$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft File: 523EE387D3C00A87B7E355ABF1EE524AADF74148.mft (raw, json) Hash identifier: 8xvb+/1m2E7z1hspziL20foxdjvkRJfpBf5rtjPj1Mc= Subject key identifier: 90:13:A8:85:1C:08:45:AE:7F:5B:BD:D8:B5:3C:EB:C5:1A:57:B2:B1 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 115B283A17858904A98BE35D15574A9CE86355DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft Manifest number: 04CD Signing time: Tue 06 May 2025 23:50:55 +0000 Manifest this update: Tue 06 May 2025 23:45:55 +0000 Manifest next update: Sat 10 May 2025 06:57:55 +0000 Files and hashes: 1: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (hash: QEq8jNx2qgo9wFvMjpQwwTDlq5Z+M7FLAg6t2ZLkWJY=) 2: 523EE387D3C00A87B7E355ABF1EE524AADF74148.crl (hash: mTsQVHP2o8fP6GBpJkuxDUf+exXjKedmLkO8k9pZ80U=) 3: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (hash: UWqkjfovjwl/QKGqzpJlq4xcCareXuzDyb/5yleHEFU=) 4: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (hash: cZVBXXGJKiJCT/zUIwExIpoODQYqK0TgIQSfYHzcYPg=) 5: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (hash: S+MMrSxkm+20Gx180EdlH1YNBkEDPrj8PEBtJ4+Q9J4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 06:57:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:5b:28:3a:17:85:89:04:a9:8b:e3:5d:15:57:4a:9c:e8:63:55:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: May 6 23:45:55 2025 GMT Not After : May 10 06:57:55 2025 GMT Subject: CN=9013A8851C0845AE7F5BBDD8B53CEBC51A57B2B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7c:cc:c8:d1:f2:ad:bd:3a:9a:49:63:c6:c5: 6b:67:66:1b:1b:03:c8:37:2f:1e:fc:c5:2b:99:56: 89:16:95:ff:c5:bb:7f:9f:36:3a:a7:41:1d:5e:d7: 4e:35:ef:67:89:ee:64:95:8c:a1:60:aa:d8:5c:10: 69:cb:e3:03:46:79:f9:b3:e4:67:6f:9f:ed:e7:b3: f9:db:01:c8:3f:fa:e0:f2:06:53:a7:d6:52:e0:e1: 30:27:88:38:be:af:66:18:f6:31:18:e0:b7:d9:c7: 6f:42:6b:bd:e8:23:16:96:c6:b4:ba:de:e6:9e:ed: 13:90:26:14:f3:0f:11:d7:90:38:d4:00:3b:d3:b0: b1:81:06:31:56:fe:c8:6e:d7:ba:bb:25:c8:63:62: b4:66:ab:88:b7:d8:8e:11:89:54:45:9b:31:c9:13: 8a:58:ed:78:f0:d5:4f:4e:51:e4:57:34:79:8b:52: 92:16:b4:78:0a:f5:99:42:5d:9b:6d:43:a8:20:31: ac:13:69:39:2d:92:b0:8d:90:c4:03:a3:f5:c0:3c: d0:92:20:14:c0:a9:fa:ea:2c:56:81:f6:10:9e:04: c8:f9:8c:f2:c4:34:34:8c:c2:61:96:d8:2e:94:54: e5:b3:7f:af:fe:e7:21:54:ef:35:fa:fa:d7:f5:75: 63:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:13:A8:85:1C:08:45:AE:7F:5B:BD:D8:B5:3C:EB:C5:1A:57:B2:B1 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:d9:6d:6d:1d:f6:ee:19:44:97:f4:b9:60:bc:cd:5a:0b:2b: ed:eb:e6:e8:eb:d6:70:4d:4a:e9:2d:e3:fa:2b:06:53:db:f8: 67:e8:0a:0b:9b:91:64:1d:61:6f:42:33:b1:fd:15:dc:9a:12: d5:a6:d7:88:23:fa:61:0f:d5:51:71:c3:f1:0c:55:ed:d3:68: 13:40:9d:66:68:78:e4:74:57:46:0f:a1:b4:de:b5:d3:b7:63: 05:50:32:a6:57:05:0c:1f:da:3b:a1:a6:3c:bd:58:b9:18:bf: a2:ba:36:8e:b6:ad:83:ef:dd:d4:0e:b4:1d:82:58:4b:7e:90: ea:c3:09:94:3a:2d:0f:09:f6:6b:d8:f4:13:da:6c:e4:43:97: f7:84:6a:62:f1:98:78:e5:da:84:64:5a:2a:c3:7f:eb:0d:02: 4a:9a:18:ac:41:3d:14:9a:13:15:40:9c:19:19:96:6a:16:76: 34:56:2a:ff:dc:41:e2:01:f6:9e:fd:56:4e:a4:dd:0b:61:b5: 2b:5d:27:01:c6:de:93:c9:62:b4:47:fe:51:6e:c9:e4:d0:c2: 8e:c5:99:60:52:3c:7d:93:93:61:35:66:72:d0:cf:9b:76:86: 5c:8b:84:f3:95:9e:fa:85:bb:2c:93:de:6c:bf:44:04:a0:cb: a9:96:4b:3b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEVsoOheFiQSpi+NdFVdKnOhjVdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNTA1MDYyMzQ1NTVaFw0yNTA1MTAwNjU3NTVaMDMxMTAvBgNV BAMTKDkwMTNBODg1MUMwODQ1QUU3RjVCQkREOEI1M0NFQkM1MUE1N0IyQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCffMzI0fKtvTqaSWPGxWtnZhsb A8g3Lx78xSuZVokWlf/Fu3+fNjqnQR1e104172eJ7mSVjKFgqthcEGnL4wNGefmz 5Gdvn+3ns/nbAcg/+uDyBlOn1lLg4TAniDi+r2YY9jEY4LfZx29Ca73oIxaWxrS6 3uae7ROQJhTzDxHXkDjUADvTsLGBBjFW/shu17q7JchjYrRmq4i32I4RiVRFmzHJ E4pY7Xjw1U9OUeRXNHmLUpIWtHgK9ZlCXZttQ6ggMawTaTktkrCNkMQDo/XAPNCS IBTAqfrqLFaB9hCeBMj5jPLENDSMwmGW2C6UVOWzf6/+5yFU7zX6+tf1dWMZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkBOohRwIRa5/W73YtTzrxRpXsrEwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWE5NTIwZmQtOGRlNS00YTY5LTg1 ZjEtYzQ0ODk3YWU2MTIxLzAvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUy NEFBREY3NDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH/ZbW0d9u4ZRJf0uWC8zVoLK+3r5ujr1nBN Sukt4/orBlPb+GfoCgubkWQdYW9CM7H9FdyaEtWm14gj+mEP1VFxw/EMVe3TaBNA nWZoeOR0V0YPobTetdO3YwVQMqZXBQwf2juhpjy9WLkYv6K6No62rYPv3dQOtB2C WEt+kOrDCZQ6LQ8J9mvY9BPabORDl/eEamLxmHjl2oRkWirDf+sNAkqaGKxBPRSa ExVAnBkZlmoWdjRWKv/cQeIB9p79Vk6k3QthtStdJwHG3pPJYrRH/lFuyeTQwo7F mWBSPH2Tk2E1ZnLQz5t2hlyLhPOVnvqFuyyT3my/RASgy6mWSzs= -----END CERTIFICATE-----Generated at Thu May 8 04:09:13 2025 by rpki-client