$ rpki-client -vvf repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft File: 588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft (raw, json) Hash identifier: BlkOE8D+fxGE79B18aA/z5PwKjinxWIBRaTwc0E2xYc= Subject key identifier: 13:B5:7F:E4:47:6E:4A:F3:1F:55:3F:24:AB:F5:19:E4:64:07:CF:26 Authority key identifier: 58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69 Certificate issuer: /CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069 Certificate serial: 19BD3EB426A8A01B408B853E023FFB575594C611 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft Manifest number: 83 Signing time: Sun 11 May 2025 12:01:44 +0000 Manifest this update: Sun 11 May 2025 11:56:44 +0000 Manifest next update: Wed 14 May 2025 13:19:44 +0000 Files and hashes: 1: 3136302e32322e31332e302f32342d3234203d3e20313532373935.roa (hash: 4zrjWTGjIfmRVD7KoG+5XB5sYDfQiVJOsTHraO00txU=) 2: 3136302e32322e31322e302f32342d3234203d3e20313532373935.roa (hash: c7u9a3tNo+sinKbXEOZIkxb5lpQ3V3xHWxLJ0wK62sQ=) 3: 588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl (hash: bYZnMyiD6Ztmh8wH8nL9I//KEWgXpuRzwAbh4d+PJnU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 13:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:bd:3e:b4:26:a8:a0:1b:40:8b:85:3e:02:3f:fb:57:55:94:c6:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069 Validity Not Before: May 11 11:56:44 2025 GMT Not After : May 14 13:19:44 2025 GMT Subject: CN=13B57FE4476E4AF31F553F24ABF519E46407CF26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:99:aa:29:42:9d:26:1b:3b:53:a8:57:2b:82: f8:10:34:1a:b5:51:1e:85:06:31:14:26:33:57:07: 48:9f:6a:0c:36:59:6f:7b:ca:c5:8f:e2:ff:32:5c: f5:06:f0:1c:50:25:5b:67:a9:1e:df:15:ee:be:bf: 0e:68:a2:51:95:bd:09:77:81:9b:8c:20:26:8e:e0: 0c:ed:d3:2a:2b:bf:82:c4:89:6e:b9:b8:6c:21:b1: 3a:df:cc:29:36:66:6a:00:3e:49:14:76:71:29:ae: 40:2f:3b:84:45:ab:97:ce:c8:bd:a9:60:91:42:87: 21:ec:d7:ab:2f:e0:56:bd:e5:12:a5:34:2e:14:1c: 2b:a8:af:d2:65:86:16:38:6d:d3:5e:cc:29:2f:de: fe:1d:b2:05:66:20:63:f9:7b:df:4f:e6:55:ec:ac: 03:ba:f1:54:af:77:30:de:2b:0c:0e:db:e0:9d:e4: b5:43:b8:c6:71:3a:41:ed:bb:b4:2f:86:c9:8d:ba: f7:4a:87:ea:6e:20:6f:b0:11:dc:d0:e1:91:51:25: 66:cd:dd:d3:c3:b4:73:9a:2c:7a:cc:d4:c2:68:0c: f5:94:d3:a5:c2:c4:a8:e2:26:41:5f:dd:13:2b:b3: a1:21:79:06:eb:33:63:a1:b4:fd:60:7b:37:5c:ce: d3:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:B5:7F:E4:47:6E:4A:F3:1F:55:3F:24:AB:F5:19:E4:64:07:CF:26 X509v3 Authority Key Identifier: keyid:58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:f4:92:64:9d:cd:44:f3:6a:c1:70:02:2a:87:ed:b6:68:de: 37:0d:cc:31:eb:b8:09:87:cc:9b:07:e3:fc:d4:15:7e:65:5d: 9e:60:f3:ae:4f:df:29:8e:8b:de:5d:d4:19:fa:61:bb:ce:2e: 47:02:da:21:37:27:0e:7a:5f:13:5c:2e:48:72:f8:e5:08:c5: 6b:03:77:b4:f1:a8:8e:f8:51:26:c4:2d:51:8a:c1:cb:5d:1b: 77:1e:30:f3:06:b5:e3:ef:bd:c3:98:da:11:80:a7:16:56:d3: 6f:2c:1f:53:f7:06:06:6c:2f:5d:29:a6:79:98:e3:7b:5b:84: bd:a0:2a:3d:36:7b:0b:1e:2b:50:d5:f4:5e:d7:f6:1b:a0:d4: 2c:b1:0e:ba:72:8d:2d:59:98:e7:ed:03:19:59:ae:eb:d2:20: cd:73:ca:c1:7a:19:73:b3:3b:5e:dc:0c:2b:0d:e0:0e:64:cd: 9c:fe:49:02:33:a8:3e:b3:25:61:e2:7f:0e:4b:6a:54:bf:bb: f0:eb:70:e6:5b:8b:5d:42:4a:98:75:00:ce:52:1c:7c:0d:e2: e2:d8:75:85:e5:dd:0e:34:1d:95:65:bd:fc:19:ea:3d:f0:7c: 28:b2:35:31:ef:af:3e:a5:a3:a0:28:ef:93:45:24:ff:c5:5d: 9b:3d:f0:02 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGb0+tCaooBtAi4U+Aj/7V1WUxhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0NjdF MEU0RDA2OTAeFw0yNTA1MTExMTU2NDRaFw0yNTA1MTQxMzE5NDRaMDMxMTAvBgNV BAMTKDEzQjU3RkU0NDc2RTRBRjMxRjU1M0YyNEFCRjUxOUU0NjQwN0NGMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0maopQp0mGztTqFcrgvgQNBq1 UR6FBjEUJjNXB0ifagw2WW97ysWP4v8yXPUG8BxQJVtnqR7fFe6+vw5oolGVvQl3 gZuMICaO4Azt0yorv4LEiW65uGwhsTrfzCk2ZmoAPkkUdnEprkAvO4RFq5fOyL2p YJFChyHs16sv4Fa95RKlNC4UHCuor9JlhhY4bdNezCkv3v4dsgVmIGP5e99P5lXs rAO68VSvdzDeKwwO2+Cd5LVDuMZxOkHtu7QvhsmNuvdKh+puIG+wEdzQ4ZFRJWbN 3dPDtHOaLHrM1MJoDPWU06XCxKjiJkFf3RMrs6EheQbrM2OhtP1gezdcztN5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUE7V/5EduSvMfVT8kq/UZ5GQHzyYwHwYDVR0j BBgwFoAUWI3Q/OS8JDzJxtaK4E6EZ+Dk0GkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MTk5ZTU0MS0xODYxLTRkNmEtOGUyOC1iMDI4NDU4NjE0OTYvMC81ODhERDBGQ0U0 QkMyNDNDQzlDNkQ2OEFFMDRFODQ2N0UwRTREMDY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0NjdFMEU0 RDA2OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDE5OWU1NDEtMTg2MS00ZDZhLThl MjgtYjAyODQ1ODYxNDk2LzAvNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0 NjdFMEU0RDA2OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHT0kmSdzUTzasFwAiqH7bZo3jcNzDHruAmH zJsH4/zUFX5lXZ5g865P3ymOi95d1Bn6YbvOLkcC2iE3Jw56XxNcLkhy+OUIxWsD d7TxqI74USbELVGKwctdG3ceMPMGtePvvcOY2hGApxZW028sH1P3BgZsL10ppnmY 43tbhL2gKj02ewseK1DV9F7X9hug1CyxDrpyjS1ZmOftAxlZruvSIM1zysF6GXOz O17cDCsN4A5kzZz+SQIzqD6zJWHifw5LalS/u/DrcOZbi11CSph1AM5SHHwN4uLY dYXl3Q40HZVlvfwZ6j3wfCiyNTHvrz6lo6Ao75NFJP/FXZs98AI= -----END CERTIFICATE-----Generated at Sun May 11 15:47:42 2025 by rpki-client