$ rpki-client -vvf repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft File: 26425B70294F98035D38788E597A4A6CEB9C9CE5.mft (raw, json) Hash identifier: nR68l+dGftKI1D82ioltlfgXNXWjj92xmAU9qhi1UrM= Subject key identifier: 87:67:71:CF:F0:4B:16:48:99:7B:1B:26:91:09:5D:28:94:2A:0C:DD Authority key identifier: 26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 Certificate issuer: /CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Certificate serial: 414DEE0DDF7A3CB88A576316EEC41DE611EC9795 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft Manifest number: 04BF Signing time: Sat 05 Apr 2025 20:30:01 +0000 Manifest this update: Sat 05 Apr 2025 20:25:01 +0000 Manifest next update: Wed 09 Apr 2025 02:20:01 +0000 Files and hashes: 1: 26425B70294F98035D38788E597A4A6CEB9C9CE5.crl (hash: xNjdD2y3qQ7K8rIXI3oWpDgpdxeEkYXtqLtCdZnEZfU=) 2: 35382e3134352e3136382e302f32312d3231203d3e203436303534.roa (hash: m+q7ZgpD2GbDgHvxK3Mi9rcFamM0AOK41baaZkFJd+o=) 3: 35382e3134352e3137322e302f32342d3234203d3e203436303534.roa (hash: loxHv0+F3ZLNQEYmkghwWbkz+YGFFT2QGW5V6emi7YY=) 4: 35382e3134352e3137332e302f32342d3234203d3e203436303534.roa (hash: nL0LSsh/K4F6n/0vBenQ8E/fDc1hwgkktfBtKNqqfSs=) 5: 35382e3134352e3137342e302f32342d3234203d3e203436303534.roa (hash: jiBUWbPw0O2a3brcntkLSXcufEsvlRQsB7AoiBmO/Ec=) 6: 35382e3134352e3137352e302f32342d3234203d3e203436303534.roa (hash: Rlel+43pEirvrfeffHgQ7cuDwzepsYOgj+qpnAyZmJg=) 7: 35382e3134352e3137312e302f32342d3234203d3e203436303534.roa (hash: x6HUjSxF1Hesr3n3pxIOWyMuhd/gV3tPQ4S5VvjGCt4=) 8: 35382e3134352e3136382e302f32342d3234203d3e203436303534.roa (hash: poWV1SmxZOV82NJAx11/DVCuVnOVWtTUoFxKct51ClQ=) 9: 35382e3134352e3137302e302f32342d3234203d3e203436303534.roa (hash: U6ziSuUpUkVdqXRSHe0CewbD/X71rI71q8SILZolHDo=) 10: 35382e3134352e3136392e302f32342d3234203d3e203436303534.roa (hash: 9/RRwI5l/NtYziLvL1Tovl6lPdp6toGo7gvjHA/JNLU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:4d:ee:0d:df:7a:3c:b8:8a:57:63:16:ee:c4:1d:e6:11:ec:97:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Validity Not Before: Apr 5 20:25:01 2025 GMT Not After : Apr 9 02:20:01 2025 GMT Subject: CN=876771CFF04B1648997B1B2691095D28942A0CDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:30:9d:93:06:81:67:dd:52:43:02:56:9b:6d: 6a:de:50:cd:9a:75:7c:9b:49:7f:35:70:86:10:c7: 41:c6:bd:93:65:38:33:31:eb:a1:2d:0b:dd:9c:6e: 3a:24:88:e3:7e:8d:58:53:00:37:6f:f3:40:82:27: 5a:01:f8:82:ca:a5:94:1b:cc:a7:4e:4f:f0:5c:f6: c0:f3:3b:1a:3f:e0:92:00:eb:96:b2:de:fa:6c:f6: 80:c5:79:b5:a3:21:84:12:f6:17:16:91:3b:20:b1: 89:00:56:2b:0a:cf:d4:be:28:50:b0:34:93:92:9b: db:b7:0a:9d:c0:2f:ad:b4:9d:c8:ce:26:90:87:bc: e4:b3:13:b0:9a:35:e9:b4:d9:a5:88:d8:30:f8:b6: 1c:94:09:a2:a0:fe:21:d2:64:28:3a:c8:1b:4c:d2: 05:e2:d7:42:08:07:91:3c:84:2a:ab:8d:ff:49:e0: 07:06:ee:0f:51:79:ab:d5:43:79:67:fb:a3:12:61: e5:44:44:12:de:cf:a3:d8:90:45:34:36:64:cd:ff: a1:fa:ca:8b:5f:0f:0f:38:c0:85:fc:ed:62:c3:49: e7:11:94:4e:b4:cf:85:a0:71:dc:d5:4b:54:89:78: 0d:20:ba:05:53:6f:c5:90:0a:4c:f5:fa:22:68:a8: 32:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:67:71:CF:F0:4B:16:48:99:7B:1B:26:91:09:5D:28:94:2A:0C:DD X509v3 Authority Key Identifier: keyid:26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:66:92:dc:17:0d:24:95:38:e0:d2:cb:32:50:cb:58:17:ff: 67:ee:54:9f:51:39:12:ff:81:56:6e:53:d4:db:83:b4:04:8b: a8:10:63:1d:b6:c9:c7:06:19:5a:87:06:e7:ef:27:e1:7b:e5: 38:69:49:1e:7e:d8:14:a5:5a:75:83:59:5e:cf:ce:8f:4f:b7: cd:c5:3c:f5:09:5c:6f:06:cd:bf:e4:69:e9:5b:30:b1:f8:55: 48:48:db:71:6b:3f:e3:26:53:9f:75:3e:8d:44:b7:5d:63:ce: 85:55:b0:eb:6b:7f:4d:65:b5:bd:7b:02:a7:3e:04:c0:a5:ff: 93:50:b4:0d:29:a1:4a:32:cf:dc:4e:ae:6c:7c:d8:c9:83:18: de:f8:2e:3c:07:85:9a:ad:6f:86:93:28:1c:e9:5b:14:b8:15: 05:a3:e5:60:20:26:f5:4e:1e:4c:44:e3:73:bf:83:64:dc:d0: fa:7a:ae:b7:04:ca:dc:d1:de:24:00:2c:ef:2b:a5:58:84:f7: 78:72:6b:7c:a6:d4:ea:83:43:24:2e:21:4c:25:4c:5e:e8:40: 36:f6:f7:68:9d:99:d4:45:2d:02:70:a3:b4:3b:07:85:61:48: 39:af:fe:a3:8b:a0:05:84:25:b8:fd:e3:e6:1f:a3:a4:9f:32: 7b:16:94:0a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQU3uDd96PLiKV2MW7sQd5hHsl5UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNF QjlDOUNFNTAeFw0yNTA0MDUyMDI1MDFaFw0yNTA0MDkwMjIwMDFaMDMxMTAvBgNV BAMTKDg3Njc3MUNGRjA0QjE2NDg5OTdCMUIyNjkxMDk1RDI4OTQyQTBDREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYMJ2TBoFn3VJDAlabbWreUM2a dXybSX81cIYQx0HGvZNlODMx66EtC92cbjokiON+jVhTADdv80CCJ1oB+ILKpZQb zKdOT/Bc9sDzOxo/4JIA65ay3vps9oDFebWjIYQS9hcWkTsgsYkAVisKz9S+KFCw NJOSm9u3Cp3AL620ncjOJpCHvOSzE7CaNem02aWI2DD4thyUCaKg/iHSZCg6yBtM 0gXi10IIB5E8hCqrjf9J4AcG7g9ReavVQ3ln+6MSYeVERBLez6PYkEU0NmTN/6H6 yotfDw84wIX87WLDSecRlE60z4WgcdzVS1SJeA0gugVTb8WQCkz1+iJoqDJrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUh2dxz/BLFkiZexsmkQldKJQqDN0wHwYDVR0j BBgwFoAUJkJbcClPmANdOHiOWXpKbOucnOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2YzMDkzNi1jNzUwLTQzM2ItOWMyYS04ZmY1ZjM4ZTYzZDQvMC8yNjQyNUI3MDI5 NEY5ODAzNUQzODc4OEU1OTdBNEE2Q0VCOUM5Q0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNFQjlD OUNFNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2NmMzA5MzYtYzc1MC00MzNiLTlj MmEtOGZmNWYzOGU2M2Q0LzAvMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRB NkNFQjlDOUNFNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC9mktwXDSSVOODSyzJQy1gX/2fuVJ9RORL/ gVZuU9Tbg7QEi6gQYx22yccGGVqHBufvJ+F75ThpSR5+2BSlWnWDWV7Pzo9Pt83F PPUJXG8Gzb/kaelbMLH4VUhI23FrP+MmU591Po1Et11jzoVVsOtrf01ltb17Aqc+ BMCl/5NQtA0poUoyz9xOrmx82MmDGN74LjwHhZqtb4aTKBzpWxS4FQWj5WAgJvVO HkxE43O/g2Tc0Pp6rrcEytzR3iQALO8rpViE93hya3ym1OqDQyQuIUwlTF7oQDb2 92idmdRFLQJwo7Q7B4VhSDmv/qOLoAWEJbj94+Yfo6SfMnsWlAo= -----END CERTIFICATE-----Generated at Sun Apr 6 02:19:10 2025 by rpki-client