$ rpki-client -vvf repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft File: 957CC5B55223EC29F2E71324C678334C4348BE02.mft (raw, json) Hash identifier: EyI86XYtOJ13879CLxrLSeTH+jpy+Vzi4q19Rl/XYXE= Subject key identifier: 9A:B8:B5:00:6E:89:F5:1B:0B:81:7D:09:C9:D4:62:6C:2F:37:9A:3E Authority key identifier: 95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 Certificate issuer: /CN=957CC5B55223EC29F2E71324C678334C4348BE02 Certificate serial: 3F81072F544E231A0D415F396D3CC9921DA5A976 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft Manifest number: 0191 Signing time: Mon 12 May 2025 03:10:50 +0000 Manifest this update: Mon 12 May 2025 03:05:50 +0000 Manifest next update: Thu 15 May 2025 05:19:50 +0000 Files and hashes: 1: 3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa (hash: gpKP80eZFgz1Xe+59VM+E5nhQuUU0t/9JV7P0fWMBTY=) 2: 957CC5B55223EC29F2E71324C678334C4348BE02.crl (hash: BJ0bcAMjWmbFYV9cTR49JEzQW0YWrhc1dMbG0tJQlGk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 05:19:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:81:07:2f:54:4e:23:1a:0d:41:5f:39:6d:3c:c9:92:1d:a5:a9:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=957CC5B55223EC29F2E71324C678334C4348BE02 Validity Not Before: May 12 03:05:50 2025 GMT Not After : May 15 05:19:50 2025 GMT Subject: CN=9AB8B5006E89F51B0B817D09C9D4626C2F379A3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b2:5b:07:17:58:48:d5:4c:ab:3f:01:04:63: 2e:b1:47:94:ba:5b:18:74:01:c4:ce:38:47:45:f2: a3:43:8c:40:9b:e8:34:8a:bb:f4:81:4c:27:2e:6b: e5:d1:04:6f:c3:c6:aa:ac:1b:b3:54:13:bf:6e:20: 22:8c:0d:b7:99:61:b5:61:15:94:a7:c7:8e:7f:99: 58:41:47:c2:73:b7:6d:1f:f7:d6:20:9a:fc:3e:ad: 17:59:fd:3b:03:10:40:41:8c:c1:de:f2:db:7d:32: 56:f9:2f:38:c0:35:da:c3:0f:5e:08:91:f8:4a:05: db:86:19:82:04:36:04:70:92:c3:92:89:1b:b3:b2: ea:34:79:f0:6e:5d:28:dd:70:2d:9b:1d:6a:3f:58: 45:a9:e6:32:17:ff:f3:37:9e:6e:16:6d:9b:dc:3b: 7a:d9:f6:92:b7:59:b1:fb:ca:9b:df:92:bb:c8:6d: 3b:85:d4:54:02:b7:0c:a8:24:21:11:cd:35:82:78: 5c:7c:32:2e:f4:32:51:60:38:72:5c:f5:df:2b:71: 97:4b:c0:20:f8:06:3e:17:37:6c:b2:b6:7f:1a:d4: d2:e5:79:8f:64:ea:67:15:48:21:d2:47:55:bc:7f: 1c:28:86:78:41:79:e6:f5:09:15:1d:d5:05:08:d1: 0f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B8:B5:00:6E:89:F5:1B:0B:81:7D:09:C9:D4:62:6C:2F:37:9A:3E X509v3 Authority Key Identifier: keyid:95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:b9:8d:d0:46:4a:c5:8a:7c:07:1b:51:46:13:82:ba:79:60: f9:6e:9b:b9:93:34:d8:9d:e2:9f:26:5c:6a:19:06:99:c5:e1: b1:17:4b:12:12:b9:74:1d:91:84:ab:f2:59:36:9d:20:bf:77: b2:9a:3a:f7:9b:68:df:45:27:ae:d1:d5:60:81:94:39:c3:82: 4e:c8:ba:60:d1:b6:50:d4:ef:df:e1:be:09:8b:71:e8:61:01: 05:92:3f:3f:0c:16:10:2a:f4:24:f9:62:39:2d:67:8b:34:da: ab:db:9b:6a:d4:80:d5:ef:7d:e3:0d:5a:2b:62:33:56:7e:79: a8:85:59:a6:fa:5a:bc:68:5d:30:aa:8d:23:c7:ef:5a:a9:85: a5:19:d1:0d:e3:31:e5:f7:f6:51:04:83:8a:2a:a2:9c:b3:6d: b4:4f:23:c6:9d:f6:f5:b0:fe:8b:84:4b:f4:fc:12:37:6b:93: 12:b3:5c:62:52:a6:8f:21:5a:f4:ba:8a:76:5d:e6:b4:25:ee: ff:24:92:78:ec:dc:e0:ca:59:b9:bf:d3:2c:25:a5:0d:47:4f: 78:90:6d:af:bb:23:15:78:05:23:5c:b6:fa:ab:fc:10:6b:c4: f7:18:d3:a9:56:f5:c0:b7:50:94:f5:f9:c4:f9:4a:bd:7c:17: 74:8b:cf:cc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUP4EHL1ROIxoNQV85bTzJkh2lqXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0 MzQ4QkUwMjAeFw0yNTA1MTIwMzA1NTBaFw0yNTA1MTUwNTE5NTBaMDMxMTAvBgNV BAMTKDlBQjhCNTAwNkU4OUY1MUIwQjgxN0QwOUM5RDQ2MjZDMkYzNzlBM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2slsHF1hI1UyrPwEEYy6xR5S6 Wxh0AcTOOEdF8qNDjECb6DSKu/SBTCcua+XRBG/DxqqsG7NUE79uICKMDbeZYbVh FZSnx45/mVhBR8Jzt20f99Ygmvw+rRdZ/TsDEEBBjMHe8tt9Mlb5LzjANdrDD14I kfhKBduGGYIENgRwksOSiRuzsuo0efBuXSjdcC2bHWo/WEWp5jIX//M3nm4WbZvc O3rZ9pK3WbH7ypvfkrvIbTuF1FQCtwyoJCERzTWCeFx8Mi70MlFgOHJc9d8rcZdL wCD4Bj4XN2yytn8a1NLleY9k6mcVSCHSR1W8fxwohnhBeeb1CRUd1QUI0Q8PAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmri1AG6J9RsLgX0JydRibC83mj4wHwYDVR0j BBgwFoAUlXzFtVIj7Cny5xMkxngzTENIvgIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGE3OGMwNi0xZDZlLTQzYjYtYmYzMC04NjBjZWJkZGZiMzIvMC85NTdDQzVCNTUy MjNFQzI5RjJFNzEzMjRDNjc4MzM0QzQzNDhCRTAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0MzQ4 QkUwMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjBhNzhjMDYtMWQ2ZS00M2I2LWJm MzAtODYwY2ViZGRmYjMyLzAvOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMz NEM0MzQ4QkUwMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGW5jdBGSsWKfAcbUUYTgrp5YPlum7mTNNid 4p8mXGoZBpnF4bEXSxISuXQdkYSr8lk2nSC/d7KaOvebaN9FJ67R1WCBlDnDgk7I umDRtlDU79/hvgmLcehhAQWSPz8MFhAq9CT5YjktZ4s02qvbm2rUgNXvfeMNWiti M1Z+eaiFWab6WrxoXTCqjSPH71qphaUZ0Q3jMeX39lEEg4oqopyzbbRPI8ad9vWw /ouES/T8EjdrkxKzXGJSpo8hWvS6inZd5rQl7v8kknjs3ODKWbm/0ywlpQ1HT3iQ ba+7IxV4BSNctvqr/BBrxPcY06lW9cC3UJT1+cT5Sr18F3SLz8w= -----END CERTIFICATE-----Generated at Mon May 12 23:40:45 2025 by rpki-client