$ rpki-client -vvf repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft File: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft (raw, json) Hash identifier: xkndmsXd4zwGprqbexOnkUZ3max+Aw1z+dwte7vTLIk= Subject key identifier: E0:D2:62:0F:14:52:E0:FF:83:53:7B:30:20:D2:31:CB:ED:AA:76:8D Authority key identifier: CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B Certificate issuer: /CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Certificate serial: 1C7EE0C1AB5C8D455A4327792CAAF9DEA72A1D05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft Manifest number: 01CC Signing time: Thu 08 May 2025 17:11:18 +0000 Manifest this update: Thu 08 May 2025 17:06:18 +0000 Manifest next update: Sun 11 May 2025 20:13:18 +0000 Files and hashes: 1: 3130332e3131312e3131382e302f32342d3234203d3e20313439393531.roa (hash: inrFUM/5CwXojBI2sTkJRY2EzoHBVXYYugcwwrqYnSY=) 2: 3130332e3131312e3131392e302f32342d3234203d3e20313439393531.roa (hash: mSliD1vp9W3HskEo7RkLZAe+zzV/2ow/Kxu30d1qJXM=) 3: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl (hash: tzcVaDZhFWZzpRSXVOyLX0W6/7p+sn0I6qcJ/LhpGpo=) 4: 323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa (hash: h7S6wYW5PbjWPPZImqnHAQEExu6SHfaYmZDzvVKKqG0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 20:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:7e:e0:c1:ab:5c:8d:45:5a:43:27:79:2c:aa:f9:de:a7:2a:1d:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Validity Not Before: May 8 17:06:18 2025 GMT Not After : May 11 20:13:18 2025 GMT Subject: CN=E0D2620F1452E0FF83537B3020D231CBEDAA768D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:42:8d:32:ec:f0:82:e5:c2:a6:c5:68:e4:d0: 5f:1c:8a:f0:1d:8c:91:dd:37:c6:46:1f:4a:c4:1b: 7b:49:ac:58:df:b4:0b:a1:4b:ea:aa:40:f6:3b:93: 51:c7:36:12:95:20:15:4d:44:87:27:77:a5:ae:14: da:18:11:86:69:cd:3e:78:e5:1a:63:62:e1:be:9e: 16:74:68:c4:8a:f5:4f:82:fc:25:5c:c5:af:a4:b6: c9:6a:73:7d:58:39:c4:3b:4d:1d:92:cf:4e:73:f2: 46:2d:80:f1:6f:78:5d:9d:fa:40:cb:a3:8a:ec:62: 37:13:3c:c5:27:ef:29:c4:49:88:68:f7:0d:35:8d: 8d:da:71:48:41:14:72:ed:c4:4f:b2:e4:76:b1:42: fd:29:a7:8a:05:67:38:67:21:e1:25:12:cf:9c:17: 60:4e:f3:04:64:db:41:b8:40:88:d5:fe:52:01:00: 67:8e:af:7f:4d:b9:68:f7:45:0f:76:1d:8c:a6:4f: c0:72:cf:e3:01:5e:af:c8:72:3a:c9:81:c2:12:ed: 44:c6:70:c9:0c:6e:7c:62:86:f4:f5:3a:18:d5:02: 74:27:09:d5:cb:1b:28:00:b8:d2:4b:29:40:98:72: 42:66:16:cd:d4:41:b3:51:f1:c0:09:36:63:9b:ab: 8d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:D2:62:0F:14:52:E0:FF:83:53:7B:30:20:D2:31:CB:ED:AA:76:8D X509v3 Authority Key Identifier: keyid:CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:09:3e:f6:2c:10:33:d7:c3:6b:66:3f:af:f9:1f:39:f8:31: 93:9c:4e:10:00:0e:81:6b:cd:c1:e8:6e:b1:8c:30:36:b4:43: 0b:38:fc:0b:68:82:78:94:53:8c:77:c6:70:ef:be:0c:15:1a: 97:0b:e8:1c:e1:c6:8b:5e:3a:9c:b5:fe:dd:3f:2d:d5:57:5e: 29:93:39:41:82:7a:5d:4e:2a:78:54:ee:7f:d2:49:4e:a9:94: 44:3a:63:10:d6:3f:88:0b:9a:16:78:cc:4a:33:83:35:1a:f0: 02:1a:57:4d:51:7d:4d:61:63:dc:89:fa:d6:f1:63:80:db:2d: 35:a9:02:c8:94:86:8a:4e:0f:c2:5f:f0:4a:ac:8c:4c:74:6a: 22:ef:60:70:46:c0:12:cb:6d:75:e5:4d:dd:3b:73:3d:b6:d7: 03:4a:36:c2:ff:dc:20:46:9b:2f:8b:1a:08:5a:4d:9b:12:b5: 79:dc:2a:ff:bd:c5:f6:4e:57:59:db:13:f7:e9:f8:db:8e:e6: 44:e3:7a:96:b8:74:2c:92:0c:e7:2c:e5:30:d5:9f:3f:20:8c: 56:ec:93:c9:4b:80:c0:d2:f4:6a:e5:07:c2:55:d8:2c:55:3f: 95:aa:40:fc:2f:4c:df:fe:50:1f:2b:e7:8f:a1:a8:34:1e:a5: e9:42:19:bf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHH7gwatcjUVaQyd5LKr53qcqHQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1 N0IxRTM1QjAeFw0yNTA1MDgxNzA2MThaFw0yNTA1MTEyMDEzMThaMDMxMTAvBgNV BAMTKEUwRDI2MjBGMTQ1MkUwRkY4MzUzN0IzMDIwRDIzMUNCRURBQTc2OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Qo0y7PCC5cKmxWjk0F8civAd jJHdN8ZGH0rEG3tJrFjftAuhS+qqQPY7k1HHNhKVIBVNRIcnd6WuFNoYEYZpzT54 5RpjYuG+nhZ0aMSK9U+C/CVcxa+ktslqc31YOcQ7TR2Sz05z8kYtgPFveF2d+kDL o4rsYjcTPMUn7ynESYho9w01jY3acUhBFHLtxE+y5HaxQv0pp4oFZzhnIeElEs+c F2BO8wRk20G4QIjV/lIBAGeOr39NuWj3RQ92HYymT8Byz+MBXq/IcjrJgcIS7UTG cMkMbnxihvT1OhjVAnQnCdXLGygAuNJLKUCYckJmFs3UQbNR8cAJNmObq40nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4NJiDxRS4P+DU3swINIxy+2qdo0wHwYDVR0j BBgwFoAUyhT5bDMynYykIxXCtQCrLVex41swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWYxNmM0NS05NmZiLTRjOTItODA0ZS02NGIwYmYyODAzMDIvMC9DQTE0Rjk2QzMz MzI5RDhDQTQyMzE1QzJCNTAwQUIyRDU3QjFFMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1N0Ix RTM1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTFmMTZjNDUtOTZmYi00YzkyLTgw NGUtNjRiMGJmMjgwMzAyLzAvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFC MkQ1N0IxRTM1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA4JPvYsEDPXw2tmP6/5Hzn4MZOcThAADoFr zcHobrGMMDa0Qws4/AtogniUU4x3xnDvvgwVGpcL6BzhxoteOpy1/t0/LdVXXimT OUGCel1OKnhU7n/SSU6plEQ6YxDWP4gLmhZ4zEozgzUa8AIaV01RfU1hY9yJ+tbx Y4DbLTWpAsiUhopOD8Jf8EqsjEx0aiLvYHBGwBLLbXXlTd07cz221wNKNsL/3CBG my+LGghaTZsStXncKv+9xfZOV1nbE/fp+NuO5kTjepa4dCySDOcs5TDVnz8gjFbs k8lLgMDS9GrlB8JV2CxVP5WqQPwvTN/+UB8r54+hqDQepelCGb8= -----END CERTIFICATE-----Generated at Fri May 9 19:23:18 2025 by rpki-client