$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: o0X5eIlaxEKdxZRLnAkwu/LsOoCUAlSwWZfQ1rHfPLo= Subject key identifier: D4:82:CD:96:41:41:08:02:AA:6C:C4:65:69:D2:CB:B4:59:85:04:06 Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 0ED8ED9233B10320B731C8F7DE9FC8A6564F3F7A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 017B Signing time: Sun 16 Feb 2025 16:31:44 +0000 Manifest this update: Sun 16 Feb 2025 16:26:44 +0000 Manifest next update: Thu 20 Feb 2025 01:25:44 +0000 Files and hashes: 1: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: 1MOaoTtSeknOjoVBmUglV+wXtTKuvc35wjk7nSPNjCs=) 2: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: nOmusyTjg1lvZ1iGKTLy/8UGF4jeQtTQYSW2SNX3cao=) 3: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: 9E8QVBoAroDUqMrtqFLZdvTypP1Njqyq9IYgh3B0/7s=) 4: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: IogGCBWgp3JrkSQOYf566gL9gQvFCS2GUVGyd4wX/SE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 01:25:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:d8:ed:92:33:b1:03:20:b7:31:c8:f7:de:9f:c8:a6:56:4f:3f:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Feb 16 16:26:44 2025 GMT Not After : Feb 20 01:25:44 2025 GMT Subject: CN=D482CD9641410802AA6CC46569D2CBB459850406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f5:0f:d6:d6:86:27:7d:5d:7e:ee:a1:e7:51: 10:d0:50:ca:e6:91:b1:92:f2:4d:d4:cf:bc:1a:96: cc:09:e8:4e:c4:e8:1e:a1:50:de:a7:23:ec:6e:e0: 93:3c:73:4b:f9:b2:fa:87:6f:7e:14:9b:f2:e9:6c: 97:c4:30:3f:1b:65:fa:43:53:89:45:45:cc:3c:d0: 68:d1:70:83:6e:19:fc:5e:f0:e2:8e:a3:14:bd:19: b9:39:42:40:c0:7b:58:61:9d:a2:c1:47:f8:c2:82: ac:41:7d:1e:02:0d:f2:da:20:13:e2:e1:96:05:b7: 55:16:b5:02:59:a4:e3:8e:29:0a:f3:d2:94:78:13: 8e:be:19:e2:d5:95:89:a4:86:8c:93:df:34:32:ca: c7:03:71:28:0e:a7:2c:8b:2a:99:49:f9:1b:f1:70: 56:be:27:a2:12:33:9c:f2:9e:a8:f4:f9:6d:e5:f3: fe:50:8c:0d:0b:5a:00:49:1d:97:a8:7c:59:38:29: e8:87:c0:aa:7c:2c:54:99:d3:ce:e0:82:4b:7f:59: ee:6e:e7:0e:6e:18:13:ab:11:6a:70:75:44:c3:f4: bc:39:ee:b7:5c:82:c9:49:be:20:48:37:04:1e:ad: 6f:2d:f5:c3:76:1d:48:01:c6:c6:7c:57:53:8f:7a: 15:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:82:CD:96:41:41:08:02:AA:6C:C4:65:69:D2:CB:B4:59:85:04:06 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:be:7d:88:9a:20:e0:f8:d3:dc:be:3f:8f:48:8c:c6:cb:aa: 81:bf:6e:8f:79:1f:40:93:01:ef:00:60:ef:9b:ac:c4:c0:cf: 20:1a:fd:22:a6:5a:16:65:71:59:fa:c8:3b:1b:a1:00:8f:3c: 66:95:91:f6:10:43:b2:4f:ba:43:d2:f1:a1:b1:da:86:a7:83: ac:09:fa:ee:4e:08:99:4f:40:94:27:b6:4c:65:eb:c6:3f:3f: a3:ca:54:f7:47:3c:45:c6:77:cc:0d:5a:f9:07:9e:91:de:68: 26:ab:2c:66:cc:de:a9:a4:85:be:a6:14:42:21:96:8a:d1:a2: b5:35:1f:20:19:c1:09:4b:0c:27:18:43:09:7a:57:6d:74:48: 42:40:22:b7:79:2e:14:dc:9a:3c:26:45:90:ae:51:2d:4c:8f: 3d:63:46:b6:32:d5:8d:b0:ab:f8:cf:6b:05:fb:13:a6:2f:a1: 9f:53:2c:2e:3f:62:c3:4c:36:3e:7c:9b:18:3a:90:aa:48:37: 30:0c:38:cd:1f:0d:24:cb:42:94:eb:e8:21:51:71:fa:8b:07: a6:fd:47:15:95:2c:49:4d:9f:07:18:e9:5c:4c:6b:d3:16:ff: af:00:e1:d3:b4:9c:cf:55:35:db:ae:96:e3:0c:75:59:17:0d: 93:df:2b:1a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDtjtkjOxAyC3Mcj33p/IplZPP3owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTAyMTYxNjI2NDRaFw0yNTAyMjAwMTI1NDRaMDMxMTAvBgNV BAMTKEQ0ODJDRDk2NDE0MTA4MDJBQTZDQzQ2NTY5RDJDQkI0NTk4NTA0MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC39Q/W1oYnfV1+7qHnURDQUMrm kbGS8k3Uz7walswJ6E7E6B6hUN6nI+xu4JM8c0v5svqHb34Um/LpbJfEMD8bZfpD U4lFRcw80GjRcINuGfxe8OKOoxS9Gbk5QkDAe1hhnaLBR/jCgqxBfR4CDfLaIBPi 4ZYFt1UWtQJZpOOOKQrz0pR4E46+GeLVlYmkhoyT3zQyyscDcSgOpyyLKplJ+Rvx cFa+J6ISM5zynqj0+W3l8/5QjA0LWgBJHZeofFk4KeiHwKp8LFSZ087ggkt/We5u 5w5uGBOrEWpwdUTD9Lw57rdcgslJviBINwQerW8t9cN2HUgBxsZ8V1OPehWrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1ILNlkFBCAKqbMRladLLtFmFBAYwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAG+fYiaIOD409y+P49IjMbLqoG/bo95H0CT Ae8AYO+brMTAzyAa/SKmWhZlcVn6yDsboQCPPGaVkfYQQ7JPukPS8aGx2oang6wJ +u5OCJlPQJQntkxl68Y/P6PKVPdHPEXGd8wNWvkHnpHeaCarLGbM3qmkhb6mFEIh lorRorU1HyAZwQlLDCcYQwl6V210SEJAIrd5LhTcmjwmRZCuUS1Mjz1jRrYy1Y2w q/jPawX7E6YvoZ9TLC4/YsNMNj58mxg6kKpINzAMOM0fDSTLQpTr6CFRcfqLB6b9 RxWVLElNnwcY6VxMa9MW/68A4dO0nM9VNduuluMMdVkXDZPfKxo= -----END CERTIFICATE-----Generated at Mon Feb 17 07:27:33 2025 by rpki-client