$ rpki-client -vvf repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft File: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft (raw, json) Hash identifier: K2crnG5EM3XACUTegsxCsZ85SxrEL8Jzg2G7ghD8Ro4= Subject key identifier: FA:4B:74:C0:54:2B:82:79:BA:39:73:D8:79:9A:F6:54:6D:5A:23:C6 Authority key identifier: C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 Certificate issuer: /CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Certificate serial: 40B3AC4B4FAEADA43DE6013F697C966C8108FC90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft Manifest number: 02F6 Signing time: Sun 16 Feb 2025 19:41:47 +0000 Manifest this update: Sun 16 Feb 2025 19:36:47 +0000 Manifest next update: Wed 19 Feb 2025 20:50:47 +0000 Files and hashes: 1: 3130332e3136312e37322e302f32342d3234203d3e203538333738.roa (hash: WHyXZiHm1tFrwAXrz4brauNseb8V8ZMQneoiM0eZr/g=) 2: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl (hash: jc04qUxDcOTMVdYczcZIaqJlkaEuw11TGF3NWCxWtAk=) 3: 3130332e3136312e37332e302f32342d3234203d3e203538333738.roa (hash: N58UqlFMp748Khi3FbSfGS0G+XtsfGGuqPSO+3bYMNA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 20:50:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:b3:ac:4b:4f:ae:ad:a4:3d:e6:01:3f:69:7c:96:6c:81:08:fc:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Validity Not Before: Feb 16 19:36:47 2025 GMT Not After : Feb 19 20:50:47 2025 GMT Subject: CN=FA4B74C0542B8279BA3973D8799AF6546D5A23C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:05:e0:de:76:b6:94:aa:bd:a4:6f:c7:6f:99: 5b:69:e3:28:71:73:19:47:4b:61:14:d6:7e:26:43: 56:86:6c:99:3d:a1:36:ce:2b:0e:4a:c8:cf:4c:3d: 5a:72:24:14:cb:43:51:97:da:5a:0b:0c:64:5b:4f: f7:70:58:02:17:76:40:8e:9c:37:34:89:ea:ce:5b: 0e:ff:8f:62:a6:24:e5:d8:03:9b:96:ba:0b:7a:5c: 8e:00:52:e2:3c:69:ae:00:b5:b2:92:d3:7a:11:ee: 93:6c:50:2f:0a:e3:08:a3:0e:7b:89:5f:bf:d1:6b: 1f:d6:b3:a1:a8:ff:2f:21:88:6b:0a:e3:c9:60:e3: db:d0:20:a2:26:ca:bf:41:bd:d8:ee:55:d4:9b:03: 92:5b:d8:03:58:5b:78:24:bd:b8:ea:52:4c:c9:87: 3f:18:15:33:3d:7e:1d:a8:38:36:1e:ac:81:69:c7: 83:86:c0:54:3e:bd:a9:5c:e5:13:02:c9:6a:9e:ce: 99:ad:e8:bc:5f:ed:b5:92:03:14:cb:84:5b:f5:da: d3:6e:0a:45:15:9e:31:82:d7:b1:f6:96:19:06:97: 99:8d:57:9f:3a:9a:83:3c:6c:69:7c:a5:d9:cf:cb: 03:35:8c:fa:16:c5:c9:19:96:15:da:b9:05:cf:5e: 30:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:4B:74:C0:54:2B:82:79:BA:39:73:D8:79:9A:F6:54:6D:5A:23:C6 X509v3 Authority Key Identifier: keyid:C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:19:e4:a2:35:3f:d1:2c:f5:cb:2e:97:4a:b1:e9:ce:13:d9: bf:8a:5f:6f:0e:20:84:e1:08:58:fc:44:c7:53:1f:91:0a:1e: b1:db:f0:11:90:48:ee:02:55:bf:4d:84:24:c0:aa:4c:fc:bd: ae:1a:89:67:6b:b4:c0:c6:2a:b2:5a:27:a0:40:41:23:6b:c8: c3:ef:0a:3c:52:43:a1:35:2c:cf:4f:a2:85:95:3c:04:48:69: ad:c5:9b:84:be:39:03:aa:7c:f0:c6:1e:0c:de:e7:35:8b:ec: 2e:cb:7d:64:34:04:ee:fb:83:e7:9a:35:14:d9:1c:61:40:e6: db:8e:b3:eb:78:ba:e1:34:53:db:f0:a6:02:33:36:77:b1:d6: 5f:2e:e5:cf:c3:76:7c:c2:87:63:f0:cf:bd:2d:c9:1d:53:a5: b4:76:40:8e:a9:16:bc:64:29:1a:61:be:8f:ea:f7:3c:cd:3a: 7a:51:04:89:9c:34:2c:6f:b3:4c:ea:0d:ea:15:1b:4c:8b:b6: 7a:e2:3d:a7:56:fd:e8:d3:1e:f2:2e:d1:48:05:3f:87:6f:e3: 94:6f:4a:4d:e7:93:0e:c3:17:76:0f:26:f9:62:c9:be:5c:5f: 59:6a:70:96:e3:1e:af:32:eb:8f:4b:6c:4a:54:b2:9e:ea:c8: 5d:93:00:37 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQLOsS0+uraQ95gE/aXyWbIEI/JAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4 MTgxOTZGNDAeFw0yNTAyMTYxOTM2NDdaFw0yNTAyMTkyMDUwNDdaMDMxMTAvBgNV BAMTKEZBNEI3NEMwNTQyQjgyNzlCQTM5NzNEODc5OUFGNjU0NkQ1QTIzQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEBeDedraUqr2kb8dvmVtp4yhx cxlHS2EU1n4mQ1aGbJk9oTbOKw5KyM9MPVpyJBTLQ1GX2loLDGRbT/dwWAIXdkCO nDc0ierOWw7/j2KmJOXYA5uWugt6XI4AUuI8aa4AtbKS03oR7pNsUC8K4wijDnuJ X7/Rax/Ws6Go/y8hiGsK48lg49vQIKImyr9BvdjuVdSbA5Jb2ANYW3gkvbjqUkzJ hz8YFTM9fh2oODYerIFpx4OGwFQ+valc5RMCyWqezpmt6Lxf7bWSAxTLhFv12tNu CkUVnjGC17H2lhkGl5mNV586moM8bGl8pdnPywM1jPoWxckZlhXauQXPXjB7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+kt0wFQrgnm6OXPYeZr2VG1aI8YwHwYDVR0j BBgwFoAUwg3TevDvPKBV39+PP10Y8IGBlvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWJlN2FkOC1lMTVjLTQwMTQtYmZiMy1iZTY5YjdkNWRlODgvMC9DMjBERDM3QUYw RUYzQ0EwNTVERkRGOEYzRjVEMThGMDgxODE5NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4MTgx OTZGNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWViZTdhZDgtZTE1Yy00MDE0LWJm YjMtYmU2OWI3ZDVkZTg4LzAvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4 RjA4MTgxOTZGNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ0Z5KI1P9Es9csul0qx6c4T2b+KX28OIITh CFj8RMdTH5EKHrHb8BGQSO4CVb9NhCTAqkz8va4aiWdrtMDGKrJaJ6BAQSNryMPv CjxSQ6E1LM9PooWVPARIaa3Fm4S+OQOqfPDGHgze5zWL7C7LfWQ0BO77g+eaNRTZ HGFA5tuOs+t4uuE0U9vwpgIzNnex1l8u5c/DdnzCh2Pwz70tyR1TpbR2QI6pFrxk KRphvo/q9zzNOnpRBImcNCxvs0zqDeoVG0yLtnriPadW/ejTHvIu0UgFP4dv45Rv Sk3nkw7DF3YPJvliyb5cX1lqcJbjHq8y649LbEpUsp7qyF2TADc= -----END CERTIFICATE-----Generated at Mon Feb 17 07:12:37 2025 by rpki-client