$ rpki-client -vvf repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft File: A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft (raw, json) Hash identifier: 0Jqhwb1JQZoyeww7zFnB0kMG5Fac58gMfdvnlKm2Bgk= Subject key identifier: BD:80:18:24:F1:34:61:46:68:15:A4:7B:6F:53:2F:DA:E8:42:AE:3F Authority key identifier: A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 Certificate issuer: /CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Certificate serial: 23A073C925C48D89640D8D342D6C8139F4BE3C39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft Manifest number: 21 Signing time: Thu 08 May 2025 02:31:17 +0000 Manifest this update: Thu 08 May 2025 02:26:17 +0000 Manifest next update: Sun 11 May 2025 05:51:17 +0000 Files and hashes: 1: 3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa (hash: fAL9MfqpRcilmiK6cDbN2CreeawZppTYa6tvP1zgN7Y=) 2: A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl (hash: ZKIA4d4gyihAlA2ZhHaEGE+GJkfLQyL7Y+QsBuXlC/k=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 05:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:a0:73:c9:25:c4:8d:89:64:0d:8d:34:2d:6c:81:39:f4:be:3c:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Validity Not Before: May 8 02:26:17 2025 GMT Not After : May 11 05:51:17 2025 GMT Subject: CN=BD801824F13461466815A47B6F532FDAE842AE3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e2:cc:a8:49:2d:9f:09:0a:65:13:56:90:98: bb:4c:bf:df:88:7c:fa:1a:82:8f:67:30:99:28:ee: 8f:b9:1c:8e:ee:49:85:f2:d1:86:1f:83:e0:40:a4: f2:4c:bb:2c:eb:8f:32:50:3d:b3:16:71:a8:e1:a0: d2:17:0c:ac:69:0d:69:e6:af:e4:56:a5:a1:86:cb: b0:d7:a1:6b:fa:15:b1:16:81:99:f6:a7:8c:90:7b: b6:08:b4:85:f9:50:35:28:08:47:9d:34:80:60:96: f6:c6:bf:08:98:c2:d1:73:d8:dd:a0:74:3c:1e:c0: 99:21:61:24:b8:d0:b6:db:ae:46:1e:a2:d3:48:40: e0:d6:c9:49:e7:e4:5f:6e:4b:f9:58:d0:53:38:be: e6:6e:53:af:29:21:be:39:25:e1:07:47:45:dd:a9: 87:79:d7:5c:16:df:85:6f:fd:75:be:43:72:79:d3: 53:d2:2d:73:85:04:4e:de:11:e6:cd:16:1c:1f:a5: 47:4a:14:e7:24:9d:c8:51:26:6a:af:07:45:c2:8e: 4d:7a:3e:89:74:b0:e7:23:cd:78:bf:61:9a:c5:86: a4:1a:b1:f7:65:83:f2:ac:a4:3c:ec:62:9e:f6:52: c1:9a:be:c6:b7:7c:62:0f:53:38:21:7a:ea:ff:4e: 23:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:80:18:24:F1:34:61:46:68:15:A4:7B:6F:53:2F:DA:E8:42:AE:3F X509v3 Authority Key Identifier: keyid:A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:cc:f4:85:3e:68:4e:f5:d9:e6:dd:08:4c:f2:e2:68:50:fb: ed:2d:46:7d:c0:40:bf:f2:a9:ef:53:5d:1c:fe:70:fb:e0:db: c9:07:98:c1:fb:fe:07:68:d1:d1:0a:ed:ba:f2:23:cb:1f:a4: bd:d9:0b:bb:35:26:92:cc:65:68:5f:85:ca:71:98:ce:25:d8: 4c:04:79:b8:78:00:a7:94:7e:8b:57:90:2a:4e:82:90:fe:a2: 63:19:e8:2c:ef:c7:c6:04:46:1e:a3:d2:cb:93:8c:ea:54:c6: 07:36:8e:4f:d5:86:48:b7:76:15:79:ba:c9:20:88:1b:07:6b: df:20:8c:54:e4:db:3a:61:44:6b:27:c8:a9:0b:06:85:4c:1e: 38:62:f2:11:e9:a6:fd:5a:2e:b9:40:a2:6b:c7:33:72:d2:32: 9a:df:b7:09:10:18:a0:6d:96:77:e3:59:8a:d3:a6:17:0e:f1: 44:25:9f:ef:47:cd:d9:0f:11:7e:46:22:7d:40:e2:17:42:8e: 44:87:75:8a:2f:c8:6b:94:8b:bf:4e:e6:24:32:67:f2:4a:11: 2f:3c:3d:fa:ad:76:3a:da:8e:47:71:aa:67:d5:8f:46:6b:53: be:55:30:b4:1e:49:5b:60:e1:59:e7:9d:4a:64:4c:6f:c5:9f: 5e:e7:89:c6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUI6BzySXEjYlkDY00LWyBOfS+PDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1 NzBFRDNBNDAeFw0yNTA1MDgwMjI2MTdaFw0yNTA1MTEwNTUxMTdaMDMxMTAvBgNV BAMTKEJEODAxODI0RjEzNDYxNDY2ODE1QTQ3QjZGNTMyRkRBRTg0MkFFM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG4syoSS2fCQplE1aQmLtMv9+I fPoago9nMJko7o+5HI7uSYXy0YYfg+BApPJMuyzrjzJQPbMWcajhoNIXDKxpDWnm r+RWpaGGy7DXoWv6FbEWgZn2p4yQe7YItIX5UDUoCEedNIBglvbGvwiYwtFz2N2g dDwewJkhYSS40LbbrkYeotNIQODWyUnn5F9uS/lY0FM4vuZuU68pIb45JeEHR0Xd qYd511wW34Vv/XW+Q3J501PSLXOFBE7eEebNFhwfpUdKFOcknchRJmqvB0XCjk16 Pol0sOcjzXi/YZrFhqQasfdlg/KspDzsYp72UsGavsa3fGIPUzgheur/TiN5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvYAYJPE0YUZoFaR7b1Mv2uhCrj8wHwYDVR0j BBgwFoAUohunDfjuRw/npgOFtmU4QlcO06QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTQwNTU0NS1jMzVkLTRkZTEtOTYxOC00NGI1ZjQxN2EzMDMvMS9BMjFCQTcwREY4 RUU0NzBGRTdBNjAzODVCNjY1Mzg0MjU3MEVEM0E0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1NzBF RDNBNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDE0MDU1NDUtYzM1ZC00ZGUxLTk2 MTgtNDRiNWY0MTdhMzAzLzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4 NDI1NzBFRDNBNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE7M9IU+aE712ebdCEzy4mhQ++0tRn3AQL/y qe9TXRz+cPvg28kHmMH7/gdo0dEK7bryI8sfpL3ZC7s1JpLMZWhfhcpxmM4l2EwE ebh4AKeUfotXkCpOgpD+omMZ6Czvx8YERh6j0suTjOpUxgc2jk/Vhki3dhV5uskg iBsHa98gjFTk2zphRGsnyKkLBoVMHjhi8hHppv1aLrlAomvHM3LSMprftwkQGKBt lnfjWYrTphcO8UQln+9HzdkPEX5GIn1A4hdCjkSHdYovyGuUi79O5iQyZ/JKES88 PfqtdjrajkdxqmfVj0ZrU75VMLQeSVtg4VnnnUpkTG/Fn17nicY= -----END CERTIFICATE-----Generated at Fri May 9 12:38:35 2025 by rpki-client