$ rpki-client -vvf repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft File: 2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft (raw, json) Hash identifier: o6i6uc435JSlOc5+iKs642qqlF9fqO7Hozqifkeg9d0= Subject key identifier: 0D:00:7D:0B:4C:DE:BE:8A:51:9A:D2:18:8B:BB:2D:60:B4:F0:34:E5 Authority key identifier: 2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 Certificate issuer: /CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Certificate serial: 4E722F9B8BC1C552E984BDCA9DC99D780BE38524 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft Manifest number: 32 Signing time: Mon 17 Feb 2025 02:11:47 +0000 Manifest this update: Mon 17 Feb 2025 02:06:47 +0000 Manifest next update: Thu 20 Feb 2025 13:20:47 +0000 Files and hashes: 1: 3130332e3232352e31372e302f32342d3234203d3e20313532303632.roa (hash: P8QCMdvNkcGuA4F0hmx15JmIaSEyGRAUfWjBJiusufQ=) 2: 2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl (hash: 3rgHMtrw4/AMG4zBDRU5QsC7eosn6+snkVqLkC41M7M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 13:20:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:72:2f:9b:8b:c1:c5:52:e9:84:bd:ca:9d:c9:9d:78:0b:e3:85:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Validity Not Before: Feb 17 02:06:47 2025 GMT Not After : Feb 20 13:20:47 2025 GMT Subject: CN=0D007D0B4CDEBE8A519AD2188BBB2D60B4F034E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ab:86:42:29:c4:56:08:54:f3:07:1e:06:1d: df:ba:f8:9a:6b:b0:2d:21:59:13:d5:36:2b:d6:0d: cc:e0:d1:ca:3a:0f:ee:69:a2:e7:08:03:98:a3:96: de:32:05:0b:f6:73:af:89:01:25:78:54:b5:9c:22: 9f:15:46:17:52:8c:ee:bb:21:16:e0:a1:63:5b:b7: d8:d6:34:ac:27:d0:b1:75:89:9f:b6:b3:6f:b7:78: a7:a7:2f:f1:dc:1c:68:69:96:ad:3e:5d:45:a3:dd: b2:f9:74:e6:f4:f4:8c:e9:d2:8e:47:e0:66:0d:0d: 53:0d:ee:eb:31:ae:40:1e:e6:8b:88:58:87:43:f0: d7:a2:08:64:89:f9:dd:b3:b5:37:70:ee:1d:27:31: 30:21:ef:b6:bb:8b:c8:fb:71:14:4a:1f:96:bb:41: 61:fe:02:1e:c0:84:6c:1d:f9:4a:06:9f:27:fe:eb: 38:44:67:9d:e2:1f:5a:5a:e9:6e:7e:85:33:bb:0e: 10:4d:01:9d:09:32:21:1c:82:cc:aa:5d:29:ac:5d: 93:cb:4c:5e:e7:55:65:d2:98:fa:54:c5:70:02:a5: 74:54:af:68:9f:36:72:ed:07:41:27:8f:f3:dd:41: ed:58:1f:27:a5:22:a5:85:87:20:1c:0f:95:44:75: bd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:00:7D:0B:4C:DE:BE:8A:51:9A:D2:18:8B:BB:2D:60:B4:F0:34:E5 X509v3 Authority Key Identifier: keyid:2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:3b:54:a2:65:1d:0f:1d:fe:41:1c:35:de:8f:f3:1b:ae:10: 81:c1:94:df:e9:5d:fe:48:69:e3:e7:82:ac:01:d9:5d:00:ab: b1:22:17:71:f7:89:55:5d:b1:46:04:dc:d3:3c:5b:79:85:a9: f7:36:b8:67:9b:41:89:50:87:86:d2:e4:8f:18:11:44:a5:e3: 29:d0:ae:83:5e:30:cb:a6:49:e2:ba:c5:6f:07:96:ab:58:2c: 49:1c:87:72:94:62:bd:ae:be:c3:54:01:78:f5:0f:94:a4:f6: fa:b1:84:90:6b:d7:a8:7b:68:64:f0:37:de:2d:05:b8:f1:aa: 39:9c:13:f2:12:f5:27:db:58:68:a6:56:1f:d3:46:7c:d4:55: 8e:6d:23:63:f6:3b:44:71:ce:b2:74:86:cf:5e:e5:e8:89:3f: 8c:6e:e0:1d:a1:71:45:d0:56:20:f7:04:08:68:1c:14:c7:ad: 83:4a:60:d1:ef:96:21:77:3f:90:92:b7:09:63:75:76:0d:33: 32:08:a9:f5:b8:27:7d:08:08:0e:07:6c:91:8c:91:55:85:01: 26:48:ff:61:62:a7:46:01:ce:98:96:0c:09:c8:98:43:aa:b8: cf:4d:57:73:60:f6:72:3b:af:49:f7:1b:70:f6:ed:00:80:51: b3:cb:af:57 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTnIvm4vBxVLphL3KncmdeAvjhSQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDEx MUZERjNCMDAeFw0yNTAyMTcwMjA2NDdaFw0yNTAyMjAxMzIwNDdaMDMxMTAvBgNV BAMTKDBEMDA3RDBCNENERUJFOEE1MTlBRDIxODhCQkIyRDYwQjRGMDM0RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMq4ZCKcRWCFTzBx4GHd+6+Jpr sC0hWRPVNivWDczg0co6D+5poucIA5ijlt4yBQv2c6+JASV4VLWcIp8VRhdSjO67 IRbgoWNbt9jWNKwn0LF1iZ+2s2+3eKenL/HcHGhplq0+XUWj3bL5dOb09Izp0o5H 4GYNDVMN7usxrkAe5ouIWIdD8NeiCGSJ+d2ztTdw7h0nMTAh77a7i8j7cRRKH5a7 QWH+Ah7AhGwd+UoGnyf+6zhEZ53iH1pa6W5+hTO7DhBNAZ0JMiEcgsyqXSmsXZPL TF7nVWXSmPpUxXACpXRUr2ifNnLtB0Enj/PdQe1YHyelIqWFhyAcD5VEdb1NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDQB9C0zevopRmtIYi7stYLTwNOUwHwYDVR0j BBgwFoAUKw09cKAntTx60hf+IsoO0RH987AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzcyZDNmNS1kZDUzLTRiNzQtOTQ3Yy02YmI1MTBmNGY1MDMvMC8yQjBEM0Q3MEEw MjdCNTNDN0FEMjE3RkUyMkNBMEVEMTExRkRGM0IwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDExMUZE RjNCMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWM3MmQzZjUtZGQ1My00Yjc0LTk0 N2MtNmJiNTEwZjRmNTAzLzAvMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBF RDExMUZERjNCMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEU7VKJlHQ8d/kEcNd6P8xuuEIHBlN/pXf5I aePngqwB2V0Aq7EiF3H3iVVdsUYE3NM8W3mFqfc2uGebQYlQh4bS5I8YEUSl4ynQ roNeMMumSeK6xW8HlqtYLEkch3KUYr2uvsNUAXj1D5Sk9vqxhJBr16h7aGTwN94t BbjxqjmcE/IS9SfbWGimVh/TRnzUVY5tI2P2O0RxzrJ0hs9e5eiJP4xu4B2hcUXQ ViD3BAhoHBTHrYNKYNHvliF3P5CStwljdXYNMzIIqfW4J30ICA4HbJGMkVWFASZI /2Fip0YBzpiWDAnImEOquM9NV3Ng9nI7r0n3G3D27QCAUbPLr1c= -----END CERTIFICATE-----Generated at Wed Feb 19 22:14:01 2025 by rpki-client