYMXUzmusSGGpS kQ/QH1LTFyNN4NP9lwHVYZ5x0jmuGz4sNVQ2tHFxTWgspyZbPcgnpwfxG3OYaWPm IMQYm+SnUd17TWlA/jG6CkQGdUG+VIV84TD48w4JI0bjmA5lgG0h+w2NWsj7hOCC P0CcLnogtaOjLlBWDU8USgpg9xLvCtahafTC1DqXnnLzDTFnG/2zowWeJFEFruO4 bZnl8GrhaCN6yo6w3Dxnm9rO8SR8f/Np1j9AzmyufaXbfH2ZKHspewj77RdJ7INI nmzL9vkKCfxu4+vZgRE/6zpe2dP0WkSC1rvT2vOjPTeyhBQj+xRo28uRdBydAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjCnp08lwvrjVW+JZ+xn/89oMvZswHwYDVR0j BBgwFoAUSqdt7Wif1EIICdCWIIegO88Bj+owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC80QUE3NkRFRDY4 OUZENDQyMDgwOUQwOTYyMDg3QTAzQkNGMDE4RkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JDRjAx OEZFQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMyODBhZjMtYWExZC00MjcxLThj MDYtYTNmYTI4ODk4NDI2LzAvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0Ew M0JDRjAxOEZFQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANh9TwRnQJtvq3IuRI/kOpog4YJIL3joyhhj RgAsrJPQNxHhEpyrRaDcQcKM8gSRWEVHgAa6CXMYKK3JqHshMAEYwL/GmEoyaGR+ XnHlPrKzfHKIhdOIB+UIZfl4kwqVyuPjHJjnk//uBEblNsgj42HbsXs8e6gO/kk4 15Zb1hJpzSGAG2ZU+Ujfn0SqfYrN7UWO902O5bhA2SUobdjGG/ZuhQNOknhjuhut sl72aOaqvrJVAAkE3596jX9zyEVdie7ktEchmBIUMae5ysXexwCIuJB3DwIVbeK7 kCiFfKfiRI8Ut+nffxvkPQsCkka0xiQbL92nIdSu5Nn2aE6wB4o= -----END CERTIFICATE-----Generated at Sat Apr 5 16:38:24 2025 by rpki-client