$ rpki-client -vvf repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft File: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft (raw, json) Hash identifier: QVk//zCrzsWy/yrOrGLVFZ2S4pjH/nwq7B9nKrmN5Gg= Subject key identifier: 9C:E0:66:31:B7:D0:33:57:06:EA:53:0B:61:27:77:B0:75:70:1F:BF Authority key identifier: 16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 Certificate issuer: /CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Certificate serial: 0F8204E365F91ADD9CD686F305D4DF82D6849637 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft Manifest number: 0206 Signing time: Sun 11 May 2025 10:51:43 +0000 Manifest this update: Sun 11 May 2025 10:46:43 +0000 Manifest next update: Wed 14 May 2025 21:15:43 +0000 Files and hashes: 1: 3130332e3138302e3235312e302f32342d3234203d3e20313439333733.roa (hash: omQCe9i6UAQabn658NY546AFhSlSDQxwejMwWzEAolo=) 2: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl (hash: 5KKy4robmvZLfdEY4mHUe+wvsVmVxmNKzk10TCepk3g=) 3: 3130332e3138302e3235302e302f32342d3234203d3e20313439333733.roa (hash: 132Kizc+R6ps/hT6AogJkCilm9HX7+ORPphZ8hVhLQ8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:82:04:e3:65:f9:1a:dd:9c:d6:86:f3:05:d4:df:82:d6:84:96:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Validity Not Before: May 11 10:46:43 2025 GMT Not After : May 14 21:15:43 2025 GMT Subject: CN=9CE06631B7D0335706EA530B612777B075701FBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e8:fb:57:db:ac:1c:c9:35:88:04:51:ac:c5: 92:9e:6e:1b:13:89:34:f5:c9:06:fd:46:67:f8:94: 27:4c:86:60:c4:c5:e4:d3:44:d7:15:ed:17:9f:9f: 1b:79:3c:22:cc:ab:ad:47:00:95:d1:ad:ec:79:fb: a9:95:05:d7:9b:7c:95:52:e3:76:2f:7a:75:94:8f: 75:c3:76:dc:ca:1d:14:77:71:d1:d2:5c:00:1d:cc: 2a:84:db:1c:84:3b:bc:09:a1:9a:d3:6d:28:f3:f3: ff:db:c2:04:64:1f:1e:d2:03:73:bf:ab:d2:c1:c3: 11:3b:34:bf:42:5c:86:f1:44:93:3f:8a:e9:b0:96: fb:86:59:1e:ae:50:65:82:10:cc:75:39:66:21:39: 07:15:2c:13:6e:5c:60:34:1d:30:92:7a:af:b7:a0: 8a:78:6f:74:7a:d4:63:11:b8:31:0e:05:b5:08:44: d9:35:01:69:92:57:e5:5b:26:68:96:ad:dc:f2:37: bf:03:b8:eb:6f:22:99:f8:c6:c7:5f:1d:db:98:3f: fb:db:27:a3:74:ac:f9:fe:98:be:f4:85:6c:69:b2: 48:91:8e:aa:d9:bb:68:ea:11:84:37:bb:e4:b3:ba: 88:a8:44:b9:3d:c6:8d:ea:f3:67:5a:2c:c5:55:ec: a9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E0:66:31:B7:D0:33:57:06:EA:53:0B:61:27:77:B0:75:70:1F:BF X509v3 Authority Key Identifier: keyid:16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:fd:d9:b3:27:df:41:bc:46:c3:a7:73:a8:f0:1e:51:93:ef: 00:6f:da:27:3c:f3:78:a5:15:35:9b:6a:d8:f0:82:dc:0d:53: 72:0f:48:43:51:1f:fc:a0:8e:aa:79:36:f5:26:9c:3e:4d:66: cb:79:7a:f9:01:ea:93:47:48:46:e0:2d:93:14:79:cb:56:a5: 6b:b5:c8:29:e2:a6:4e:39:d5:47:b8:b0:7f:28:8c:60:23:f9: a2:84:de:fe:ff:9c:77:97:59:b9:a8:fb:fc:46:86:e3:9b:47: ce:88:5c:40:64:d8:7e:67:95:46:a7:8f:5c:65:84:86:20:98: a2:ef:88:83:92:27:69:96:a5:68:a0:8f:32:2f:b0:c4:f1:4b: 45:7d:ee:6f:17:aa:8a:e6:94:da:3c:62:a9:44:cd:8d:c1:e1: 03:35:b5:2b:20:2f:7f:47:fa:9f:62:da:4f:64:23:e2:e4:15: 26:ea:6f:b4:ad:4b:5a:7f:a7:eb:c0:8d:7f:15:0d:be:7c:d2: 35:6e:0f:0b:9e:40:45:08:6e:c2:43:9d:83:b7:91:ce:27:cd: f9:01:df:49:a1:d3:79:3e:1a:d5:61:39:9c:27:01:2f:b4:fd: 4f:6d:9b:dc:be:8b:d1:15:7e:31:40:6c:08:cf:ff:36:2c:6f: 8d:9b:2b:56 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUD4IE42X5Gt2c1obzBdTfgtaEljcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdB MTBBMUUyMDAeFw0yNTA1MTExMDQ2NDNaFw0yNTA1MTQyMTE1NDNaMDMxMTAvBgNV BAMTKDlDRTA2NjMxQjdEMDMzNTcwNkVBNTMwQjYxMjc3N0IwNzU3MDFGQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC76PtX26wcyTWIBFGsxZKebhsT iTT1yQb9Rmf4lCdMhmDExeTTRNcV7Refnxt5PCLMq61HAJXRrex5+6mVBdebfJVS 43YvenWUj3XDdtzKHRR3cdHSXAAdzCqE2xyEO7wJoZrTbSjz8//bwgRkHx7SA3O/ q9LBwxE7NL9CXIbxRJM/iumwlvuGWR6uUGWCEMx1OWYhOQcVLBNuXGA0HTCSeq+3 oIp4b3R61GMRuDEOBbUIRNk1AWmSV+VbJmiWrdzyN78DuOtvIpn4xsdfHduYP/vb J6N0rPn+mL70hWxpskiRjqrZu2jqEYQ3u+SzuoioRLk9xo3q82daLMVV7KkVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnOBmMbfQM1cG6lMLYSd3sHVwH78wHwYDVR0j BBgwFoAUFpcSeuKI9MA1A+0O2PCb16EKHiAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MjQ5ZDM4Ny03MGNmLTQwZTktODc1OS05Yjg2ZTBjNjUxMjgvMC8xNjk3MTI3QUUy ODhGNEMwMzUwM0VEMEVEOEYwOUJEN0ExMEExRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdBMTBB MUUyMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTI0OWQzODctNzBjZi00MGU5LTg3 NTktOWI4NmUwYzY1MTI4LzAvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlC RDdBMTBBMUUyMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ/92bMn30G8RsOnc6jwHlGT7wBv2ic883il FTWbatjwgtwNU3IPSENRH/ygjqp5NvUmnD5NZst5evkB6pNHSEbgLZMUectWpWu1 yCnipk451Ue4sH8ojGAj+aKE3v7/nHeXWbmo+/xGhuObR86IXEBk2H5nlUanj1xl hIYgmKLviIOSJ2mWpWigjzIvsMTxS0V97m8XqormlNo8YqlEzY3B4QM1tSsgL39H +p9i2k9kI+LkFSbqb7StS1p/p+vAjX8VDb580jVuDwueQEUIbsJDnYO3kc4nzfkB 30mh03k+GtVhOZwnAS+0/U9tm9y+i9EVfjFAbAjP/zYsb42bK1Y= -----END CERTIFICATE-----Generated at Sun May 11 13:48:57 2025 by rpki-client