$ rpki-client -vvf repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.mft File: CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.mft (raw, json) Hash identifier: 3pYFm1j7xwYieDs8FsHRhhm5/MhZEk9IsjrkKpJgSxs= Subject key identifier: 7B:88:2D:A3:A2:B4:11:B6:DC:D5:19:D4:3E:D6:33:74:26:35:6A:BA Authority key identifier: CA:FC:88:25:F9:80:02:AF:2A:3C:B5:4E:F2:79:D5:9C:D2:E5:04:3C Certificate issuer: /CN=CAFC8825F98002AF2A3CB54EF279D59CD2E5043C Certificate serial: 5B92F89EAD53C4B406A9B4CDADE2C8B9D893B550 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.mft Manifest number: 65 Signing time: Wed 07 May 2025 17:32:21 +0000 Manifest this update: Wed 07 May 2025 17:27:21 +0000 Manifest next update: Sat 10 May 2025 21:16:21 +0000 Files and hashes: 1: 3136302e3138372e3135302e302f32332d3234203d3e20313533313237.roa (hash: LDJv6wYx3HsP5pbUhXvKMJKGJv2fMd2X2nhqPoeeYwE=) 2: CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.crl (hash: B53Rkwa73kyI3WjESognSOwaJGY2KnLKkYKiFv50g5I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.crl rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 20:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:92:f8:9e:ad:53:c4:b4:06:a9:b4:cd:ad:e2:c8:b9:d8:93:b5:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAFC8825F98002AF2A3CB54EF279D59CD2E5043C Validity Not Before: May 7 17:27:21 2025 GMT Not After : May 10 21:16:21 2025 GMT Subject: CN=7B882DA3A2B411B6DCD519D43ED6337426356ABA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:53:27:a4:51:0a:a2:45:bc:23:50:41:93:4f: 87:38:3c:a5:c5:71:b2:79:85:57:00:ef:43:da:28: b7:49:6a:c3:62:17:bc:d7:cc:73:8c:cc:95:4e:7a: 55:1b:7e:1f:43:41:20:45:00:ef:7b:b7:0b:f9:2b: 50:d8:1f:c8:81:97:8b:76:b5:60:03:db:b0:77:e6: 36:8f:04:30:73:59:81:50:ec:fa:a6:64:20:4d:e2: 42:b1:5a:57:55:c7:4f:fb:94:63:7c:60:ed:ed:41: e8:d9:1d:70:6c:05:53:9b:d6:7c:5d:c3:2a:35:10: 42:41:b2:f5:59:b5:1e:6d:f2:54:19:5f:63:54:8d: c1:17:32:1e:cd:ad:be:50:eb:76:1f:31:0e:6e:e6: a8:b8:a5:e0:1d:8f:89:fe:b1:99:b7:a0:6e:46:a4: 83:66:b0:d5:d0:85:2b:c7:63:66:80:b9:c0:e6:47: 36:14:e3:b5:d4:5a:c8:42:a7:02:ac:15:52:cb:2e: 9d:42:a4:3d:cf:b0:f3:86:1d:cd:f6:a8:e5:3e:90: 9d:d1:cb:63:d9:d4:d7:90:06:c3:8f:3b:d1:cf:e3: 7a:ea:5f:8e:63:92:de:1b:10:f1:ca:db:10:e4:44: 94:ca:77:98:9c:d6:2f:70:ff:e7:3e:80:81:01:9f: f8:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:88:2D:A3:A2:B4:11:B6:DC:D5:19:D4:3E:D6:33:74:26:35:6A:BA X509v3 Authority Key Identifier: keyid:CA:FC:88:25:F9:80:02:AF:2A:3C:B5:4E:F2:79:D5:9C:D2:E5:04:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/CAFC8825F98002AF2A3CB54EF279D59CD2E5043C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:ba:b0:b0:10:83:ca:c1:32:67:88:03:89:d3:2a:91:8a:fa: ab:cb:1b:d6:57:a6:1d:74:77:4b:a5:de:60:50:72:09:16:08: 57:f7:22:9d:0b:9f:bf:ab:3a:8e:3f:1c:86:09:80:cc:2f:64: 6b:a9:86:67:a5:23:56:31:63:11:2b:30:4e:bf:05:ab:26:93: b1:0d:16:6f:14:57:31:f2:92:6b:da:82:8d:c2:82:70:92:c9: 8b:8e:2b:0d:17:bc:6f:ce:57:d9:e5:73:a9:60:fb:e0:9c:d7: 82:72:1d:c0:a4:b1:20:1a:cf:cc:58:d3:ae:11:7f:36:f7:08: 29:2b:48:d4:ca:b2:0f:44:a8:7b:c3:42:8a:7c:3d:f2:bf:44: a1:a8:81:fd:07:8f:cf:2b:9a:6b:26:2d:be:26:1b:31:7f:e3: f9:16:52:44:43:44:71:e3:c9:7a:b2:93:68:30:b2:35:ee:dc: 8a:ed:10:a7:04:c5:9f:68:e6:87:62:3b:f0:82:8f:ef:86:0f: 91:20:a0:a9:47:b8:25:c1:3c:01:09:0c:f1:68:da:1b:60:25: fc:1d:03:a5:ce:1a:29:38:dc:03:d9:2c:8b:a3:60:57:08:e6: de:a3:ed:e4:11:aa:4f:c1:9c:b0:43:b3:c7:b7:8d:ec:22:35: 5b:6d:f6:63 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUW5L4nq1TxLQGqbTNreLIudiTtVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FGQzg4MjVGOTgwMDJBRjJBM0NCNTRFRjI3OUQ1OUNE MkU1MDQzQzAeFw0yNTA1MDcxNzI3MjFaFw0yNTA1MTAyMTE2MjFaMDMxMTAvBgNV BAMTKDdCODgyREEzQTJCNDExQjZEQ0Q1MTlENDNFRDYzMzc0MjYzNTZBQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTUyekUQqiRbwjUEGTT4c4PKXF cbJ5hVcA70PaKLdJasNiF7zXzHOMzJVOelUbfh9DQSBFAO97twv5K1DYH8iBl4t2 tWAD27B35jaPBDBzWYFQ7PqmZCBN4kKxWldVx0/7lGN8YO3tQejZHXBsBVOb1nxd wyo1EEJBsvVZtR5t8lQZX2NUjcEXMh7Nrb5Q63YfMQ5u5qi4peAdj4n+sZm3oG5G pINmsNXQhSvHY2aAucDmRzYU47XUWshCpwKsFVLLLp1CpD3PsPOGHc32qOU+kJ3R y2PZ1NeQBsOPO9HP43rqX45jkt4bEPHK2xDkRJTKd5ic1i9w/+c+gIEBn/gDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUe4gto6K0Ebbc1RnUPtYzdCY1arowHwYDVR0j BBgwFoAUyvyIJfmAAq8qPLVO8nnVnNLlBDwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWQ5N2I0MC1jMDMxLTRlNWItOWI0Mi1kMmFlMWM5Y2Y5ODcvMC9DQUZDODgyNUY5 ODAwMkFGMkEzQ0I1NEVGMjc5RDU5Q0QyRTUwNDNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQ0FGQzg4MjVGOTgwMDJBRjJBM0NCNTRFRjI3OUQ1OUNEMkU1 MDQzQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjFkOTdiNDAtYzAzMS00ZTViLTli NDItZDJhZTFjOWNmOTg3LzAvQ0FGQzg4MjVGOTgwMDJBRjJBM0NCNTRFRjI3OUQ1 OUNEMkU1MDQzQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA66sLAQg8rBMmeIA4nTKpGK+qvLG9ZXph10 d0ul3mBQcgkWCFf3Ip0Ln7+rOo4/HIYJgMwvZGuphmelI1YxYxErME6/Basmk7EN Fm8UVzHykmvago3CgnCSyYuOKw0XvG/OV9nlc6lg++Cc14JyHcCksSAaz8xY064R fzb3CCkrSNTKsg9EqHvDQop8PfK/RKGogf0Hj88rmmsmLb4mGzF/4/kWUkRDRHHj yXqyk2gwsjXu3IrtEKcExZ9o5odiO/CCj++GD5EgoKlHuCXBPAEJDPFo2htgJfwd A6XOGik43APZLIujYFcI5t6j7eQRqk/BnLBDs8e3jewiNVtt9mM= -----END CERTIFICATE-----Generated at Thu May 8 02:53:01 2025 by rpki-client