$ rpki-client -vvf repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft File: A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft (raw, json) Hash identifier: 5I6s3rZWJa8OkPR2EUurztNmwoTjbXkTjwrep4pLL8c= Subject key identifier: 1B:9E:D5:0D:8B:E9:10:B1:0D:E8:E6:71:D3:C9:AD:53:17:DF:13:DD Authority key identifier: A9:D6:63:C6:EB:CD:25:0A:A8:92:7E:A0:94:62:7C:94:15:DE:E7:FC Certificate issuer: /CN=A9D663C6EBCD250AA8927EA094627C9415DEE7FC Certificate serial: 7A673F014958B6D35BB2B8B21919C1E3C527C8F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft Manifest number: 46 Signing time: Sat 10 May 2025 20:01:16 +0000 Manifest this update: Sat 10 May 2025 19:56:16 +0000 Manifest next update: Wed 14 May 2025 00:22:16 +0000 Files and hashes: 1: A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl (hash: jSBYjhT1tEATpDbBBjprIIP7cEz9ZmSSl/i41CCWl1g=) 2: 3136302e3139312e36352e302f32342d3234203d3e20313533313438.roa (hash: 66g0GBTdSeAme2H37nLc01yyifW6eVqeoyuhCfgsCgA=) 3: 3136302e3139312e36342e302f32342d3234203d3e20313533313438.roa (hash: UdR2VsrcQEJLqL8yqAOv5eiXRwXBi0l4fctRzRTejQo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 11:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:67:3f:01:49:58:b6:d3:5b:b2:b8:b2:19:19:c1:e3:c5:27:c8:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D663C6EBCD250AA8927EA094627C9415DEE7FC Validity Not Before: May 10 19:56:16 2025 GMT Not After : May 14 00:22:16 2025 GMT Subject: CN=1B9ED50D8BE910B10DE8E671D3C9AD5317DF13DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e0:3e:f1:73:9f:c2:b2:3c:40:9e:cc:f0:1a: 9c:5f:18:dd:a4:0d:3c:db:f4:31:3c:eb:01:85:b7: 19:fd:da:ba:10:47:b2:db:af:14:8b:a4:57:3b:4f: af:ed:cd:ee:b0:14:9c:d3:38:09:fb:cd:4d:b0:9f: d8:7f:aa:6a:d1:b7:97:2d:d7:8c:88:28:f6:6c:63: b6:9d:5e:34:90:d3:1f:13:27:4d:ab:9d:41:06:c2: c1:88:bb:ad:45:1b:29:bb:1c:05:7e:61:b6:72:b3: ce:bc:d8:0c:27:7a:fd:89:8f:3d:9a:ae:59:68:0e: 44:5c:9b:fa:ce:d1:fd:62:63:4e:67:8b:d0:9c:ae: b7:d2:69:df:b3:52:03:a8:1d:84:21:fd:0d:ae:21: 52:72:7d:b4:87:33:88:36:10:9c:8f:91:1f:d6:9a: 85:bd:ae:62:2e:b9:b4:62:43:af:75:41:35:3d:61: 3f:fa:8e:54:ea:1c:91:9f:6e:f3:b0:88:3a:00:11: 1f:c0:9c:7e:0b:06:9e:40:cc:4a:8b:ae:d0:92:f6: 78:23:dd:25:82:7a:23:38:5c:4b:2f:09:61:db:70: 08:87:38:c1:f3:85:c3:1e:1f:d9:85:02:cf:c7:1a: af:03:c3:b2:19:50:ef:94:9e:29:18:24:ac:35:a4: 2d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:9E:D5:0D:8B:E9:10:B1:0D:E8:E6:71:D3:C9:AD:53:17:DF:13:DD X509v3 Authority Key Identifier: keyid:A9:D6:63:C6:EB:CD:25:0A:A8:92:7E:A0:94:62:7C:94:15:DE:E7:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:20:71:3d:4a:33:9a:a3:bc:1a:7e:0f:bb:a0:68:6b:9c:09: 00:3a:9b:f9:95:db:4c:d2:06:b8:7e:d9:a8:b4:05:8d:81:6d: 4f:9f:65:4e:68:d3:35:70:55:25:5c:71:ac:35:b4:1c:7b:9e: 08:4d:61:23:af:14:c6:f6:34:ce:09:68:7b:09:8e:a7:30:33: 6d:4a:72:fd:01:bd:67:2e:67:c2:6b:ec:49:04:5c:29:aa:93: 9b:36:82:7d:4e:a5:01:d1:97:81:c7:48:9c:26:68:68:df:52: 9a:91:a9:e6:6c:a4:6e:76:3b:ba:5b:72:14:5f:90:67:73:9d: f8:28:f6:e3:13:1e:d0:91:b9:4f:f1:9d:02:7e:c5:40:f3:3b: 43:f4:e6:f9:a1:35:43:9f:1d:1e:71:5a:e7:4c:e5:f2:e5:9f: fa:a1:65:b5:c0:fe:3d:b6:e6:1f:a8:90:be:ec:c3:40:fe:1e: 7e:16:68:74:a0:22:f1:45:5f:fb:cb:b8:b2:7f:02:6e:2f:c5: 99:81:61:e5:d2:3d:62:67:3b:bc:c5:df:86:0a:35:87:29:67: b0:cc:58:67:d9:e2:4f:77:4b:66:c4:fe:ee:e6:1f:23:a4:0c: 9d:e8:10:22:ce:29:b2:02:8d:8f:1e:b2:9f:35:08:ea:13:c5: 22:aa:49:02 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUemc/AUlYttNbsriyGRnB48UnyPkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdDOTQx NURFRTdGQzAeFw0yNTA1MTAxOTU2MTZaFw0yNTA1MTQwMDIyMTZaMDMxMTAvBgNV BAMTKDFCOUVENTBEOEJFOTEwQjEwREU4RTY3MUQzQzlBRDUzMTdERjEzREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY4D7xc5/CsjxAnszwGpxfGN2k DTzb9DE86wGFtxn92roQR7LbrxSLpFc7T6/tze6wFJzTOAn7zU2wn9h/qmrRt5ct 14yIKPZsY7adXjSQ0x8TJ02rnUEGwsGIu61FGym7HAV+YbZys8682Awnev2Jjz2a rlloDkRcm/rO0f1iY05ni9CcrrfSad+zUgOoHYQh/Q2uIVJyfbSHM4g2EJyPkR/W moW9rmIuubRiQ691QTU9YT/6jlTqHJGfbvOwiDoAER/AnH4LBp5AzEqLrtCS9ngj 3SWCeiM4XEsvCWHbcAiHOMHzhcMeH9mFAs/HGq8Dw7IZUO+UnikYJKw1pC19AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUG57VDYvpELEN6OZx08mtUxffE90wHwYDVR0j BBgwFoAUqdZjxuvNJQqokn6glGJ8lBXe5/wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODJhOWJkOS0xNjZmLTQ1M2UtYjNjMC1lNmIzZWY5MmE1NDAvMC9BOUQ2NjNDNkVC Q0QyNTBBQTg5MjdFQTA5NDYyN0M5NDE1REVFN0ZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdDOTQxNURF RTdGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjgyYTliZDktMTY2Zi00NTNlLWIz YzAtZTZiM2VmOTJhNTQwLzAvQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdD OTQxNURFRTdGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI8gcT1KM5qjvBp+D7ugaGucCQA6m/mV20zS Brh+2ai0BY2BbU+fZU5o0zVwVSVccaw1tBx7nghNYSOvFMb2NM4JaHsJjqcwM21K cv0BvWcuZ8Jr7EkEXCmqk5s2gn1OpQHRl4HHSJwmaGjfUpqRqeZspG52O7pbchRf kGdznfgo9uMTHtCRuU/xnQJ+xUDzO0P05vmhNUOfHR5xWudM5fLln/qhZbXA/j22 5h+okL7sw0D+Hn4WaHSgIvFFX/vLuLJ/Am4vxZmBYeXSPWJnO7zF34YKNYcpZ7DM WGfZ4k93S2bE/u7mHyOkDJ3oECLOKbICjY8esp81COoTxSKqSQI= -----END CERTIFICATE-----Generated at Sun May 11 08:31:02 2025 by rpki-client