$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft File: CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft (raw, json) Hash identifier: yn7PDprPBK89N43F5kUejDg/xtDPi/CAAnDFysRN7QQ= Subject key identifier: 6B:AD:B5:62:E8:9E:D0:8C:D9:08:9C:4C:0E:8B:B1:41:A3:82:FA:67 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 76404606B497F93F5D683177C27647DFABA016E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft Manifest number: 04F3 Signing time: Sat 10 May 2025 06:01:46 +0000 Manifest this update: Sat 10 May 2025 05:56:46 +0000 Manifest next update: Tue 13 May 2025 10:06:46 +0000 Files and hashes: 1: 3230322e36352e3131322e302f32312d3234203d3e203233393531.roa (hash: nun7wr5qUW6SSsLL/8m4wIYLtJbVijMvNYm3I5L5gwY=) 2: 3230322e36352e3132302e302f32332d3234203d3e203233393531.roa (hash: +7ThYpBxJ7cY58NoufQvfB+mtjUp0Rdkq8BnlAc4bZ4=) 3: 3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa (hash: hplPEY83KbXLKF8mvbTVWHeph6nkNRI9I2QkUrjdTPg=) 4: 3230322e3135322e3132382e302f31392d3234203d3e203233393531.roa (hash: ozMMj1PLYt9P59zXxht5YENq9xxiksZRJWyynQGPWwo=) 5: 323430313a656530303a3a2f33322d3438203d3e203233393531.roa (hash: plFUYvoZx+Zhhi7/vKanQppp3zTRIZoJyKujyLUaQfM=) 6: 3230322e36352e3131322e302f32302d3231203d3e203233393531.roa (hash: jHen1vZLG/DOZwqIeHYY98aBHq6SMyx6T3vs559h5rI=) 7: 3230322e36352e3132302e302f32322d3233203d3e203233393531.roa (hash: mwYMKgumoG9KUXW9CmbB5xkKPC0iVTbXFYBRWL88eZY=) 8: 3130332e3130312e3133362e302f32322d3232203d3e203233393531.roa (hash: 4xDh+QQ3DjVG3ZsJTKYXeue+iML5/d6SNSBZf74CI44=) 9: 3131372e32302e34382e302f32302d3234203d3e203233393531.roa (hash: twCP3bQtXm7fHopGhk9qw+BKzDavhDYNdBsRfz7JGKg=) 10: 3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa (hash: vhMXT0X2yZyfjqh1If/jDIC06hgxnPfiOfL606K6iKk=) 11: 3230322e36352e3132342e302f32322d3234203d3e203436303531.roa (hash: fYkaRaqMdzeCnlFj0QC4k70wJ41vV5h8EX1emupb1Ew=) 12: 3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa (hash: bWRExWZZIgQwRxIP86bPE6hDOmLbrhGh8hJvUz7o6EE=) 13: 3230322e36352e3132302e302f32342d3234203d3e203233393531.roa (hash: HAoFxdygcRJ4Y8uy9Ks9W9Gj/PwyoONosucd1x3NYoo=) 14: 3230322e36352e3131322e302f32312d3231203d3e203233393531.roa (hash: YMkK1MNXH2D6eByawSLr2fAy1YjJp/Nm5M4Ucze1b40=) 15: CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl (hash: qVblsH5IiiSaPALSMtki7E5/FBp0X2s2QQGEWPQITfE=) 16: 3230322e36352e3132332e302f32342d3234203d3e203233393531.roa (hash: 9FaMWUxx6cNM5vz7M9YrzpMwj5RS9BmzIfAf19UCzPI=) 17: 3230322e36352e3131322e302f32342d3234203d3e203233393531.roa (hash: G3BDF4TZ5GKx7Jq6M6FOl3lpCmK1xcIVdoD+jUyf4vU=) 18: 3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa (hash: dASDC6A8QkcoKOTRQ/CvgSqJWSyAkaKqOmqilKOQ97g=) 19: 3130332e3130312e3133362e302f32332d3233203d3e203233393531.roa (hash: 9SIW/5w9M/SmmmzkXzv4Bp8jIuxjcuDE9nLrxJeaY/8=) 20: 3230322e36352e3132322e302f32332d3233203d3e203233393531.roa (hash: LqxreuPQRi/RPY9pSW+yNL/verqLyl3p0dMRTLmH8hk=) 21: 3230322e36352e3132322e302f32342d3234203d3e203233393531.roa (hash: So5G4uHqVHWD5JnkptSS1bHWAe/cdyDOQettCO6GGiU=) 22: 3230322e36352e3132312e302f32342d3234203d3e203233393531.roa (hash: unueG7P54wUmQZvOUKrhpSAH4gB/UymG78WRnuwkjpw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 08:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:40:46:06:b4:97:f9:3f:5d:68:31:77:c2:76:47:df:ab:a0:16:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: May 10 05:56:46 2025 GMT Not After : May 13 10:06:46 2025 GMT Subject: CN=6BADB562E89ED08CD9089C4C0E8BB141A382FA67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f2:77:06:d2:02:8f:9d:32:fe:59:1b:7c:fb: b6:ef:98:a1:5a:0c:56:b5:62:63:40:78:cd:99:83: f8:08:3f:1b:35:68:35:9d:ac:c6:8b:4d:2e:f5:ab: b3:cd:55:5d:9e:1a:96:64:c5:13:6f:07:38:67:88: d1:eb:e6:b7:98:23:a0:25:a1:4e:e0:bd:96:77:77: a0:e0:7f:bd:4c:5e:48:b3:28:d0:87:d2:ff:52:96: 17:89:36:01:14:a9:4e:e0:fc:ae:b6:ad:d6:c9:ef: 78:93:3e:35:fd:75:9c:4e:82:69:a3:a8:04:3c:be: ec:25:6c:bd:52:72:64:87:0e:a1:95:3d:35:6b:60: a4:36:07:a3:52:f4:53:e9:e1:3f:92:a2:2c:e4:e9: d6:b5:fc:21:c4:e5:3b:5e:d5:5c:55:c3:49:1e:8a: dc:47:6c:25:58:11:70:67:2f:69:81:11:f1:5b:4b: 70:cb:66:ac:03:34:31:06:fb:f2:e8:3f:e0:b5:04: 8d:0e:56:33:b2:da:a0:45:28:f9:d5:ec:0c:6e:99: 0e:ea:4b:e6:9b:2c:fb:ca:91:3f:ad:52:46:cf:f9: b8:17:9f:50:7a:40:a0:2c:e1:7f:12:95:4d:34:b1: 9e:7f:72:41:ec:dd:31:55:b6:0e:f3:a2:13:b6:47: 37:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:AD:B5:62:E8:9E:D0:8C:D9:08:9C:4C:0E:8B:B1:41:A3:82:FA:67 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:c7:2f:57:8b:7f:67:eb:b0:62:d5:01:44:52:7e:41:bf:88: 38:50:bb:61:11:a9:3e:ad:92:29:84:35:e5:2c:ff:b8:7d:d9: 94:4d:c2:13:d4:90:49:c8:1e:4e:52:9e:e8:2d:64:48:23:38: 1a:4c:2a:66:fa:4e:d9:b0:cb:b7:0b:c3:e4:44:3a:8c:55:43: 65:da:df:5f:e9:58:e0:cc:97:f6:85:1b:9f:74:a7:a5:48:96: bf:2b:19:45:3d:c9:15:45:03:2a:0e:16:aa:15:df:7a:0e:78: d2:85:4d:ad:de:91:55:8b:d3:d4:a9:7e:f2:ef:70:94:f7:c1: b7:7c:af:75:3b:4a:8a:65:77:b3:99:11:50:ae:87:3f:be:39: 7f:81:15:5a:06:f8:f7:4f:c8:6e:43:99:24:c8:cf:ca:5b:a4: 46:af:73:ef:2d:59:3c:7a:c5:60:f7:29:c5:32:78:2b:88:46: ea:01:d3:ab:6a:07:c2:2a:97:9f:90:39:2b:c4:54:14:62:61: 6c:34:40:0c:df:5b:3f:b9:e6:e4:78:d0:e8:f0:2a:6f:ef:fc: 34:e4:79:5b:aa:d4:86:4b:cf:9a:50:df:d0:2c:12:17:08:97: 48:3e:1e:79:f8:4c:54:e5:4e:12:b0:12:4f:f8:4c:d7:5c:ec: c0:c3:a8:39 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdkBGBrSX+T9daDF3wnZH36ugFuIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA1MTAwNTU2NDZaFw0yNTA1MTMxMDA2NDZaMDMxMTAvBgNV BAMTKDZCQURCNTYyRTg5RUQwOENEOTA4OUM0QzBFOEJCMTQxQTM4MkZBNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd8ncG0gKPnTL+WRt8+7bvmKFa DFa1YmNAeM2Zg/gIPxs1aDWdrMaLTS71q7PNVV2eGpZkxRNvBzhniNHr5reYI6Al oU7gvZZ3d6Dgf71MXkizKNCH0v9SlheJNgEUqU7g/K62rdbJ73iTPjX9dZxOgmmj qAQ8vuwlbL1ScmSHDqGVPTVrYKQ2B6NS9FPp4T+Soizk6da1/CHE5Tte1VxVw0ke itxHbCVYEXBnL2mBEfFbS3DLZqwDNDEG+/LoP+C1BI0OVjOy2qBFKPnV7AxumQ7q S+abLPvKkT+tUkbP+bgXn1B6QKAs4X8SlU00sZ5/ckHs3TFVtg7zohO2Rze3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUa621Yuie0IzZCJxMDouxQaOC+mcwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWU2YTdlNDYtYjZhZC00YTdkLWI5 MzAtMWFiMGJmMDJkZDVkLzAvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRG MkUxNDNDOEU4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKjHL1eLf2frsGLVAURSfkG/iDhQu2ERqT6t kimENeUs/7h92ZRNwhPUkEnIHk5SnugtZEgjOBpMKmb6Ttmwy7cLw+REOoxVQ2Xa 31/pWODMl/aFG590p6VIlr8rGUU9yRVFAyoOFqoV33oOeNKFTa3ekVWL09SpfvLv cJT3wbd8r3U7Sopld7OZEVCuhz++OX+BFVoG+PdPyG5DmSTIz8pbpEavc+8tWTx6 xWD3KcUyeCuIRuoB06tqB8Iql5+QOSvEVBRiYWw0QAzfWz+55uR40OjwKm/v/DTk eVuq1IZLz5pQ39AsEhcIl0g+Hnn4TFTlThKwEk/4TNdc7MDDqDk= -----END CERTIFICATE-----Generated at Sat May 10 20:03:24 2025 by rpki-client