$ rpki-client -vvf repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft File: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft (raw, json) Hash identifier: 7xM7LDnlM5MFoNBEn5IMZM4IHDpxtBKEAxMvrZSZ9ts= Subject key identifier: 2D:64:7A:1B:5B:1A:93:C0:7A:93:BD:C0:7B:51:F4:C1:30:02:6F:42 Authority key identifier: D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD Certificate issuer: /CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Certificate serial: 2818CFB1B0EFA7204B7FDB887A3A111AC768C017 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft Manifest number: 0188 Signing time: Sat 10 May 2025 22:22:17 +0000 Manifest this update: Sat 10 May 2025 22:17:17 +0000 Manifest next update: Wed 14 May 2025 06:36:17 +0000 Files and hashes: 1: 323030313a6466313a646663303a3a2f34382d3438203d3e20313530353233.roa (hash: 6/CFAgI9fYm2h+bpsbThjdmYrbI1a+tEsxm7cMbpBNY=) 2: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl (hash: sXIkymAlISL98lSVz16hZ91ftGzVR9I+zM5r2+yRo0U=) 3: 3130332e37352e3133362e302f32342d3234203d3e20313530353233.roa (hash: q6SY7dMZTZK38tnoR+pXFf7kzoZFDF5ifDK7XqxUw8c=) 4: 3130332e37352e3133372e302f32342d3234203d3e20313530353233.roa (hash: Qa1udsECIRHsg1OUvc+qS4VEGfZjWwfHSm/JuoyHhYg=) 5: 3130332e37352e3133362e302f32332d3233203d3e20313530353233.roa (hash: YcSRTKOMF12aOzXL8N5UR6kDF37yCb3W4QZONTd7a9A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 06:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:18:cf:b1:b0:ef:a7:20:4b:7f:db:88:7a:3a:11:1a:c7:68:c0:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Validity Not Before: May 10 22:17:17 2025 GMT Not After : May 14 06:36:17 2025 GMT Subject: CN=2D647A1B5B1A93C07A93BDC07B51F4C130026F42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3b:4e:44:83:98:c1:39:0b:ae:bc:02:36:4d: 9a:b9:67:5b:90:10:74:ab:cb:54:bd:7f:6c:d9:50: b5:c7:55:dc:e6:d8:c2:46:10:83:69:e2:aa:6f:80: 0c:03:29:06:39:3c:25:af:d1:61:12:90:07:b3:a0: 95:57:d7:af:58:5a:a7:84:3d:28:9c:8c:19:08:9a: 01:fc:de:c2:87:ab:fb:8b:4f:13:9f:15:86:fc:89: f4:da:9b:44:19:c0:c1:26:27:72:7f:89:27:bd:f0: 87:ca:88:af:7d:32:30:45:bb:c2:e8:e9:fa:c7:44: 9e:3d:9c:00:49:fe:80:1d:52:f7:af:2c:73:ef:52: d1:bd:f2:79:d0:df:17:26:89:6b:70:23:42:08:a3: 92:48:e9:1c:7e:ee:14:9f:81:1f:d3:c6:ec:80:b3: d4:29:59:44:66:3b:32:bb:6a:c6:53:1c:a9:2e:d1: d0:ec:02:3a:37:19:80:da:78:44:0c:d9:1b:b7:30: 97:74:c2:9a:6e:a9:5d:ab:37:f8:b9:cb:58:7f:31: b8:e4:cc:28:0c:24:24:a0:0a:f7:d5:8d:be:20:50: 57:5e:1b:92:dd:93:42:0f:2a:1f:28:e2:50:22:17: be:47:3d:97:a4:2f:66:71:6e:74:7f:c3:d7:9f:a4: 8b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:64:7A:1B:5B:1A:93:C0:7A:93:BD:C0:7B:51:F4:C1:30:02:6F:42 X509v3 Authority Key Identifier: keyid:D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:3d:ac:8d:7b:1c:b1:6c:fa:89:a0:fb:b0:c3:c7:b4:12:9c: 6f:07:e4:cb:6a:38:11:44:9a:62:5c:d8:cd:90:01:06:49:11: a3:62:f8:21:fb:7c:b3:71:32:51:1c:b1:20:87:c3:34:11:28: 8e:72:de:48:e5:8a:8e:14:c5:d7:2e:41:70:84:f0:18:ef:c5: 0c:23:71:d4:71:51:5c:b9:b0:e4:3d:f9:be:ef:d6:a9:3f:e9: 0a:d5:73:03:75:cf:75:72:1c:ba:0d:73:e6:fc:41:67:6f:9d: c9:eb:d4:31:a4:39:0c:7a:75:42:50:57:c4:d3:21:32:67:0c: 56:7b:f3:2d:76:a3:5d:ed:09:fb:89:dc:9c:f3:ed:11:fe:8c: f3:d8:c6:60:7c:a7:c0:2a:43:04:6a:3f:45:fb:ff:80:06:eb: bd:d2:f3:31:7b:38:45:7c:27:d6:55:ea:1a:e9:82:71:1a:5f: 88:49:fc:07:f9:ed:3a:2e:0a:be:a6:03:2e:e1:b1:14:9f:d4: 8c:45:f0:2e:06:95:8d:8e:98:7c:7a:72:41:bc:62:d2:a0:36: b4:17:f1:96:e4:91:ee:61:ad:e1:7b:b1:0b:70:fd:e4:39:f7: 61:30:98:1d:5f:cb:fb:c8:b7:91:60:8e:88:51:ac:a5:6a:87: 89:fc:1e:f0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKBjPsbDvpyBLf9uIejoRGsdowBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVF QzgyMUZGRDAeFw0yNTA1MTAyMjE3MTdaFw0yNTA1MTQwNjM2MTdaMDMxMTAvBgNV BAMTKDJENjQ3QTFCNUIxQTkzQzA3QTkzQkRDMDdCNTFGNEMxMzAwMjZGNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgO05Eg5jBOQuuvAI2TZq5Z1uQ EHSry1S9f2zZULXHVdzm2MJGEINp4qpvgAwDKQY5PCWv0WESkAezoJVX169YWqeE PSicjBkImgH83sKHq/uLTxOfFYb8ifTam0QZwMEmJ3J/iSe98IfKiK99MjBFu8Lo 6frHRJ49nABJ/oAdUvevLHPvUtG98nnQ3xcmiWtwI0IIo5JI6Rx+7hSfgR/TxuyA s9QpWURmOzK7asZTHKku0dDsAjo3GYDaeEQM2Ru3MJd0wppuqV2rN/i5y1h/Mbjk zCgMJCSgCvfVjb4gUFdeG5Ldk0IPKh8o4lAiF75HPZekL2ZxbnR/w9efpIsbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULWR6G1sak8B6k73Ae1H0wTACb0IwHwYDVR0j BBgwFoAU0Pedgm5D6rYaeoNOaid3xeyCH/0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODQ2MzI4NS03YzI4LTQzNWEtODJiYi1mY2MzMmQ1ODAyMGUvMC9EMEY3OUQ4MjZF NDNFQUI2MUE3QTgzNEU2QTI3NzdDNUVDODIxRkZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVFQzgy MUZGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg0NjMyODUtN2MyOC00MzVhLTgy YmItZmNjMzJkNTgwMjBlLzAvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3 QzVFQzgyMUZGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALA9rI17HLFs+omg+7DDx7QSnG8H5MtqOBFE mmJc2M2QAQZJEaNi+CH7fLNxMlEcsSCHwzQRKI5y3kjlio4UxdcuQXCE8BjvxQwj cdRxUVy5sOQ9+b7v1qk/6QrVcwN1z3VyHLoNc+b8QWdvncnr1DGkOQx6dUJQV8TT ITJnDFZ78y12o13tCfuJ3Jzz7RH+jPPYxmB8p8AqQwRqP0X7/4AG673S8zF7OEV8 J9ZV6hrpgnEaX4hJ/Af57TouCr6mAy7hsRSf1IxF8C4GlY2OmHx6ckG8YtKgNrQX 8Zbkke5hreF7sQtw/eQ592EwmB1fy/vIt5FgjohRrKVqh4n8HvA= -----END CERTIFICATE-----Generated at Sun May 11 23:00:43 2025 by rpki-client