$ rpki-client -vvf repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft File: 7433AB64571BE1827F0BC97ED291976B6E3429FA.mft (raw, json) Hash identifier: TImslPP6SPkUHSD3vhcXnV50RCL3XFE8dS9sobObZK8= Subject key identifier: A3:A5:17:60:2B:35:BF:BD:2F:C9:D5:02:68:2B:42:B6:5A:31:AE:81 Authority key identifier: 74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA Certificate issuer: /CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Certificate serial: 1F21CFD2AE1CBAF8429856831228AD200BCEAAA8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft Manifest number: 016B Signing time: Wed 07 May 2025 02:32:13 +0000 Manifest this update: Wed 07 May 2025 02:27:13 +0000 Manifest next update: Sat 10 May 2025 10:02:13 +0000 Files and hashes: 1: 3130332e37352e36322e302f32342d3234203d3e20313530353339.roa (hash: Foo7ECvYM8eC5QdFLfci515Pz4pdcUotJYsrxOmUjnQ=) 2: 3130332e37352e36332e302f32342d3234203d3e20313530353339.roa (hash: dt0M2E6hMVGXyd6wchuCJpbqgL7DjAEk9eGkYZfJTqo=) 3: 3130332e37352e36322e302f32332d3234203d3e20313530353339.roa (hash: LDOqOfl8+d8Lz+/c+0knmLxGK2Kr8P4Ti1sIU0L3/wo=) 4: 7433AB64571BE1827F0BC97ED291976B6E3429FA.crl (hash: XsBBX1CWcXeQLBbLcQN6sh8m4ptwsSpF3aPijpKfkzE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 10:02:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:21:cf:d2:ae:1c:ba:f8:42:98:56:83:12:28:ad:20:0b:ce:aa:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Validity Not Before: May 7 02:27:13 2025 GMT Not After : May 10 10:02:13 2025 GMT Subject: CN=A3A517602B35BFBD2FC9D502682B42B65A31AE81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:08:e5:68:b3:75:9f:5b:af:d7:3e:e6:53:b7: 31:56:cf:a9:22:70:9b:53:01:5c:49:3f:16:73:d2: 1f:7b:59:33:b1:28:29:62:8b:fd:b5:df:76:a4:36: 42:58:1b:a9:4e:05:38:2d:38:29:33:c6:9d:d6:f4: e8:bc:56:a4:52:e4:99:7c:df:bb:32:3e:5c:a1:82: 4d:50:61:d2:b8:4a:a0:8c:90:1d:03:bd:08:09:fa: 8d:f5:62:7a:8f:6b:c3:a6:c4:96:7e:e2:1b:8c:16: ba:23:b9:74:4f:8f:ee:ce:80:df:f6:86:51:d8:60: ae:e7:59:23:79:05:20:bc:37:a4:13:5c:7d:83:08: 96:64:9d:8b:3e:f2:e4:c5:e3:88:6b:2f:a2:13:4c: 26:74:70:d3:a9:5e:b5:30:51:9b:b6:1e:42:23:a3: cb:e8:c9:da:46:3a:db:b6:da:e1:c8:fc:7a:12:46: fc:41:1c:7d:e2:24:39:4d:a5:fc:07:e4:7b:58:5e: 2c:12:1e:33:da:59:f4:6a:41:dd:00:5e:d1:91:aa: 7d:0e:c7:ed:35:58:f9:1d:06:ab:e0:7d:f2:db:86: 93:44:dd:39:66:3a:56:5a:2a:e6:cc:1e:41:ce:e2: f9:db:14:97:2c:79:8f:fb:d7:51:26:6a:c1:20:f7: 74:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:A5:17:60:2B:35:BF:BD:2F:C9:D5:02:68:2B:42:B6:5A:31:AE:81 X509v3 Authority Key Identifier: keyid:74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:ba:95:6a:d6:43:46:23:81:dc:7d:2f:f9:7a:2e:67:e3:6b: bf:f8:30:bd:c8:20:77:93:94:e4:9f:de:9f:37:b0:2f:4a:54: 61:50:2e:0b:82:b5:d4:22:4a:94:16:57:54:c0:f7:0f:5c:73: 39:9c:a4:fb:8e:06:5b:b1:f5:ba:09:15:bb:b6:20:04:eb:b9: fb:1e:c5:60:62:36:91:5d:44:de:bd:01:94:b5:0f:d5:65:8e: 34:14:fd:08:62:65:25:e1:0c:36:82:e1:32:e3:3a:46:27:fd: 37:75:80:75:d2:ff:5d:4c:ef:ca:17:3d:97:24:6d:b1:05:1e: d7:76:04:0e:87:f2:c2:2b:87:30:4d:86:8d:3e:85:40:71:38: 0d:c6:f9:f3:b4:dd:d7:b3:4d:0d:38:9b:36:f6:6b:89:57:d8: a8:c9:f0:de:ff:96:9e:b2:b1:a9:84:7b:a9:79:6d:e4:f1:1d: 07:1e:88:db:a7:46:2e:47:13:46:5d:fa:ef:36:53:d5:2c:3e: e1:2d:61:e7:33:d7:65:62:ef:f6:f2:40:bf:02:7b:6b:61:a2: 62:3b:31:3d:83:c2:ff:cf:92:d4:79:82:c1:18:fc:a6:28:75: d6:58:a1:ea:7b:13:44:4f:86:f1:44:2e:20:e5:bf:14:f5:e1: ae:f0:e2:e5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHyHP0q4cuvhCmFaDEiitIAvOqqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2 RTM0MjlGQTAeFw0yNTA1MDcwMjI3MTNaFw0yNTA1MTAxMDAyMTNaMDMxMTAvBgNV BAMTKEEzQTUxNzYwMkIzNUJGQkQyRkM5RDUwMjY4MkI0MkI2NUEzMUFFODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9COVos3WfW6/XPuZTtzFWz6ki cJtTAVxJPxZz0h97WTOxKClii/2133akNkJYG6lOBTgtOCkzxp3W9Oi8VqRS5Jl8 37syPlyhgk1QYdK4SqCMkB0DvQgJ+o31YnqPa8OmxJZ+4huMFrojuXRPj+7OgN/2 hlHYYK7nWSN5BSC8N6QTXH2DCJZknYs+8uTF44hrL6ITTCZ0cNOpXrUwUZu2HkIj o8voydpGOtu22uHI/HoSRvxBHH3iJDlNpfwH5HtYXiwSHjPaWfRqQd0AXtGRqn0O x+01WPkdBqvgffLbhpNE3TlmOlZaKubMHkHO4vnbFJcseY/711EmasEg93SFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUo6UXYCs1v70vydUCaCtCtloxroEwHwYDVR0j BBgwFoAUdDOrZFcb4YJ/C8l+0pGXa240KfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2M4YTBjMy0zN2Y1LTQ2NjctYTQzMC02ZmExMTFkMzQzYWEvMC83NDMzQUI2NDU3 MUJFMTgyN0YwQkM5N0VEMjkxOTc2QjZFMzQyOUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2RTM0 MjlGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDdjOGEwYzMtMzdmNS00NjY3LWE0 MzAtNmZhMTExZDM0M2FhLzAvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3 NkI2RTM0MjlGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABa6lWrWQ0Yjgdx9L/l6Lmfja7/4ML3IIHeT lOSf3p83sC9KVGFQLguCtdQiSpQWV1TA9w9cczmcpPuOBlux9boJFbu2IATrufse xWBiNpFdRN69AZS1D9VljjQU/QhiZSXhDDaC4TLjOkYn/Td1gHXS/11M78oXPZck bbEFHtd2BA6H8sIrhzBNho0+hUBxOA3G+fO03dezTQ04mzb2a4lX2KjJ8N7/lp6y samEe6l5beTxHQceiNunRi5HE0Zd+u82U9UsPuEtYecz12Vi7/byQL8Ce2thomI7 MT2Dwv/PktR5gsEY/KYoddZYoep7E0RPhvFELiDlvxT14a7w4uU= -----END CERTIFICATE-----Generated at Wed May 7 21:08:05 2025 by rpki-client