$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: JjkKkDq4XZJP6h6pLcsUA4Tr3CGZfd6jHtpp+ed2W0U= Subject key identifier: 47:47:4A:96:DA:AA:47:1C:35:C2:21:3D:44:9F:01:86:23:BC:9E:34 Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 0DF329FE5721D96CBEBAE67A970F8F9686AB806C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 029E Signing time: Fri 04 Apr 2025 12:40:51 +0000 Manifest this update: Fri 04 Apr 2025 12:35:51 +0000 Manifest next update: Mon 07 Apr 2025 16:23:51 +0000 Files and hashes: 1: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: +t40M702VFWJpOgJRkFuplSndiJmUCoSc6okBYwiNSY=) 2: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: ejo3/L+3kmLyjnvdSLMOsbUtjtQhrjGsr2lCCkclPu4=) 3: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: /hYuVmeEglfHNTLn+XCNIZ7l53joCQElFSPjrRPWPDo=) 4: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: YAl9IH945cB6nzFZ+Qtu95xtcvqOant2/UNUilOSLzk=) 5: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: Sr5rxwxyX//B5EAQxEl5R5AYvEEW7vDFWvwM/NlIUq4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 16:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:f3:29:fe:57:21:d9:6c:be:ba:e6:7a:97:0f:8f:96:86:ab:80:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Apr 4 12:35:51 2025 GMT Not After : Apr 7 16:23:51 2025 GMT Subject: CN=47474A96DAAA471C35C2213D449F018623BC9E34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:54:81:77:8c:f2:81:a8:a1:56:80:f4:6d:bf: ed:23:5b:d2:a4:f9:e2:25:27:c4:14:b9:01:23:f8: 43:da:69:0a:5b:f3:4e:94:f4:a0:e8:54:75:e0:62: fa:e7:00:76:55:69:7b:62:cc:13:24:c9:fe:d6:c1: 13:e3:1e:ff:d6:36:78:28:7a:50:0e:17:56:fe:ab: d0:7b:2b:71:37:8f:13:41:3b:c6:1a:9a:69:5a:e6: a8:9c:e2:3f:7d:7d:75:ec:c4:86:78:00:e1:ef:c6: e7:9c:a9:98:73:a0:1a:ef:da:34:bb:c4:b3:6a:d3: f4:26:35:d5:e4:8d:ff:29:43:76:29:dc:67:67:0a: 07:dc:cc:09:40:bd:93:45:e0:8c:74:ae:5c:e8:3a: 5f:b6:cc:d0:09:67:25:7b:1d:54:24:d8:48:ee:db: d6:f3:58:7e:85:05:16:84:02:3d:72:ee:8e:cd:e0: 3d:9b:ad:89:ca:36:54:a3:2f:05:19:7d:05:7b:f0: 1b:6d:b7:e7:e0:9e:ff:16:53:9a:1d:de:ce:3f:01: 6c:73:d3:2d:e9:21:9d:e4:a5:c9:a1:78:2b:25:fd: fb:a1:f2:c2:ea:f5:8e:27:bb:52:ce:5b:4b:0d:20: 75:a1:78:0d:92:c3:3e:8f:6a:98:af:4e:55:69:88: ca:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:47:4A:96:DA:AA:47:1C:35:C2:21:3D:44:9F:01:86:23:BC:9E:34 X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:aa:c7:b7:1d:22:82:ac:a1:08:cb:1b:e9:b2:4f:90:ec:90: b3:6f:a2:e9:93:44:1a:b1:63:86:3c:ab:18:8a:4c:bc:d7:8f: d0:7b:c1:dc:e7:87:9a:39:f8:ee:24:36:34:38:c8:59:c4:41: a3:1b:7b:11:a5:c7:8e:6c:38:4c:7f:80:b5:43:39:57:4d:6b: c3:84:33:e8:b0:48:75:0e:a3:d8:7b:42:ba:11:10:43:9e:87: 19:63:ef:33:70:61:05:69:07:02:d8:c3:47:f2:df:90:5c:92: 8e:6c:4b:52:58:1b:67:43:5f:40:01:1d:0f:85:1b:42:cc:f5: 9a:e7:ca:5e:db:be:a5:c9:3c:fa:23:03:13:e3:a4:3d:1c:96: 4e:f1:47:55:56:37:41:76:f2:bc:25:17:e0:13:f2:dc:6b:ff: 8a:02:d3:7c:5a:8a:e5:d1:a4:fe:8a:2e:86:53:1a:79:01:97: f0:e6:55:17:82:52:86:8c:4c:61:79:8b:44:ab:ed:99:e2:5d: 7f:d1:2d:f7:ee:05:7e:1b:f9:76:6b:87:7c:6f:4f:9e:25:57: a5:78:82:64:b3:0f:5f:f0:cc:9c:e7:69:7b:2b:0c:ef:47:65: 71:e3:02:43:f2:c9:23:e0:90:d7:00:83:ab:c7:5d:b9:58:db: 0a:c9:6d:5c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDfMp/lch2Wy+uuZ6lw+PloargGwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNTA0MDQxMjM1NTFaFw0yNTA0MDcxNjIzNTFaMDMxMTAvBgNV BAMTKDQ3NDc0QTk2REFBQTQ3MUMzNUMyMjEzRDQ0OUYwMTg2MjNCQzlFMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPVIF3jPKBqKFWgPRtv+0jW9Kk +eIlJ8QUuQEj+EPaaQpb806U9KDoVHXgYvrnAHZVaXtizBMkyf7WwRPjHv/WNngo elAOF1b+q9B7K3E3jxNBO8Yammla5qic4j99fXXsxIZ4AOHvxuecqZhzoBrv2jS7 xLNq0/QmNdXkjf8pQ3Yp3GdnCgfczAlAvZNF4Ix0rlzoOl+2zNAJZyV7HVQk2Eju 29bzWH6FBRaEAj1y7o7N4D2brYnKNlSjLwUZfQV78Bttt+fgnv8WU5od3s4/AWxz 0y3pIZ3kpcmheCsl/fuh8sLq9Y4nu1LOW0sNIHWheA2Swz6PapivTlVpiMrBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUR0dKltqqRxw1wiE9RJ8BhiO8njQwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIKqx7cdIoKsoQjLG+myT5DskLNvoumTRBqx Y4Y8qxiKTLzXj9B7wdznh5o5+O4kNjQ4yFnEQaMbexGlx45sOEx/gLVDOVdNa8OE M+iwSHUOo9h7QroREEOehxlj7zNwYQVpBwLYw0fy35Bcko5sS1JYG2dDX0ABHQ+F G0LM9Zrnyl7bvqXJPPojAxPjpD0clk7xR1VWN0F28rwlF+AT8txr/4oC03xaiuXR pP6KLoZTGnkBl/DmVReCUoaMTGF5i0Sr7ZniXX/RLffuBX4b+XZrh3xvT54lV6V4 gmSzD1/wzJznaXsrDO9HZXHjAkPyySPgkNcAg6vHXblY2wrJbVw= -----END CERTIFICATE-----Generated at Sat Apr 5 10:07:56 2025 by rpki-client