$ rpki-client -vvf repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft File: 2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft (raw, json) Hash identifier: K5mt9KOdnRcrpBmpKfT8Mx9GasFLRCXBgA5BCKMo4CA= Subject key identifier: 5B:DA:08:12:E4:89:A1:96:17:70:67:EF:F5:D2:7F:A6:7E:B3:98:90 Authority key identifier: 2C:FD:5B:DD:D1:DB:A6:D9:40:28:74:D6:22:3A:BD:7E:EE:E0:16:05 Certificate issuer: /CN=2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605 Certificate serial: 2793E1D6A23C7FF9E9A386B9D43B38F233D566A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft Manifest number: A2 Signing time: Thu 08 May 2025 13:10:36 +0000 Manifest this update: Thu 08 May 2025 13:05:36 +0000 Manifest next update: Mon 12 May 2025 00:49:36 +0000 Files and hashes: 1: 32372e3132342e36362e302f32342d3234203d3e20313532303339.roa (hash: Qk1aebZH6HpsmbRtyw6Zbd7LsZDQbi5L/mrlB31+AsU=) 2: 32372e3132342e36372e302f32342d3234203d3e20313532303339.roa (hash: PIB1m7UZc9kcov7LjZoIh/Ol3lgnFrAZfbEkkmZBCd0=) 3: 2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl (hash: N1pfqfuOajQqJrygI2ADmp/Ki8nAPaCkFEnICZnrXCc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 00:49:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:93:e1:d6:a2:3c:7f:f9:e9:a3:86:b9:d4:3b:38:f2:33:d5:66:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605 Validity Not Before: May 8 13:05:36 2025 GMT Not After : May 12 00:49:36 2025 GMT Subject: CN=5BDA0812E489A196177067EFF5D27FA67EB39890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a5:f6:fd:48:07:92:29:a0:58:5a:5b:a2:2d: 21:93:20:fd:2f:f9:34:49:1e:1d:dd:a2:1e:c6:e2: ce:d8:e3:68:45:28:5e:4b:b1:d0:0d:e7:c3:99:06: bb:27:74:a0:67:61:0c:34:df:94:3e:56:fb:8e:eb: f1:6b:27:d5:5c:7e:39:ff:24:fd:6b:dc:60:fe:aa: 20:85:fb:0a:31:a1:64:85:15:d8:53:8f:36:47:c1: 09:13:36:89:48:cd:a8:54:cb:56:93:fd:2e:02:f2: 44:10:06:97:e6:86:b9:a4:c3:6f:7d:69:2d:50:68: 66:a6:0e:11:a4:65:ac:38:ae:82:ca:32:7b:8b:35: a8:8a:45:43:44:f7:15:30:2a:24:4d:14:59:e1:1c: 3d:c5:11:6b:ca:29:b5:a1:93:64:ab:ea:4d:02:3a: 43:63:10:98:f3:43:21:75:05:26:2a:85:de:00:5b: 57:ce:c4:50:03:b5:b4:29:a2:f1:bd:40:33:25:6c: 73:8e:fd:e4:86:a9:34:d6:9e:c1:05:10:08:8f:70: 61:1a:2a:f6:33:ef:71:de:85:dc:5c:d1:14:ee:8b: 2c:a9:37:db:02:4f:d3:95:64:3a:7e:31:18:95:23: 6a:80:30:6d:e9:72:95:10:fb:99:2d:fb:f5:1e:60: a6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:DA:08:12:E4:89:A1:96:17:70:67:EF:F5:D2:7F:A6:7E:B3:98:90 X509v3 Authority Key Identifier: keyid:2C:FD:5B:DD:D1:DB:A6:D9:40:28:74:D6:22:3A:BD:7E:EE:E0:16:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:69:e3:24:3c:27:8f:24:0b:e9:c8:5e:46:dc:14:f0:66:62: 17:00:f7:82:51:7c:82:fa:bc:c9:52:d1:d6:d3:96:86:4d:e7: 3d:e6:3a:30:68:a6:0c:9d:82:79:af:62:c9:93:7e:d5:71:4f: 42:92:e5:a6:60:6a:14:cc:94:66:4b:7b:f1:23:c8:eb:c3:6a: fb:52:3b:78:1a:9e:ed:0a:1c:ac:1a:c9:53:53:17:7c:9e:31: c4:dc:b0:58:9c:78:9d:78:64:3a:73:c9:b0:98:ad:af:a1:38: d9:7e:07:28:6d:6e:95:a5:9e:99:1a:06:c4:8b:56:80:9a:22: 47:87:34:42:15:6e:ef:fb:3a:cf:65:b1:8c:90:7c:e7:c8:cd: 98:0e:d4:85:f4:1a:5d:42:f2:0b:9c:65:c8:82:eb:eb:d4:65: 78:1c:10:e3:c9:df:15:55:12:f2:d5:00:a1:32:32:14:a7:75: cf:21:0b:53:ac:cf:5a:bf:19:36:69:9f:c9:1d:df:5e:8b:7f: d2:e2:c7:26:b4:3b:6d:71:8f:c3:b9:49:6b:a6:f4:95:e4:c6: f1:4b:7a:14:ed:ba:02:b4:8e:e0:6b:79:7e:4c:f2:68:6a:97: 5a:6c:a4:0b:10:f9:89:a4:4b:a2:d6:f5:a3:cb:a5:48:9c:4a: 32:0d:7d:5e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ5Ph1qI8f/npo4a51Ds48jPVZqUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJEN0VF RUUwMTYwNTAeFw0yNTA1MDgxMzA1MzZaFw0yNTA1MTIwMDQ5MzZaMDMxMTAvBgNV BAMTKDVCREEwODEyRTQ4OUExOTYxNzcwNjdFRkY1RDI3RkE2N0VCMzk4OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGpfb9SAeSKaBYWluiLSGTIP0v +TRJHh3doh7G4s7Y42hFKF5LsdAN58OZBrsndKBnYQw035Q+VvuO6/FrJ9Vcfjn/ JP1r3GD+qiCF+woxoWSFFdhTjzZHwQkTNolIzahUy1aT/S4C8kQQBpfmhrmkw299 aS1QaGamDhGkZaw4roLKMnuLNaiKRUNE9xUwKiRNFFnhHD3FEWvKKbWhk2Sr6k0C OkNjEJjzQyF1BSYqhd4AW1fOxFADtbQpovG9QDMlbHOO/eSGqTTWnsEFEAiPcGEa KvYz73Hehdxc0RTuiyypN9sCT9OVZDp+MRiVI2qAMG3pcpUQ+5kt+/UeYKZTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUW9oIEuSJoZYXcGfv9dJ/pn6zmJAwHwYDVR0j BBgwFoAULP1b3dHbptlAKHTWIjq9fu7gFgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjdlMGJjMC03NjFiLTRlYzMtOGY0Mi04Mjk4MWI5MWE5N2EvMC8yQ0ZENUJEREQx REJBNkQ5NDAyODc0RDYyMjNBQkQ3RUVFRTAxNjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJEN0VFRUUw MTYwNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWI3ZTBiYzAtNzYxYi00ZWMzLThm NDItODI5ODFiOTFhOTdhLzAvMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJE N0VFRUUwMTYwNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHlp4yQ8J48kC+nIXkbcFPBmYhcA94JRfIL6 vMlS0dbTloZN5z3mOjBopgydgnmvYsmTftVxT0KS5aZgahTMlGZLe/EjyOvDavtS O3ganu0KHKwayVNTF3yeMcTcsFiceJ14ZDpzybCYra+hONl+ByhtbpWlnpkaBsSL VoCaIkeHNEIVbu/7Os9lsYyQfOfIzZgO1IX0Gl1C8gucZciC6+vUZXgcEOPJ3xVV EvLVAKEyMhSndc8hC1Osz1q/GTZpn8kd316Lf9Lixya0O21xj8O5SWum9JXkxvFL ehTtugK0juBreX5M8mhql1pspAsQ+YmkS6LW9aPLpUicSjINfV4= -----END CERTIFICATE-----Generated at Sun May 11 00:48:19 2025 by rpki-client