$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft File: D85F6D41E807D8825356A681A7518FA27664A965.mft (raw, json) Hash identifier: xiyDQSITZ1hjXQSDPabxQrKXuWNQBG616eJcG0aBJ7Q= Subject key identifier: CE:06:7F:EC:7C:50:0B:A1:54:88:13:D3:E2:D2:51:B8:02:EB:15:74 Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 7480CA33834C761C2A224A72561EC109EFD4628F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft Manifest number: 0137 Signing time: Sun 11 May 2025 05:02:11 +0000 Manifest this update: Sun 11 May 2025 04:57:11 +0000 Manifest next update: Wed 14 May 2025 14:57:11 +0000 Files and hashes: 1: 3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa (hash: mLhBYPkwACBbxlJsTnV03pPrOs7jfGDROaGC1YIb24I=) 2: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (hash: 2X5KoMU/cWrAj0o88iqREF+W66XbV79s9jtdMfDvn84=) 3: 323430373a396363303a3a2f33322d3332203d3e20313431393833.roa (hash: X3XCCURHmUEWOKsujokS9KRQ2ATuG6WfjZ6Xo/ilPmk=) 4: 3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa (hash: hFj4Uh0PGeOBka7Cx4rmARhSt9TGPmz98D01cPT+PF4=) 5: D85F6D41E807D8825356A681A7518FA27664A965.crl (hash: t7VhX6aQD7l0CpnLgNj7HB1TIZu+3h7Y+euh38sjqhs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 14:57:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:80:ca:33:83:4c:76:1c:2a:22:4a:72:56:1e:c1:09:ef:d4:62:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: May 11 04:57:11 2025 GMT Not After : May 14 14:57:11 2025 GMT Subject: CN=CE067FEC7C500BA1548813D3E2D251B802EB1574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3e:f2:96:ef:12:64:c2:3d:70:4d:53:fb:a2: 12:70:a5:dc:b0:29:26:34:72:f7:cf:33:ea:b3:52: 8d:7f:e0:98:c0:c2:f0:27:3b:83:69:af:0c:7d:03: 72:6b:a9:93:50:25:48:85:42:43:19:ad:9f:17:37: cb:1e:8b:bd:96:db:36:a7:d5:cf:e6:44:64:42:2d: 6a:30:04:13:06:85:23:15:41:e1:3c:f3:00:74:32: 37:8c:53:eb:0c:48:1b:3d:e7:f0:87:12:f4:92:7a: f9:9d:88:36:74:9e:e5:79:87:33:a2:1a:40:6a:88: a7:08:00:64:bc:79:8f:43:43:67:30:d0:72:44:e9: 78:c4:ea:d2:bf:22:36:34:36:f5:eb:5a:90:02:a7: 5f:18:c2:0b:1a:6f:4c:7e:30:b8:f5:d8:bb:af:8b: b3:a2:4e:8b:45:f7:b9:fb:18:03:74:6e:86:30:9b: 30:d8:79:4f:4f:a2:68:cc:03:25:e7:2e:bc:2d:66: dc:aa:f5:6d:29:a1:23:f2:86:57:26:4c:ce:a9:e7: e1:89:5b:aa:ac:83:65:f6:67:27:de:d0:b8:ba:78: dc:6d:51:73:c7:29:60:56:1f:7b:36:dc:97:28:b5: 49:a6:39:e4:da:fb:13:6a:95:f2:0c:a6:9a:98:3c: 11:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:06:7F:EC:7C:50:0B:A1:54:88:13:D3:E2:D2:51:B8:02:EB:15:74 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:49:c6:05:57:df:3f:71:4a:36:88:36:87:25:c2:20:da:82: 2d:14:29:4e:4b:a7:28:9a:31:7c:d1:bb:af:f3:8b:68:de:29: b3:e6:4a:07:f3:c9:ea:39:8c:8c:a9:73:43:ed:94:1c:cd:88: c9:ed:8a:77:be:0b:c7:e1:37:2b:92:97:a3:14:ef:b9:ee:31: 99:a0:d3:b9:8d:4a:03:13:aa:c3:a7:92:a8:0f:cc:9d:5d:51: 44:f3:cf:6c:f1:d6:c3:e9:db:01:5f:bf:0c:78:c0:92:e1:d6: 5e:c8:d3:eb:77:74:a8:15:e4:21:9b:98:7f:a4:dc:5b:58:26: c9:ea:25:84:b7:6d:ff:b1:fd:61:ea:45:ee:3d:fa:16:86:fe: 86:bd:1c:9e:2b:15:ff:8d:c2:4c:ec:ff:e6:52:58:70:29:8f: d7:5c:d3:13:e1:18:39:d4:99:0a:2e:f5:1e:dc:59:a5:11:83: 4a:91:9a:bb:8e:e1:98:cc:a6:6d:b5:c6:38:86:d9:d8:8b:2e: 08:0a:c0:af:a5:c9:7d:dd:ef:70:9a:d2:01:9d:c7:fd:3c:95: 6c:06:19:ac:9a:ce:3f:e3:cb:58:b1:77:75:2d:f1:73:29:4d: 8c:46:ed:8f:56:8f:07:b4:57:98:1e:21:50:e2:93:f1:14:48: a8:4b:a8:33 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdIDKM4NMdhwqIkpyVh7BCe/UYo8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNTA1MTEwNDU3MTFaFw0yNTA1MTQxNDU3MTFaMDMxMTAvBgNV BAMTKENFMDY3RkVDN0M1MDBCQTE1NDg4MTNEM0UyRDI1MUI4MDJFQjE1NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9PvKW7xJkwj1wTVP7ohJwpdyw KSY0cvfPM+qzUo1/4JjAwvAnO4Nprwx9A3JrqZNQJUiFQkMZrZ8XN8sei72W2zan 1c/mRGRCLWowBBMGhSMVQeE88wB0MjeMU+sMSBs95/CHEvSSevmdiDZ0nuV5hzOi GkBqiKcIAGS8eY9DQ2cw0HJE6XjE6tK/IjY0NvXrWpACp18Ywgsab0x+MLj12Luv i7OiTotF97n7GAN0boYwmzDYeU9PomjMAyXnLrwtZtyq9W0poSPyhlcmTM6p5+GJ W6qsg2X2Zyfe0Li6eNxtUXPHKWBWH3s23JcotUmmOeTa+xNqlfIMppqYPBFXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzgZ/7HxQC6FUiBPT4tJRuALrFXQwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZiZWRmM2EtZDdkMS00OWE2LTkz ZWQtYjI3N2YxZjdhNmViLzAvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThG QTI3NjY0QTk2NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJFJxgVX3z9xSjaINoclwiDagi0UKU5Lpyia MXzRu6/zi2jeKbPmSgfzyeo5jIypc0PtlBzNiMntine+C8fhNyuSl6MU77nuMZmg 07mNSgMTqsOnkqgPzJ1dUUTzz2zx1sPp2wFfvwx4wJLh1l7I0+t3dKgV5CGbmH+k 3FtYJsnqJYS3bf+x/WHqRe49+haG/oa9HJ4rFf+Nwkzs/+ZSWHApj9dc0xPhGDnU mQou9R7cWaURg0qRmruO4ZjMpm21xjiG2diLLggKwK+lyX3d73Ca0gGdx/08lWwG Gayazj/jy1ixd3Ut8XMpTYxG7Y9Wjwe0V5geIVDik/EUSKhLqDM= -----END CERTIFICATE-----Generated at Tue May 13 09:55:05 2025 by rpki-client