$ rpki-client -vvf repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft File: 29692979765B670997413579D7BF5663C05BBD1A.mft (raw, json) Hash identifier: BF8sSOxKfFLN+CIy0m/v/G5MRL6PplRCPKSXLkXKj4U= Subject key identifier: C5:32:7B:C8:27:E8:03:5C:4C:1D:1C:FF:1B:B1:9F:60:52:06:C6:76 Authority key identifier: 29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A Certificate issuer: /CN=29692979765B670997413579D7BF5663C05BBD1A Certificate serial: 14A205AF18ECA319501EACE4CC5732F5561B35B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft Manifest number: 0206 Signing time: Sun 11 May 2025 16:41:01 +0000 Manifest this update: Sun 11 May 2025 16:36:01 +0000 Manifest next update: Wed 14 May 2025 19:45:01 +0000 Files and hashes: 1: 34352e3235312e37322e302f32322d3234203d3e20313331373131.roa (hash: Sc7V8HjoJlvlyPs0x8OcUDy/oyEPZU0ZY61rdBTppuU=) 2: 3130332e392e3132342e302f32322d3234203d3e20313331373131.roa (hash: OEcoBkoG7Ieje5kz6iCayAVIs4OuEBZdw+TGiUfzbw0=) 3: 29692979765B670997413579D7BF5663C05BBD1A.crl (hash: dbb6ptVgB9MnH5/lNF2ydmN/NpfWM6vTlDWwx4ZNOcU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 19:45:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:a2:05:af:18:ec:a3:19:50:1e:ac:e4:cc:57:32:f5:56:1b:35:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29692979765B670997413579D7BF5663C05BBD1A Validity Not Before: May 11 16:36:01 2025 GMT Not After : May 14 19:45:01 2025 GMT Subject: CN=C5327BC827E8035C4C1D1CFF1BB19F605206C676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9e:d0:e4:c0:10:b1:ea:0c:2b:1b:3b:91:2f: ef:43:01:57:c0:ab:31:0f:1e:9a:4a:19:f9:55:23: ea:cc:96:8e:f9:f5:ca:56:9b:9c:f5:9c:3f:64:9d: 9b:38:a8:88:7b:96:e0:0c:8b:4f:10:b4:98:a3:b2: 6c:72:47:42:5c:82:5d:af:f7:2b:33:e6:5b:91:f4: 7e:39:08:54:c0:c9:74:f7:0d:27:07:7b:59:0d:0b: 7b:cd:a6:72:8b:54:59:4e:c7:ef:c1:7a:33:49:49: 29:2e:04:a4:05:90:c7:75:01:c2:f0:6a:de:35:e8: fd:44:f8:e3:8b:68:b4:d5:04:76:74:1c:44:3b:e2: c5:94:8d:26:ef:1a:1f:fb:6b:5a:bc:73:65:8b:62: 4e:14:b5:d0:78:a3:91:41:b8:ad:df:02:c5:3d:a9: e6:2b:48:35:0f:19:65:f2:67:85:79:dc:ad:03:f5: 98:87:32:10:65:26:79:12:4e:1f:d5:fd:f1:25:4c: 06:6b:7b:d5:de:6d:e3:1c:5a:50:35:56:4d:c8:f6: 8f:da:af:2b:d9:5b:f2:ae:8c:82:f3:85:ce:b6:97: b8:f8:ed:50:5c:ee:bf:59:42:6d:11:fb:cf:ca:76: 43:c3:13:30:c2:bb:10:84:9f:46:40:1d:9f:54:87: ef:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:32:7B:C8:27:E8:03:5C:4C:1D:1C:FF:1B:B1:9F:60:52:06:C6:76 X509v3 Authority Key Identifier: keyid:29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:8f:22:b1:01:64:bc:17:3d:d6:15:b3:f8:78:1d:8a:d6:c2: 33:89:9d:74:0c:d5:43:4f:43:69:96:27:9a:56:4d:80:3b:cd: a8:92:6c:c0:86:84:2c:81:25:24:89:fe:f8:b8:bf:a3:d0:2e: 72:35:77:d7:ed:55:62:43:b5:71:ce:df:e4:3b:4e:38:fd:06: ae:cf:24:82:71:15:dc:bf:87:f3:e2:d1:de:26:bb:0a:da:46: b4:f2:de:91:c7:5d:8e:c0:93:09:3e:c9:c6:af:38:06:cf:6c: 3e:e6:62:1b:e3:fd:2c:5b:b7:d3:1a:5e:a8:2b:cd:84:c4:20: 67:73:e6:5a:06:79:54:55:f8:e8:67:13:68:28:1e:47:8a:91: 2f:14:90:71:e8:93:ae:0b:d8:86:eb:c0:35:04:5b:73:7e:22: c5:30:d8:28:58:a6:86:2f:e3:92:8c:6d:4f:5d:39:c2:db:32: bc:28:25:37:17:cb:74:df:9e:4c:ac:57:b6:f2:e1:95:94:ba: c9:6e:50:42:28:fd:60:64:f5:34:af:05:01:2d:63:52:37:ae: 80:15:2f:30:12:aa:81:5b:3f:5d:fa:3b:93:a1:7f:c6:57:cb: 14:13:c8:30:aa:14:bc:15:c1:a5:b2:b9:c8:96:16:f1:13:15: b1:cc:9a:b7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFKIFrxjsoxlQHqzkzFcy9VYbNbgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjND MDVCQkQxQTAeFw0yNTA1MTExNjM2MDFaFw0yNTA1MTQxOTQ1MDFaMDMxMTAvBgNV BAMTKEM1MzI3QkM4MjdFODAzNUM0QzFEMUNGRjFCQjE5RjYwNTIwNkM2NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDentDkwBCx6gwrGzuRL+9DAVfA qzEPHppKGflVI+rMlo759cpWm5z1nD9knZs4qIh7luAMi08QtJijsmxyR0Jcgl2v 9ysz5luR9H45CFTAyXT3DScHe1kNC3vNpnKLVFlOx+/BejNJSSkuBKQFkMd1AcLw at416P1E+OOLaLTVBHZ0HEQ74sWUjSbvGh/7a1q8c2WLYk4UtdB4o5FBuK3fAsU9 qeYrSDUPGWXyZ4V53K0D9ZiHMhBlJnkSTh/V/fElTAZre9XebeMcWlA1Vk3I9o/a ryvZW/KujILzhc62l7j47VBc7r9ZQm0R+8/KdkPDEzDCuxCEn0ZAHZ9Uh++7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxTJ7yCfoA1xMHRz/G7GfYFIGxnYwHwYDVR0j BBgwFoAUKWkpeXZbZwmXQTV5179WY8BbvRowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjBhMTFiNS05NDQxLTRjYzktYTY3Mi1iZTk3OTliNjU1MjAvMC8yOTY5Mjk3OTc2 NUI2NzA5OTc0MTM1NzlEN0JGNTY2M0MwNUJCRDFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjNDMDVC QkQxQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2IwYTExYjUtOTQ0MS00Y2M5LWE2 NzItYmU5Nzk5YjY1NTIwLzAvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2 NjNDMDVCQkQxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGuPIrEBZLwXPdYVs/h4HYrWwjOJnXQM1UNP Q2mWJ5pWTYA7zaiSbMCGhCyBJSSJ/vi4v6PQLnI1d9ftVWJDtXHO3+Q7Tjj9Bq7P JIJxFdy/h/Pi0d4muwraRrTy3pHHXY7Akwk+ycavOAbPbD7mYhvj/Sxbt9MaXqgr zYTEIGdz5loGeVRV+OhnE2goHkeKkS8UkHHok64L2IbrwDUEW3N+IsUw2ChYpoYv 45KMbU9dOcLbMrwoJTcXy3TfnkysV7by4ZWUusluUEIo/WBk9TSvBQEtY1I3roAV LzASqoFbP136O5Ohf8ZXyxQTyDCqFLwVwaWyuciWFvETFbHMmrc= -----END CERTIFICATE-----Generated at Tue May 13 06:41:50 2025 by rpki-client