$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft File: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft (raw, json) Hash identifier: uwkYiWW0bxhLlNNwVum88wh1PB6pFGI/wWtmc8voARk= Subject key identifier: 90:F6:A1:3C:42:7D:F3:5F:DD:47:BD:12:57:9A:9A:61:A1:BE:41:C7 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 7F6D155D364A9B8B4F85E53C76300566D69B54FC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft Manifest number: 04D0 Signing time: Tue 06 May 2025 07:10:43 +0000 Manifest this update: Tue 06 May 2025 07:05:43 +0000 Manifest next update: Fri 09 May 2025 17:53:43 +0000 Files and hashes: 1: 3230322e35362e3136342e302f32322d3234203d3e203435333035.roa (hash: dlsqZUGTjCRx+krpGNhgh3Umv+mTDrb/1GV2U8GokZ0=) 2: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (hash: 71jqN8DhE0JKYB0EqMDkvLldp1gfS+xo4HcST08Qg/k=) 3: 34332e3235322e3130342e302f32322d3234203d3e203435333035.roa (hash: cAMxueznS/nh3h73C9cG6Tq/nGQZqb7kaIFcHdsdkqw=) 4: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl (hash: TZ2elggrK8jWY4RaNGAYoKa90l+LoLDbm2wEI1qk8Eo=) 5: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (hash: AhfedWLCTEc5EhocODFri+NBZVGPcnF3DEyLO8J+BrU=) 6: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (hash: OT+Mk5WwssGJkg82hSQpE4gvwieaMEJQhhjdSn/cLTY=) 7: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (hash: gmlwk1E3suVjn/8fiND0vsV46kLjlNiZNpLWBhFFIPo=) 8: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (hash: OI9Dbbh3AxBZ/lUfEAmwLldVzXyZ0yA+CnQ3viXQgc8=) 9: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (hash: sOLICWbkOQCKZGJuOxKOtJraYeaZ/2+UOwySpa2U+Ms=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 17:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:6d:15:5d:36:4a:9b:8b:4f:85:e5:3c:76:30:05:66:d6:9b:54:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: May 6 07:05:43 2025 GMT Not After : May 9 17:53:43 2025 GMT Subject: CN=90F6A13C427DF35FDD47BD12579A9A61A1BE41C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:18:5b:18:f5:0b:17:52:d9:40:c1:5e:7e:ae: 7b:37:37:bc:dd:77:8f:c5:20:9e:bb:7f:06:30:6e: c4:e6:e6:8c:8c:ce:93:3b:8d:e3:2b:f4:b3:5a:a8: 44:3e:99:2f:fa:a9:c9:04:bc:c8:3c:42:ca:7d:a1: b2:c7:d9:47:d0:61:ff:3a:25:e6:ec:af:c9:00:bf: d7:78:30:da:22:43:58:58:b1:39:58:1b:ce:21:33: a6:49:4e:25:bc:41:21:8b:f0:a8:7a:d5:af:5c:00: ec:9d:3d:f1:9a:58:74:13:45:aa:51:3b:e3:1a:cb: d8:ae:6f:36:7d:8e:d7:d2:31:59:fe:f8:3e:ac:a3: 47:13:d3:fc:6f:c2:90:bc:83:c7:bc:51:e8:14:55: 2a:b8:f5:dc:c1:4d:ce:31:a1:6c:b9:1d:9e:5a:fc: a7:7e:e4:ef:3b:65:b1:28:60:2a:0e:2d:76:b1:dc: 9f:9b:2e:e5:a9:ab:c5:66:04:fc:99:a9:30:93:c3: e4:87:fb:f8:9f:20:2b:d3:de:4c:05:ed:de:59:49: 8e:3f:01:a2:a9:cf:81:f5:ff:0a:2f:ab:62:de:e5: d6:32:89:b2:78:4e:64:04:26:d6:75:8a:fd:7c:29: 6e:4d:d8:4e:6f:0d:65:49:27:28:3f:15:bc:e5:4a: f3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:F6:A1:3C:42:7D:F3:5F:DD:47:BD:12:57:9A:9A:61:A1:BE:41:C7 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:be:02:ad:53:d0:10:14:b2:bd:e3:2e:64:53:ae:7a:db:31: 8d:50:9b:98:f0:60:27:a8:0f:32:8b:c1:6f:f7:ff:60:6e:5e: f4:06:9b:18:bd:da:b0:21:7d:29:c5:7a:51:e2:cf:34:7a:6c: 75:ba:d8:25:5f:90:39:57:3f:7b:a8:a4:01:fa:a2:09:48:c1: 5a:0b:13:f7:e6:75:8a:25:d3:5a:54:e8:a4:46:9b:87:a0:80: 7b:a0:99:d5:7a:91:7b:4a:7e:be:36:2d:41:8c:58:e1:56:3b: 42:eb:60:42:98:69:23:f0:f7:dc:ee:c5:40:8b:33:f4:1c:58: fb:c2:79:f9:4e:4d:ce:50:46:41:82:f4:27:6c:cc:ff:53:af: 29:8e:3e:fe:85:1c:85:45:b7:cb:af:74:b8:3c:9e:a8:61:a3: 61:52:69:b5:33:19:65:64:01:88:9e:70:8b:86:49:9a:67:5f: f8:5c:bb:26:fb:df:89:45:47:a3:fb:a0:e6:19:f3:b9:c5:d8: 40:53:17:95:26:46:5c:71:32:81:40:68:ed:9c:8e:06:16:b6: 30:ff:ed:60:06:85:af:5d:4e:cd:71:19:26:e8:52:d6:0c:62: 4f:a0:c3:2e:94:9d:48:40:ff:e0:66:3f:9d:4a:0a:3d:a0:a1: 33:a4:8a:7a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf20VXTZKm4tPheU8djAFZtabVPwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNTA1MDYwNzA1NDNaFw0yNTA1MDkxNzUzNDNaMDMxMTAvBgNV BAMTKDkwRjZBMTNDNDI3REYzNUZERDQ3QkQxMjU3OUE5QTYxQTFCRTQxQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNGFsY9QsXUtlAwV5+rns3N7zd d4/FIJ67fwYwbsTm5oyMzpM7jeMr9LNaqEQ+mS/6qckEvMg8Qsp9obLH2UfQYf86 Jebsr8kAv9d4MNoiQ1hYsTlYG84hM6ZJTiW8QSGL8Kh61a9cAOydPfGaWHQTRapR O+May9iubzZ9jtfSMVn++D6so0cT0/xvwpC8g8e8UegUVSq49dzBTc4xoWy5HZ5a /Kd+5O87ZbEoYCoOLXax3J+bLuWpq8VmBPyZqTCTw+SH+/ifICvT3kwF7d5ZSY4/ AaKpz4H1/wovq2Le5dYyibJ4TmQEJtZ1iv18KW5N2E5vDWVJJyg/FbzlSvOPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkPahPEJ981/dR70SV5qaYaG+QccwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQ5NWMxOWMtMzI2Mi00OGM3LWFm MDItMzdhODM1ZDBhNzc5LzAvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIz REM2MTQyRTVGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADy+Aq1T0BAUsr3jLmRTrnrbMY1Qm5jwYCeo DzKLwW/3/2BuXvQGmxi92rAhfSnFelHizzR6bHW62CVfkDlXP3uopAH6oglIwVoL E/fmdYol01pU6KRGm4eggHugmdV6kXtKfr42LUGMWOFWO0LrYEKYaSPw99zuxUCL M/QcWPvCeflOTc5QRkGC9CdszP9TrymOPv6FHIVFt8uvdLg8nqhho2FSabUzGWVk AYiecIuGSZpnX/hcuyb734lFR6P7oOYZ87nF2EBTF5UmRlxxMoFAaO2cjgYWtjD/ 7WAGha9dTs1xGSboUtYMYk+gwy6UnUhA/+BmP51KCj2goTOkino= -----END CERTIFICATE-----Generated at Thu May 8 03:36:48 2025 by rpki-client