$ rpki-client -vvf repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft File: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft (raw, json) Hash identifier: z5b2zkYBsb85SW3hXIglo4GfB3fsmyJ0gTiKxaCC55Q= Subject key identifier: 98:19:61:C1:ED:3E:40:79:A2:C5:A3:45:65:3F:7E:17:DE:82:EB:74 Authority key identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 Certificate issuer: /CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Certificate serial: 67A840B74B71C7841E493DDBBE8408346062118F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft Manifest number: 04BC Signing time: Sat 05 Apr 2025 19:30:57 +0000 Manifest this update: Sat 05 Apr 2025 19:25:57 +0000 Manifest next update: Wed 09 Apr 2025 04:41:57 +0000 Files and hashes: 1: 3130332e33312e3235302e302f32342d3234203d3e203538343737.roa (hash: ljwF6ITVZZqVtcMOWEgbQb3tCP2RBo+I4AZDViUqEJs=) 2: 34352e36342e39372e302f32342d3234203d3e20313335333630.roa (hash: 9WCeU5uurKdIma/RjBrGY6SbYw575daktwtbDsB0hn4=) 3: 3130332e32382e3134392e302f32342d3234203d3e203538343737.roa (hash: hPcgJjVDE9m3tBKtqfCMvkuvUEnp8UYizUZsK3IRz8k=) 4: 3130332e33312e3235312e302f32342d3234203d3e203538343737.roa (hash: pBwebMpuYYJXTb5pShB2CNNWZl6DNw4TGc/uma6DMgE=) 5: 34352e36342e39392e302f32342d3234203d3e203538343737.roa (hash: H7qdxG0CJs/yYiQYilPVBOjCY0BNB2JobVkWTO7DC7g=) 6: 34352e36342e39382e302f32342d3234203d3e203538343737.roa (hash: U+Nn2r5Sn/4yz+Dw8s2J+Cn+SRVePHMvbt6ShZoiqDk=) 7: 34352e36342e39362e302f32342d3234203d3e203538343737.roa (hash: Gk747J2jBNpEXtir02tl58RV5f1YzhrWN3iKgxbQ7KE=) 8: 3130332e32382e3134382e302f32342d3234203d3e203538343737.roa (hash: FXD9Xl9HQjE5rhTpZsmUh0+M9Gq4Zq3tqVQkODiT8rI=) 9: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl (hash: jh2+6TZLH8kBeYXn28NZaZw4WG6e2EOEkRFJB4kElgA=) 10: 323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa (hash: eL7Y1izm4AtK8cu6bXuRjAi2YgKXj79o6hvPdbF1OWQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 04:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:a8:40:b7:4b:71:c7:84:1e:49:3d:db:be:84:08:34:60:62:11:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Validity Not Before: Apr 5 19:25:57 2025 GMT Not After : Apr 9 04:41:57 2025 GMT Subject: CN=981961C1ED3E4079A2C5A345653F7E17DE82EB74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ef:95:da:af:02:63:cf:e6:0a:bd:57:7b:fb: 46:ee:09:64:9d:33:cc:9a:ce:77:22:e2:41:72:c8: 8c:b3:fc:fc:73:4a:7c:fa:a9:c2:16:91:ee:ec:a5: 6a:06:ba:9d:74:22:76:fa:7e:73:e7:94:e4:d8:e5: 4c:fe:78:d7:c2:d3:9c:fc:71:8c:32:e9:b5:1e:30: 55:dd:f5:ca:3b:5f:19:fe:03:03:78:1e:ff:12:52: 7d:67:6f:1e:4a:09:5a:16:5e:49:c0:4f:60:ee:2e: 80:a3:20:6d:1c:9c:cd:a4:da:d2:0d:97:b0:10:40: a4:0b:4d:f2:c2:1d:7b:2f:90:f1:d5:a0:ee:ad:d1: a7:ec:3f:d8:bf:b0:c7:ee:83:d0:db:17:f6:9a:36: 62:8a:bb:fd:83:eb:14:a7:c9:b7:4f:43:b5:60:9a: e7:2d:00:d7:f4:d9:36:b7:fc:33:07:53:c4:ef:a9: 77:a8:7f:a0:7a:30:e9:5d:76:40:31:f8:77:d5:5e: 57:41:c2:2d:34:9d:eb:b0:1d:02:d4:63:c6:5b:9d: 76:1d:ea:b7:51:3a:10:2f:df:89:1e:ec:ae:cc:fc: 81:11:6c:99:1b:ad:e0:60:c9:8e:53:58:e0:e0:ec: 25:dd:3f:25:a5:85:d5:c9:17:de:8b:28:2c:99:11: 5b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:19:61:C1:ED:3E:40:79:A2:C5:A3:45:65:3F:7E:17:DE:82:EB:74 X509v3 Authority Key Identifier: keyid:10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:ba:53:99:65:44:9f:22:95:73:29:0a:17:f3:5a:b7:24:6a: af:ea:ce:79:32:11:52:ef:05:14:53:26:d7:04:35:17:7c:5f: 12:49:9c:02:c1:84:75:c7:4e:b6:7a:89:c6:ce:d9:87:5c:50: 33:3f:57:dc:cf:cc:59:fd:60:e9:be:47:eb:1e:62:6a:f2:4d: 2b:65:48:fc:75:d1:bd:21:f1:db:48:a1:de:4a:2b:c5:72:94: 5e:a3:25:28:e9:20:b7:7c:97:77:a1:b5:3d:63:11:04:e7:78: 3e:f0:35:4f:6f:22:f6:72:34:55:98:c9:d5:2a:7d:0e:c3:b0: 44:0f:6c:2b:69:0f:76:72:fa:c2:7c:df:a9:19:9f:d7:a4:3e: 84:54:85:41:fa:8a:5b:9c:ff:f9:57:00:5f:4f:0a:73:ec:07: 46:51:03:37:4d:48:fb:df:7d:e9:a8:35:dd:be:fe:e5:5c:0a: 2f:33:5a:7b:aa:13:05:4a:77:26:56:a2:9a:c0:24:95:39:02: 0d:72:7e:ae:b1:92:11:09:f5:d5:63:4a:fb:35:d6:a6:00:15: 7c:84:ad:4b:d8:96:43:ac:bf:71:bc:cf:2e:d4:1b:f5:fc:21: 55:70:0a:9e:5f:7d:f2:e1:5b:bd:d3:e0:a2:34:b0:f5:9b:a8: c0:4c:7e:56 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZ6hAt0txx4QeST3bvoQINGBiEY8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQy N0MxOTFBNjAeFw0yNTA0MDUxOTI1NTdaFw0yNTA0MDkwNDQxNTdaMDMxMTAvBgNV BAMTKDk4MTk2MUMxRUQzRTQwNzlBMkM1QTM0NTY1M0Y3RTE3REU4MkVCNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW75XarwJjz+YKvVd7+0buCWSd M8yaznci4kFyyIyz/PxzSnz6qcIWke7spWoGup10Inb6fnPnlOTY5Uz+eNfC05z8 cYwy6bUeMFXd9co7Xxn+AwN4Hv8SUn1nbx5KCVoWXknAT2DuLoCjIG0cnM2k2tIN l7AQQKQLTfLCHXsvkPHVoO6t0afsP9i/sMfug9DbF/aaNmKKu/2D6xSnybdPQ7Vg muctANf02Ta3/DMHU8TvqXeof6B6MOlddkAx+HfVXldBwi00neuwHQLUY8ZbnXYd 6rdROhAv34ke7K7M/IERbJkbreBgyY5TWODg7CXdPyWlhdXJF96LKCyZEVuLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmBlhwe0+QHmixaNFZT9+F96C63QwHwYDVR0j BBgwFoAUEMoXdu+orzUpLnauKwnCNCfBkaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmM2YWEwMy0xYjRkLTQzOGUtYTlmMy1lZmVhYWU2YjA5MjEvMC8xMENBMTc3NkVG QThBRjM1MjkyRTc2QUUyQjA5QzIzNDI3QzE5MUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQyN0Mx OTFBNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMy MzQyN0MxOTFBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAS6U5llRJ8ilXMpChfzWrckaq/qznkyEVLv BRRTJtcENRd8XxJJnALBhHXHTrZ6icbO2YdcUDM/V9zPzFn9YOm+R+seYmryTStl SPx10b0h8dtIod5KK8VylF6jJSjpILd8l3ehtT1jEQTneD7wNU9vIvZyNFWYydUq fQ7DsEQPbCtpD3Zy+sJ836kZn9ekPoRUhUH6iluc//lXAF9PCnPsB0ZRAzdNSPvf femoNd2+/uVcCi8zWnuqEwVKdyZWoprAJJU5Ag1yfq6xkhEJ9dVjSvs11qYAFXyE rUvYlkOsv3G8zy7UG/X8IVVwCp5fffLhW73T4KI0sPWbqMBMflY= -----END CERTIFICATE-----Generated at Mon Apr 7 13:02:42 2025 by rpki-client