$ rpki-client -vvf repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft File: 4B35C20AD3085CF1B9FAEA049AD742539E090205.mft (raw, json) Hash identifier: 56ZY9Jk8S6MxFQfwLMFhemDdIpChfgfwLPAIgAgMcjA= Subject key identifier: 91:70:69:B4:4B:EE:0B:B7:CD:46:67:29:76:D4:05:0D:09:C8:D3:F8 Authority key identifier: 4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 Certificate issuer: /CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Certificate serial: 211D4E48B1D381538E2CBB6CE1F6729149C7D1EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft Manifest number: 0220 Signing time: Fri 04 Apr 2025 09:01:08 +0000 Manifest this update: Fri 04 Apr 2025 08:56:08 +0000 Manifest next update: Mon 07 Apr 2025 15:00:08 +0000 Files and hashes: 1: 3130332e3137392e36352e302f32342d3234203d3e20313439333335.roa (hash: JkbWHivPhJsD3g1oehsQXHSkUe1IApwcb1eZRN7L4oQ=) 2: 3130332e3137392e36342e302f32342d3234203d3e20313439333335.roa (hash: V8A5qvlja2NYXpcRnbKxugWJ4eOJeRmdBpf3sJh4ueQ=) 3: 4B35C20AD3085CF1B9FAEA049AD742539E090205.crl (hash: R5iSIFtpE6CMjeKyCytfkdclhj4TyHr0CjRUKQBcsoQ=) 4: 3130332e3137392e36342e302f32332d3233203d3e20313439333335.roa (hash: lOzsBAzFryNZCB+/jSigc4I1GSMJcpM/tHVhQtqL83s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:1d:4e:48:b1:d3:81:53:8e:2c:bb:6c:e1:f6:72:91:49:c7:d1:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Validity Not Before: Apr 4 08:56:08 2025 GMT Not After : Apr 7 15:00:08 2025 GMT Subject: CN=917069B44BEE0BB7CD46672976D4050D09C8D3F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d1:89:f5:a8:65:a2:ec:65:7f:09:bf:e3:7b: 45:ec:15:8a:ce:22:bf:4e:9e:29:b2:e0:6a:92:e2: 8c:86:65:5c:65:a9:63:9d:36:d0:ae:fa:2f:83:c8: f6:7b:57:ee:8a:a9:b0:ed:cb:c7:b8:9b:48:a6:82: 63:95:56:37:84:42:d8:a7:84:e8:f1:1e:c5:da:05: 22:4b:f1:0f:ea:8e:61:44:69:07:88:35:42:b1:05: 7c:ee:1a:3f:70:80:ca:10:ce:74:2b:df:88:69:90: f4:08:a2:ca:ae:fa:b3:bb:93:ed:ff:07:7d:7c:ea: 03:5d:9c:b4:fd:d6:c7:6e:e4:b4:57:b3:e2:50:3d: 36:e9:db:41:59:56:54:cc:23:7f:44:5b:31:5b:50: f4:ef:dc:28:b8:39:c9:a1:65:b0:2d:6b:8c:e0:48: d3:2a:0d:67:fd:1a:f8:02:ac:12:8e:ba:9f:f9:e2: e9:0a:df:20:77:53:7c:a5:34:0d:0b:8b:a9:82:48: 69:90:eb:56:7d:8f:a1:8b:c0:93:45:b4:35:c7:bd: 32:e1:01:7d:dd:4d:4b:e5:a6:fc:b1:6a:2c:ca:1e: 31:6b:b6:fa:0d:fa:c3:c2:fd:9c:78:e0:7e:f1:cc: 53:44:30:81:34:f0:7f:ae:05:8b:c9:f4:cf:53:9a: 5b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:70:69:B4:4B:EE:0B:B7:CD:46:67:29:76:D4:05:0D:09:C8:D3:F8 X509v3 Authority Key Identifier: keyid:4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:25:7a:b4:a5:94:e3:9a:b7:e9:da:a0:bd:43:1d:66:06:37: 7a:81:25:7f:35:ae:26:94:a0:18:ff:4a:4f:84:96:fe:d0:e9: 13:c2:27:be:07:d2:7e:bd:8f:50:1c:58:4b:21:0e:ae:8d:9c: 16:bc:79:e9:a1:c5:9c:d6:38:1c:45:38:04:51:af:82:b7:13: 83:84:92:ce:24:26:75:75:2c:50:d5:b5:66:a4:89:cd:e2:a5: e8:49:47:c0:4e:d5:10:71:88:f6:23:c8:33:99:d8:24:37:36: 41:da:02:bc:33:be:9d:3a:4c:a0:ee:51:80:2b:24:9c:37:aa: 22:e6:99:17:a1:7b:9e:93:d8:af:ca:95:48:94:cc:fe:52:24: 00:3a:25:00:f7:1f:52:bb:37:a1:2d:9f:6c:f6:0c:c8:31:57: dc:4a:b1:16:22:b0:66:16:5e:14:1e:bb:27:3b:f0:3b:43:10: ae:ae:31:d8:10:2f:1c:d6:1c:75:fc:11:b7:79:b8:fa:43:03: 1a:aa:fb:a0:fd:3e:c5:18:16:1c:1c:4d:c7:5a:58:0e:f3:a3: 57:a1:f0:a1:89:64:91:fd:89:6f:47:a6:d6:d8:c1:cd:01:1b: eb:42:39:0b:88:e9:4e:84:db:96:fa:3f:ad:36:e1:98:04:af: b8:75:65:de -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIR1OSLHTgVOOLLts4fZykUnH0ewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5 RTA5MDIwNTAeFw0yNTA0MDQwODU2MDhaFw0yNTA0MDcxNTAwMDhaMDMxMTAvBgNV BAMTKDkxNzA2OUI0NEJFRTBCQjdDRDQ2NjcyOTc2RDQwNTBEMDlDOEQzRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC30Yn1qGWi7GV/Cb/je0XsFYrO Ir9Onimy4GqS4oyGZVxlqWOdNtCu+i+DyPZ7V+6KqbDty8e4m0imgmOVVjeEQtin hOjxHsXaBSJL8Q/qjmFEaQeINUKxBXzuGj9wgMoQznQr34hpkPQIosqu+rO7k+3/ B3186gNdnLT91sdu5LRXs+JQPTbp20FZVlTMI39EWzFbUPTv3Ci4OcmhZbAta4zg SNMqDWf9GvgCrBKOup/54ukK3yB3U3ylNA0Li6mCSGmQ61Z9j6GLwJNFtDXHvTLh AX3dTUvlpvyxaizKHjFrtvoN+sPC/Zx44H7xzFNEMIE08H+uBYvJ9M9TmluBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkXBptEvuC7fNRmcpdtQFDQnI0/gwHwYDVR0j BBgwFoAUSzXCCtMIXPG5+uoEmtdCU54JAgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NzdkZTAxMy05YjU2LTQ5ZmYtOGI3OS0zNjY3YTM0NWNiOGQvMC80QjM1QzIwQUQz MDg1Q0YxQjlGQUVBMDQ5QUQ3NDI1MzlFMDkwMjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5RTA5 MDIwNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzc3ZGUwMTMtOWI1Ni00OWZmLThi NzktMzY2N2EzNDVjYjhkLzAvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQy NTM5RTA5MDIwNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAolerSllOOat+naoL1DHWYGN3qBJX81riaU oBj/Sk+Elv7Q6RPCJ74H0n69j1AcWEshDq6NnBa8eemhxZzWOBxFOARRr4K3E4OE ks4kJnV1LFDVtWakic3ipehJR8BO1RBxiPYjyDOZ2CQ3NkHaArwzvp06TKDuUYAr JJw3qiLmmRehe56T2K/KlUiUzP5SJAA6JQD3H1K7N6Etn2z2DMgxV9xKsRYisGYW XhQeuyc78DtDEK6uMdgQLxzWHHX8Ebd5uPpDAxqq+6D9PsUYFhwcTcdaWA7zo1eh 8KGJZJH9iW9HptbYwc0BG+tCOQuI6U6E25b6P6024ZgEr7h1Zd4= -----END CERTIFICATE-----Generated at Sat Apr 5 15:56:01 2025 by rpki-client