$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft File: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft (raw, json) Hash identifier: 4MY6+8SvOIrbdGrtV6lLCc6jAfLiZeBxRbL5ZaxLb2Y= Subject key identifier: 8D:94:28:BA:49:2F:E0:04:AE:FD:1B:BF:9D:62:5A:C3:BD:C1:47:82 Authority key identifier: D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB Certificate issuer: /CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Certificate serial: 5371F0908ABB22379024B9C0223DE6E8FC488419 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft Manifest number: 01EF Signing time: Sat 05 Apr 2025 05:01:55 +0000 Manifest this update: Sat 05 Apr 2025 04:56:55 +0000 Manifest next update: Tue 08 Apr 2025 13:00:55 +0000 Files and hashes: 1: 3130332e3138332e3235302e302f32332d3234203d3e2034383030.roa (hash: Ytn4J3L//ntkx3dIdir2Ut4ptmhaS3TkbsBspKupuTk=) 2: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl (hash: 6x51V1B050DbTAMQRvQFAs6F2pgE6LNYIRAfSedCh9E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:71:f0:90:8a:bb:22:37:90:24:b9:c0:22:3d:e6:e8:fc:48:84:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Validity Not Before: Apr 5 04:56:55 2025 GMT Not After : Apr 8 13:00:55 2025 GMT Subject: CN=8D9428BA492FE004AEFD1BBF9D625AC3BDC14782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d0:14:6e:00:b5:bf:0b:0d:ab:f3:e0:8c:53: 48:e7:3e:05:92:11:ff:0c:0b:35:5d:d9:06:b9:e9: 40:db:35:ec:5b:7b:9d:f6:7f:20:15:06:27:13:8a: 0e:65:94:d3:1a:70:0e:7d:ef:cd:90:0c:99:5b:70: 19:0a:4a:90:93:2b:d5:ba:bf:1f:f9:83:ba:e9:81: fa:ab:e4:96:16:da:c6:0d:06:54:3c:e0:31:46:24: 8f:2f:3b:f5:50:c7:fc:3d:53:35:a7:24:99:cf:c9: 0e:1a:56:3c:ae:b9:2a:02:cd:68:fe:0a:5a:7c:86: 98:18:87:5f:e4:10:a4:a1:9c:75:45:f4:76:11:72: 3f:24:70:d1:96:dc:39:8f:09:e6:a4:10:30:9f:f2: 32:c7:72:84:37:ac:ac:f7:90:24:04:05:3d:95:a7: 8f:9f:ff:89:71:74:c3:29:ca:fb:1c:d6:d2:f1:42: 9e:d1:51:11:29:67:25:e7:79:6b:1f:da:b4:af:0a: e1:37:0c:4c:06:1c:3e:35:7c:f3:d4:e1:1e:70:ed: 37:3e:98:ab:f1:0f:d1:67:1a:46:58:85:5e:c1:3e: 84:c1:57:ad:6f:31:eb:3d:77:ab:49:bf:9b:0f:47: d4:d0:f1:38:19:7d:8f:ed:94:ce:24:64:21:f4:19: 2b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:94:28:BA:49:2F:E0:04:AE:FD:1B:BF:9D:62:5A:C3:BD:C1:47:82 X509v3 Authority Key Identifier: keyid:D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:86:f3:a8:00:33:b1:a8:64:8c:15:25:5f:46:6f:3b:f6:73: 3e:4d:c1:5f:dc:d3:69:c6:1b:ac:40:2a:3a:fd:60:12:07:a8: c4:97:8e:16:8d:cd:e1:80:d5:57:39:83:e9:d6:70:85:74:54: 17:22:d6:9e:24:ca:c2:b1:cf:ab:c9:24:d7:43:4d:37:49:95: 3c:e3:3b:a5:4c:75:f0:11:10:d2:c4:21:92:43:b3:76:88:53: 74:33:46:cd:98:a0:67:51:58:45:20:81:9f:be:ed:b9:61:78: 61:2a:c8:e8:36:c0:42:00:e2:86:e8:0d:32:ea:24:66:0a:23: 49:ca:d2:00:de:71:7e:5c:80:8c:80:a5:23:2c:df:6b:33:45: f4:09:25:84:45:36:b9:98:8b:26:2a:be:37:5c:ee:9b:b5:06: c1:e0:27:dd:75:fe:7b:4c:ab:f7:5e:05:ec:24:3c:3a:66:25: 7c:71:69:58:34:dc:4f:41:3f:94:24:94:c9:fd:3a:d5:3f:83: 89:16:81:5b:7d:2d:45:33:9f:68:27:6f:4f:45:35:61:06:cf: 1f:a1:e5:50:a4:12:73:c8:4b:0e:ea:07:72:f9:87:a1:0e:36: 61:11:31:3b:df:b2:43:db:9d:11:0a:0f:f1:95:2e:b6:3d:25: 89:23:c6:4b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUU3HwkIq7IjeQJLnAIj3m6PxIhBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1 MTdDOEZEQjAeFw0yNTA0MDUwNDU2NTVaFw0yNTA0MDgxMzAwNTVaMDMxMTAvBgNV BAMTKDhEOTQyOEJBNDkyRkUwMDRBRUZEMUJCRjlENjI1QUMzQkRDMTQ3ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu0BRuALW/Cw2r8+CMU0jnPgWS Ef8MCzVd2Qa56UDbNexbe532fyAVBicTig5llNMacA59782QDJlbcBkKSpCTK9W6 vx/5g7rpgfqr5JYW2sYNBlQ84DFGJI8vO/VQx/w9UzWnJJnPyQ4aVjyuuSoCzWj+ Clp8hpgYh1/kEKShnHVF9HYRcj8kcNGW3DmPCeakEDCf8jLHcoQ3rKz3kCQEBT2V p4+f/4lxdMMpyvsc1tLxQp7RUREpZyXneWsf2rSvCuE3DEwGHD41fPPU4R5w7Tc+ mKvxD9FnGkZYhV7BPoTBV61vMes9d6tJv5sPR9TQ8TgZfY/tlM4kZCH0GSv3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjZQoukkv4ASu/Ru/nWJaw73BR4IwHwYDVR0j BBgwFoAU2dBzDbUSlf7FvUgM3UK16FF8j9swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyYjhiMy1kZWM4LTQxY2YtYTE2ZC1lMTE3MTU2MWQ3MjUvMC9EOUQwNzMwREI1 MTI5NUZFQzVCRDQ4MENERDQyQjVFODUxN0M4RkRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1MTdD OEZEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmI4YjMtZGVjOC00MWNmLWEx NmQtZTExNzE1NjFkNzI1LzAvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1 RTg1MTdDOEZEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHyG86gAM7GoZIwVJV9Gbzv2cz5NwV/c02nG G6xAKjr9YBIHqMSXjhaNzeGA1Vc5g+nWcIV0VBci1p4kysKxz6vJJNdDTTdJlTzj O6VMdfARENLEIZJDs3aIU3QzRs2YoGdRWEUggZ++7blheGEqyOg2wEIA4oboDTLq JGYKI0nK0gDecX5cgIyApSMs32szRfQJJYRFNrmYiyYqvjdc7pu1BsHgJ911/ntM q/deBewkPDpmJXxxaVg03E9BP5QklMn9OtU/g4kWgVt9LUUzn2gnb09FNWEGzx+h 5VCkEnPISw7qB3L5h6EONmERMTvfskPbnREKD/GVLrY9JYkjxks= -----END CERTIFICATE-----Generated at Sat Apr 5 15:31:31 2025 by rpki-client