$ rpki-client -vvf repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft File: 9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft (raw, json) Hash identifier: igOzwJ/9vOsqTTB+cr5DF7p4QTI9MOVpDVCOUh5yFDw= Subject key identifier: B9:A4:7C:EB:CE:57:9F:B7:E3:B3:EF:4B:7D:F9:40:1B:1D:9B:68:FD Authority key identifier: 9F:FC:46:BA:A3:F1:95:22:AF:5B:DD:60:DF:7D:E9:2E:94:F5:AB:7B Certificate issuer: /CN=9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B Certificate serial: 06804AF3A3A54A90969E86C7B97E53E4F41A62C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft Manifest number: 0188 Signing time: Sun 04 May 2025 07:02:04 +0000 Manifest this update: Sun 04 May 2025 06:57:04 +0000 Manifest next update: Wed 07 May 2025 13:07:04 +0000 Files and hashes: 1: 3130332e33392e37302e302f32332d3233203d3e20313530323734.roa (hash: Na4r9r8nnow4eud4P32zyb2HwE34kjIncW5/HOVTmbY=) 2: 3130332e33392e37302e302f32342d3234203d3e20313530323734.roa (hash: n9HiNkJ52DbLxZISXERFZtFdqx3265M08OZ/zKtOVYU=) 3: 9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl (hash: plIrjugvErxWyRnwPdNWD2QA5JsH1bAVV49EdJ5NP10=) 4: 3130332e33392e37312e302f32342d3234203d3e20313530323734.roa (hash: vX/A9y9l7mDzRfDBjuCxoiwVgHmV7OjNWsTWxTukflI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 13:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:80:4a:f3:a3:a5:4a:90:96:9e:86:c7:b9:7e:53:e4:f4:1a:62:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B Validity Not Before: May 4 06:57:04 2025 GMT Not After : May 7 13:07:04 2025 GMT Subject: CN=B9A47CEBCE579FB7E3B3EF4B7DF9401B1D9B68FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:75:16:4b:48:48:f0:30:4a:e6:d9:0d:44:05: cf:b6:67:5e:c1:1b:3c:df:ac:9a:80:ba:1a:4f:72: fa:8a:29:70:5b:17:83:56:ab:bb:3c:0e:ea:54:eb: 59:23:0d:4a:76:28:73:4f:a7:68:2a:27:3d:01:3f: 16:3a:15:5c:45:e6:71:e8:66:e5:d3:f0:5e:43:94: 43:81:39:c8:18:e8:a8:f0:54:0f:20:ef:96:01:6c: 54:b8:23:59:85:9f:81:88:f4:3f:36:60:52:83:10: 32:e4:21:a8:b2:f9:4a:42:45:66:77:d7:28:8c:a6: 60:f7:52:91:09:52:37:2b:99:8b:f7:73:e6:ad:44: b3:52:6e:7b:31:e6:01:2e:83:ba:3a:72:c2:73:c6: 16:10:0c:8b:74:73:36:2d:a1:26:3c:66:1b:34:86: 1a:c3:2c:c8:48:0a:75:2d:95:02:43:a5:d1:3a:08: 5a:ba:68:82:6a:df:f0:bd:f5:11:f3:a9:5d:67:e5: 04:d2:67:d2:56:b2:80:f9:20:ea:d6:7e:a2:71:cb: fe:93:c5:28:ff:e6:10:af:be:7a:89:f3:25:c7:df: dd:97:79:8b:0e:6d:af:88:4d:08:01:f0:1a:cb:a4: 6b:15:6d:98:60:ed:cd:0c:fb:06:2e:9f:0f:18:a1: fa:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A4:7C:EB:CE:57:9F:B7:E3:B3:EF:4B:7D:F9:40:1B:1D:9B:68:FD X509v3 Authority Key Identifier: keyid:9F:FC:46:BA:A3:F1:95:22:AF:5B:DD:60:DF:7D:E9:2E:94:F5:AB:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:0f:dc:b1:b9:40:d9:1b:8f:d9:63:6c:51:4f:8a:c8:73:9a: 4c:eb:b0:7c:f5:ca:b5:e9:48:3e:e5:b0:ef:b1:b5:03:67:74: 58:5f:03:3e:2b:57:5c:e2:db:d1:7d:67:cf:33:fc:d8:a2:ee: 08:ba:66:0c:5c:d6:0f:df:95:fa:39:2b:52:96:cc:a5:97:1a: 34:e3:0c:97:f7:f5:d2:1c:c6:be:66:b1:50:f3:ca:3a:7e:69: 62:3c:03:c5:91:a2:72:ae:9c:15:67:e8:70:a7:f2:19:e6:18: 72:41:97:fa:27:45:78:11:52:71:53:e7:10:d5:e0:51:72:8e: d4:6d:22:4a:4d:17:fc:01:46:f7:4c:e6:4c:6e:4f:3f:93:51: 30:a3:05:d0:5e:51:35:53:cb:40:24:f4:e9:d8:2e:14:ce:a5: 56:8b:44:ef:a3:52:fe:f9:68:67:f8:8c:2c:60:0c:26:f2:24: 2a:25:ab:cb:cb:8a:dd:23:b0:ff:52:0e:11:27:9a:da:26:d2: 02:24:66:33:af:67:cf:e3:41:47:9d:13:93:94:64:20:a5:9a: 2c:91:3e:ff:a2:55:2f:68:93:e1:dd:2b:0c:a2:11:ea:16:cf: d2:76:38:40:12:80:2e:35:61:91:25:96:38:60:f4:a7:98:65: ce:0f:39:48 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBoBK86OlSpCWnobHuX5T5PQaYsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5MkU5 NEY1QUI3QjAeFw0yNTA1MDQwNjU3MDRaFw0yNTA1MDcxMzA3MDRaMDMxMTAvBgNV BAMTKEI5QTQ3Q0VCQ0U1NzlGQjdFM0IzRUY0QjdERjk0MDFCMUQ5QjY4RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAdRZLSEjwMErm2Q1EBc+2Z17B GzzfrJqAuhpPcvqKKXBbF4NWq7s8DupU61kjDUp2KHNPp2gqJz0BPxY6FVxF5nHo ZuXT8F5DlEOBOcgY6KjwVA8g75YBbFS4I1mFn4GI9D82YFKDEDLkIaiy+UpCRWZ3 1yiMpmD3UpEJUjcrmYv3c+atRLNSbnsx5gEug7o6csJzxhYQDIt0czYtoSY8Zhs0 hhrDLMhICnUtlQJDpdE6CFq6aIJq3/C99RHzqV1n5QTSZ9JWsoD5IOrWfqJxy/6T xSj/5hCvvnqJ8yXH392XeYsOba+ITQgB8BrLpGsVbZhg7c0M+wYunw8YofotAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUuaR8685Xn7fjs+9LfflAGx2baP0wHwYDVR0j BBgwFoAUn/xGuqPxlSKvW91g333pLpT1q3swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTU3ZDU0My1iYWYwLTQzNDgtODg1Ny0zZDI2MDFjM2E4MDMvMC85RkZDNDZCQUEz RjE5NTIyQUY1QkRENjBERjdERTkyRTk0RjVBQjdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5MkU5NEY1 QUI3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2U1N2Q1NDMtYmFmMC00MzQ4LTg4 NTctM2QyNjAxYzNhODAzLzAvOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5 MkU5NEY1QUI3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFQP3LG5QNkbj9ljbFFPishzmkzrsHz1yrXp SD7lsO+xtQNndFhfAz4rV1zi29F9Z88z/Nii7gi6Zgxc1g/flfo5K1KWzKWXGjTj DJf39dIcxr5msVDzyjp+aWI8A8WRonKunBVn6HCn8hnmGHJBl/onRXgRUnFT5xDV 4FFyjtRtIkpNF/wBRvdM5kxuTz+TUTCjBdBeUTVTy0Ak9OnYLhTOpVaLRO+jUv75 aGf4jCxgDCbyJColq8vLit0jsP9SDhEnmtom0gIkZjOvZ8/jQUedE5OUZCClmiyR Pv+iVS9ok+HdKwyiEeoWz9J2OEASgC41YZElljhg9KeYZc4POUg= -----END CERTIFICATE-----Generated at Wed May 7 07:44:32 2025 by rpki-client