$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: q00lLSH1BQlGCHSOAr8Gn2ESF5ISySjWa5C9aFRxJ9s= Subject key identifier: 4F:BD:90:0B:3A:84:2C:B4:2B:23:D4:24:0A:20:21:D6:86:C2:B0:CF Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 4822FFC907328DD419C2337B54484C90A36007D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: A4 Signing time: Tue 06 May 2025 23:21:02 +0000 Manifest this update: Tue 06 May 2025 23:16:02 +0000 Manifest next update: Sat 10 May 2025 04:49:02 +0000 Files and hashes: 1: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: rAimOK0qRjhWV8eJ5BL7T4NloQBsqg/1TDxgSkOIz34=) 2: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: 20xyi7WGXkhpJhYMMa60rCEDcWMrrO4WibLNf+8UjDs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 04:49:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:22:ff:c9:07:32:8d:d4:19:c2:33:7b:54:48:4c:90:a3:60:07:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: May 6 23:16:02 2025 GMT Not After : May 10 04:49:02 2025 GMT Subject: CN=4FBD900B3A842CB42B23D4240A2021D686C2B0CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:15:72:c5:fa:63:be:d9:66:aa:99:bc:ef:31: 18:9b:1e:6c:ad:3a:64:50:e9:9e:d3:bf:0a:62:0b: 40:7c:c5:c7:ec:47:8a:d1:9e:5d:7b:3f:ad:25:e9: 72:9b:51:e5:b0:0f:47:2b:e4:cd:2d:90:b9:7d:f6: f3:56:cf:5f:d3:72:6e:80:ed:ec:e7:a6:cf:0d:5c: 07:d9:8e:ff:cd:86:46:18:87:c6:a7:25:f6:64:34: 5b:78:2c:ac:d7:51:d1:7d:c7:af:92:7f:dd:10:d0: 8f:8c:72:ca:94:a9:78:b0:66:20:84:49:4c:0e:fa: 5d:88:19:76:cf:39:ab:d1:c4:fa:02:65:54:6b:ee: 43:ec:a7:b5:3a:24:61:bb:b5:b8:26:8e:b8:5e:91: 99:20:39:aa:60:72:88:9a:20:47:3d:9f:09:ce:60: bd:70:e5:0b:c0:b1:80:f0:a8:3f:26:71:62:c2:fc: 73:7a:5d:dc:35:2d:fb:08:64:26:e1:74:52:1f:cb: 30:a4:97:86:70:de:52:98:d8:6e:fc:f9:2f:30:fe: c4:66:fd:22:e9:d3:49:2b:41:34:9c:3e:9f:8c:9c: f1:25:39:f8:c8:9a:b4:3d:6d:bd:cd:28:fc:c7:67: 3f:a5:a2:95:b0:22:56:d9:ba:c1:c6:0a:c6:1c:39: 80:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:BD:90:0B:3A:84:2C:B4:2B:23:D4:24:0A:20:21:D6:86:C2:B0:CF X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:f2:d8:29:eb:ec:ac:b1:1c:16:d6:83:3f:87:92:6f:96:fd: c2:21:9b:e1:76:32:ab:ef:4e:27:20:4b:36:19:46:06:1c:05: d8:df:cb:23:cf:de:bd:e6:b4:8d:44:ae:47:3c:f3:32:25:9f: d8:15:4e:04:bd:31:8c:ce:22:7c:3e:97:de:a5:71:6e:7d:31: 06:98:14:ed:20:31:3e:a6:1e:fc:83:d9:1a:65:ce:b6:dc:e8: aa:77:4c:30:2a:36:41:71:2f:50:69:b2:b1:32:0f:e2:e7:6b: f8:57:fe:dd:e3:fc:49:d2:9e:ca:a3:eb:2d:56:80:6d:d5:dc: e3:af:e4:50:d3:ae:55:7b:8b:3a:f6:7e:60:87:4e:27:75:42: c8:10:f4:94:ff:54:18:58:36:5a:eb:42:62:f6:64:6d:30:d1: b6:1a:d2:88:87:d1:30:56:f1:b5:11:0f:60:14:fc:b5:19:0f: 54:d7:94:8e:57:cf:60:0a:b7:c3:51:91:ea:bf:83:5b:c1:dc: 7c:8f:6a:39:2d:b4:1c:02:97:d3:94:2a:2c:c2:b4:58:c4:94: 64:2a:cc:8f:06:41:22:26:93:d3:f1:1b:29:e0:a6:7f:b5:80: 9b:83:8f:87:e4:08:d1:0e:4f:81:f4:4b:63:12:7a:ab:17:07: fc:fe:d2:32 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSCL/yQcyjdQZwjN7VEhMkKNgB9cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNTA1MDYyMzE2MDJaFw0yNTA1MTAwNDQ5MDJaMDMxMTAvBgNV BAMTKDRGQkQ5MDBCM0E4NDJDQjQyQjIzRDQyNDBBMjAyMUQ2ODZDMkIwQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlFXLF+mO+2WaqmbzvMRibHmyt OmRQ6Z7TvwpiC0B8xcfsR4rRnl17P60l6XKbUeWwD0cr5M0tkLl99vNWz1/Tcm6A 7eznps8NXAfZjv/NhkYYh8anJfZkNFt4LKzXUdF9x6+Sf90Q0I+McsqUqXiwZiCE SUwO+l2IGXbPOavRxPoCZVRr7kPsp7U6JGG7tbgmjrhekZkgOapgcoiaIEc9nwnO YL1w5QvAsYDwqD8mcWLC/HN6Xdw1LfsIZCbhdFIfyzCkl4Zw3lKY2G78+S8w/sRm /SLp00krQTScPp+MnPElOfjImrQ9bb3NKPzHZz+lopWwIlbZusHGCsYcOYDPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUT72QCzqELLQrI9QkCiAh1obCsM8wHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJzy2Cnr7KyxHBbWgz+Hkm+W/cIhm+F2Mqvv TicgSzYZRgYcBdjfyyPP3r3mtI1Erkc88zIln9gVTgS9MYzOInw+l96lcW59MQaY FO0gMT6mHvyD2Rplzrbc6Kp3TDAqNkFxL1BpsrEyD+Lna/hX/t3j/EnSnsqj6y1W gG3V3OOv5FDTrlV7izr2fmCHTid1QsgQ9JT/VBhYNlrrQmL2ZG0w0bYa0oiH0TBW 8bURD2AU/LUZD1TXlI5Xz2AKt8NRkeq/g1vB3HyPajkttBwCl9OUKizCtFjElGQq zI8GQSImk9PxGyngpn+1gJuDj4fkCNEOT4H0S2MSeqsXB/z+0jI= -----END CERTIFICATE-----Generated at Fri May 9 05:17:50 2025 by rpki-client