$ rpki-client -vvf repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft File: D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft (raw, json) Hash identifier: Dkfv2TW50Reui6o7cAJUq6DsrYci0jPPx2eCnb5Fa/A= Subject key identifier: 01:B1:77:DF:BE:C7:4C:54:E9:32:3A:2E:F2:AB:0E:5D:F6:E4:72:E1 Authority key identifier: D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 Certificate issuer: /CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Certificate serial: 7EAC211ABF5C5DF28B8A9D2055CECEDD4D000C46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft Manifest number: 02B4 Signing time: Thu 08 May 2025 04:52:09 +0000 Manifest this update: Thu 08 May 2025 04:47:09 +0000 Manifest next update: Sun 11 May 2025 15:19:09 +0000 Files and hashes: 1: D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl (hash: fPKXcy0+clVLLv9DnM8XBeTj8FMpY4+q8D4NIBqJcAI=) 2: 3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa (hash: CfGKDTwzaK9/cDjPw8NSmCs5voaTVZ8iBlLH2WBXSno=) 3: 3130332e3136392e34302e302f32332d3233203d3e20313432333332.roa (hash: mzHcsRUTUCBbpQh0PF3/13tfxFdR6gl4I3cFgd8Tuk8=) 4: 3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa (hash: nx/juUy7/tZki2r/tMlastEiMjYSJvx7cPICFmmbvLQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 15:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:ac:21:1a:bf:5c:5d:f2:8b:8a:9d:20:55:ce:ce:dd:4d:00:0c:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Validity Not Before: May 8 04:47:09 2025 GMT Not After : May 11 15:19:09 2025 GMT Subject: CN=01B177DFBEC74C54E9323A2EF2AB0E5DF6E472E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:09:1b:e6:11:e7:2e:d7:97:e7:d0:ec:cc:db: 3c:0c:5f:fb:3f:57:f7:5a:64:07:fd:28:85:09:52: 91:95:f7:b5:9b:8d:e0:90:ac:f2:7f:eb:fc:96:a8: a7:6f:67:de:18:86:04:50:1e:ca:56:d5:9a:2c:34: 22:73:0a:51:b3:38:d8:25:b5:95:8f:01:27:22:8f: 63:b0:08:e1:31:42:61:9e:24:08:84:34:4d:31:0c: 14:41:6d:70:7d:ac:b6:ce:b1:39:d8:6e:e0:1d:58: 98:75:6f:9a:5d:d7:73:b5:38:a5:11:49:78:7f:27: 22:16:cb:16:82:30:0a:ca:f3:9f:c2:8c:7a:64:f0: fe:76:50:23:29:04:44:11:b8:d0:25:a6:22:5f:c7: d8:46:91:39:a5:83:6b:35:5e:39:41:0f:07:09:31: 7a:1d:8c:ee:89:2a:12:af:3d:da:66:20:80:8d:47: 30:fd:a1:89:a9:75:13:87:5c:9e:b7:8c:a6:4c:00: 33:f9:5a:c7:02:f7:bd:74:70:d4:a0:2a:a4:e4:3d: 69:f4:0f:aa:82:9d:03:ab:e9:88:1f:fc:1f:a9:cd: 27:26:d7:ef:a6:bb:b9:b8:71:3f:ab:b7:f8:12:5a: 7b:28:30:7a:3e:12:fc:d1:ac:2f:eb:16:7a:74:c4: bb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B1:77:DF:BE:C7:4C:54:E9:32:3A:2E:F2:AB:0E:5D:F6:E4:72:E1 X509v3 Authority Key Identifier: keyid:D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:41:95:27:a5:2f:61:8a:13:62:81:fa:d2:bf:b3:ca:c8:0e: 92:84:fc:e8:b9:60:78:df:47:b6:0b:fe:15:87:4a:ec:ba:c5: 06:8d:82:66:db:73:f0:eb:67:1c:69:50:17:62:91:df:eb:49: 3f:46:44:02:74:9f:98:0c:19:8d:dc:41:af:c2:76:8d:05:6a: 33:70:37:03:82:c2:e7:01:48:a2:f4:54:9a:45:a5:45:84:e1: bc:25:cc:93:d0:ea:02:b3:f7:79:ac:a2:0c:47:24:67:22:76: 13:83:79:75:b0:28:cd:df:ae:5f:33:28:90:44:3b:5a:d7:4e: 3f:b6:09:4a:88:92:1a:cb:18:7b:47:09:84:bd:d0:d4:0e:f6: 37:0b:50:fc:51:cc:24:fc:86:ab:23:4e:12:33:5e:f7:dd:72: 8c:3c:7a:e6:fb:0c:17:03:07:b6:c9:e1:f6:a6:17:62:c4:be: 6a:40:98:0d:32:26:16:b4:35:49:1d:b5:12:10:76:48:39:df: fc:da:67:d5:f6:c3:f0:30:00:ec:dd:41:8a:28:2d:c2:85:44: 81:c0:08:30:7c:f2:dc:7b:22:2e:79:f1:76:8c:73:93:53:70: cf:44:85:17:d5:6d:a0:7a:6d:dd:ac:18:11:57:cd:01:8d:f3: d3:03:2e:66 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfqwhGr9cXfKLip0gVc7O3U0ADEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhB RjhCREVENzAeFw0yNTA1MDgwNDQ3MDlaFw0yNTA1MTExNTE5MDlaMDMxMTAvBgNV BAMTKDAxQjE3N0RGQkVDNzRDNTRFOTMyM0EyRUYyQUIwRTVERjZFNDcyRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDCRvmEecu15fn0OzM2zwMX/s/ V/daZAf9KIUJUpGV97WbjeCQrPJ/6/yWqKdvZ94YhgRQHspW1ZosNCJzClGzONgl tZWPAScij2OwCOExQmGeJAiENE0xDBRBbXB9rLbOsTnYbuAdWJh1b5pd13O1OKUR SXh/JyIWyxaCMArK85/CjHpk8P52UCMpBEQRuNAlpiJfx9hGkTmlg2s1XjlBDwcJ MXodjO6JKhKvPdpmIICNRzD9oYmpdROHXJ63jKZMADP5WscC9710cNSgKqTkPWn0 D6qCnQOr6Ygf/B+pzScm1++mu7m4cT+rt/gSWnsoMHo+EvzRrC/rFnp0xLuDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAbF3377HTFTpMjou8qsOXfbkcuEwHwYDVR0j BBgwFoAU1YvNR6YmPMOhKr3m46KtKK+L3tcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2I1MjYxOS0zNzlkLTQzMGEtYjE5Yi0xZjBlYzUzYWU5MDkvMC9ENThCQ0Q0N0E2 MjYzQ0MzQTEyQUJERTZFM0EyQUQyOEFGOEJERUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhBRjhC REVENy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmNiNTI2MTktMzc5ZC00MzBhLWIx OWItMWYwZWM1M2FlOTA5LzAvRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFE MjhBRjhCREVENy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACdBlSelL2GKE2KB+tK/s8rIDpKE/Oi5YHjf R7YL/hWHSuy6xQaNgmbbc/DrZxxpUBdikd/rST9GRAJ0n5gMGY3cQa/Cdo0FajNw NwOCwucBSKL0VJpFpUWE4bwlzJPQ6gKz93msogxHJGcidhODeXWwKM3frl8zKJBE O1rXTj+2CUqIkhrLGHtHCYS90NQO9jcLUPxRzCT8hqsjThIzXvfdcow8eub7DBcD B7bJ4famF2LEvmpAmA0yJha0NUkdtRIQdkg53/zaZ9X2w/AwAOzdQYooLcKFRIHA CDB88tx7Ii558XaMc5NTcM9EhRfVbaB6bd2sGBFXzQGN89MDLmY= -----END CERTIFICATE-----Generated at Sat May 10 00:29:11 2025 by rpki-client