$ rpki-client -vvf repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft File: 2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft (raw, json) Hash identifier: eD8YqHARleOVzQK7HX8fuPfk3i12ROwwAItJNag8pUo= Subject key identifier: AE:C0:C4:06:58:03:D2:56:32:A2:12:B3:49:B3:C6:0D:2E:21:DB:F3 Authority key identifier: 2A:DD:D4:03:51:73:FA:C3:BB:39:49:CB:36:CC:EF:25:53:79:8B:FC Certificate issuer: /CN=2ADDD4035173FAC3BB3949CB36CCEF2553798BFC Certificate serial: 170D3C162947F05845990CF1CE8F40813DA5FCC2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft Manifest number: 9F Signing time: Sat 03 May 2025 09:40:37 +0000 Manifest this update: Sat 03 May 2025 09:35:37 +0000 Manifest next update: Tue 06 May 2025 20:19:37 +0000 Files and hashes: 1: 3135372e32302e3234342e302f32342d3234203d3e20313338303839.roa (hash: teoM6MXntxfZebuRvj4HuDCmBJE7bmAYK9p8NliSwzQ=) 2: 2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl (hash: REbvUEhJhYUxl7trGPJ9tDdHGSlOKUXHvZpu2IVaNkw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 May 2025 20:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:0d:3c:16:29:47:f0:58:45:99:0c:f1:ce:8f:40:81:3d:a5:fc:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ADDD4035173FAC3BB3949CB36CCEF2553798BFC Validity Not Before: May 3 09:35:37 2025 GMT Not After : May 6 20:19:37 2025 GMT Subject: CN=AEC0C4065803D25632A212B349B3C60D2E21DBF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:07:47:53:c6:0e:02:24:7b:89:23:b0:5d:7c: 1e:8e:ea:66:41:f1:32:4d:35:cc:4e:b9:51:cd:32: 72:f4:70:e5:58:b1:3e:dc:1e:ed:97:bd:71:b5:fd: a0:12:12:e0:24:0f:a2:a3:f0:85:ea:47:dd:3f:3a: c3:1b:70:2a:a7:1c:a8:54:8d:19:c5:e3:ae:9b:c6: 5d:00:e6:f0:11:80:c1:b6:4f:fd:8c:7b:fc:9c:25: 9a:69:38:61:ce:b7:89:8e:7d:d7:b2:a8:3f:41:7f: 2c:86:8e:75:ed:29:75:5c:d5:e1:21:9e:3a:04:7d: 79:5d:f9:d6:85:70:f2:18:d0:53:b1:b7:49:a3:35: 37:e4:e1:8f:b8:5d:92:e0:0b:9f:89:06:6f:ab:6d: 2c:64:e0:c3:20:f1:1b:2a:fd:c7:0e:49:3b:14:7f: ee:84:75:f2:96:d1:79:b5:1b:8d:be:63:2c:6e:6f: 23:1e:ea:14:ea:fd:03:8b:ac:9e:d6:2f:60:6c:59: d4:af:c7:51:5a:c2:a3:a1:50:24:b3:84:a4:34:7b: 2b:75:c9:d9:ff:66:ad:fb:a4:f2:d8:2e:b6:5f:4d: 32:fe:af:d9:d8:6f:d0:44:15:78:6f:31:f3:0a:f5: 0f:6a:df:0c:97:e0:e4:e1:68:25:ce:f3:20:dd:50: 5e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:C0:C4:06:58:03:D2:56:32:A2:12:B3:49:B3:C6:0D:2E:21:DB:F3 X509v3 Authority Key Identifier: keyid:2A:DD:D4:03:51:73:FA:C3:BB:39:49:CB:36:CC:EF:25:53:79:8B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d0:a9:ea:59:b7:3b:11:82:21:12:56:37:22:0d:9c:6b:66:90: f2:1c:4e:57:22:a2:2f:ea:e4:56:0b:1f:af:a4:65:b7:54:50: 3c:39:3f:53:be:d9:f8:13:de:b0:be:e7:e6:a9:71:24:73:cb: d2:c5:15:33:a9:38:cc:a1:37:2d:53:72:12:da:ed:e9:26:0f: 19:c8:a4:fa:7b:f9:f7:3d:35:41:6a:29:33:bf:be:02:a2:85: 22:6c:5d:72:ae:94:81:44:61:f2:37:cf:67:6f:51:cd:bc:59: 45:ff:b2:d8:86:08:20:50:7d:ee:dd:59:e2:d5:29:49:8a:77: cb:8f:a9:20:b7:ba:1c:1a:c8:05:da:a5:f3:30:39:b6:d8:0b: 6f:75:4e:b1:17:e5:2f:72:13:90:c3:08:3f:12:05:00:28:9b: 89:d2:44:df:64:72:1f:76:41:67:0a:40:c6:c8:d8:87:0a:14: b2:6a:a9:b5:26:e3:e7:9a:3d:81:e2:48:fe:a9:d8:7c:ef:cd: c4:0c:a2:ac:45:aa:89:a8:9c:cf:9c:80:6b:28:86:2f:e5:05: 4c:4d:10:57:b6:57:50:15:ff:a8:d1:db:e7:fc:32:8e:e4:44: ed:06:ee:94:bb:49:6d:4b:30:e0:c9:09:8a:16:77:38:34:59: 01:61:23:c7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFw08FilH8FhFmQzxzo9AgT2l/MIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VGMjU1 Mzc5OEJGQzAeFw0yNTA1MDMwOTM1MzdaFw0yNTA1MDYyMDE5MzdaMDMxMTAvBgNV BAMTKEFFQzBDNDA2NTgwM0QyNTYzMkEyMTJCMzQ5QjNDNjBEMkUyMURCRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvB0dTxg4CJHuJI7BdfB6O6mZB 8TJNNcxOuVHNMnL0cOVYsT7cHu2XvXG1/aASEuAkD6Kj8IXqR90/OsMbcCqnHKhU jRnF466bxl0A5vARgMG2T/2Me/ycJZppOGHOt4mOfdeyqD9BfyyGjnXtKXVc1eEh njoEfXld+daFcPIY0FOxt0mjNTfk4Y+4XZLgC5+JBm+rbSxk4MMg8Rsq/ccOSTsU f+6EdfKW0Xm1G42+YyxubyMe6hTq/QOLrJ7WL2BsWdSvx1FawqOhUCSzhKQ0eyt1 ydn/Zq37pPLYLrZfTTL+r9nYb9BEFXhvMfMK9Q9q3wyX4OThaCXO8yDdUF5pAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUrsDEBlgD0lYyohKzSbPGDS4h2/MwHwYDVR0j BBgwFoAUKt3UA1Fz+sO7OUnLNszvJVN5i/wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODY3YTJlZS1kNDExLTRmZjgtOWY1Yy0zNWQwMzQxMjNmODQvMC8yQURERDQwMzUx NzNGQUMzQkIzOTQ5Q0IzNkNDRUYyNTUzNzk4QkZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VGMjU1Mzc5 OEJGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg2N2EyZWUtZDQxMS00ZmY4LTlm NWMtMzVkMDM0MTIzZjg0LzAvMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VG MjU1Mzc5OEJGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANCp6lm3OxGCIRJWNyINnGtmkPIcTlcioi/q 5FYLH6+kZbdUUDw5P1O+2fgT3rC+5+apcSRzy9LFFTOpOMyhNy1TchLa7ekmDxnI pPp7+fc9NUFqKTO/vgKihSJsXXKulIFEYfI3z2dvUc28WUX/stiGCCBQfe7dWeLV KUmKd8uPqSC3uhwayAXapfMwObbYC291TrEX5S9yE5DDCD8SBQAom4nSRN9kch92 QWcKQMbI2IcKFLJqqbUm4+eaPYHiSP6p2HzvzcQMoqxFqomonM+cgGsohi/lBUxN EFe2V1AV/6jR2+f8Mo7kRO0G7pS7SW1LMODJCYoWdzg0WQFhI8c= -----END CERTIFICATE-----Generated at Tue May 6 20:05:10 2025 by rpki-client