$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: iaOAycHslloGzWdYb2/pp3iPJ62atxUioKu3s5PlTxE= Subject key identifier: D7:8C:B5:55:35:D9:9C:D3:2A:AB:F3:B8:DA:56:39:48:42:FD:6C:98 Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 43CFB434AD3F2CD87E2E77D01CCA911C6642233C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 0186 Signing time: Wed 12 Mar 2025 12:41:43 +0000 Manifest this update: Wed 12 Mar 2025 12:36:43 +0000 Manifest next update: Sat 15 Mar 2025 21:50:43 +0000 Files and hashes: 1: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: 9E8QVBoAroDUqMrtqFLZdvTypP1Njqyq9IYgh3B0/7s=) 2: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: IogGCBWgp3JrkSQOYf566gL9gQvFCS2GUVGyd4wX/SE=) 3: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: Qp2bH+XKTDgTapcbyL999+EEpOmemSKHH3n9bvsLWHY=) 4: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: nOmusyTjg1lvZ1iGKTLy/8UGF4jeQtTQYSW2SNX3cao=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 15 Mar 2025 21:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:cf:b4:34:ad:3f:2c:d8:7e:2e:77:d0:1c:ca:91:1c:66:42:23:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Mar 12 12:36:43 2025 GMT Not After : Mar 15 21:50:43 2025 GMT Subject: CN=D78CB55535D99CD32AABF3B8DA56394842FD6C98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e2:d6:ab:a3:6c:61:c5:30:ff:06:05:f3:6f: 80:8e:27:25:e9:36:85:a7:22:95:4d:bb:90:eb:a2: a3:9f:1f:a7:5e:d5:9e:d8:67:c1:ef:96:e8:4c:1e: 4a:7b:d6:a5:27:fc:75:b1:f4:3b:06:cb:5b:71:22: 47:78:85:4f:92:5b:c2:bc:1e:96:91:97:79:14:c9: de:8e:eb:26:7e:fc:45:d0:12:01:a5:89:a8:19:da: 60:a5:3c:0d:c1:f0:e0:df:76:c2:c8:f7:f3:ff:9d: 00:3d:34:cf:38:64:97:d1:70:45:ee:fb:92:3c:ac: 6f:06:c7:eb:96:df:25:8f:0f:d8:01:69:a1:4a:d7: f5:a1:fc:90:90:f7:65:8e:df:55:87:6e:cc:43:8c: f7:53:f9:77:77:bd:43:7c:58:bf:af:28:07:d2:26: e2:24:c5:56:1c:92:51:96:87:be:3e:3b:4a:d4:4a: f9:5e:6b:ea:61:d1:64:f7:76:e8:a7:5a:24:79:ac: c7:80:f3:dd:5b:40:4a:79:9c:b8:1b:47:a4:ff:f3: d0:56:9e:e8:da:05:94:9b:25:50:a5:d7:15:f6:02: a2:6e:3a:77:47:6d:e9:61:2b:d7:de:98:93:4e:d8: 52:b5:da:20:0c:c2:91:b0:a3:3c:56:93:e8:0a:94: 7b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8C:B5:55:35:D9:9C:D3:2A:AB:F3:B8:DA:56:39:48:42:FD:6C:98 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:1d:1f:7b:d9:ec:e7:ce:51:d9:03:cb:20:c1:a0:db:bd:bc: 67:61:b5:40:41:5c:1f:f3:83:03:ab:3e:b3:3f:7a:eb:bc:60: fa:91:78:17:fb:37:26:d5:dd:f2:4a:9b:07:29:b8:5d:ba:d9: cb:59:21:be:61:f5:00:3c:6e:0f:ae:80:c3:fe:a8:73:a6:b4: 65:87:e4:6c:26:a8:95:c9:6b:19:60:a2:c6:a0:53:99:bf:71: 23:a4:ff:26:c8:9c:32:05:73:c3:45:bc:8e:77:c4:89:89:f9: be:3a:9d:c6:7d:12:07:26:35:70:f4:ea:75:f5:5f:63:32:fa: 6a:b2:97:7f:a6:6b:21:57:24:9a:29:18:e7:7b:ce:58:63:91: 83:13:2f:a2:a9:02:80:7f:09:ce:5e:42:1a:51:5a:95:05:bd: 5b:12:24:f7:40:11:41:f4:60:64:b5:e7:ab:c0:11:4d:09:e8: 7b:6b:20:38:ca:8c:a7:49:88:aa:98:52:d0:92:12:cc:88:92: 9e:c3:84:73:a9:d4:a0:18:e2:ba:28:bb:38:15:d1:44:03:07: 88:5c:cd:3d:cc:34:dd:bd:c9:5f:a5:55:dd:bd:5b:1e:66:97: 72:e2:8a:dd:17:01:dd:bd:0d:49:ab:e1:4f:00:57:23:85:03: d4:23:2f:6b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ8+0NK0/LNh+LnfQHMqRHGZCIzwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTAzMTIxMjM2NDNaFw0yNTAzMTUyMTUwNDNaMDMxMTAvBgNV BAMTKEQ3OENCNTU1MzVEOTlDRDMyQUFCRjNCOERBNTYzOTQ4NDJGRDZDOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb4taro2xhxTD/BgXzb4COJyXp NoWnIpVNu5DroqOfH6de1Z7YZ8HvluhMHkp71qUn/HWx9DsGy1txIkd4hU+SW8K8 HpaRl3kUyd6O6yZ+/EXQEgGliagZ2mClPA3B8ODfdsLI9/P/nQA9NM84ZJfRcEXu +5I8rG8Gx+uW3yWPD9gBaaFK1/Wh/JCQ92WO31WHbsxDjPdT+Xd3vUN8WL+vKAfS JuIkxVYcklGWh74+O0rUSvlea+ph0WT3duinWiR5rMeA891bQEp5nLgbR6T/89BW nujaBZSbJVCl1xX2AqJuOndHbelhK9femJNO2FK12iAMwpGwozxWk+gKlHsrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU14y1VTXZnNMqq/O42lY5SEL9bJgwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEodH3vZ7OfOUdkDyyDBoNu9vGdhtUBBXB/z gwOrPrM/euu8YPqReBf7NybV3fJKmwcpuF262ctZIb5h9QA8bg+ugMP+qHOmtGWH 5GwmqJXJaxlgosagU5m/cSOk/ybInDIFc8NFvI53xImJ+b46ncZ9EgcmNXD06nX1 X2My+mqyl3+mayFXJJopGOd7zlhjkYMTL6KpAoB/Cc5eQhpRWpUFvVsSJPdAEUH0 YGS156vAEU0J6HtrIDjKjKdJiKqYUtCSEsyIkp7DhHOp1KAY4roouzgV0UQDB4hc zT3MNN29yV+lVd29Wx5ml3Liit0XAd29DUmr4U8AVyOFA9QjL2s= -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:30 2025 by rpki-client