$ rpki-client -vvf repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft File: D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft (raw, json) Hash identifier: dbT12VqhHkjl+2S8I8Olgra8WdbANGhQe3xQ2PgafrY= Subject key identifier: 79:4C:34:11:3A:0F:95:38:CC:C1:B8:88:C5:26:41:09:B2:C0:08:DE Authority key identifier: D2:1A:35:97:D7:B5:EB:D9:A5:47:68:0F:1C:2E:D7:A4:64:DD:9F:26 Certificate issuer: /CN=D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26 Certificate serial: 3B12D0C8694F861DB1C922F9FA690730E1B33611 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft Manifest number: 01E4 Signing time: Mon 05 May 2025 13:01:46 +0000 Manifest this update: Mon 05 May 2025 12:56:46 +0000 Manifest next update: Fri 09 May 2025 00:08:46 +0000 Files and hashes: 1: D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.crl (hash: lPHj0S6DdATLLxEQ9b62k1Xk0A4g90e3lYawzKxzDEw=) 2: 3130332e3138332e362e302f32332d3234203d3e20313439343037.roa (hash: bu4LtbxxfvYhSmPVYXsHJnQ8u6QDASxNerDLPSby9+A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.crl rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 00:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:12:d0:c8:69:4f:86:1d:b1:c9:22:f9:fa:69:07:30:e1:b3:36:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26 Validity Not Before: May 5 12:56:46 2025 GMT Not After : May 9 00:08:46 2025 GMT Subject: CN=794C34113A0F9538CCC1B888C5264109B2C008DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ad:f1:7c:32:a3:3c:a2:b9:bc:66:3a:07:11: bd:45:7e:66:7c:08:19:d4:e1:ec:18:fd:b0:b0:92: ad:27:dd:e3:7b:05:29:76:8d:49:02:a9:da:c6:53: 72:64:94:79:19:fb:bc:2c:e2:fe:97:32:fe:55:47: 96:e1:63:04:d6:3d:1d:a9:dc:92:99:ff:4a:7c:0a: a7:0e:a1:fc:90:1d:c7:6b:6b:16:0d:44:3d:e9:63: e3:97:b0:cb:d0:3f:57:80:2b:09:d8:5b:c6:f6:08: fd:99:cd:e5:ac:46:b4:23:4c:d6:5f:85:b2:73:01: a4:65:a5:b5:13:ac:6b:47:57:90:fc:69:9d:db:c4: 90:ff:de:1d:c2:e5:da:2f:bf:72:46:07:06:06:29: 8a:cd:1b:f0:0f:21:50:7e:7b:dd:c1:6b:95:87:b2: 91:c7:4a:cb:72:18:94:87:3d:5c:38:12:85:fa:f6: 9f:eb:d0:aa:a6:bb:06:5b:91:6c:bd:0b:df:d3:26: 6e:cf:44:a8:c2:b3:59:6f:73:2d:b2:67:be:88:5b: 83:af:44:29:99:1b:b3:c3:bf:c5:c4:85:c3:56:91: db:9b:2d:3b:f0:55:40:7d:f7:50:26:ce:a2:1d:28: 8f:9b:9d:ce:5d:c8:68:ed:63:7e:f1:d3:e5:46:53: c0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:4C:34:11:3A:0F:95:38:CC:C1:B8:88:C5:26:41:09:B2:C0:08:DE X509v3 Authority Key Identifier: keyid:D2:1A:35:97:D7:B5:EB:D9:A5:47:68:0F:1C:2E:D7:A4:64:DD:9F:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:84:62:99:32:40:e7:09:05:77:e5:94:01:9d:63:23:68:1b: a1:87:07:be:5c:95:df:66:c2:a7:e7:c1:72:50:b5:21:70:a1: 2a:04:74:c8:26:4a:72:de:8c:9f:a9:7a:82:cf:52:20:59:aa: ee:a1:30:ea:28:9b:bf:35:ee:de:1a:30:28:14:54:2d:f6:9e: 43:0c:c9:4d:7b:29:3d:82:c6:ba:fc:1d:de:f0:e2:e6:37:75: 8a:46:40:e6:02:8c:b5:82:67:5d:49:e2:d3:55:ac:06:d4:02: 1d:a5:8b:1d:68:2a:e3:78:25:d8:32:65:bb:b1:82:57:27:c4: 56:0b:2a:27:38:d4:93:f3:32:bb:1f:b9:78:5c:9f:32:2d:08: bc:e4:36:76:c0:d9:cd:21:dd:90:e8:60:a9:0a:18:65:83:dd: 04:c1:24:76:3e:c1:ec:3e:bc:0b:9f:84:cf:00:31:67:ef:eb: e1:20:da:26:b7:35:fe:da:0a:83:01:61:b2:5d:f8:6b:1e:46: 33:f6:29:ba:06:10:cc:bc:06:68:f0:da:d2:ca:0f:81:11:f4: 7b:b1:58:fa:46:61:99:6b:3a:76:b5:e8:17:dc:73:d7:45:ef: f1:b7:b9:50:4a:c6:e9:54:2f:05:2b:0d:af:c9:6f:25:4c:ce: 5a:cb:20:1f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOxLQyGlPhh2xySL5+mkHMOGzNhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIxQTM1OTdEN0I1RUJEOUE1NDc2ODBGMUMyRUQ3QTQ2 NEREOUYyNjAeFw0yNTA1MDUxMjU2NDZaFw0yNTA1MDkwMDA4NDZaMDMxMTAvBgNV BAMTKDc5NEMzNDExM0EwRjk1MzhDQ0MxQjg4OEM1MjY0MTA5QjJDMDA4REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7rfF8MqM8orm8ZjoHEb1FfmZ8 CBnU4ewY/bCwkq0n3eN7BSl2jUkCqdrGU3JklHkZ+7ws4v6XMv5VR5bhYwTWPR2p 3JKZ/0p8CqcOofyQHcdraxYNRD3pY+OXsMvQP1eAKwnYW8b2CP2ZzeWsRrQjTNZf hbJzAaRlpbUTrGtHV5D8aZ3bxJD/3h3C5dovv3JGBwYGKYrNG/APIVB+e93Ba5WH spHHSstyGJSHPVw4EoX69p/r0KqmuwZbkWy9C9/TJm7PRKjCs1lvcy2yZ76IW4Ov RCmZG7PDv8XEhcNWkdubLTvwVUB991AmzqIdKI+bnc5dyGjtY37x0+VGU8CbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUeUw0EToPlTjMwbiIxSZBCbLACN4wHwYDVR0j BBgwFoAU0ho1l9e169mlR2gPHC7XpGTdnyYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2M1NjA1ZC1mMTdhLTQwMTAtOTI1My0yMTBjNjRmMTQ4YmQvMC9EMjFBMzU5N0Q3 QjVFQkQ5QTU0NzY4MEYxQzJFRDdBNDY0REQ5RjI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDIxQTM1OTdEN0I1RUJEOUE1NDc2ODBGMUMyRUQ3QTQ2NERE OUYyNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2NjNTYwNWQtZjE3YS00MDEwLTky NTMtMjEwYzY0ZjE0OGJkLzAvRDIxQTM1OTdEN0I1RUJEOUE1NDc2ODBGMUMyRUQ3 QTQ2NEREOUYyNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFqEYpkyQOcJBXfllAGdYyNoG6GHB75cld9m wqfnwXJQtSFwoSoEdMgmSnLejJ+peoLPUiBZqu6hMOoom7817t4aMCgUVC32nkMM yU17KT2Cxrr8Hd7w4uY3dYpGQOYCjLWCZ11J4tNVrAbUAh2lix1oKuN4JdgyZbux glcnxFYLKic41JPzMrsfuXhcnzItCLzkNnbA2c0h3ZDoYKkKGGWD3QTBJHY+wew+ vAufhM8AMWfv6+Eg2ia3Nf7aCoMBYbJd+GseRjP2KboGEMy8Bmjw2tLKD4ER9Hux WPpGYZlrOna16Bfcc9dF7/G3uVBKxulULwUrDa/JbyVMzlrLIB8= -----END CERTIFICATE-----Generated at Wed May 7 18:53:56 2025 by rpki-client