$ rpki-client -vvf krill.peering.ee.columbia.edu/repo/lifeng-hitcowhorse/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.mft File: 160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.mft (raw, json) Hash identifier: /mNRF1Qc3QBanDHkO1AyR99QJy1iL/9GvlZp4VBiPxY= Subject key identifier: 70:B5:02:86:67:6A:BA:51:A4:69:D0:59:7F:B1:B8:CE:F0:B4:1B:C7 Authority key identifier: 16:0F:D2:1A:97:6A:19:A7:B8:1A:59:AA:FA:69:F6:A0:AF:E3:6D:0C Certificate issuer: /CN=160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C Certificate serial: 6903888CF84C90FFDFF84AA7F552767D3C41DEC0 Authority info access: rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.cer Subject info access: rsync://krill.peering.ee.columbia.edu/repo/lifeng-hitcowhorse/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.mft Manifest number: 10 Signing time: Thu 26 Mar 2026 10:17:45 +0000 Manifest this update: Thu 26 Mar 2026 10:12:45 +0000 Manifest next update: Fri 27 Mar 2026 12:07:45 +0000 Files and hashes: 1: 323830343a323639633a32633a3a2f34382d3438203d3e203631353734.roa (hash: QMavE9K7gBEM6GogGHcYvsZl5bvzYs0lsPVzr0Q3K/c=) 2: 160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.crl (hash: D1Qjg/m6Vu/W2rw9GSR92UE8WlPC4tCRhS1/bC0Semo=) 3: 323830343a323639633a32663a3a2f34382d3438203d3e203631353735.roa (hash: 5yx9/Mf/rKB2rXZv6caNL0NK5fVyagtQoVmYNvQ9a/8=) 4: 323830343a323639633a32643a3a2f34382d3438203d3e203631353734.roa (hash: u7aBGMhbMjkQN1A5KveP3oaJJUSaswyiuJyOX+AI73Q=) 5: 323830343a323639633a32653a3a2f34382d3438203d3e203631353735.roa (hash: Er67/yRot+wME4LK/6JsMpsYuGUjqSxXpQhKpIL0bMI=) Validation: OK Signature path: rsync://krill.peering.ee.columbia.edu/repo/lifeng-hitcowhorse/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.crl rsync://krill.peering.ee.columbia.edu/repo/lifeng-hitcowhorse/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.mft rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.cer rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/3F8EBCC0428DD608F39D858BE891B85B0032681A.crl rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/3F8EBCC0428DD608F39D858BE891B85B0032681A.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3F8EBCC0428DD608F39D858BE891B85B0032681A.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 26 Mar 2026 22:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:03:88:8c:f8:4c:90:ff:df:f8:4a:a7:f5:52:76:7d:3c:41:de:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C Validity Not Before: Mar 26 10:12:45 2026 GMT Not After : Mar 27 12:07:45 2026 GMT Subject: CN=70B50286676ABA51A469D0597FB1B8CEF0B41BC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:3c:41:fa:ea:31:97:4d:a6:53:31:17:fe:2e: 8f:05:56:2c:cc:59:a6:3d:2a:33:e2:b7:6a:15:a8: 7c:9c:e6:17:e2:0b:26:98:13:77:bd:aa:2b:c5:4a: 48:3e:79:e2:66:0a:e4:c8:1e:7c:b0:81:f3:ab:79: 09:0c:03:fe:ac:1a:25:df:2d:44:c1:44:87:0c:86: 1e:94:5a:c5:9c:aa:b7:e6:21:05:21:2e:c1:ca:ad: 32:40:d8:bf:5c:86:56:7c:df:7f:d9:20:4e:90:da: c4:52:be:42:f8:d3:3f:95:96:b2:6d:ca:d7:0f:fc: 35:3a:8b:3d:bc:81:fa:21:6e:2d:2d:5a:3f:0c:c7: d1:08:a1:9d:8f:b3:bf:dd:ff:92:e6:34:dd:ab:23: 63:d4:a3:2f:38:b2:6b:13:2f:c5:25:e7:20:c3:64: 24:d9:8d:f0:72:41:09:fc:ff:42:86:c3:fe:6e:15: c2:1b:eb:08:b3:9a:b4:39:02:28:1f:ed:02:b7:8d: 33:4c:30:11:11:85:42:01:16:b8:81:df:e7:01:ab: bb:2f:73:5a:ef:20:13:50:e3:cd:b3:12:34:bf:34: 6c:9d:21:07:a8:17:8b:78:c0:6a:69:23:f0:1d:70: 98:74:14:d2:9d:47:6c:f8:22:51:3f:ef:1e:c1:94: 0a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B5:02:86:67:6A:BA:51:A4:69:D0:59:7F:B1:B8:CE:F0:B4:1B:C7 X509v3 Authority Key Identifier: keyid:16:0F:D2:1A:97:6A:19:A7:B8:1A:59:AA:FA:69:F6:A0:AF:E3:6D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.peering.ee.columbia.edu/repo/lifeng-hitcowhorse/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.crl Authority Information Access: CA Issuers - URI:rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.cer Subject Information Access: Signed Object - URI:rsync://krill.peering.ee.columbia.edu/repo/lifeng-hitcowhorse/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:b1:71:ff:56:12:60:db:b5:81:98:20:6b:73:bb:84:af:fe: fd:09:f7:1b:75:04:5f:0c:67:0e:44:1d:a9:51:e1:30:0c:d9: 4b:7c:32:6c:a9:25:80:d9:8b:ec:f2:8e:56:d6:3b:14:f9:a6: 54:f3:a4:c9:86:3f:c6:b4:d0:01:e9:78:08:67:f3:6b:6f:bd: a1:7f:f0:5a:41:32:e4:39:04:12:3a:f5:d1:04:3c:56:10:48: fe:25:8d:ec:0a:4b:f7:f0:d9:34:fa:14:1d:e7:ba:bd:78:d9: 54:dd:a6:4b:45:80:95:d9:8f:f6:df:e1:de:db:38:2d:e6:e0: d8:df:34:a5:70:4b:bc:5d:d5:b4:40:2c:0b:03:90:40:1e:5c: 70:0f:0e:dc:a5:28:12:67:a8:13:64:7e:e9:52:ea:63:11:ab: 1b:46:ae:0f:b7:60:56:e3:5f:23:a6:1d:31:da:50:b9:90:63: 9c:ac:e0:de:ed:af:bc:fb:bd:86:2f:f8:cc:12:3f:3d:34:d8: b2:94:27:49:ef:51:57:22:82:ad:69:bd:2c:ce:ba:1f:96:8a: d4:c0:11:99:b9:e3:09:6b:5a:44:69:81:0d:b6:fd:56:fb:99: e3:82:d8:3e:3e:8d:a4:4f:3c:06:87:ca:81:2f:b7:a9:68:6a: 67:71:e1:9d -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUaQOIjPhMkP/f+Eqn9VJ2fTxB3sAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTYwRkQyMUE5NzZBMTlBN0I4MUE1OUFBRkE2OUY2QTBB RkUzNkQwQzAeFw0yNjAzMjYxMDEyNDVaFw0yNjAzMjcxMjA3NDVaMDMxMTAvBgNV BAMTKDcwQjUwMjg2Njc2QUJBNTFBNDY5RDA1OTdGQjFCOENFRjBCNDFCQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTPEH66jGXTaZTMRf+Lo8FVizM WaY9KjPit2oVqHyc5hfiCyaYE3e9qivFSkg+eeJmCuTIHnywgfOreQkMA/6sGiXf LUTBRIcMhh6UWsWcqrfmIQUhLsHKrTJA2L9chlZ833/ZIE6Q2sRSvkL40z+VlrJt ytcP/DU6iz28gfohbi0tWj8Mx9EIoZ2Ps7/d/5LmNN2rI2PUoy84smsTL8Ul5yDD ZCTZjfByQQn8/0KGw/5uFcIb6wizmrQ5Aigf7QK3jTNMMBERhUIBFriB3+cBq7sv c1rvIBNQ482zEjS/NGydIQeoF4t4wGppI/AdcJh0FNKdR2z4IlE/7x7BlApRAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUcLUChmdqulGkadBZf7G4zvC0G8cwHwYDVR0j BBgwFoAUFg/SGpdqGae4Glmq+mn2oK/jbQwwDgYDVR0PAQH/BAQDAgeAMH0GA1Ud HwR2MHQwcqBwoG6GbHJzeW5jOi8va3JpbGwucGVlcmluZy5lZS5jb2x1bWJpYS5l ZHUvcmVwby9saWZlbmctaGl0Y293aG9yc2UvMC8xNjBGRDIxQTk3NkExOUE3Qjgx QTU5QUFGQTY5RjZBMEFGRTM2RDBDLmNybDCBhQYIKwYBBQUHAQEEeTB3MHUGCCsG AQUFBzAChmlyc3luYzovL2tyaWxsLnBlZXJpbmcuZWUuY29sdW1iaWEuZWR1L3Jl cG8vcGVlcmluZy10ZXN0YmVkLzAvMTYwRkQyMUE5NzZBMTlBN0I4MUE1OUFBRkE2 OUY2QTBBRkUzNkQwQy5jZXIwgYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4Zs cnN5bmM6Ly9rcmlsbC5wZWVyaW5nLmVlLmNvbHVtYmlhLmVkdS9yZXBvL2xpZmVu Zy1oaXRjb3dob3JzZS8wLzE2MEZEMjFBOTc2QTE5QTdCODFBNTlBQUZBNjlGNkEw QUZFMzZEMEMubWZ0MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggrBgEFBQcBCAEB/wQGMASgAgUA MA0GCSqGSIb3DQEBCwUAA4IBAQAmsXH/VhJg27WBmCBrc7uEr/79CfcbdQRfDGcO RB2pUeEwDNlLfDJsqSWA2Yvs8o5W1jsU+aZU86TJhj/GtNAB6XgIZ/Nrb72hf/Ba QTLkOQQSOvXRBDxWEEj+JY3sCkv38Nk0+hQd57q9eNlU3aZLRYCV2Y/23+He2zgt 5uDY3zSlcEu8XdW0QCwLA5BAHlxwDw7cpSgSZ6gTZH7pUupjEasbRq4Pt2BW418j ph0x2lC5kGOcrODe7a+8+72GL/jMEj89NNiylCdJ71FXIoKtab0szroflorUwBGZ ueMJa1pEaYENtv1W+5njgtg+Po2kTzwGh8qBL7epaGpnceGd -----END CERTIFICATE-----Generated at Thu Mar 26 15:03:59 2026 by rpki-client