$ rpki-client -vvf repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft File: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft (raw, json) Hash identifier: XSxB5mr0H1dozDwuNWoRO0xqUGrPSjbPgfbl/5t9TfY= Subject key identifier: 70:48:C8:2A:48:32:45:22:4C:BF:5A:DD:55:0D:92:4E:34:5F:C3:43 Authority key identifier: C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 Certificate issuer: /CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Certificate serial: 40BB7CD02150F9E156D09EBBBED312B29205AF6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft Manifest number: 0301 Signing time: Thu 13 Mar 2025 12:11:50 +0000 Manifest this update: Thu 13 Mar 2025 12:06:50 +0000 Manifest next update: Sun 16 Mar 2025 23:21:50 +0000 Files and hashes: 1: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl (hash: 5apg9DyxZSQc4bh90J4FIjI0CcSBUrA44S/QgwIxO7Y=) 2: 3130332e3136312e37332e302f32342d3234203d3e203538333738.roa (hash: N58UqlFMp748Khi3FbSfGS0G+XtsfGGuqPSO+3bYMNA=) 3: 3130332e3136312e37322e302f32342d3234203d3e203538333738.roa (hash: WHyXZiHm1tFrwAXrz4brauNseb8V8ZMQneoiM0eZr/g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Mar 2025 22:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:bb:7c:d0:21:50:f9:e1:56:d0:9e:bb:be:d3:12:b2:92:05:af:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Validity Not Before: Mar 13 12:06:50 2025 GMT Not After : Mar 16 23:21:50 2025 GMT Subject: CN=7048C82A483245224CBF5ADD550D924E345FC343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:54:ce:ee:c9:f2:cc:7d:9c:de:aa:fe:fb:71: b5:af:37:aa:55:d9:88:51:4e:08:10:ca:73:1e:e9: c5:7c:b9:61:9d:48:d8:ce:43:c5:2f:a4:1f:99:c5: 3d:55:30:9a:1f:d5:df:fd:b1:6d:83:e2:0e:22:49: c2:c1:93:f7:9d:55:37:b4:9e:4d:02:40:75:59:f3: eb:be:cd:68:1a:23:ce:f7:3f:b1:44:31:25:69:b4: 0d:10:87:2a:7f:71:03:75:9a:0e:3a:9a:c5:d9:b9: de:5f:6a:25:f5:97:dd:80:ab:3f:1d:67:db:6b:4f: 7b:02:c0:12:59:a0:05:70:68:03:ad:34:fd:27:b1: 58:7b:56:16:4d:a6:7d:aa:bb:e4:b3:2e:d4:d5:0a: 40:ab:f6:1c:09:12:22:47:a6:34:74:e1:a2:92:49: 08:5d:08:eb:c8:8a:19:74:fd:6b:bd:43:de:47:97: f9:ac:d9:b6:be:e2:60:95:6a:7b:12:d2:43:88:d2: 59:02:dc:55:12:e8:fd:21:80:34:c9:dd:a9:56:ca: 25:59:cf:c5:a4:f6:a9:0b:e1:44:d3:7c:48:ef:68: 07:8e:37:89:7a:de:db:8c:40:07:09:1e:9a:7e:33: a2:9c:4d:e4:cf:c2:37:42:e2:a7:ab:3a:d5:c9:05: f4:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:48:C8:2A:48:32:45:22:4C:BF:5A:DD:55:0D:92:4E:34:5F:C3:43 X509v3 Authority Key Identifier: keyid:C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:72:3f:95:05:2d:c2:01:10:f5:78:85:ca:9d:1c:eb:b7:0c: 1a:36:66:c2:9d:da:a5:33:26:b9:d4:61:cb:74:25:d0:88:45: 62:05:b6:79:a6:24:05:58:34:77:73:81:19:66:8a:a4:40:2f: 81:ff:63:a2:94:55:18:bd:e7:ae:dd:34:b8:ca:57:d0:bb:fa: 97:d9:f4:b3:76:8a:3c:74:c1:38:1f:f6:66:db:e2:99:87:16: f6:9a:b5:b1:26:72:28:66:b3:c9:7d:bb:08:1a:54:76:32:c7: e7:ac:d9:1a:1d:f3:65:88:6c:b3:d3:ed:ef:02:d8:8f:50:df: a8:4c:51:d5:3e:27:06:f0:80:c0:d6:6e:ed:eb:a0:22:36:0e: 6c:91:a6:f8:51:77:83:7b:94:6f:34:e5:20:48:95:2b:86:cb: 71:c5:41:d8:fc:e1:7d:4e:a7:1e:2a:07:8b:a4:a1:e6:f2:75: 4e:5f:59:9d:45:df:11:44:0a:20:0d:54:3d:73:8b:ab:f9:ad: f1:a2:16:65:5c:d0:0e:6b:0d:ad:37:34:49:ed:df:0d:6d:af: f1:67:b0:2a:5f:ad:79:54:c0:a8:87:a7:b3:46:1b:1d:68:f7: 47:08:93:2c:d7:42:ad:e1:c7:48:5b:04:a4:c8:9e:3b:19:df: e7:11:fb:03 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQLt80CFQ+eFW0J67vtMSspIFr28wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4 MTgxOTZGNDAeFw0yNTAzMTMxMjA2NTBaFw0yNTAzMTYyMzIxNTBaMDMxMTAvBgNV BAMTKDcwNDhDODJBNDgzMjQ1MjI0Q0JGNUFERDU1MEQ5MjRFMzQ1RkMzNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2VM7uyfLMfZzeqv77cbWvN6pV 2YhRTggQynMe6cV8uWGdSNjOQ8UvpB+ZxT1VMJof1d/9sW2D4g4iScLBk/edVTe0 nk0CQHVZ8+u+zWgaI873P7FEMSVptA0Qhyp/cQN1mg46msXZud5faiX1l92Aqz8d Z9trT3sCwBJZoAVwaAOtNP0nsVh7VhZNpn2qu+SzLtTVCkCr9hwJEiJHpjR04aKS SQhdCOvIihl0/Wu9Q95Hl/ms2ba+4mCVansS0kOI0lkC3FUS6P0hgDTJ3alWyiVZ z8Wk9qkL4UTTfEjvaAeON4l63tuMQAcJHpp+M6KcTeTPwjdC4qerOtXJBfT7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcEjIKkgyRSJMv1rdVQ2STjRfw0MwHwYDVR0j BBgwFoAUwg3TevDvPKBV39+PP10Y8IGBlvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWJlN2FkOC1lMTVjLTQwMTQtYmZiMy1iZTY5YjdkNWRlODgvMC9DMjBERDM3QUYw RUYzQ0EwNTVERkRGOEYzRjVEMThGMDgxODE5NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4MTgx OTZGNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWViZTdhZDgtZTE1Yy00MDE0LWJm YjMtYmU2OWI3ZDVkZTg4LzAvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4 RjA4MTgxOTZGNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADVyP5UFLcIBEPV4hcqdHOu3DBo2ZsKd2qUz JrnUYct0JdCIRWIFtnmmJAVYNHdzgRlmiqRAL4H/Y6KUVRi9567dNLjKV9C7+pfZ 9LN2ijx0wTgf9mbb4pmHFvaatbEmcihms8l9uwgaVHYyx+es2Rod82WIbLPT7e8C 2I9Q36hMUdU+JwbwgMDWbu3roCI2DmyRpvhRd4N7lG805SBIlSuGy3HFQdj84X1O px4qB4ukoebydU5fWZ1F3xFECiANVD1zi6v5rfGiFmVc0A5rDa03NEnt3w1tr/Fn sCpfrXlUwKiHp7NGGx1o90cIkyzXQq3hx0hbBKTInjsZ3+cR+wM= -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:31 2025 by rpki-client