$ rpki-client -vvf repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft File: 253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft (raw, json) Hash identifier: GiSSHIJRahMFrqDLbc0ktdJOJk0ziq/vdeP82UZAegA= Subject key identifier: E1:B3:4C:B5:BE:71:04:FF:5C:E2:A4:23:E0:F9:E3:BD:89:29:2C:9D Authority key identifier: 25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 Certificate issuer: /CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Certificate serial: 119163F59DC86D6BD654AB517050F3296FF3A7B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft Manifest number: 04CF Signing time: Sun 04 May 2025 06:41:30 +0000 Manifest this update: Sun 04 May 2025 06:36:30 +0000 Manifest next update: Wed 07 May 2025 11:53:30 +0000 Files and hashes: 1: 36302e3235332e39362e302f31392d3234203d3e203338313434.roa (hash: Qw+QQXeY4ygHVGUJMQ05GH+K/HnAhSZIrw89V5Vsm4Q=) 2: 253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl (hash: 9d+jLdx9NnR74d/is0O4pW2gs/KAcsZ3abxmw81Lqn0=) 3: 3230322e35312e3232342e302f32302d3234203d3e203338313434.roa (hash: aWbYXoX9asbKX8LtSjMx/jUwcU2UCkmj/h5lE8zqnhk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 11:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:91:63:f5:9d:c8:6d:6b:d6:54:ab:51:70:50:f3:29:6f:f3:a7:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Validity Not Before: May 4 06:36:30 2025 GMT Not After : May 7 11:53:30 2025 GMT Subject: CN=E1B34CB5BE7104FF5CE2A423E0F9E3BD89292C9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:fe:60:e4:af:a4:d3:8e:7f:7f:e0:a9:ce:60: ed:36:72:3b:e8:ff:54:23:ea:ba:b7:81:29:9d:23: c0:fb:c2:7b:9e:87:cd:30:84:b9:8f:15:d4:06:5c: 7a:f2:e4:f6:44:cf:21:3a:35:b5:76:4a:bb:5e:cb: 95:74:cd:5f:69:9d:36:35:f0:e0:70:c1:cd:a8:0a: cf:6f:2a:64:98:16:fa:51:3f:7b:9a:3b:40:e0:d1: 6e:22:b2:1b:5b:5a:6d:95:8b:df:b9:c7:09:15:50: b5:e6:93:60:fa:1f:37:5f:45:df:dc:e9:a1:53:a3: 38:bf:75:c4:3c:54:d2:b1:ed:f3:57:0d:8f:4a:5c: da:1e:d5:3f:c5:c1:5e:a7:66:a1:c8:58:52:34:7a: 55:a8:91:e3:c2:bf:47:af:b9:36:09:28:fc:6b:d6: 1d:9f:cd:ce:0a:00:80:0c:3e:aa:dc:74:84:5c:6f: 9b:1d:51:56:0d:45:57:35:67:85:a5:b3:0f:0b:da: 07:49:88:a9:eb:41:50:5a:c5:3d:fa:23:72:98:d8: cc:f6:07:75:6b:50:80:2d:77:37:b1:69:d9:ae:e1: bf:31:92:90:63:47:20:5b:0f:ac:54:04:ac:ad:37: 8a:f9:b2:79:9a:81:83:ac:82:73:a6:07:27:9c:ba: 48:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B3:4C:B5:BE:71:04:FF:5C:E2:A4:23:E0:F9:E3:BD:89:29:2C:9D X509v3 Authority Key Identifier: keyid:25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:80:08:cf:01:30:28:b7:3b:c0:05:1d:be:56:e3:96:28:9d: 5e:4a:a2:e1:a3:f0:4e:41:23:8f:96:3c:d1:96:72:e3:9a:25: 99:5a:1e:85:85:bd:e0:d0:28:a1:00:fe:b8:33:60:db:7f:fd: b3:33:48:70:34:c1:e9:7a:b4:a7:44:77:3f:4d:12:ae:d5:42: 78:9c:ca:83:7c:b3:b0:f1:6f:60:f6:35:cc:aa:6c:17:e4:bd: 7c:93:92:ee:63:a2:b9:53:0b:7a:b1:a3:ec:53:b5:e3:dc:c5: 90:a6:36:c4:fb:7a:dc:da:c9:4d:17:49:85:6d:35:e5:9d:4a: 4a:5b:74:d5:07:66:81:1d:24:1a:79:0b:f2:a6:a8:5d:4b:6b: 06:67:bc:02:6e:fd:1a:2c:1d:8a:7d:5d:cb:91:91:22:cf:85: f6:3b:a8:4a:6c:ac:c2:db:d6:30:79:cc:ea:78:34:ce:42:1f: fa:19:e1:d6:da:70:11:f3:a8:6d:d6:68:80:35:90:66:cd:58: 97:68:76:07:46:fa:48:2c:fd:e2:1b:39:0c:c7:4e:14:ef:89: 26:89:fd:ba:9b:e0:c5:33:df:18:31:8a:9c:0a:54:3a:1e:eb: c2:55:97:5d:e0:13:7a:ab:6d:8d:b5:39:5b:d6:47:87:e4:81: cb:eb:62:df -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEZFj9Z3IbWvWVKtRcFDzKW/zp7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQw NThEQTEwMTAeFw0yNTA1MDQwNjM2MzBaFw0yNTA1MDcxMTUzMzBaMDMxMTAvBgNV BAMTKEUxQjM0Q0I1QkU3MTA0RkY1Q0UyQTQyM0UwRjlFM0JEODkyOTJDOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs/mDkr6TTjn9/4KnOYO02cjvo /1Qj6rq3gSmdI8D7wnueh80whLmPFdQGXHry5PZEzyE6NbV2Srtey5V0zV9pnTY1 8OBwwc2oCs9vKmSYFvpRP3uaO0Dg0W4ishtbWm2Vi9+5xwkVULXmk2D6HzdfRd/c 6aFTozi/dcQ8VNKx7fNXDY9KXNoe1T/FwV6nZqHIWFI0elWokePCv0evuTYJKPxr 1h2fzc4KAIAMPqrcdIRcb5sdUVYNRVc1Z4Wlsw8L2gdJiKnrQVBaxT36I3KY2Mz2 B3VrUIAtdzexadmu4b8xkpBjRyBbD6xUBKytN4r5snmagYOsgnOmByecukh5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4bNMtb5xBP9c4qQj4PnjvYkpLJ0wHwYDVR0j BBgwFoAUJT4rtN5GevCPGRr3Yy7jvQWNoQEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2Q3NTM2ZC05ZTEwLTRkNDktYjZjYS0wNDFjYzlhNTkxNGUvMC8yNTNFMkJCNERF NDY3QUYwOEYxOTFBRjc2MzJFRTNCRDA1OERBMTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQwNThE QTEwMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmNkNzUzNmQtOWUxMC00ZDQ5LWI2 Y2EtMDQxY2M5YTU5MTRlLzAvMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUz QkQwNThEQTEwMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFyACM8BMCi3O8AFHb5W45YonV5KouGj8E5B I4+WPNGWcuOaJZlaHoWFveDQKKEA/rgzYNt//bMzSHA0wel6tKdEdz9NEq7VQnic yoN8s7Dxb2D2NcyqbBfkvXyTku5jorlTC3qxo+xTtePcxZCmNsT7etzayU0XSYVt NeWdSkpbdNUHZoEdJBp5C/KmqF1LawZnvAJu/RosHYp9XcuRkSLPhfY7qEpsrMLb 1jB5zOp4NM5CH/oZ4dbacBHzqG3WaIA1kGbNWJdodgdG+kgs/eIbOQzHThTviSaJ /bqb4MUz3xgxipwKVDoe68JVl13gE3qrbY21OVvWR4fkgcvrYt8= -----END CERTIFICATE-----Generated at Wed May 7 06:32:28 2025 by rpki-client