$ rpki-client -vvf repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft File: DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft (raw, json) Hash identifier: wNRZcKX7WRotuORHsWzGKgslqAAxKCPhVRmn9DmQVlk= Subject key identifier: E5:96:F0:AD:BF:6D:AF:2F:8F:08:F0:61:EB:20:F2:6E:16:6C:6C:63 Authority key identifier: DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 Certificate issuer: /CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Certificate serial: 7F4B28C2BCAD1489765571AFD91C59840557244B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft Manifest number: 020E Signing time: Tue 06 May 2025 23:41:51 +0000 Manifest this update: Tue 06 May 2025 23:36:51 +0000 Manifest next update: Sat 10 May 2025 07:43:51 +0000 Files and hashes: 1: 3130332e3136362e3233342e302f32342d3234203d3e20313430343037.roa (hash: sMfIE/u5AzCpsIXByAsN/oEvGS84+QQDQwr2MsQjPBU=) 2: DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl (hash: xUQI+f0QpBCsCG13DfrpoboYRwRagFL/gQ/BnBaSWuI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 07:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:4b:28:c2:bc:ad:14:89:76:55:71:af:d9:1c:59:84:05:57:24:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Validity Not Before: May 6 23:36:51 2025 GMT Not After : May 10 07:43:51 2025 GMT Subject: CN=E596F0ADBF6DAF2F8F08F061EB20F26E166C6C63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ff:3d:6b:de:98:f8:ee:99:99:cd:3b:5e:3d: 39:34:ce:90:47:4b:9d:5e:61:73:e3:ae:0b:68:08: 32:fa:e9:f0:fc:50:24:c4:2e:7d:16:90:c0:51:ab: ef:73:37:e0:98:9b:cf:de:6b:de:93:79:77:dd:73: 0c:e0:42:17:4d:0b:e7:d4:dd:68:63:8e:8e:3f:a5: b5:17:76:e1:23:81:1f:9e:48:6a:5e:ff:0a:16:01: 86:65:a8:e9:0a:77:9a:16:df:f1:e8:9a:79:e0:13: f9:6d:00:34:8c:b7:ec:a2:5e:a3:9b:f0:76:6a:aa: cc:11:5a:62:97:43:0f:99:93:aa:1c:30:48:77:96: 23:5c:2c:a7:0b:32:e5:41:ac:20:54:4e:4a:74:33: bc:7a:05:82:80:56:c4:6b:a5:d4:2b:90:e9:8f:7f: 0c:e1:68:54:c0:b6:b4:a3:62:fc:a1:e4:d3:ec:e7: 31:67:59:ff:50:cb:4f:69:8d:d5:76:62:ab:27:72: b7:9e:fa:a6:ba:6b:0e:92:f9:b3:e3:d9:ac:04:00: 6c:2e:a3:cc:42:5c:30:35:a7:fd:f4:eb:75:8f:8d: 6d:21:e8:bc:ea:6a:e5:12:67:77:0e:40:5a:f8:de: 72:85:06:f4:15:20:8a:3c:75:cb:4d:85:18:2d:9a: 6b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:96:F0:AD:BF:6D:AF:2F:8F:08:F0:61:EB:20:F2:6E:16:6C:6C:63 X509v3 Authority Key Identifier: keyid:DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:48:94:b5:b0:d3:df:48:c8:19:ea:37:66:be:87:9f:e8:68: 32:a7:10:61:a3:b5:ed:5f:ff:44:05:63:f5:f9:a1:59:87:6f: 38:d8:3b:28:1e:e1:7d:9a:8e:0c:fa:bf:ce:9a:66:66:c1:a3: 17:9b:d0:47:3f:24:ac:4d:98:4f:a1:90:b9:a6:a4:67:91:0f: 4b:6a:50:da:cd:24:9a:08:0e:39:68:8d:3e:a0:12:3a:d0:d4: 94:c9:3b:f3:36:1e:51:5a:ce:33:0a:a1:1c:94:c8:56:50:37: 75:f8:e6:4b:b9:33:b9:9a:71:fc:2a:92:87:a1:cd:e4:fa:82: 09:55:eb:14:73:79:df:52:23:3b:f4:ed:5d:8b:f9:a8:5b:94: 19:59:18:aa:de:98:ac:0b:eb:32:cc:47:6b:21:78:09:6b:e0: 7c:d0:1d:74:a9:0a:ab:0a:85:cf:c6:5a:c3:d9:b8:78:34:cb: c1:51:b7:f9:7d:e7:2a:37:15:cc:a4:4c:61:3c:b7:c6:06:1c: 75:ae:e0:32:a2:ce:63:3a:87:4f:ac:93:41:2e:e0:29:dd:db: 74:a0:ff:30:cb:3e:50:f2:36:d4:e6:13:17:76:97:2c:75:db: 95:c9:82:ea:9e:13:4d:e7:45:e1:54:ae:31:6e:39:a6:9b:4b: 09:f3:69:5c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf0sowrytFIl2VXGv2RxZhAVXJEswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0MDVC N0ExQUVGMjAeFw0yNTA1MDYyMzM2NTFaFw0yNTA1MTAwNzQzNTFaMDMxMTAvBgNV BAMTKEU1OTZGMEFEQkY2REFGMkY4RjA4RjA2MUVCMjBGMjZFMTY2QzZDNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi/z1r3pj47pmZzTtePTk0zpBH S51eYXPjrgtoCDL66fD8UCTELn0WkMBRq+9zN+CYm8/ea96TeXfdcwzgQhdNC+fU 3Whjjo4/pbUXduEjgR+eSGpe/woWAYZlqOkKd5oW3/HomnngE/ltADSMt+yiXqOb 8HZqqswRWmKXQw+Zk6ocMEh3liNcLKcLMuVBrCBUTkp0M7x6BYKAVsRrpdQrkOmP fwzhaFTAtrSjYvyh5NPs5zFnWf9Qy09pjdV2Yqsncree+qa6aw6S+bPj2awEAGwu o8xCXDA1p/3063WPjW0h6LzqauUSZ3cOQFr43nKFBvQVIIo8dctNhRgtmmulAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5Zbwrb9try+PCPBh6yDybhZsbGMwHwYDVR0j BBgwFoAU3xmUnOF9wRbnt8IkjJM0BbehrvIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWVmNzg2Yi02MjI2LTQ0YWYtODUyZC0xZmIwNDVjNGRlYjMvMC9ERjE5OTQ5Q0Ux N0RDMTE2RTdCN0MyMjQ4QzkzMzQwNUI3QTFBRUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0MDVCN0Ex QUVGMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FlZjc4NmItNjIyNi00NGFmLTg1 MmQtMWZiMDQ1YzRkZWIzLzAvREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0 MDVCN0ExQUVGMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEJIlLWw099IyBnqN2a+h5/oaDKnEGGjte1f /0QFY/X5oVmHbzjYOyge4X2ajgz6v86aZmbBoxeb0Ec/JKxNmE+hkLmmpGeRD0tq UNrNJJoIDjlojT6gEjrQ1JTJO/M2HlFazjMKoRyUyFZQN3X45ku5M7macfwqkoeh zeT6gglV6xRzed9SIzv07V2L+ahblBlZGKremKwL6zLMR2sheAlr4HzQHXSpCqsK hc/GWsPZuHg0y8FRt/l95yo3FcykTGE8t8YGHHWu4DKizmM6h0+sk0Eu4Cnd23Sg /zDLPlDyNtTmExd2lyx125XJguqeE03nReFUrjFuOaabSwnzaVw= -----END CERTIFICATE-----Generated at Thu May 8 23:18:40 2025 by rpki-client