$ rpki-client -vvf repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft File: 68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft (raw, json) Hash identifier: fsY5ZA2CUqt15A2Jo2aEmxM3GWMsMTryZNECHmiNyb0= Subject key identifier: 38:EE:A1:F6:66:1E:99:DD:52:C7:C1:7F:8B:C5:36:E2:73:61:7A:E9 Authority key identifier: 68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 Certificate issuer: /CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Certificate serial: 78199DE587FC558D654D4E83F902567469E4562A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft Manifest number: 0436 Signing time: Thu 08 May 2025 17:50:57 +0000 Manifest this update: Thu 08 May 2025 17:45:57 +0000 Manifest next update: Sun 11 May 2025 19:30:57 +0000 Files and hashes: 1: 3130332e3136312e3131312e302f32342d3234203d3e20313431363135.roa (hash: DSCdhRjgPhVc7GP3hYwZBTxGLDzPYuxYKap6JH0m82g=) 2: 68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl (hash: xsVeTlou8Gncp6Dg0w2JRFA2e/Lp6EjZyqmp4w3IGsE=) 3: 3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa (hash: I1rDYvqqFg4aRnuf/vWK5XXOGVBK8suZyd8orlilX60=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 19:30:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:19:9d:e5:87:fc:55:8d:65:4d:4e:83:f9:02:56:74:69:e4:56:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Validity Not Before: May 8 17:45:57 2025 GMT Not After : May 11 19:30:57 2025 GMT Subject: CN=38EEA1F6661E99DD52C7C17F8BC536E273617AE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7d:f2:db:f3:45:5f:13:60:ae:6c:86:36:0c: dc:2e:a2:b1:9e:fe:47:61:81:a0:c0:07:e8:dc:a9: da:50:61:e8:e0:ed:53:6a:20:8f:b7:fe:41:4d:65: 9d:08:4c:86:3b:ca:2f:f6:8e:1f:09:3e:3d:dc:4e: 7f:2e:c9:67:5b:13:1b:f9:ad:09:92:ee:10:e9:f6: e1:c1:27:fb:a9:76:ea:a5:3d:ef:b2:59:91:cc:52: 56:4e:6d:0a:31:d6:2c:2d:f7:cc:b0:8f:2e:58:59: a1:9f:4c:16:4d:59:8e:b7:36:bd:d5:11:13:ef:6e: 16:eb:7d:e2:03:45:2d:d7:ff:a5:b8:65:b6:32:86: 29:a6:52:58:b7:d1:f6:08:52:a7:03:b3:22:2d:c0: 7c:ab:93:c0:c6:eb:9e:19:a8:bf:7d:9c:49:4e:47: 71:61:54:a1:0e:c8:c8:82:6a:da:c1:81:1f:64:eb: d3:eb:db:b2:c8:26:92:30:da:80:90:a3:a7:f2:d5: d2:b3:44:af:7a:01:26:ce:7c:95:0c:2e:91:1a:65: 99:64:9a:b9:88:d0:67:c1:ba:08:88:bb:28:e8:3f: fc:3e:0d:65:85:2b:96:10:bb:77:f2:b1:d3:e1:92: ac:b1:64:87:a6:1e:c4:43:aa:cf:e0:e5:b6:3c:5c: 11:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:EE:A1:F6:66:1E:99:DD:52:C7:C1:7F:8B:C5:36:E2:73:61:7A:E9 X509v3 Authority Key Identifier: keyid:68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:6a:8b:7d:24:98:63:a7:17:cf:c4:69:6d:3f:1a:5f:20:a2: 60:bb:ea:b5:3d:18:73:04:77:e7:ab:37:d4:19:cd:da:a2:fc: 8e:95:61:12:78:8d:75:b9:7a:b0:3f:d8:34:b9:f2:94:c7:83: 63:ca:f4:17:ba:f2:c4:80:3b:57:1f:7e:8b:fb:db:af:1b:f3: 3c:7c:b3:42:53:39:fe:13:16:37:15:01:40:99:44:80:85:0b: 76:06:b6:55:ed:d8:4a:12:3d:4a:9a:b9:0c:64:a0:b3:56:75: d1:8c:9e:7e:2c:27:4a:1d:59:11:f3:6e:aa:a5:9e:1e:79:47: 72:1f:28:97:60:8b:0b:66:5f:1b:3c:d9:03:00:49:4b:09:7c: 6f:7b:37:8d:94:c0:8b:a4:f6:4d:c0:21:2b:76:e4:85:97:6f: c7:4b:e1:98:c8:00:b8:18:82:d1:04:37:20:8f:51:8c:f2:e4: d3:c3:b1:b1:43:3b:54:a8:31:91:5e:a7:aa:10:65:c9:45:33: a4:93:3d:d6:44:32:83:b0:a7:b1:38:2f:a3:ac:c9:30:6e:07: 90:c2:29:f0:c6:ff:89:b3:1f:6f:4b:5e:a9:46:e9:48:f4:47: 25:70:e8:8b:21:a7:e2:02:e6:08:76:ca:67:ce:16:d1:8e:14: 38:bd:b8:3d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeBmd5Yf8VY1lTU6D+QJWdGnkViowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1 QUFFQUFGODAeFw0yNTA1MDgxNzQ1NTdaFw0yNTA1MTExOTMwNTdaMDMxMTAvBgNV BAMTKDM4RUVBMUY2NjYxRTk5REQ1MkM3QzE3RjhCQzUzNkUyNzM2MTdBRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZffLb80VfE2CubIY2DNwuorGe /kdhgaDAB+jcqdpQYejg7VNqII+3/kFNZZ0ITIY7yi/2jh8JPj3cTn8uyWdbExv5 rQmS7hDp9uHBJ/upduqlPe+yWZHMUlZObQox1iwt98ywjy5YWaGfTBZNWY63Nr3V ERPvbhbrfeIDRS3X/6W4ZbYyhimmUli30fYIUqcDsyItwHyrk8DG654ZqL99nElO R3FhVKEOyMiCatrBgR9k69Pr27LIJpIw2oCQo6fy1dKzRK96ASbOfJUMLpEaZZlk mrmI0GfBugiIuyjoP/w+DWWFK5YQu3fysdPhkqyxZIemHsRDqs/g5bY8XBHlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOO6h9mYemd1Sx8F/i8U24nNheukwHwYDVR0j BBgwFoAUaNV4L7rbkUz9dK4o2ll4SlquqvgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZjQwOGU0NC0zZTljLTQ1ZTUtYmNhNC01ZGZiZDRiMjcxMzAvMC82OEQ1NzgyRkJB REI5MTRDRkQ3NEFFMjhEQTU5Nzg0QTVBQUVBQUY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1QUFF QUFGOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2Y0MDhlNDQtM2U5Yy00NWU1LWJj YTQtNWRmYmQ0YjI3MTMwLzAvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4 NEE1QUFFQUFGOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACFqi30kmGOnF8/EaW0/Gl8gomC76rU9GHME d+erN9QZzdqi/I6VYRJ4jXW5erA/2DS58pTHg2PK9Be68sSAO1cffov7268b8zx8 s0JTOf4TFjcVAUCZRICFC3YGtlXt2EoSPUqauQxkoLNWddGMnn4sJ0odWRHzbqql nh55R3IfKJdgiwtmXxs82QMASUsJfG97N42UwIuk9k3AISt25IWXb8dL4ZjIALgY gtEENyCPUYzy5NPDsbFDO1SoMZFep6oQZclFM6STPdZEMoOwp7E4L6OsyTBuB5DC KfDG/4mzH29LXqlG6Uj0RyVw6Ishp+IC5gh2ymfOFtGOFDi9uD0= -----END CERTIFICATE-----Generated at Fri May 9 08:58:40 2025 by rpki-client