$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft File: DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft (raw, json) Hash identifier: /Kl8zCpEzgGvw46UEQ3sn0aJMmFxNdUYvu6zb8F4v4A= Subject key identifier: 74:B2:30:E9:B7:D8:99:3B:F4:14:42:61:02:FF:88:1E:6B:9B:68:97 Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 Certificate issuer: /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Certificate serial: 79CB76685522DEE7D3AE9B61704B29C575286AEE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft Manifest number: 04C8 Signing time: Fri 09 May 2025 02:11:15 +0000 Manifest this update: Fri 09 May 2025 02:06:15 +0000 Manifest next update: Mon 12 May 2025 12:43:15 +0000 Files and hashes: 1: 3130332e3233332e38382e302f32332d3234203d3e203536323333.roa (hash: 0RrPfbpk+xcbyzgWiGEqZ6C13BPi43+NYiRziFVAs1Q=) 2: 34332e3235322e3134342e302f32332d3234203d3e203536323333.roa (hash: DYNELf9QNXD54CkouWHTSPB4IedLMvPnvTBJhut8CJ0=) 3: 3132302e38392e39342e302f32332d3234203d3e203536323333.roa (hash: 9VPlWeet/QEh1f7qU/XboyNf8q0IIDBUTh5mcRRM4R4=) 4: 3130332e31342e3131302e302f32332d3234203d3e203536323333.roa (hash: uOtYMqTZ6uxvD75CjDzgKIMtqTuljhnUzaL//5Qb6nY=) 5: 3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa (hash: QN3Se42fDrnzH/Sn6RV3bdT6iaS+SIN59XlBOIPV4Lw=) 6: DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl (hash: Pc1buqyUUjo6WKq5XFke2G+aCHOhKzzf48+hD8LAr78=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 12:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:cb:76:68:55:22:de:e7:d3:ae:9b:61:70:4b:29:c5:75:28:6a:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Validity Not Before: May 9 02:06:15 2025 GMT Not After : May 12 12:43:15 2025 GMT Subject: CN=74B230E9B7D8993BF414426102FF881E6B9B6897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:87:90:f6:9b:47:21:c0:76:08:4a:b9:8e:48: 7b:0b:a5:b0:ce:c5:04:f0:57:91:85:52:4c:a8:5d: c6:4e:28:ef:14:d4:8f:ba:14:fa:48:c7:32:85:f9: cd:d8:fb:fc:dc:79:15:d2:14:e8:61:64:89:44:02: fc:d6:aa:24:a4:36:ed:cb:6a:ac:7a:95:cb:37:80: db:13:dd:a1:8c:05:b7:ee:92:46:d9:54:bd:21:4d: 9e:85:30:e8:53:63:06:94:4e:82:92:6c:29:5b:fb: 6a:9f:43:ba:93:cd:e1:bc:02:ae:a0:8b:e7:01:15: 05:ac:10:18:ef:59:e0:1f:65:1b:2e:5d:80:9c:f9: e2:39:97:09:4d:51:2e:a6:45:fb:62:c4:de:61:23: f1:99:4c:1f:e7:ff:48:bb:0e:ef:02:ec:70:74:c0: 4f:1f:5e:e2:05:73:1a:aa:13:ab:3a:7f:ed:08:a4: 31:fc:a3:3c:40:40:6d:85:27:55:d4:67:f9:b9:c9: d7:20:f7:8f:79:e4:9e:6f:91:f4:4e:df:16:76:43: 5e:0d:b5:56:79:af:c1:8d:cc:e4:43:e0:3f:8d:37: 2e:b2:64:5f:e7:59:7c:fd:a9:fe:4d:a1:00:dc:a1: fe:a0:0e:b8:e5:55:44:67:5a:7f:ca:74:4c:42:29: 8e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B2:30:E9:B7:D8:99:3B:F4:14:42:61:02:FF:88:1E:6B:9B:68:97 X509v3 Authority Key Identifier: keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:aa:67:ff:9f:bb:51:48:64:61:cb:1e:f2:a2:7b:a9:a4:37: 7b:d1:b1:0b:54:bf:3e:7b:4f:61:3c:80:6c:ce:75:c6:65:f8: 50:82:f5:7c:59:81:4a:61:56:fa:24:a8:c2:fd:7f:9f:ed:71: 40:2f:c2:95:05:27:5b:7b:fe:dc:f5:c3:f2:52:b6:e2:61:ea: f1:dc:68:6a:95:4a:13:49:b6:4d:8d:44:9d:c9:81:12:14:8b: 56:0d:d5:33:6a:ac:dc:12:45:ee:f8:9c:94:af:1b:26:c2:3f: 1a:43:6e:5d:83:4b:4b:95:8f:fd:18:3c:72:63:3d:1e:9a:75: 95:c0:19:a6:5a:41:42:64:ea:a0:f5:2b:00:fd:1e:e3:44:17: 35:1d:18:70:db:b3:7f:7e:db:0b:cf:ec:d6:1e:86:7b:e9:9b: 09:58:88:08:86:26:d2:86:4b:59:9e:62:18:3d:03:8c:cb:a4: 92:fe:19:1c:d3:44:bf:24:42:b2:7c:55:80:f0:96:9a:50:c5: d8:ee:4f:43:13:10:5b:f5:97:a3:89:7d:25:06:5b:09:65:58: de:6f:2e:f0:16:a4:14:10:bc:a7:ea:e6:b4:18:a4:a5:d0:1c: 33:15:32:eb:15:a9:14:4b:3c:0c:5b:0a:d0:a8:d1:72:93:51: 6b:c8:01:93 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUect2aFUi3ufTrpthcEspxXUoau4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVF NTRDQTg1OTAeFw0yNTA1MDkwMjA2MTVaFw0yNTA1MTIxMjQzMTVaMDMxMTAvBgNV BAMTKDc0QjIzMEU5QjdEODk5M0JGNDE0NDI2MTAyRkY4ODFFNkI5QjY4OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqh5D2m0chwHYISrmOSHsLpbDO xQTwV5GFUkyoXcZOKO8U1I+6FPpIxzKF+c3Y+/zceRXSFOhhZIlEAvzWqiSkNu3L aqx6lcs3gNsT3aGMBbfukkbZVL0hTZ6FMOhTYwaUToKSbClb+2qfQ7qTzeG8Aq6g i+cBFQWsEBjvWeAfZRsuXYCc+eI5lwlNUS6mRftixN5hI/GZTB/n/0i7Du8C7HB0 wE8fXuIFcxqqE6s6f+0IpDH8ozxAQG2FJ1XUZ/m5ydcg94955J5vkfRO3xZ2Q14N tVZ5r8GNzORD4D+NNy6yZF/nWXz9qf5NoQDcof6gDrjlVURnWn/KdExCKY6PAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdLIw6bfYmTv0FEJhAv+IHmubaJcwHwYDVR0j BBgwFoAU3xzqAxPadQDXCuCJFptLvuVMqFkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGZkNGJjMi00MWQ0LTQyZTYtYTdmZi01OTQ5Mzg4NTEyNmEvMC9ERjFDRUEwMzEz REE3NTAwRDcwQUUwODkxNjlCNEJCRUU1NENBODU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVFNTRD QTg1OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDRmZDRiYzItNDFkNC00MmU2LWE3 ZmYtNTk0OTM4ODUxMjZhLzAvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRC QkVFNTRDQTg1OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADSqZ/+fu1FIZGHLHvKie6mkN3vRsQtUvz57 T2E8gGzOdcZl+FCC9XxZgUphVvokqML9f5/tcUAvwpUFJ1t7/tz1w/JStuJh6vHc aGqVShNJtk2NRJ3JgRIUi1YN1TNqrNwSRe74nJSvGybCPxpDbl2DS0uVj/0YPHJj PR6adZXAGaZaQUJk6qD1KwD9HuNEFzUdGHDbs39+2wvP7NYehnvpmwlYiAiGJtKG S1meYhg9A4zLpJL+GRzTRL8kQrJ8VYDwlppQxdjuT0MTEFv1l6OJfSUGWwllWN5v LvAWpBQQvKfq5rQYpKXQHDMVMusVqRRLPAxbCtCo0XKTUWvIAZM= -----END CERTIFICATE-----Generated at Sat May 10 06:19:05 2025 by rpki-client