$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft File: 2D0745D26E59440CB71FAFE996834493DA753248.mft (raw, json) Hash identifier: B6+JDDNZFvLAmSs8k3brlX21tro0NAEZ5YKIY8q8sTw= Subject key identifier: 9E:44:8F:52:1B:C1:7D:27:22:21:C1:58:62:2E:87:2E:B0:6A:A7:B5 Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 714B044FA3D3AF2362EFA0EAE1173211A1B914F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft Manifest number: 01A1 Signing time: Mon 05 May 2025 07:00:48 +0000 Manifest this update: Mon 05 May 2025 06:55:48 +0000 Manifest next update: Thu 08 May 2025 07:17:48 +0000 Files and hashes: 1: 2D0745D26E59440CB71FAFE996834493DA753248.crl (hash: DaGazNrCYiYLog/pd9W+aqbRB37w1kIKaD6CpoB8mDk=) 2: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (hash: 3BxgBY3dX8feRwsm1hvpch2b234JpMx6XR/YBvSI5jE=) 3: 3130332e37332e3135382e302f32342d3234203d3e203234343239.roa (hash: ujITe6uXtdvP5WOayQADk+Rg7asyYqwio86khyT1Nho=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 07:17:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:4b:04:4f:a3:d3:af:23:62:ef:a0:ea:e1:17:32:11:a1:b9:14:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: May 5 06:55:48 2025 GMT Not After : May 8 07:17:48 2025 GMT Subject: CN=9E448F521BC17D272221C158622E872EB06AA7B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4e:e8:be:7c:f8:41:16:aa:2e:53:fd:35:85: a8:23:3a:2a:21:d2:c2:c5:7f:4a:48:ea:c0:c1:bf: aa:84:38:a7:46:0f:e5:e5:84:48:cf:19:27:47:97: f6:2a:82:e4:c8:28:7d:11:29:72:07:5d:2e:80:1e: fa:cb:30:02:03:3d:f8:84:9c:9c:53:81:27:b9:6e: 0f:cc:0b:e3:86:27:c3:a6:e4:a0:ec:1e:13:e5:1b: 45:37:e3:46:4e:b6:9d:d1:00:c7:86:7d:08:7e:c2: 72:d4:cd:77:2d:83:bf:c8:dd:b1:27:6e:6d:14:5b: 03:93:49:d1:f1:a4:1b:db:a7:65:cb:0f:63:e7:a2: f3:2e:7b:45:e2:d1:59:e7:02:83:91:d7:b9:1f:52: 90:61:50:9b:a5:45:c0:ce:95:02:35:6b:d5:7f:96: 3b:71:1e:4d:c8:df:df:b5:18:fc:d5:31:87:01:91: 15:84:9d:b7:93:af:d6:f9:69:9e:51:0a:ad:8e:6a: 00:01:e1:ef:ac:3b:82:bb:e0:21:cc:98:e6:d1:97: 0c:74:57:a6:fa:56:2f:24:ac:f5:33:3f:24:42:92: 88:5b:b2:e3:09:90:fb:aa:33:6a:1f:d3:b3:7d:41: 2f:cb:e0:16:87:d8:fd:e4:8e:91:36:07:b3:c3:a2: e1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:44:8F:52:1B:C1:7D:27:22:21:C1:58:62:2E:87:2E:B0:6A:A7:B5 X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:ed:05:c0:51:75:20:9b:b4:b0:84:ee:ac:e1:65:f5:57:61: 8c:f4:dd:d0:79:ec:be:a5:1d:3d:cd:df:9d:6e:47:0e:0c:97: 3a:26:c4:a5:08:e9:70:a7:52:4c:74:3d:15:b4:27:20:1e:2f: a0:83:b5:4b:a0:1d:1a:a2:8f:23:ac:09:17:15:f3:7f:f9:71: 54:db:25:db:29:39:9f:b2:11:bd:6a:39:a4:c6:3f:c3:2c:4e: ff:60:56:b6:75:40:11:08:d6:c6:0a:f8:36:63:ed:6d:57:9e: 6e:ea:ed:4f:0c:e5:12:1d:af:bb:f8:82:eb:9b:9e:67:a1:bb: 39:3b:cc:85:82:92:5c:aa:1a:08:ac:be:9b:00:2b:55:79:cb: c5:22:98:86:9f:7a:b4:19:01:43:b4:5d:55:9e:bf:55:47:49: e0:b4:a3:d4:2f:55:18:8f:29:fd:8b:82:de:65:5a:a3:fc:c0: a3:29:75:66:e6:11:43:dc:be:ca:c5:22:0f:9d:92:f8:00:a0: 86:1a:26:9e:48:f8:df:3b:fd:19:3f:d0:c6:a7:be:b2:89:6d: 25:36:fe:4c:d8:12:87:7c:4e:29:44:e3:5b:c1:ae:8b:d1:d1: b5:21:bc:d9:0a:34:9e:62:76:cd:ec:db:d5:38:da:5b:58:69: 85:66:52:fd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcUsET6PTryNi76Dq4RcyEaG5FPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNTA1MDUwNjU1NDhaFw0yNTA1MDgwNzE3NDhaMDMxMTAvBgNV BAMTKDlFNDQ4RjUyMUJDMTdEMjcyMjIxQzE1ODYyMkU4NzJFQjA2QUE3QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChTui+fPhBFqouU/01hagjOioh 0sLFf0pI6sDBv6qEOKdGD+XlhEjPGSdHl/YqguTIKH0RKXIHXS6AHvrLMAIDPfiE nJxTgSe5bg/MC+OGJ8Om5KDsHhPlG0U340ZOtp3RAMeGfQh+wnLUzXctg7/I3bEn bm0UWwOTSdHxpBvbp2XLD2PnovMue0Xi0VnnAoOR17kfUpBhUJulRcDOlQI1a9V/ ljtxHk3I39+1GPzVMYcBkRWEnbeTr9b5aZ5RCq2OagAB4e+sO4K74CHMmObRlwx0 V6b6Vi8krPUzPyRCkohbsuMJkPuqM2of07N9QS/L4BaH2P3kjpE2B7PDouFJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnkSPUhvBfSciIcFYYi6HLrBqp7UwHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2E0MDZjZGItMTc5MS00NzhkLTlk MjgtOWUzN2E2ZjgwOWNjLzAvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0 OTNEQTc1MzI0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABXtBcBRdSCbtLCE7qzhZfVXYYz03dB57L6l HT3N351uRw4MlzomxKUI6XCnUkx0PRW0JyAeL6CDtUugHRqijyOsCRcV83/5cVTb JdspOZ+yEb1qOaTGP8MsTv9gVrZ1QBEI1sYK+DZj7W1Xnm7q7U8M5RIdr7v4guub nmehuzk7zIWCklyqGgisvpsAK1V5y8UimIaferQZAUO0XVWev1VHSeC0o9QvVRiP Kf2Lgt5lWqP8wKMpdWbmEUPcvsrFIg+dkvgAoIYaJp5I+N87/Rk/0ManvrKJbSU2 /kzYEod8TilE41vBrovR0bUhvNkKNJ5ids3s29U42ltYaYVmUv0= -----END CERTIFICATE-----Generated at Mon May 5 22:49:35 2025 by rpki-client