$ rpki-client -vvf repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft File: 2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft (raw, json) Hash identifier: k+k0sZQSZYNEwBn4jqZMRnxHNL1iVb4WEuf39hkbcI0= Subject key identifier: EF:3E:8D:0F:62:21:E0:B8:61:3D:54:58:FA:3A:05:B4:45:E9:30:B2 Authority key identifier: 2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 Certificate issuer: /CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Certificate serial: 4843457D9AF1504742CE6C3BBAFA00C8BBBFAF8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft Manifest number: 4D Signing time: Fri 18 Apr 2025 23:31:46 +0000 Manifest this update: Fri 18 Apr 2025 23:26:46 +0000 Manifest next update: Tue 22 Apr 2025 01:33:46 +0000 Files and hashes: 1: 2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl (hash: 0lmF2yH+2igwstADbVocZgqRycXE2/kSmw8h2+wjw+w=) 2: 3130332e3232352e31372e302f32342d3234203d3e20313532303632.roa (hash: P8QCMdvNkcGuA4F0hmx15JmIaSEyGRAUfWjBJiusufQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 00:59:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:43:45:7d:9a:f1:50:47:42:ce:6c:3b:ba:fa:00:c8:bb:bf:af:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Validity Not Before: Apr 18 23:26:46 2025 GMT Not After : Apr 22 01:33:46 2025 GMT Subject: CN=EF3E8D0F6221E0B8613D5458FA3A05B445E930B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:10:f7:82:bf:d9:1c:95:cd:13:86:11:8f:b7: b4:71:53:b0:e5:d9:26:79:61:98:01:08:b3:e9:81: 6e:ba:68:34:88:84:9f:fd:9a:97:5b:c4:0f:65:0d: b3:e7:03:90:0e:3a:10:2a:4a:d5:39:6c:7e:03:e6: 1c:b9:35:75:a3:88:84:f1:da:d9:91:07:8b:c5:17: 05:8b:7c:57:90:09:40:41:8b:4e:5a:ed:7e:59:13: e7:a6:5f:e0:fd:d6:f2:c4:99:6c:28:86:4e:a0:36: 0f:45:a8:03:a1:19:5b:d3:7b:be:7c:73:e8:c1:97: ac:40:9d:ad:9a:40:2a:a0:f6:8a:f1:b0:04:37:b6: 07:04:51:f0:90:5b:ad:49:c4:fe:17:c3:0c:c8:19: 82:4f:5e:8b:a1:83:75:64:6e:49:16:69:1a:00:be: 61:cb:d9:78:dc:ac:79:d3:e1:18:dc:70:18:aa:1c: cf:b5:51:81:3b:1f:f7:c0:73:1f:da:e8:b6:3c:3d: 60:d7:a8:f8:c5:4f:37:12:eb:b9:84:41:79:0d:0e: a5:d1:62:2d:75:48:40:08:1a:a1:d0:dd:b1:82:35: 62:52:e9:c7:f9:04:11:06:81:65:bd:cb:c5:08:81: 28:04:6b:05:ad:4a:0a:f5:54:e0:19:bb:2c:b9:15: d5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:3E:8D:0F:62:21:E0:B8:61:3D:54:58:FA:3A:05:B4:45:E9:30:B2 X509v3 Authority Key Identifier: keyid:2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:8e:0d:59:fd:bb:9a:2c:fe:56:58:08:5c:7b:cb:8d:65:3f: bd:18:c8:78:1a:09:eb:9b:b6:65:74:4b:2d:39:c1:3d:7f:fc: 63:17:20:20:a0:29:b1:52:68:88:89:c2:36:64:f4:92:89:a6: c8:57:bf:73:1d:ac:2e:72:d1:1a:bf:a7:5b:9f:7b:da:84:53: 25:73:91:c8:c5:27:22:cd:b3:9d:1b:08:3a:b0:58:c5:99:ef: 90:ff:b5:32:0e:51:72:c9:f2:f8:34:cc:2e:7f:70:b8:35:c7: 88:34:ee:ea:61:04:de:42:ca:0f:11:5d:37:fb:bf:35:5f:5d: f9:b4:50:65:13:70:89:75:37:4d:52:23:8d:d1:9b:5e:40:31: a5:fc:77:bb:a3:86:ea:01:94:17:d7:41:e2:b9:b3:40:e4:1c: f4:f0:07:4a:53:ee:d8:ec:a6:2f:4e:e8:f8:13:37:19:a6:6f: 63:fa:6b:bb:8c:af:c8:70:13:03:29:62:41:2c:38:15:b1:bb: 9b:f8:10:ec:53:59:20:b9:e1:3f:fa:db:1d:db:2a:bc:ad:d9: ff:1b:49:46:ec:db:50:60:06:a1:06:60:8a:5a:04:d8:2d:5c: fd:42:e9:48:67:6f:4d:e9:d4:a8:5d:c6:4e:d6:24:57:33:38: e6:68:ed:9f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSENFfZrxUEdCzmw7uvoAyLu/r4wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDEx MUZERjNCMDAeFw0yNTA0MTgyMzI2NDZaFw0yNTA0MjIwMTMzNDZaMDMxMTAvBgNV BAMTKEVGM0U4RDBGNjIyMUUwQjg2MTNENTQ1OEZBM0EwNUI0NDVFOTMwQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlEPeCv9kclc0ThhGPt7RxU7Dl 2SZ5YZgBCLPpgW66aDSIhJ/9mpdbxA9lDbPnA5AOOhAqStU5bH4D5hy5NXWjiITx 2tmRB4vFFwWLfFeQCUBBi05a7X5ZE+emX+D91vLEmWwohk6gNg9FqAOhGVvTe758 c+jBl6xAna2aQCqg9orxsAQ3tgcEUfCQW61JxP4XwwzIGYJPXouhg3VkbkkWaRoA vmHL2XjcrHnT4RjccBiqHM+1UYE7H/fAcx/a6LY8PWDXqPjFTzcS67mEQXkNDqXR Yi11SEAIGqHQ3bGCNWJS6cf5BBEGgWW9y8UIgSgEawWtSgr1VOAZuyy5FdXpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7z6ND2Ih4LhhPVRY+joFtEXpMLIwHwYDVR0j BBgwFoAUKw09cKAntTx60hf+IsoO0RH987AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzcyZDNmNS1kZDUzLTRiNzQtOTQ3Yy02YmI1MTBmNGY1MDMvMC8yQjBEM0Q3MEEw MjdCNTNDN0FEMjE3RkUyMkNBMEVEMTExRkRGM0IwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDExMUZE RjNCMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWM3MmQzZjUtZGQ1My00Yjc0LTk0 N2MtNmJiNTEwZjRmNTAzLzAvMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBF RDExMUZERjNCMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEiODVn9u5os/lZYCFx7y41lP70YyHgaCeub tmV0Sy05wT1//GMXICCgKbFSaIiJwjZk9JKJpshXv3MdrC5y0Rq/p1ufe9qEUyVz kcjFJyLNs50bCDqwWMWZ75D/tTIOUXLJ8vg0zC5/cLg1x4g07uphBN5Cyg8RXTf7 vzVfXfm0UGUTcIl1N01SI43Rm15AMaX8d7ujhuoBlBfXQeK5s0DkHPTwB0pT7tjs pi9O6PgTNxmmb2P6a7uMr8hwEwMpYkEsOBWxu5v4EOxTWSC54T/62x3bKryt2f8b SUbs21BgBqEGYIpaBNgtXP1C6Uhnb03p1Khdxk7WJFczOOZo7Z8= -----END CERTIFICATE-----Generated at Sat Apr 19 12:04:08 2025 by rpki-client