$ rpki-client -vvf repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft File: 658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft (raw, json) Hash identifier: f8zRldADqcSTFAVfPos4sBK7C+bJ2PQ2WgmpSDvL7Uo= Subject key identifier: FB:46:0C:5E:08:3C:15:4B:72:C3:19:0A:59:C5:1E:FB:F9:52:3E:DB Authority key identifier: 65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F Certificate issuer: /CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Certificate serial: 1A0B26EC6AB74EFC2D6CBA2E8FFFB06B60FBFA2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft Manifest number: 01B2 Signing time: Sun 11 May 2025 12:01:45 +0000 Manifest this update: Sun 11 May 2025 11:56:45 +0000 Manifest next update: Wed 14 May 2025 18:55:45 +0000 Files and hashes: 1: 3130332e3133392e32362e302f32332d3234203d3e20313338383630.roa (hash: 48+L1G8c0vPJ3Xwh9g6Jvkl9utn16OoluFEE7IOJhNo=) 2: 658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl (hash: VpKy5eYH9pgAhJ35drCUOBomkPoIGEYKpwKCsCowa/U=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 18:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:0b:26:ec:6a:b7:4e:fc:2d:6c:ba:2e:8f:ff:b0:6b:60:fb:fa:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Validity Not Before: May 11 11:56:45 2025 GMT Not After : May 14 18:55:45 2025 GMT Subject: CN=FB460C5E083C154B72C3190A59C51EFBF9523EDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ec:a5:c6:fb:b6:d4:77:9a:8d:a9:69:6d:fe: 5a:97:d5:0f:04:22:1d:2d:93:5e:e6:56:a6:5e:57: 69:2e:7c:82:ec:95:e1:c4:ca:fe:bc:d9:2d:c3:5d: 39:bb:ac:90:ea:71:e0:9b:ae:67:27:37:e5:4d:6e: 67:32:f9:18:0b:9e:7e:9a:43:3e:ed:77:62:93:31: e0:c1:4f:98:05:95:0a:26:f9:2c:8e:be:70:95:e1: e0:91:aa:a7:7e:b5:16:77:2a:c7:51:dc:0d:c7:b1: de:26:a8:aa:5b:e7:9d:7d:46:1b:b5:3d:ca:da:c1: 18:67:77:d9:e2:77:cb:fe:a4:77:67:3e:b7:40:a7: 51:85:ce:60:4c:26:4f:bb:c7:37:26:a8:22:31:09: e8:c2:ce:04:cc:ec:d7:b3:00:89:12:82:f5:c3:6c: 60:68:4d:48:28:89:f3:98:b0:21:6c:b8:10:7b:aa: a2:84:4f:e5:c0:31:09:20:6e:19:5b:ac:47:0a:f4: c6:9d:f9:c8:d6:49:58:6d:d2:09:fe:47:ff:a2:00: 73:40:06:b0:45:e2:92:b4:13:93:08:96:1f:26:ac: 41:fc:a1:36:93:8f:c5:d2:eb:7b:6f:d3:38:01:af: 5b:51:7c:15:d8:04:49:8a:c9:6c:cf:5a:a5:b4:31: cc:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:46:0C:5E:08:3C:15:4B:72:C3:19:0A:59:C5:1E:FB:F9:52:3E:DB X509v3 Authority Key Identifier: keyid:65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:69:82:66:28:f4:09:bf:17:b8:cf:de:4e:81:e5:a8:e6:05: b9:4e:be:23:02:85:65:d9:0a:52:4d:e2:52:3d:71:5d:68:ef: 11:d3:e6:46:37:79:5a:61:8e:af:8f:dc:cc:62:64:e6:91:f4: ad:82:e0:f9:82:79:4a:dd:59:3c:94:ef:cf:c7:8b:75:af:33: 3d:36:a3:a3:70:46:0e:3c:de:58:33:b2:55:39:cc:ba:4b:a6: fb:12:6a:d5:3f:26:05:22:4a:14:a8:0f:78:f8:b5:f1:c6:90: 11:cf:f8:2b:3a:18:4a:d3:d6:3b:24:14:4d:8b:f3:24:69:ea: e4:89:73:3e:f1:a6:f0:34:2d:72:53:cb:e1:37:02:2d:da:04: 0c:0a:af:6c:9e:d9:5f:9f:51:d9:bd:f2:4c:96:54:ba:49:94: 69:ce:bc:53:2d:1f:f4:f5:7e:00:18:29:fe:be:47:52:00:d7: 44:de:f1:56:cf:96:d8:c6:13:ce:74:f6:98:1e:1d:ad:d2:0f: b0:39:5f:a0:c6:74:8f:9c:87:be:11:0a:0e:7a:32:3f:9f:86: 88:7a:0a:67:c9:18:ba:c4:36:d1:8c:7d:50:e4:f2:4b:34:f4: bc:fb:79:02:1a:28:8f:13:6d:12:67:48:ce:a3:f0:eb:dd:7a: 8b:ae:55:94 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGgsm7Gq3TvwtbLouj/+wa2D7+iwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUx MkM5Q0I5RjAeFw0yNTA1MTExMTU2NDVaFw0yNTA1MTQxODU1NDVaMDMxMTAvBgNV BAMTKEZCNDYwQzVFMDgzQzE1NEI3MkMzMTkwQTU5QzUxRUZCRjk1MjNFREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO7KXG+7bUd5qNqWlt/lqX1Q8E Ih0tk17mVqZeV2kufILsleHEyv682S3DXTm7rJDqceCbrmcnN+VNbmcy+RgLnn6a Qz7td2KTMeDBT5gFlQom+SyOvnCV4eCRqqd+tRZ3KsdR3A3Hsd4mqKpb5519Rhu1 PcrawRhnd9nid8v+pHdnPrdAp1GFzmBMJk+7xzcmqCIxCejCzgTM7NezAIkSgvXD bGBoTUgoifOYsCFsuBB7qqKET+XAMQkgbhlbrEcK9Mad+cjWSVht0gn+R/+iAHNA BrBF4pK0E5MIlh8mrEH8oTaTj8XS63tv0zgBr1tRfBXYBEmKyWzPWqW0McwZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+0YMXgg8FUtywxkKWcUe+/lSPtswHwYDVR0j BBgwFoAUZYwNhhfC0FznIEJ+Hfcv3hLJy58wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjVkODhmMS1iOWMwLTQ4NWUtOTE2ZS01OWI3ZTM2OThkYTEvMC82NThDMEQ4NjE3 QzJEMDVDRTcyMDQyN0UxREY3MkZERTEyQzlDQjlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUxMkM5 Q0I5Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTY1ZDg4ZjEtYjljMC00ODVlLTkx NmUtNTliN2UzNjk4ZGExLzAvNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJG REUxMkM5Q0I5Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH1pgmYo9Am/F7jP3k6B5ajmBblOviMChWXZ ClJN4lI9cV1o7xHT5kY3eVphjq+P3MxiZOaR9K2C4PmCeUrdWTyU78/Hi3WvMz02 o6NwRg483lgzslU5zLpLpvsSatU/JgUiShSoD3j4tfHGkBHP+Cs6GErT1jskFE2L 8yRp6uSJcz7xpvA0LXJTy+E3Ai3aBAwKr2ye2V+fUdm98kyWVLpJlGnOvFMtH/T1 fgAYKf6+R1IA10Te8VbPltjGE8509pgeHa3SD7A5X6DGdI+ch74RCg56Mj+fhoh6 CmfJGLrENtGMfVDk8ks09Lz7eQIaKI8TbRJnSM6j8OvdeouuVZQ= -----END CERTIFICATE-----Generated at Sun May 11 20:23:42 2025 by rpki-client