$ rpki-client -vvf repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft File: D00472C77B42BC0E23D929360AA568BBAE2AA668.mft (raw, json) Hash identifier: 0iAlOBaMmsnzXlriQmlb3i4wm6bRqu0gpomWTXhDF1U= Subject key identifier: CB:B7:D6:55:23:3E:46:30:94:E8:82:28:71:E2:F0:37:66:62:F8:82 Authority key identifier: D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 Certificate issuer: /CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Certificate serial: 2D254F8989950F4D78BD59C449F20A00831C9AB7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft Manifest number: 01F5 Signing time: Mon 12 May 2025 02:00:04 +0000 Manifest this update: Mon 12 May 2025 01:55:04 +0000 Manifest next update: Thu 15 May 2025 08:47:04 +0000 Files and hashes: 1: D00472C77B42BC0E23D929360AA568BBAE2AA668.crl (hash: 3GyERmjaVL9k1JX42vEPStfGwSxnycam57ETsygPhfA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 08:47:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:25:4f:89:89:95:0f:4d:78:bd:59:c4:49:f2:0a:00:83:1c:9a:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Validity Not Before: May 12 01:55:04 2025 GMT Not After : May 15 08:47:04 2025 GMT Subject: CN=CBB7D655233E463094E8822871E2F0376662F882 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1d:a7:56:19:61:80:fb:e6:ca:6c:87:3f:82: 28:d2:3b:01:ca:71:85:5b:9c:d1:22:ff:50:ee:0e: 77:60:42:c0:5c:94:45:88:75:c9:40:62:dd:f8:35: 46:b2:7e:24:29:d3:14:79:e8:91:94:00:1c:91:7a: 3d:ca:05:df:8c:12:72:66:56:07:1b:b9:89:e5:d2: 20:ea:0b:cc:53:f3:aa:2b:e7:15:1a:3c:4c:7d:fb: 1c:33:5e:13:f1:40:ab:e2:dd:44:46:25:f3:b8:b2: f3:71:46:84:16:32:a1:f2:39:7b:84:fc:48:75:9e: de:86:bd:55:88:46:b4:d2:07:14:3d:e0:24:8a:4e: 6f:2f:75:70:6c:06:8d:47:46:41:cb:93:2c:e9:0d: 23:13:15:e6:ae:c6:76:3e:ce:f6:7c:32:f3:b7:a6: f2:ce:02:0f:db:3a:e9:2b:1a:d3:b7:5f:f3:33:88: 4a:94:52:52:ee:dd:00:59:aa:4a:11:07:20:70:85: 2a:8e:73:dd:8f:9e:dc:9b:64:2b:a5:a7:a2:e6:2b: 38:06:4d:b2:70:71:65:ef:50:79:dc:8e:e7:aa:38: 27:71:15:a5:50:1b:a2:a2:f1:4d:38:f7:76:86:15: 0a:f1:39:7b:7a:24:13:c1:9f:28:c2:5e:49:cd:ca: c8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:B7:D6:55:23:3E:46:30:94:E8:82:28:71:E2:F0:37:66:62:F8:82 X509v3 Authority Key Identifier: keyid:D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:6d:7d:85:a4:0e:8e:7b:26:bb:4f:a6:72:04:7b:61:bc:47: 0d:18:02:da:4d:22:6e:04:60:2d:3c:af:75:2d:61:85:cc:b7: 13:ae:67:a6:8c:c3:6c:62:b8:d0:76:89:7b:57:76:eb:0e:99: f7:68:d7:38:e4:c8:fb:fa:8e:25:f2:33:ad:27:a0:0d:12:1a: da:fb:9f:87:a9:f6:b6:98:a7:79:5e:90:27:52:37:80:9e:1b: 8a:2e:96:b3:fd:37:d4:7b:44:44:62:d3:63:44:c1:9d:f1:aa: 41:37:e4:b0:c7:cd:e6:ea:82:71:8b:5b:e5:b1:fb:12:a5:56: 2f:b0:3d:2f:6f:ca:78:32:76:5c:b1:1c:57:d9:82:31:9c:66: 7a:55:5e:a4:d4:59:1e:d7:5d:dd:d1:ad:1c:64:4d:b2:0a:80: 21:c4:9c:03:39:dd:37:09:2a:d5:3f:f4:41:9a:8b:89:2c:ab: 4b:6d:bd:1d:66:63:50:48:20:78:d6:b5:73:96:02:f1:61:26: 49:ff:90:f8:b9:f5:a5:a7:ec:45:61:eb:d6:a7:64:a9:dd:3e: 3f:64:6a:0c:11:02:8d:fa:e0:16:8a:e1:4c:7f:07:fd:9c:26: bd:cc:db:05:c7:77:3e:85:fc:39:06:f3:9d:f1:64:9a:1e:04: 16:36:e3:22 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULSVPiYmVD014vVnESfIKAIMcmrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJB RTJBQTY2ODAeFw0yNTA1MTIwMTU1MDRaFw0yNTA1MTUwODQ3MDRaMDMxMTAvBgNV BAMTKENCQjdENjU1MjMzRTQ2MzA5NEU4ODIyODcxRTJGMDM3NjY2MkY4ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5HadWGWGA++bKbIc/gijSOwHK cYVbnNEi/1DuDndgQsBclEWIdclAYt34NUayfiQp0xR56JGUAByRej3KBd+MEnJm VgcbuYnl0iDqC8xT86or5xUaPEx9+xwzXhPxQKvi3URGJfO4svNxRoQWMqHyOXuE /Eh1nt6GvVWIRrTSBxQ94CSKTm8vdXBsBo1HRkHLkyzpDSMTFeauxnY+zvZ8MvO3 pvLOAg/bOukrGtO3X/MziEqUUlLu3QBZqkoRByBwhSqOc92PntybZCulp6LmKzgG TbJwcWXvUHncjueqOCdxFaVQG6Ki8U0493aGFQrxOXt6JBPBnyjCXknNysgdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUy7fWVSM+RjCU6IIoceLwN2Zi+IIwHwYDVR0j BBgwFoAU0ARyx3tCvA4j2Sk2CqVou64qpmgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzE3MzY5YS1iY2MxLTQyYmMtYjhiMi1mOTZkNTBkMzc0OWQvMC9EMDA0NzJDNzdC NDJCQzBFMjNEOTI5MzYwQUE1NjhCQkFFMkFBNjY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJBRTJB QTY2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMxNzM2OWEtYmNjMS00MmJjLWI4 YjItZjk2ZDUwZDM3NDlkLzAvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4 QkJBRTJBQTY2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKttfYWkDo57JrtPpnIEe2G8Rw0YAtpNIm4E YC08r3UtYYXMtxOuZ6aMw2xiuNB2iXtXdusOmfdo1zjkyPv6jiXyM60noA0SGtr7 n4ep9raYp3lekCdSN4CeG4oulrP9N9R7RERi02NEwZ3xqkE35LDHzebqgnGLW+Wx +xKlVi+wPS9vyngydlyxHFfZgjGcZnpVXqTUWR7XXd3RrRxkTbIKgCHEnAM53TcJ KtU/9EGai4ksq0ttvR1mY1BIIHjWtXOWAvFhJkn/kPi59aWn7EVh69anZKndPj9k agwRAo364BaK4Ux/B/2cJr3M2wXHdz6F/DkG853xZJoeBBY24yI= -----END CERTIFICATE-----Generated at Mon May 12 10:50:47 2025 by rpki-client