$ rpki-client -vvf repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft File: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft (raw, json) Hash identifier: 9ryxsTcgFGIoHzhFIeko//NY5H7JEJAN0mo0Hhiq7RQ= Subject key identifier: 7F:CB:5F:5B:F1:D8:DF:82:61:0B:B6:BF:8B:3F:E5:94:5F:A8:F1:34 Authority key identifier: 43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 Certificate issuer: /CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Certificate serial: 7459BE991A6DB60C51E06B46F31098AAFF660489 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft Manifest number: 02AF Signing time: Thu 05 Jun 2025 03:51:09 +0000 Manifest this update: Thu 05 Jun 2025 03:46:09 +0000 Manifest next update: Sun 08 Jun 2025 07:42:09 +0000 Files and hashes: 1: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl (hash: 9PMPbF2fvwtLvPwnBaujVe3FFjBSY89oVAf4NDxEMD4=) 2: 3130332e3137362e39372e302f32342d3234203d3e20313437313331.roa (hash: gcQbwwcsgWLto/MeqdtpULkQCdJ/hBMpFsyWHdzWTU8=) 3: 3130332e3137362e39362e302f32332d3233203d3e20313437313331.roa (hash: RvlNgfW0J+bVY7d2yjeoXrc2sRB1/6Dnvn34DHTz4kU=) 4: 3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa (hash: omt0on/osncWzWrbGIk75aVtn8fXGKFlF84iedQ76S8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:42:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:59:be:99:1a:6d:b6:0c:51:e0:6b:46:f3:10:98:aa:ff:66:04:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Validity Not Before: Jun 5 03:46:09 2025 GMT Not After : Jun 8 07:42:09 2025 GMT Subject: CN=7FCB5F5BF1D8DF82610BB6BF8B3FE5945FA8F134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a4:21:2d:55:0f:8a:40:70:89:e6:34:99:51: 72:0d:a8:86:b4:13:ca:3f:84:fc:33:15:60:ab:62: b1:41:e1:e5:4e:1a:8b:08:0a:ba:71:17:47:58:00: 4d:ec:2d:65:48:44:9a:b5:1c:7f:73:26:e2:fe:9b: 61:7a:6f:d6:37:26:3c:46:cd:2a:a6:64:e1:24:83: c9:f9:29:7e:7d:d1:6a:f4:d9:64:6a:e6:5b:84:bb: 42:a8:2c:88:09:12:0f:2a:40:50:14:3c:98:03:56: b4:27:06:b4:c0:60:14:37:1e:0b:19:48:3c:43:19: e0:75:1a:63:c3:5b:9c:c7:a4:ea:19:2d:bf:3a:33: 6b:36:03:b5:78:54:5a:24:7f:64:6b:54:1b:12:1f: 93:54:1f:c8:ac:23:40:f9:79:b9:11:e0:21:2e:89: bb:91:95:49:fd:ca:85:1a:2d:e2:8d:ca:e6:9c:d7: da:d5:39:01:52:39:c2:79:97:34:48:dd:34:ba:3c: 35:f8:b3:ab:87:54:95:3f:95:1b:f7:13:60:d8:f8: d7:d2:f6:87:12:2e:5b:98:83:e3:d4:5d:60:b9:ee: bf:cf:d2:9f:ab:91:b7:c2:4d:a3:ba:a5:92:7c:16: d5:55:82:27:6f:b8:7f:86:eb:93:94:78:08:12:49: 8d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:CB:5F:5B:F1:D8:DF:82:61:0B:B6:BF:8B:3F:E5:94:5F:A8:F1:34 X509v3 Authority Key Identifier: keyid:43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:f4:1f:7a:20:fb:ce:f3:7c:2b:ca:75:84:b0:95:f1:39:a6: 0e:7a:f8:70:2a:b2:25:c0:39:c1:6b:3b:09:3a:6b:ce:e6:96: 4b:41:35:ff:bf:d4:73:4d:a7:43:55:8b:b7:91:02:2d:36:e2: c0:6e:57:87:00:88:ae:65:78:0f:10:b4:2f:b3:71:cf:dd:9f: 34:80:df:6d:bf:94:29:b9:8d:c7:2a:e8:8c:da:5b:4f:bd:43: d8:36:ea:77:e1:ea:38:52:4a:84:29:b7:2c:37:e9:c6:62:5b: 5f:fa:ac:ff:d8:dd:20:92:29:b6:11:74:00:bd:d9:25:72:f1: f7:b1:a8:f0:79:88:49:0d:2e:89:29:65:5b:03:0c:c2:4c:67: b2:1d:d6:3f:f2:6a:90:bb:fe:d3:85:5e:fe:67:64:e6:01:63: dd:dd:2a:4e:b9:65:29:ea:44:2d:b0:cb:ce:28:b5:2f:11:b4: 5b:c6:bc:30:21:7c:fe:26:12:b6:02:93:6f:63:96:6f:ca:3b: 53:ac:b9:fc:f7:9d:8b:37:fc:8d:d1:eb:d5:0d:00:6a:e0:c4: b3:b5:de:05:07:4d:4f:41:91:bb:54:93:6b:9c:2c:a1:f7:72: 90:e9:73:a0:ca:ef:27:89:0a:6b:d0:b9:57:fa:3d:11:60:06: c7:1d:12:7c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdFm+mRpttgxR4GtG8xCYqv9mBIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVF MzdCQjY1NzAeFw0yNTA2MDUwMzQ2MDlaFw0yNTA2MDgwNzQyMDlaMDMxMTAvBgNV BAMTKDdGQ0I1RjVCRjFEOERGODI2MTBCQjZCRjhCM0ZFNTk0NUZBOEYxMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0pCEtVQ+KQHCJ5jSZUXINqIa0 E8o/hPwzFWCrYrFB4eVOGosICrpxF0dYAE3sLWVIRJq1HH9zJuL+m2F6b9Y3JjxG zSqmZOEkg8n5KX590Wr02WRq5luEu0KoLIgJEg8qQFAUPJgDVrQnBrTAYBQ3HgsZ SDxDGeB1GmPDW5zHpOoZLb86M2s2A7V4VFokf2RrVBsSH5NUH8isI0D5ebkR4CEu ibuRlUn9yoUaLeKNyuac19rVOQFSOcJ5lzRI3TS6PDX4s6uHVJU/lRv3E2DY+NfS 9ocSLluYg+PUXWC57r/P0p+rkbfCTaO6pZJ8FtVVgidvuH+G65OUeAgSSY31AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUf8tfW/HY34JhC7a/iz/llF+o8TQwHwYDVR0j BBgwFoAUQzfp/5Ggy2XOHrj662EI9eN7tlcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzM0ZGMzZi0zMDhmLTRkZTEtYTM2NS03MDFiZDljZjEwMDQvMC80MzM3RTlGRjkx QTBDQjY1Q0UxRUI4RkFFQjYxMDhGNUUzN0JCNjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVFMzdC QjY1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMzNGRjM2YtMzA4Zi00ZGUxLWEz NjUtNzAxYmQ5Y2YxMDA0LzAvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4 RjVFMzdCQjY1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAL0H3og+87zfCvKdYSwlfE5pg56+HAqsiXA OcFrOwk6a87mlktBNf+/1HNNp0NVi7eRAi024sBuV4cAiK5leA8QtC+zcc/dnzSA 322/lCm5jccq6IzaW0+9Q9g26nfh6jhSSoQptyw36cZiW1/6rP/Y3SCSKbYRdAC9 2SVy8fexqPB5iEkNLokpZVsDDMJMZ7Id1j/yapC7/tOFXv5nZOYBY93dKk65ZSnq RC2wy84otS8RtFvGvDAhfP4mErYCk29jlm/KO1Osufz3nYs3/I3R69UNAGrgxLO1 3gUHTU9BkbtUk2ucLKH3cpDpc6DK7yeJCmvQuVf6PRFgBscdEnw= -----END CERTIFICATE-----Generated at Thu Jun 5 18:10:21 2025 by rpki-client