$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft File: 20B00D67B048DAE581FE60A498995A27878149A7.mft (raw, json) Hash identifier: 7jOmHqVp1jk1b0o8Wm7+Axl/dKMJj/WPgFS7QFqLPxM= Subject key identifier: 0C:88:1D:9D:12:2A:F0:A6:75:59:8A:9E:83:F6:E6:DC:94:D3:26:D4 Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7 Certificate serial: 7C7A7B7CF245AB6C90BB6C2B35A29995459B73FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft Manifest number: 017C Signing time: Tue 08 Apr 2025 13:41:01 +0000 Manifest this update: Tue 08 Apr 2025 13:36:01 +0000 Manifest next update: Fri 11 Apr 2025 14:04:01 +0000 Files and hashes: 1: 3230322e37352e31362e302f32302d3234203d3e203338373834.roa (hash: C3Y5TVjlMMx3bj7loYa7CuUDY/TXp19dghaSZKbxk0g=) 2: 323430313a383234303a3a2f33322d3438203d3e203338373834.roa (hash: FKopsjmhu2ZpwkHZKTS2a2cSATg1lZ109SObjsmNTcI=) 3: 3230322e37352e31362e302f32302d3234203d3e203233393438.roa (hash: SDDT76sB5fD/qwKD2c7jZ56T2/zb4XIJfGohnMvEips=) 4: 323430313a383234303a3a2f33322d3438203d3e203233393438.roa (hash: LQahwQ72kro/LJH779tBFmRDGBJ/aQ/cw7AFn3KwUxg=) 5: 20B00D67B048DAE581FE60A498995A27878149A7.crl (hash: Ilq3bVSdQcZ3DHSpgLRlZ08QqyuBJf6HEuWVTLrZW5o=) 6: 3230322e37352e32382e302f32332d3234203d3e20313338383731.roa (hash: vRq65LfzwGz4j+oEbqBPQ82wtT1KDumkC2L75cgO4WQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:7a:7b:7c:f2:45:ab:6c:90:bb:6c:2b:35:a2:99:95:45:9b:73:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7 Validity Not Before: Apr 8 13:36:01 2025 GMT Not After : Apr 11 14:04:01 2025 GMT Subject: CN=0C881D9D122AF0A675598A9E83F6E6DC94D326D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:03:f4:e8:15:5f:f0:30:fe:10:22:64:05:c7: 52:0a:c5:3c:7a:6a:7b:9a:ea:9f:64:46:7e:55:19: 62:1d:92:93:9c:11:4a:fa:ae:6f:c8:87:0d:c2:d3: 59:fe:c2:c6:a2:c7:93:f4:db:74:cf:89:f8:a9:1e: 8c:be:d8:cc:bd:f4:43:b8:b0:9a:1d:e6:0a:15:22: c6:62:8e:b4:f5:71:95:5f:f5:ac:ec:87:26:77:70: 09:4b:89:77:d1:5c:d0:e6:0d:49:12:33:59:f6:3f: b9:a1:b7:99:fa:c1:ed:8c:1e:d3:99:46:80:08:08: 6f:e4:50:6d:07:4b:1e:e7:45:c7:7b:13:b5:8d:d1: ff:b5:31:7f:8a:5a:35:ca:b2:82:a8:3f:3a:19:f1: c7:55:a7:f3:0c:d8:86:8e:ee:a6:1c:10:74:31:a0: 00:1d:3d:f2:00:da:9a:2b:ea:e6:f8:8f:f0:58:a3: aa:5c:24:b0:8f:57:83:c6:ea:1c:e3:a5:d9:8b:94: 2b:d9:5b:1c:c9:0f:7b:e0:c2:79:2b:f2:c5:8a:75: 99:8c:80:a8:51:f6:6f:d6:08:5c:06:b8:d4:45:57: e7:98:90:fd:b1:fc:b0:c9:e3:3c:a6:09:f0:b7:c8: 3b:01:75:d9:d2:15:99:e1:f4:20:37:0a:05:33:92: 43:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:88:1D:9D:12:2A:F0:A6:75:59:8A:9E:83:F6:E6:DC:94:D3:26:D4 X509v3 Authority Key Identifier: keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:72:8c:03:43:57:b4:54:3f:45:ec:01:7a:cb:0b:46:34:a9: f4:9a:91:ce:6d:25:94:bd:31:49:ff:ff:55:50:25:1a:e6:57: 3c:76:7c:b2:68:ad:46:95:07:e8:db:a9:0f:a1:dc:21:de:df: 52:52:97:c9:6f:51:a4:eb:e6:b4:b0:6d:68:e2:b9:4b:a2:0c: 44:e0:76:e5:60:3e:32:f6:2c:c4:43:3e:b3:38:e4:62:87:89: 38:64:37:a0:ec:8e:71:49:60:70:10:86:55:15:5a:37:a5:a8: cf:8a:e6:c0:9c:39:19:5b:8b:75:b7:37:aa:d8:b7:9c:e7:47: 3c:8e:43:cd:f3:1e:07:b1:09:6c:8a:5c:22:4b:ce:6f:81:34: e2:cd:61:02:16:de:14:e9:31:ac:fc:ef:20:74:d5:8a:f5:7c: 1a:61:3d:3d:dc:98:32:c9:2e:3e:ac:14:93:f1:5d:1d:55:7e: 11:f0:c8:b9:43:78:9d:88:b6:96:69:06:55:e4:7c:7a:0a:8b: bf:d5:7a:c9:d9:6d:35:84:bb:e3:13:57:75:be:81:1f:ac:c8: 6b:07:53:eb:df:d9:a3:f0:be:e2:df:b9:65:6c:ee:a9:a2:42: 81:90:69:d6:d4:75:69:e8:b7:ce:61:e8:19:5b:1d:a8:55:54: fe:65:56:3b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfHp7fPJFq2yQu2wrNaKZlUWbc/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4 NzgxNDlBNzAeFw0yNTA0MDgxMzM2MDFaFw0yNTA0MTExNDA0MDFaMDMxMTAvBgNV BAMTKDBDODgxRDlEMTIyQUYwQTY3NTU5OEE5RTgzRjZFNkRDOTREMzI2RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBA/ToFV/wMP4QImQFx1IKxTx6 anua6p9kRn5VGWIdkpOcEUr6rm/Ihw3C01n+wsaix5P023TPifipHoy+2My99EO4 sJod5goVIsZijrT1cZVf9azshyZ3cAlLiXfRXNDmDUkSM1n2P7mht5n6we2MHtOZ RoAICG/kUG0HSx7nRcd7E7WN0f+1MX+KWjXKsoKoPzoZ8cdVp/MM2IaO7qYcEHQx oAAdPfIA2por6ub4j/BYo6pcJLCPV4PG6hzjpdmLlCvZWxzJD3vgwnkr8sWKdZmM gKhR9m/WCFwGuNRFV+eYkP2x/LDJ4zymCfC3yDsBddnSFZnh9CA3CgUzkkObAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDIgdnRIq8KZ1WYqeg/bm3JTTJtQwHwYDVR0j BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx NDlBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzQ1NDcxMDQtOTM5ZS00MGUzLThm YzgtNDI1MjI2NDIwNDRiLzAvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVB Mjc4NzgxNDlBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIByjANDV7RUP0XsAXrLC0Y0qfSakc5tJZS9 MUn//1VQJRrmVzx2fLJorUaVB+jbqQ+h3CHe31JSl8lvUaTr5rSwbWjiuUuiDETg duVgPjL2LMRDPrM45GKHiThkN6DsjnFJYHAQhlUVWjelqM+K5sCcORlbi3W3N6rY t5znRzyOQ83zHgexCWyKXCJLzm+BNOLNYQIW3hTpMaz87yB01Yr1fBphPT3cmDLJ Lj6sFJPxXR1VfhHwyLlDeJ2ItpZpBlXkfHoKi7/VesnZbTWEu+MTV3W+gR+syGsH U+vf2aPwvuLfuWVs7qmiQoGQadbUdWnot85h6BlbHahVVP5lVjs= -----END CERTIFICATE-----Generated at Thu Apr 10 11:29:18 2025 by rpki-client