$ rpki-client -vvf repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft File: D1E28E396E82778793018513BD084854BE663886.mft (raw, json) Hash identifier: 45WcJqjdRHGbmJ+lS5qplEWSX4R5PUVsSbe64X/RObg= Subject key identifier: 16:58:C4:38:A6:2A:EA:4E:D7:DC:E7:75:A6:08:8C:1C:7C:79:D9:02 Authority key identifier: D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 Certificate issuer: /CN=D1E28E396E82778793018513BD084854BE663886 Certificate serial: 317DBCEAA5431CF61BF0825EC74EDE6FF5B1B0D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft Manifest number: 022A Signing time: Sat 10 May 2025 03:40:44 +0000 Manifest this update: Sat 10 May 2025 03:35:44 +0000 Manifest next update: Tue 13 May 2025 08:10:44 +0000 Files and hashes: 1: 3130332e3136392e3233302e302f32332d3234203d3e2034383030.roa (hash: wAotKcJ/dAT1Ar3MTmbAktiozrzps2/cZFRmdSxY5TY=) 2: D1E28E396E82778793018513BD084854BE663886.crl (hash: CqC/zwd5oP2aag1U2H5UlrUK1AMx6NksjA9+/nCVwtI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 08:10:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:7d:bc:ea:a5:43:1c:f6:1b:f0:82:5e:c7:4e:de:6f:f5:b1:b0:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1E28E396E82778793018513BD084854BE663886 Validity Not Before: May 10 03:35:44 2025 GMT Not After : May 13 08:10:44 2025 GMT Subject: CN=1658C438A62AEA4ED7DCE775A6088C1C7C79D902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:22:c1:84:8b:cb:85:c2:d8:db:61:3c:87:8d: 96:60:d9:26:54:20:b7:6b:b8:f5:35:b4:9d:44:0d: 65:d9:fa:31:7a:b7:fd:bd:a5:8f:5e:99:d3:38:53: f8:3a:34:ab:30:b6:4b:d9:3b:1d:a3:9b:60:5c:96: fb:be:fb:d4:f3:a4:9b:0e:e0:a1:73:f0:36:42:01: 39:cf:f6:bd:dc:d0:ee:73:88:97:31:c8:d5:e7:53: 45:5d:81:8a:db:1f:a7:38:ac:a0:6a:df:9f:f9:20: d7:b4:a4:f3:9f:10:be:a3:8a:f9:56:85:9a:fa:47: 5e:1d:c0:29:80:20:0c:62:7d:15:9a:4e:30:fe:73: 0a:db:07:ab:aa:f7:78:79:5f:8e:02:42:f1:49:e0: 24:2d:77:3f:f0:7c:d0:cf:b2:b7:a9:50:8b:d4:d9: 60:c2:90:66:6e:b1:13:29:32:7e:4d:64:26:51:0a: c9:c0:cd:7d:f0:62:d8:1d:37:47:6f:7a:4d:db:36: 98:15:f1:18:be:95:65:61:c0:ea:eb:03:2f:1b:b0: 92:11:4b:36:d9:34:6f:c3:2a:4f:eb:c4:4e:10:2c: 5d:c5:63:ec:b7:f7:5c:65:6c:5a:05:9c:42:01:e0: 53:ae:6e:05:a7:d3:12:72:80:56:19:f6:60:45:80: 65:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:58:C4:38:A6:2A:EA:4E:D7:DC:E7:75:A6:08:8C:1C:7C:79:D9:02 X509v3 Authority Key Identifier: keyid:D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:4d:ba:07:99:02:98:62:32:cc:31:fd:58:b4:0c:22:24:da: 96:54:5e:00:17:59:a7:93:39:ac:48:0e:fc:07:fc:2e:90:20: 9a:54:15:58:1f:90:ab:83:05:52:71:a7:41:e2:a0:c0:65:12: 39:89:76:cf:50:dc:35:75:eb:a9:2f:8d:63:e8:5e:16:51:97: 27:12:9d:08:87:5b:0f:20:83:e3:6f:13:14:9b:e0:3b:0d:9b: db:7c:48:0a:05:0c:5d:e0:4e:fe:64:ff:5c:60:5c:1b:71:63: 4d:0f:b4:01:b2:47:b0:a4:42:7d:1d:97:bd:75:f0:49:70:58: 78:d2:09:bb:a6:cd:d8:b9:8d:b6:6e:96:09:7a:d1:62:92:10: 68:2d:1b:87:6a:ef:4c:57:c8:85:cd:f6:63:fa:0d:75:6c:99: 4a:63:a5:ac:1c:d8:be:f5:ac:13:8e:b3:bb:b0:47:60:5e:9e: ee:c7:b5:9f:c1:e4:f2:16:d9:03:35:05:85:df:33:12:06:ab: 01:7f:ea:a8:51:24:7a:67:10:d5:27:dc:bb:14:c2:35:d3:ff: a9:c0:f1:bf:0a:2c:e2:e9:36:b4:76:24:23:31:2d:71:17:0a: 61:4d:cd:15:17:39:c3:f3:94:e1:a5:4e:49:8b:ef:c4:03:00: 97:82:55:2e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMX286qVDHPYb8IJex07eb/WxsNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRC RTY2Mzg4NjAeFw0yNTA1MTAwMzM1NDRaFw0yNTA1MTMwODEwNDRaMDMxMTAvBgNV BAMTKDE2NThDNDM4QTYyQUVBNEVEN0RDRTc3NUE2MDg4QzFDN0M3OUQ5MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXIsGEi8uFwtjbYTyHjZZg2SZU ILdruPU1tJ1EDWXZ+jF6t/29pY9emdM4U/g6NKswtkvZOx2jm2Bclvu++9TzpJsO 4KFz8DZCATnP9r3c0O5ziJcxyNXnU0VdgYrbH6c4rKBq35/5INe0pPOfEL6jivlW hZr6R14dwCmAIAxifRWaTjD+cwrbB6uq93h5X44CQvFJ4CQtdz/wfNDPsrepUIvU 2WDCkGZusRMpMn5NZCZRCsnAzX3wYtgdN0dvek3bNpgV8Ri+lWVhwOrrAy8bsJIR SzbZNG/DKk/rxE4QLF3FY+y391xlbFoFnEIB4FOubgWn0xJygFYZ9mBFgGVRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFljEOKYq6k7X3Od1pgiMHHx52QIwHwYDVR0j BBgwFoAU0eKOOW6Cd4eTAYUTvQhIVL5mOIYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmQ2MTEzNS03NWU0LTQ2YzYtYmRkZC1mYmE2ODM0ZGNlNDEvMC9EMUUyOEUzOTZF ODI3Nzg3OTMwMTg1MTNCRDA4NDg1NEJFNjYzODg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRCRTY2 Mzg4Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTZkNjExMzUtNzVlNC00NmM2LWJk ZGQtZmJhNjgzNGRjZTQxLzAvRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4 NTRCRTY2Mzg4Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAElNugeZAphiMswx/Vi0DCIk2pZUXgAXWaeT OaxIDvwH/C6QIJpUFVgfkKuDBVJxp0HioMBlEjmJds9Q3DV166kvjWPoXhZRlycS nQiHWw8gg+NvExSb4DsNm9t8SAoFDF3gTv5k/1xgXBtxY00PtAGyR7CkQn0dl711 8ElwWHjSCbumzdi5jbZulgl60WKSEGgtG4dq70xXyIXN9mP6DXVsmUpjpawc2L71 rBOOs7uwR2Benu7HtZ/B5PIW2QM1BYXfMxIGqwF/6qhRJHpnENUn3LsUwjXT/6nA 8b8KLOLpNrR2JCMxLXEXCmFNzRUXOcPzlOGlTkmL78QDAJeCVS4= -----END CERTIFICATE-----Generated at Sun May 11 13:49:55 2025 by rpki-client