$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft File: 95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft (raw, json) Hash identifier: vt1eevjHhe8m/cvqnqam1JlRv3cdtXzRZ1pTw0OVqUQ= Subject key identifier: 6A:16:A2:7C:FD:5D:79:D6:FD:4C:D9:8C:AF:E8:10:EE:59:C1:6D:A0 Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Certificate serial: 48F2004F3C96CDEB6AD185D0B182C70154E915D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft Manifest number: 04DA Signing time: Mon 12 May 2025 01:21:35 +0000 Manifest this update: Mon 12 May 2025 01:16:35 +0000 Manifest next update: Thu 15 May 2025 02:57:35 +0000 Files and hashes: 1: 95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl (hash: xu06gPc1bxTzVVcdEzp/30oy376qCCtcOCr1rwSywpU=) 2: 323430343a666230303a3a2f33322d3332203d3e203538343734.roa (hash: grgdG8OoUNxpOhcfTbbut/WvBOQGDavrGHNbzyqo7TA=) 3: 34332e3234382e3231322e302f32342d3234203d3e203538343734.roa (hash: pg0ViMH1wjYLBratw2hvbKKsWrlS5/ljazg4HhV4YD8=) 4: 34332e3234382e3231342e302f32342d3234203d3e203538343734.roa (hash: wQmGKqaa+YSiRmaLGWEMq8mJpTHj8TfVNhWMDunfL+s=) 5: 3130332e32382e35362e302f32342d3234203d3e203538343734.roa (hash: DeLSQFfELIsCBteEIe9giWzCWLH2CFola9GnxccGEcI=) 6: 3130332e32382e35382e302f32342d3234203d3e203538343734.roa (hash: 2w5XwJtYHGp7kLGkRgJLESPyKEX6dzPi8sNumuXEyGY=) 7: 3130332e32382e35392e302f32342d3234203d3e203538343734.roa (hash: RxoBR7IgqwvZQhHoUeS2THnUjeeOMC/Li/OZd4zalVk=) 8: 3130332e32382e35372e302f32342d3234203d3e203538343734.roa (hash: 4gGLGsruUsTli5S71gqgaVjZ1FJbCfgz4Cb6M2Xf9S8=) 9: 34332e3234382e3231352e302f32342d3234203d3e203538343734.roa (hash: hgLfhjfwIZWutgOiENx1B/1zXLdWd6NT3iL2V0hzBm0=) 10: 34332e3234382e3231332e302f32342d3234203d3e203538343734.roa (hash: 1buqcEkNcpZqwU2RTb5bdnOebm4gK/rhJeTPc24TtHw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 02:57:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:f2:00:4f:3c:96:cd:eb:6a:d1:85:d0:b1:82:c7:01:54:e9:15:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Validity Not Before: May 12 01:16:35 2025 GMT Not After : May 15 02:57:35 2025 GMT Subject: CN=6A16A27CFD5D79D6FD4CD98CAFE810EE59C16DA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f9:cd:00:77:68:de:16:13:92:e1:06:c3:0f: b4:8c:15:4a:57:35:36:79:ac:81:0f:ca:a1:ac:d5: 12:2a:03:8b:86:55:75:d3:78:86:7c:ce:11:e7:f6: bd:19:21:cc:13:6c:da:ca:ce:bb:01:ed:d2:a6:73: 19:a4:55:7b:1e:60:84:68:fb:a9:19:90:2f:3a:57: 8f:90:7d:5c:5d:a5:10:e3:17:08:43:03:37:4a:0f: 6a:54:0f:d5:67:1a:00:4a:54:c2:3c:4a:11:ec:f4: 93:b3:6f:02:fe:f6:7d:1c:e3:46:00:60:85:e6:e9: 16:a0:30:e9:75:74:00:ac:89:e7:6d:d5:1f:88:49: c8:da:86:e8:1a:e4:eb:36:94:86:b7:73:5d:8e:3e: be:f0:1a:49:ba:18:e0:89:66:30:ac:fe:b1:ff:04: b1:6c:51:49:2f:ea:e7:20:67:da:45:e9:0d:ba:f3: 6d:8e:50:3d:11:13:ba:6d:a5:14:28:ed:db:c6:0a: 9d:bb:ba:5b:ca:63:7d:16:55:02:8a:ca:ba:f7:03: f5:ef:70:94:a7:bf:33:0e:9a:05:fa:e0:fd:d9:ab: a3:f2:5d:ff:28:0e:85:e1:16:fb:0d:25:ee:41:ca: df:60:e0:68:8a:fa:a5:67:29:a2:3c:be:55:6e:39: 17:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:16:A2:7C:FD:5D:79:D6:FD:4C:D9:8C:AF:E8:10:EE:59:C1:6D:A0 X509v3 Authority Key Identifier: keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:b5:94:b3:27:4f:5b:19:b6:0b:19:91:ad:d1:04:41:95:a4: 53:de:2e:64:17:05:47:b6:b8:47:7d:85:e3:47:46:84:b0:15: 57:e1:f4:91:50:a9:fb:ab:f9:4a:ef:5d:3c:9a:fa:b4:25:e3: 3b:b9:8b:c4:fe:ab:db:d9:c5:6c:46:4f:2c:1f:50:85:bb:7c: 81:ac:bd:aa:15:5a:e1:db:ec:a7:03:69:1a:84:bc:2a:18:88: 3e:b5:cb:01:e1:81:71:2d:a1:4d:28:02:7a:4b:a2:1c:39:ed: c1:64:ba:43:53:1d:33:2e:c0:97:2a:0a:02:6a:a0:00:3c:d4: 26:55:f0:35:93:44:0e:94:19:95:7f:99:0b:04:01:39:7c:0c: 06:aa:f2:87:c3:a1:cd:6b:22:bc:9b:bf:ac:0c:ca:e7:b0:b3: db:be:51:ec:97:0d:11:c6:4d:2b:c0:f0:01:a8:a0:09:65:30: 82:87:0f:64:55:e5:1c:ff:04:45:6e:1e:7e:24:14:ff:d2:bd: a4:66:5c:84:cc:c0:0b:74:bb:69:3d:5a:9f:74:97:c3:76:8a: ab:ea:bd:b1:99:56:33:8a:b5:fc:5c:b2:27:e5:3f:ca:d1:7f: 40:3f:e9:54:ed:1a:b5:87:d5:4e:04:dd:be:d2:a5:f6:83:8b: 5a:e7:15:4b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSPIATzyWzetq0YXQsYLHAVTpFdMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQz REEyRjA5ODAeFw0yNTA1MTIwMTE2MzVaFw0yNTA1MTUwMjU3MzVaMDMxMTAvBgNV BAMTKDZBMTZBMjdDRkQ1RDc5RDZGRDRDRDk4Q0FGRTgxMEVFNTlDMTZEQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB+c0Ad2jeFhOS4QbDD7SMFUpX NTZ5rIEPyqGs1RIqA4uGVXXTeIZ8zhHn9r0ZIcwTbNrKzrsB7dKmcxmkVXseYIRo +6kZkC86V4+QfVxdpRDjFwhDAzdKD2pUD9VnGgBKVMI8ShHs9JOzbwL+9n0c40YA YIXm6RagMOl1dACsiedt1R+IScjahuga5Os2lIa3c12OPr7wGkm6GOCJZjCs/rH/ BLFsUUkv6ucgZ9pF6Q26822OUD0RE7ptpRQo7dvGCp27ulvKY30WVQKKyrr3A/Xv cJSnvzMOmgX64P3Zq6PyXf8oDoXhFvsNJe5Byt9g4GiK+qVnKaI8vlVuORePAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUahaifP1dedb9TNmMr+gQ7lnBbaAwHwYDVR0j BBgwFoAUlfxgcqSmkKYaC18Us2iCtD2i8JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzA1MTc3YS1hNTAwLTQ5OTYtYjNmZi03MGMxNDRlZGZlY2UvMC85NUZDNjA3MkE0 QTY5MEE2MUEwQjVGMTRCMzY4ODJCNDNEQTJGMDk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQzREEy RjA5OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzMwNTE3N2EtYTUwMC00OTk2LWIz ZmYtNzBjMTQ0ZWRmZWNlLzAvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgy QjQzREEyRjA5OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA21lLMnT1sZtgsZka3RBEGVpFPeLmQXBUe2 uEd9heNHRoSwFVfh9JFQqfur+UrvXTya+rQl4zu5i8T+q9vZxWxGTywfUIW7fIGs vaoVWuHb7KcDaRqEvCoYiD61ywHhgXEtoU0oAnpLohw57cFkukNTHTMuwJcqCgJq oAA81CZV8DWTRA6UGZV/mQsEATl8DAaq8ofDoc1rIrybv6wMyuews9u+UeyXDRHG TSvA8AGooAllMIKHD2RV5Rz/BEVuHn4kFP/SvaRmXITMwAt0u2k9Wp90l8N2iqvq vbGZVjOKtfxcsiflP8rRf0A/6VTtGrWH1U4E3b7SpfaDi1rnFUs= -----END CERTIFICATE-----Generated at Mon May 12 22:37:02 2025 by rpki-client