$ rpki-client -vvf repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft File: 8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft (raw, json) Hash identifier: RYYiKgZ9JS70+Ib6LGrFFnRNu+ZMUS2FjUfLGjBogD0= Subject key identifier: 92:AD:29:07:B4:DA:2D:53:7A:44:11:61:34:0F:AB:30:49:30:3E:83 Authority key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 Certificate issuer: /CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Certificate serial: 5E6DC2ED3711C0117BEE4D64F41DE27DE902B78C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft Manifest number: 0156 Signing time: Sat 10 May 2025 22:31:26 +0000 Manifest this update: Sat 10 May 2025 22:26:26 +0000 Manifest next update: Tue 13 May 2025 23:55:26 +0000 Files and hashes: 1: 3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa (hash: wzb3XBaqsWwxrRVk4X/B9M9lBaxhMB40Ug9owyKd8Yw=) 2: 3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa (hash: MueUJKcGkwue3xJukPLYM+05PMMpQl2v+Pz0FDXtNcM=) 3: 3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa (hash: WdwAhrLb01WctAevsLo2E5F0+guZcHnuWIL6/QTKVQY=) 4: 8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl (hash: EhlCm/9nbrWJdmHea1z8nV+U05MDTKy0T4Lm3u1JvNg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 23:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:6d:c2:ed:37:11:c0:11:7b:ee:4d:64:f4:1d:e2:7d:e9:02:b7:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Validity Not Before: May 10 22:26:26 2025 GMT Not After : May 13 23:55:26 2025 GMT Subject: CN=92AD2907B4DA2D537A441161340FAB3049303E83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:4d:bc:72:b1:36:dc:1e:51:ea:7c:0c:59:65: e7:c7:eb:f8:4f:09:13:5f:b6:23:5c:5a:25:a3:cc: 85:dc:5b:6b:e3:e5:68:92:04:44:4a:ff:71:af:08: 5c:c9:26:11:f8:1e:7e:90:4f:83:fd:d6:00:6b:a6: 35:f9:09:e5:13:5d:67:a9:0a:3f:53:63:ce:7e:5b: 32:6f:2a:31:ee:8a:5c:d0:13:e9:be:18:7b:e2:72: 1e:35:0b:8a:6f:59:6f:0d:cb:d4:43:9f:de:f2:5b: e6:69:45:32:74:ff:20:0d:52:3a:5f:c1:6c:9c:68: ec:5c:95:ad:9e:03:e4:e5:c5:32:29:88:48:ac:c8: d5:c9:94:ae:b8:a2:16:4c:c3:29:17:d9:c1:af:57: 66:26:35:8d:ce:3e:01:70:17:37:42:c8:e3:ce:f1: 98:6c:dd:22:c0:a3:95:b1:49:fa:d0:df:a6:15:ed: f6:6c:97:e4:a0:b8:67:d6:8d:33:45:05:eb:07:a5: d2:0e:7e:ab:d6:44:91:0a:fa:82:15:59:6e:34:95: 69:51:fe:51:83:90:2d:f2:62:49:13:85:37:11:30: 38:c2:b7:c3:66:a7:d1:71:c5:6b:91:a9:2f:f0:34: 97:92:b2:8c:2e:c5:d6:f3:c7:8c:db:4a:80:2e:14: c1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AD:29:07:B4:DA:2D:53:7A:44:11:61:34:0F:AB:30:49:30:3E:83 X509v3 Authority Key Identifier: keyid:89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:34:9a:f9:c9:d1:97:86:42:01:db:b3:3e:d4:19:3f:e2:ef: 88:3b:da:a7:9c:14:82:ea:11:4c:95:fd:62:c1:d4:7f:c4:f1: 72:c5:be:05:8f:3a:8b:b3:7f:2a:a3:90:04:5f:11:73:5a:79: af:44:1e:7e:15:c4:f3:b8:02:a1:92:fe:bd:a3:a3:bf:c2:94: a9:5c:62:2c:07:45:76:55:4c:aa:f9:dd:c4:81:d7:36:bc:f7: 1e:58:4b:b3:6d:96:c2:c0:f7:61:b4:88:7a:a8:1c:3b:c8:eb: a4:aa:e7:c1:91:7e:0e:6f:65:14:ae:cc:51:68:e7:4c:df:11: a0:b2:a9:c1:f8:1f:8f:b6:89:90:58:39:41:c2:a6:36:63:30: 85:da:01:72:c1:58:85:e2:21:c2:62:94:fa:ad:b9:18:64:87: 1b:71:d1:67:28:33:7a:90:65:10:0d:fd:5f:15:c4:1d:f1:2b: 52:f9:98:f6:db:42:23:1f:05:2d:ea:30:d4:40:98:a5:f3:24: 12:68:31:02:a5:81:32:93:93:3d:ac:ce:8a:a1:a6:93:33:58: 44:12:79:4e:14:29:9d:6f:92:90:0d:12:34:82:45:ad:1c:06: 77:5a:a8:bc:ed:c0:e6:5b:7d:c1:08:3f:6b:7e:5a:6a:d4:43: 04:a8:7a:5a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXm3C7TcRwBF77k1k9B3ifekCt4wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0 RTRBMkMyNDAeFw0yNTA1MTAyMjI2MjZaFw0yNTA1MTMyMzU1MjZaMDMxMTAvBgNV BAMTKDkyQUQyOTA3QjREQTJENTM3QTQ0MTE2MTM0MEZBQjMwNDkzMDNFODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZTbxysTbcHlHqfAxZZefH6/hP CRNftiNcWiWjzIXcW2vj5WiSBERK/3GvCFzJJhH4Hn6QT4P91gBrpjX5CeUTXWep Cj9TY85+WzJvKjHuilzQE+m+GHvich41C4pvWW8Ny9RDn97yW+ZpRTJ0/yANUjpf wWycaOxcla2eA+TlxTIpiEisyNXJlK64ohZMwykX2cGvV2YmNY3OPgFwFzdCyOPO 8Zhs3SLAo5WxSfrQ36YV7fZsl+SguGfWjTNFBesHpdIOfqvWRJEK+oIVWW40lWlR /lGDkC3yYkkThTcRMDjCt8Nmp9FxxWuRqS/wNJeSsowuxdbzx4zbSoAuFMGhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkq0pB7TaLVN6RBFhNA+rMEkwPoMwHwYDVR0j BBgwFoAUiYnQQxRTVW8i2IKiGyu7n05KLCQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTg3MDY0Yi01ZjI3LTQyNzAtOTBlNC05OWY0M2FlODRkYjcvMC84OTg5RDA0MzE0 NTM1NTZGMjJEODgyQTIxQjJCQkI5RjRFNEEyQzI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0RTRB MkMyNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGE4NzA2NGItNWYyNy00MjcwLTkw ZTQtOTlmNDNhZTg0ZGI3LzAvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJC OUY0RTRBMkMyNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJE0mvnJ0ZeGQgHbsz7UGT/i74g72qecFILq EUyV/WLB1H/E8XLFvgWPOouzfyqjkARfEXNaea9EHn4VxPO4AqGS/r2jo7/ClKlc YiwHRXZVTKr53cSB1za89x5YS7NtlsLA92G0iHqoHDvI66Sq58GRfg5vZRSuzFFo 50zfEaCyqcH4H4+2iZBYOUHCpjZjMIXaAXLBWIXiIcJilPqtuRhkhxtx0WcoM3qQ ZRAN/V8VxB3xK1L5mPbbQiMfBS3qMNRAmKXzJBJoMQKlgTKTkz2szoqhppMzWEQS eU4UKZ1vkpANEjSCRa0cBndaqLztwOZbfcEIP2t+WmrUQwSoelo= -----END CERTIFICATE-----Generated at Sun May 11 15:08:47 2025 by rpki-client