$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft File: 024ABFF2959A6144CC4889C70F77F968FA410EF1.mft (raw, json) Hash identifier: GW3GZkHXJFriglkZqktt4ID/Hm4k9kybUv92+rx+9Es= Subject key identifier: 06:12:83:E9:E8:11:03:E7:34:3B:B9:DE:AF:F7:BD:BE:2D:99:E1:22 Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 5C312A0B5C99356DF8A145ED592596B028B2C0F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft Manifest number: 028D Signing time: Tue 06 May 2025 05:01:11 +0000 Manifest this update: Tue 06 May 2025 04:56:11 +0000 Manifest next update: Fri 09 May 2025 07:27:11 +0000 Files and hashes: 1: 3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa (hash: G2juGB6eftwsC+fsnzguy++P5zlF0bkzL2c8r+kWKkI=) 2: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (hash: ZcflU18QHaOG0H5AVVuZs+fe6ZIRvg4OT/QSDZzqWpk=) 3: 024ABFF2959A6144CC4889C70F77F968FA410EF1.crl (hash: D4RDNZpxKzJr5hNmxJHlewKBlH6VicXnPZcPxiPwnz8=) 4: 3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa (hash: aay9Jvclfs8gBm7idaaHHT8mQr3TT32/vrVHbT4o17k=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 07:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:31:2a:0b:5c:99:35:6d:f8:a1:45:ed:59:25:96:b0:28:b2:c0:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: May 6 04:56:11 2025 GMT Not After : May 9 07:27:11 2025 GMT Subject: CN=061283E9E81103E7343BB9DEAFF7BDBE2D99E122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:2f:d4:2e:da:4c:e0:ae:96:1e:77:27:5c:18: 93:bf:bb:24:a9:49:02:31:85:9c:4e:e4:f2:76:fe: e3:77:e1:ed:66:af:48:bb:b7:b5:49:a9:ea:84:cf: c9:74:6e:e0:a6:84:63:d5:d7:fd:4f:55:d3:e8:bf: d8:a6:20:c3:f4:04:77:a3:4f:b1:d0:3d:3a:f0:60: ec:63:a1:4a:a1:35:25:03:a5:5b:cc:50:3c:88:a4: 06:84:e2:4b:33:15:d0:b6:6b:10:4e:4d:19:b6:18: 17:33:2a:86:21:39:c3:50:c9:34:1b:c0:d4:7f:7c: c2:56:bd:83:9b:b8:01:c7:e6:dd:c3:7b:25:91:c1: 39:dc:79:b7:d6:ef:6d:fa:c4:d5:d8:d0:33:a7:e6: 50:ae:28:42:50:de:4c:57:c2:82:95:fc:b0:eb:9c: 21:e5:ef:82:f6:0a:35:59:d2:ad:ac:3b:e4:20:08: a4:5d:dc:33:44:02:29:cf:6f:ec:ce:0a:57:63:63: fc:b7:74:09:fb:88:15:46:c3:50:c2:fc:6f:d5:1c: 7e:02:c3:d7:dc:b6:c7:aa:25:bf:04:bc:b3:72:25: c3:9d:a3:2f:f6:89:ee:58:02:57:e5:c9:03:16:5c: bb:84:98:cd:05:d0:20:59:c5:ab:25:e0:bb:15:03: c3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:12:83:E9:E8:11:03:E7:34:3B:B9:DE:AF:F7:BD:BE:2D:99:E1:22 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:7c:d9:36:98:d4:e2:5f:4d:91:a8:96:8f:eb:54:bb:4e:75: 0b:8d:7c:41:50:a1:b2:2a:8c:c1:63:4b:5b:81:22:af:39:d4: 22:59:5c:20:5e:dc:ad:ee:8f:4f:51:c1:60:a7:fe:2b:dd:7f: 2e:1d:70:67:79:5c:eb:e4:bf:32:b1:89:70:19:68:04:23:64: 8f:38:e6:2f:3e:70:03:95:12:c0:95:37:d6:1d:2f:50:70:c4: 30:d0:c3:a7:86:25:05:f6:d2:af:fb:96:8c:ee:5b:e9:e1:1c: f3:ca:ed:5b:3d:1c:28:19:30:c6:15:df:6d:91:eb:8a:37:0c: 2f:16:83:2f:ff:18:84:88:db:0e:71:7f:5e:06:55:94:9a:16: 9c:5a:6f:26:cc:6a:8d:90:37:aa:33:e3:52:8a:02:69:d8:5a: ce:e1:f4:26:f1:de:fb:42:27:a4:ed:56:2a:8d:2b:f7:f2:4e: ef:5f:0e:dd:05:80:f1:c2:6b:d0:27:7e:f4:e7:a9:d6:be:86: 3b:1a:83:08:cd:e7:f1:01:3d:60:93:b4:7b:2e:41:ad:41:3e: db:d3:44:2e:0d:70:0b:9e:1a:1b:80:73:75:f4:ab:fe:6f:0d: c8:11:07:09:b8:e3:ae:24:71:94:10:11:dd:a8:97:0d:57:6f: 5f:13:05:50 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXDEqC1yZNW34oUXtWSWWsCiywPUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNTA1MDYwNDU2MTFaFw0yNTA1MDkwNzI3MTFaMDMxMTAvBgNV BAMTKDA2MTI4M0U5RTgxMTAzRTczNDNCQjlERUFGRjdCREJFMkQ5OUUxMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaL9Qu2kzgrpYedydcGJO/uySp SQIxhZxO5PJ2/uN34e1mr0i7t7VJqeqEz8l0buCmhGPV1/1PVdPov9imIMP0BHej T7HQPTrwYOxjoUqhNSUDpVvMUDyIpAaE4kszFdC2axBOTRm2GBczKoYhOcNQyTQb wNR/fMJWvYObuAHH5t3DeyWRwTncebfW7236xNXY0DOn5lCuKEJQ3kxXwoKV/LDr nCHl74L2CjVZ0q2sO+QgCKRd3DNEAinPb+zOCldjY/y3dAn7iBVGw1DC/G/VHH4C w9fctseqJb8EvLNyJcOdoy/2ie5YAlflyQMWXLuEmM0F0CBZxasl4LsVA8MvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUBhKD6egRA+c0O7ner/e9vi2Z4SIwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDMxYTk0MjYtM2MzNS00NzBlLWJm MzQtMzBlN2U0MTYwMmNiLzAvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5 NjhGQTQxMEVGMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIR82TaY1OJfTZGolo/rVLtOdQuNfEFQobIq jMFjS1uBIq851CJZXCBe3K3uj09RwWCn/ivdfy4dcGd5XOvkvzKxiXAZaAQjZI84 5i8+cAOVEsCVN9YdL1BwxDDQw6eGJQX20q/7lozuW+nhHPPK7Vs9HCgZMMYV322R 64o3DC8Wgy//GISI2w5xf14GVZSaFpxabybMao2QN6oz41KKAmnYWs7h9Cbx3vtC J6TtViqNK/fyTu9fDt0FgPHCa9AnfvTnqda+hjsagwjN5/EBPWCTtHsuQa1BPtvT RC4NcAueGhuAc3X0q/5vDcgRBwm4464kcZQQEd2olw1Xb18TBVA= -----END CERTIFICATE-----Generated at Thu May 8 06:23:05 2025 by rpki-client