$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: 7zgLSDeKlwSY9eWyhvgZNHjhFOLSsGAq5Nr3Pt5QtnE= Subject key identifier: 57:AE:E1:FE:15:AF:0D:92:11:4C:A9:99:20:17:1F:17:06:49:C8:35 Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 4C962D76AA55DFB20A672FC6DD6C709616E5EAF8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: 7C Signing time: Mon 07 Apr 2025 07:51:04 +0000 Manifest this update: Mon 07 Apr 2025 07:46:04 +0000 Manifest next update: Thu 10 Apr 2025 13:32:04 +0000 Files and hashes: 1: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: Jit+uJIEyqjGrv7HRmDwiYsYuySfB8Lk478TOnlXVFM=) 2: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: yhzwXJr9vbFXo5RT7AoE6AR01hVzPIOHEi6pGYuQOEQ=) 3: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: tqotyjAH3hPNKC4KMmbJRyOeRh1hAR0CNyyT9ndAu7k=) 4: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: 5TysUWdf//ijZZADQg/kyk1hPl8L9rMcShCWekWYvss=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 13:32:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:96:2d:76:aa:55:df:b2:0a:67:2f:c6:dd:6c:70:96:16:e5:ea:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Apr 7 07:46:04 2025 GMT Not After : Apr 10 13:32:04 2025 GMT Subject: CN=57AEE1FE15AF0D92114CA99920171F170649C835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:2e:a8:0f:1a:ef:15:cb:19:e5:48:c4:43:2f: ea:94:65:cc:ef:40:03:7d:d8:87:f7:9c:76:f9:9c: c6:98:b2:fc:41:f1:dd:e1:00:0c:95:f9:e6:6d:c9: 10:d3:15:4c:a0:a1:fe:bf:cd:c9:11:0f:5d:ee:ce: 6e:0b:93:7b:1e:cc:a6:c3:3b:01:c2:fd:67:30:82: f2:e4:2b:14:00:e7:47:7d:b0:b5:96:b6:55:2f:73: a8:93:b1:2b:de:47:8f:2e:86:99:bb:c7:79:ad:c7: b4:7a:11:c9:2d:88:4b:e4:82:c7:3d:80:08:74:01: 7b:4f:86:05:d8:d0:d0:f0:54:ce:f4:c5:ea:c9:ee: 99:26:ad:c6:75:e3:bd:3e:22:02:21:f0:72:32:81: bd:9e:98:ed:34:42:82:c5:e4:06:4f:64:df:98:ae: 8c:01:7d:04:4a:a0:a7:d6:04:b1:02:0b:f6:a0:2e: 4d:fa:c1:17:81:80:08:ea:f5:71:a2:a8:f9:88:26: 4d:2b:52:41:d9:ce:e0:bd:55:f1:e1:b1:63:8f:99: f7:2e:a6:b8:a2:e2:0e:cc:dc:6d:5a:ca:e6:c4:91: ab:4b:3f:07:03:93:98:7e:4c:1b:61:88:ad:5b:f9: 7a:7c:01:01:0c:b7:41:7c:24:22:58:81:02:8d:42: b7:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:AE:E1:FE:15:AF:0D:92:11:4C:A9:99:20:17:1F:17:06:49:C8:35 X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:c2:1c:81:e5:70:26:9c:b2:b6:e6:f1:6d:88:30:40:c6:16: ea:76:63:5f:45:ff:cb:26:aa:33:b6:d2:4e:8c:b9:e9:40:0a: 6c:c5:b9:a7:32:d7:0d:8e:1f:1d:e4:74:82:3e:0e:27:c9:86: 70:31:5d:be:47:a0:6d:29:c9:37:23:e4:16:fb:0a:06:5c:ca: c8:71:14:e1:3e:64:8d:d2:07:9e:51:9d:03:af:12:6c:72:3b: ad:7a:a5:c6:ae:1b:b1:bd:0c:42:32:be:37:2d:a8:e8:f8:a1: f4:9d:74:9c:53:dd:95:3c:ff:67:11:63:08:65:72:f3:f8:22: d7:21:09:c0:0a:75:87:48:77:0e:e7:0b:7b:85:32:46:99:c9: a9:ea:2c:83:60:ac:1f:cc:90:fd:90:23:e6:81:96:c2:3c:ac: fb:59:a7:ba:6c:bd:34:ae:9e:1c:ea:b5:fd:51:03:7b:ac:a5: 26:b5:10:dd:43:5f:11:eb:5e:8d:c4:fa:d3:e4:a6:80:d7:14: e5:26:bd:ec:ec:0a:d2:b8:2f:e3:de:56:1a:36:f4:6c:8e:60: b9:79:3f:80:64:e2:a2:2f:5c:9d:9f:c9:79:80:c1:43:b7:ec: 16:06:16:d2:35:94:22:f2:69:89:da:84:e3:f1:f8:50:71:35: 08:20:48:cf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTJYtdqpV37IKZy/G3Wxwlhbl6vgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNTA0MDcwNzQ2MDRaFw0yNTA0MTAxMzMyMDRaMDMxMTAvBgNV BAMTKDU3QUVFMUZFMTVBRjBEOTIxMTRDQTk5OTIwMTcxRjE3MDY0OUM4MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsLqgPGu8VyxnlSMRDL+qUZczv QAN92If3nHb5nMaYsvxB8d3hAAyV+eZtyRDTFUygof6/zckRD13uzm4Lk3sezKbD OwHC/WcwgvLkKxQA50d9sLWWtlUvc6iTsSveR48uhpm7x3mtx7R6EcktiEvkgsc9 gAh0AXtPhgXY0NDwVM70xerJ7pkmrcZ1470+IgIh8HIygb2emO00QoLF5AZPZN+Y rowBfQRKoKfWBLECC/agLk36wReBgAjq9XGiqPmIJk0rUkHZzuC9VfHhsWOPmfcu prii4g7M3G1ayubEkatLPwcDk5h+TBthiK1b+Xp8AQEMt0F8JCJYgQKNQre5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUV67h/hWvDZIRTKmZIBcfFwZJyDUwHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI/CHIHlcCacsrbm8W2IMEDGFup2Y19F/8sm qjO20k6MuelACmzFuacy1w2OHx3kdII+DifJhnAxXb5HoG0pyTcj5Bb7CgZcyshx FOE+ZI3SB55RnQOvEmxyO616pcauG7G9DEIyvjctqOj4ofSddJxT3ZU8/2cRYwhl cvP4ItchCcAKdYdIdw7nC3uFMkaZyanqLINgrB/MkP2QI+aBlsI8rPtZp7psvTSu nhzqtf1RA3uspSa1EN1DXxHrXo3E+tPkpoDXFOUmvezsCtK4L+PeVho29GyOYLl5 P4Bk4qIvXJ2fyXmAwUO37BYGFtI1lCLyaYnahOPx+FBxNQggSM8= -----END CERTIFICATE-----Generated at Wed Apr 9 15:54:38 2025 by rpki-client