$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft File: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft (raw, json) Hash identifier: o4y1E4GhyB7pqQT61+OCYdeHFSxpICfffQsb0oGuVqQ= Subject key identifier: 79:77:05:5B:99:E6:3C:82:85:4C:2C:91:38:70:C3:9D:FA:35:19:58 Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Certificate serial: 5E3A27F6E5AEA7628531D3B836BC60FC87A3CF30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft Manifest number: 0256 Signing time: Fri 09 May 2025 10:10:48 +0000 Manifest this update: Fri 09 May 2025 10:05:48 +0000 Manifest next update: Mon 12 May 2025 13:17:48 +0000 Files and hashes: 1: 3130332e3137392e36362e302f32332d3234203d3e20313531303030.roa (hash: 3ytI4WNdkarTA98AKzILbdHeDtsgun+xePSvAI/3j/w=) 2: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl (hash: wjgVVt8MRJVshgm951TPwKyxU7NBrJMw++w9NBmdeqM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 13:17:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:3a:27:f6:e5:ae:a7:62:85:31:d3:b8:36:bc:60:fc:87:a3:cf:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Validity Not Before: May 9 10:05:48 2025 GMT Not After : May 12 13:17:48 2025 GMT Subject: CN=7977055B99E63C82854C2C913870C39DFA351958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c4:7b:ad:96:dd:f3:65:1e:ff:a5:ed:4d:fe: b6:e5:84:3e:fd:c2:ca:f2:1c:35:23:26:62:9b:4b: 98:c9:5f:f8:17:0b:86:1d:e6:93:e0:aa:ca:ac:8a: 15:ae:61:13:74:26:1f:5b:a0:fe:41:eb:30:73:d4: c3:99:78:8c:6e:47:1c:3b:2f:31:20:99:53:ab:40: 32:97:5e:90:78:bf:6c:91:15:87:17:46:a6:42:85: 74:01:34:c0:d5:9d:4e:7d:17:52:6d:ad:2d:21:60: bd:23:92:b0:a8:fb:1b:0b:93:99:b8:c1:11:82:eb: 96:ce:d8:fe:f0:49:34:d7:80:26:ed:4e:ca:ab:d5: 70:23:f8:5d:57:fc:94:96:61:8f:1f:16:ad:09:b4: 7b:5a:76:44:6c:17:ea:c6:e3:ab:36:67:e8:66:2c: 91:63:0d:ed:7f:54:5d:ac:a4:fd:36:09:c1:b3:72: ac:cb:b6:be:e2:ce:b1:ee:1f:d5:9e:71:2b:61:45: 93:35:cd:65:fc:41:ed:18:b1:7c:6b:9a:56:71:90: 2c:7f:d0:d2:f5:23:ce:0f:11:44:21:b6:5f:e2:fe: f6:37:3a:d9:23:bf:86:72:8f:6b:2c:a1:08:80:f7: a7:b3:8c:fc:ec:52:92:3d:8b:5f:64:cb:41:bc:4b: c5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:77:05:5B:99:E6:3C:82:85:4C:2C:91:38:70:C3:9D:FA:35:19:58 X509v3 Authority Key Identifier: keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:a0:de:25:6e:1f:24:ae:c1:ac:d8:8c:3f:1f:4a:60:a1:0d: c8:d3:43:97:04:ab:7a:2e:bb:5d:ff:fd:af:cc:fc:a6:63:18: 22:af:98:01:26:db:4b:1b:ec:93:72:2b:16:54:60:52:e0:69: b2:ab:d7:a6:ef:c4:18:bd:d6:f8:a8:df:49:34:fe:57:1a:b5: 12:eb:99:dd:fa:7f:3e:cc:69:af:fd:6e:85:cc:28:b9:0e:7e: 94:30:11:42:70:5a:6a:a9:c2:0c:29:2e:b3:a1:32:92:ea:06: 82:e0:7a:11:2d:a9:5d:7e:04:d8:c4:f0:6d:25:0c:18:99:53: b5:0c:48:44:f2:00:d3:51:bf:23:4b:dc:7b:88:51:f7:fe:14: ac:2a:1f:53:73:17:51:73:60:53:a4:78:36:4e:9a:6c:89:e5: 4e:b7:e6:e9:19:f0:d4:06:9e:24:8e:19:51:a0:4b:ae:ba:bd: 08:c2:02:53:af:10:2f:d6:7e:6c:a6:1d:51:7d:15:58:e0:ba: 95:49:7b:0a:c7:0a:e3:d8:65:e9:b5:e1:bc:96:9f:dd:6e:64: b9:c7:6f:b9:b4:8b:64:ae:3c:9c:6e:35:e9:a6:75:78:bc:e4: 19:04:c0:85:5b:42:99:40:27:6c:57:01:17:f4:8b:b4:28:9e: 88:3e:e7:72 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXjon9uWup2KFMdO4Nrxg/IejzzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRF RUFDQTI3MDAeFw0yNTA1MDkxMDA1NDhaFw0yNTA1MTIxMzE3NDhaMDMxMTAvBgNV BAMTKDc5NzcwNTVCOTlFNjNDODI4NTRDMkM5MTM4NzBDMzlERkEzNTE5NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKxHutlt3zZR7/pe1N/rblhD79 wsryHDUjJmKbS5jJX/gXC4Yd5pPgqsqsihWuYRN0Jh9boP5B6zBz1MOZeIxuRxw7 LzEgmVOrQDKXXpB4v2yRFYcXRqZChXQBNMDVnU59F1JtrS0hYL0jkrCo+xsLk5m4 wRGC65bO2P7wSTTXgCbtTsqr1XAj+F1X/JSWYY8fFq0JtHtadkRsF+rG46s2Z+hm LJFjDe1/VF2spP02CcGzcqzLtr7izrHuH9WecSthRZM1zWX8Qe0YsXxrmlZxkCx/ 0NL1I84PEUQhtl/i/vY3Otkjv4Zyj2ssoQiA96ezjPzsUpI9i19ky0G8S8WfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUeXcFW5nmPIKFTCyROHDDnfo1GVgwHwYDVR0j BBgwFoAUW9NBptRq9Sz/I6XR4liUlO6sonAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMC81QkQzNDFBNkQ0 NkFGNTJDRkYyM0E1RDFFMjU4OTQ5NEVFQUNBMjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRFRUFD QTI3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UxMjc0M2QtZDU2ZC00YTc3LTkw ZTItYzUyZTZkZmUwNmMyLzAvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0 OTRFRUFDQTI3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHCg3iVuHySuwazYjD8fSmChDcjTQ5cEq3ou u13//a/M/KZjGCKvmAEm20sb7JNyKxZUYFLgabKr16bvxBi91vio30k0/lcatRLr md36fz7Maa/9boXMKLkOfpQwEUJwWmqpwgwpLrOhMpLqBoLgehEtqV1+BNjE8G0l DBiZU7UMSETyANNRvyNL3HuIUff+FKwqH1NzF1FzYFOkeDZOmmyJ5U635ukZ8NQG niSOGVGgS666vQjCAlOvEC/WfmymHVF9FVjgupVJewrHCuPYZem14byWn91uZLnH b7m0i2SuPJxuNemmdXi85BkEwIVbQplAJ2xXARf0i7Qonog+53I= -----END CERTIFICATE-----Generated at Sat May 10 05:12:50 2025 by rpki-client