$ rpki-client -vvf repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft File: 843FDF32A52D11795BBFB0918ABF926E0A210870.mft (raw, json) Hash identifier: ikFeFY3AdOj1JehcP4zzFY+rmQVWVK1HXg1u0K+dkQI= Subject key identifier: AD:9C:FA:C7:E5:F7:90:6E:2C:A7:82:9E:89:10:29:C8:F1:A1:94:47 Authority key identifier: 84:3F:DF:32:A5:2D:11:79:5B:BF:B0:91:8A:BF:92:6E:0A:21:08:70 Certificate issuer: /CN=843FDF32A52D11795BBFB0918ABF926E0A210870 Certificate serial: 08CD15D4C4630600E6C34A7C3A483495B7FFEE4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft Manifest number: C8 Signing time: Wed 07 May 2025 07:22:10 +0000 Manifest this update: Wed 07 May 2025 07:17:10 +0000 Manifest next update: Sat 10 May 2025 12:07:10 +0000 Files and hashes: 1: 3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa (hash: bZtCXaxnCo0kXFhv+UgtkdHVo3axHOoHwsSEN85b1Nc=) 2: 843FDF32A52D11795BBFB0918ABF926E0A210870.crl (hash: R64TMCUMBlAbM6PT7O99pgMTcMVyCKwHEZAJE2gGbu8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.crl rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 12:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:cd:15:d4:c4:63:06:00:e6:c3:4a:7c:3a:48:34:95:b7:ff:ee:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=843FDF32A52D11795BBFB0918ABF926E0A210870 Validity Not Before: May 7 07:17:10 2025 GMT Not After : May 10 12:07:10 2025 GMT Subject: CN=AD9CFAC7E5F7906E2CA7829E891029C8F1A19447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ed:48:bc:0d:71:dc:2e:19:bb:6c:1e:d1:fa: 1b:a7:f2:70:ba:5a:46:ea:04:13:94:39:21:49:3b: e0:ce:34:55:e2:66:28:1b:fc:cc:d7:56:66:32:c9: 0d:f5:19:cf:5e:ac:4a:3e:0b:a1:77:0b:a9:9d:7a: 22:79:6c:32:03:3a:38:d3:ad:5a:23:e9:87:79:1b: ee:a9:71:a7:bd:c6:dd:b4:41:6b:65:74:21:0a:8d: 7d:ab:13:8b:d5:6a:40:fa:35:fc:41:e6:ba:78:2a: b2:29:2a:bf:c2:71:ae:17:fb:e7:63:52:fe:1f:70: 62:50:7e:bc:4c:6e:11:15:d1:83:04:8a:06:80:48: 4d:f1:9d:2e:de:4c:c4:66:dc:73:c1:3f:23:a4:29: 77:29:ca:df:35:96:1d:56:3c:9d:6e:63:c0:41:24: 39:90:61:54:f2:a9:30:13:0e:31:0e:08:14:da:0c: ec:8a:01:11:69:cb:ac:2a:f8:a6:f9:65:c5:ce:bc: e8:aa:28:4d:fa:e9:f7:05:e0:18:b2:9e:73:00:e1: 4e:12:c7:66:c6:7c:13:21:19:a6:85:19:29:fa:45: a6:1c:72:9d:88:f3:2a:60:e7:44:3c:7c:ac:ac:46: 10:a4:bf:3f:58:dd:d5:74:a7:25:37:00:e9:77:38: a1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:9C:FA:C7:E5:F7:90:6E:2C:A7:82:9E:89:10:29:C8:F1:A1:94:47 X509v3 Authority Key Identifier: keyid:84:3F:DF:32:A5:2D:11:79:5B:BF:B0:91:8A:BF:92:6E:0A:21:08:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:0d:d1:32:4b:72:16:6f:55:a4:82:12:03:2d:27:ba:d3:48: cd:01:62:9a:e9:ef:c9:c4:25:b4:ca:39:d1:a6:c7:d4:f6:cc: 5d:65:1a:56:2e:b9:91:3d:9d:aa:14:1e:13:97:a0:1c:8e:ee: 10:9a:d8:7c:b3:96:70:34:20:7d:54:8c:a9:5a:03:08:80:f7: c7:6c:48:23:16:be:e9:e6:2c:ce:b8:05:20:fe:2d:e2:45:b6: 67:64:1d:23:e2:19:a1:63:25:1b:38:a5:97:b4:67:72:81:ed: bd:e9:86:77:45:e7:b2:3f:66:95:36:af:ad:97:a3:44:48:21: e6:a5:0c:4c:4b:9a:07:85:6e:a1:69:30:6b:a1:ad:b1:dd:13: 19:c9:68:a7:39:ee:a9:b2:ec:7a:fe:d4:ec:7d:de:eb:62:63: 62:c0:06:d6:11:58:3e:39:7d:c4:a4:fc:61:dd:1b:e7:36:09: f7:40:b7:a1:99:8c:fa:82:9c:57:ad:d5:a6:e8:4f:9f:36:30: d9:86:1f:de:70:52:4b:a3:0f:38:c9:a1:8c:80:eb:8f:2f:93: 6e:bf:6d:d0:c3:03:f1:32:eb:7e:58:85:a0:c5:7f:4f:4f:b4: e4:88:53:86:fc:58:0c:69:58:ce:37:7b:da:3f:b5:1d:e4:62: 42:45:e8:8b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCM0V1MRjBgDmw0p8Okg0lbf/7k4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQzRkRGMzJBNTJEMTE3OTVCQkZCMDkxOEFCRjkyNkUw QTIxMDg3MDAeFw0yNTA1MDcwNzE3MTBaFw0yNTA1MTAxMjA3MTBaMDMxMTAvBgNV BAMTKEFEOUNGQUM3RTVGNzkwNkUyQ0E3ODI5RTg5MTAyOUM4RjFBMTk0NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI7Ui8DXHcLhm7bB7R+hun8nC6 WkbqBBOUOSFJO+DONFXiZigb/MzXVmYyyQ31Gc9erEo+C6F3C6mdeiJ5bDIDOjjT rVoj6Yd5G+6pcae9xt20QWtldCEKjX2rE4vVakD6NfxB5rp4KrIpKr/Cca4X++dj Uv4fcGJQfrxMbhEV0YMEigaASE3xnS7eTMRm3HPBPyOkKXcpyt81lh1WPJ1uY8BB JDmQYVTyqTATDjEOCBTaDOyKARFpy6wq+Kb5ZcXOvOiqKE366fcF4BiynnMA4U4S x2bGfBMhGaaFGSn6RaYccp2I8ypg50Q8fKysRhCkvz9Y3dV0pyU3AOl3OKEtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUrZz6x+X3kG4sp4KeiRApyPGhlEcwHwYDVR0j BBgwFoAUhD/fMqUtEXlbv7CRir+SbgohCHAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 N2JlOGI3Yy0yMzJmLTQ3ZTgtOWNkZC04ODE3ZDM5YjcwZWEvMC84NDNGREYzMkE1 MkQxMTc5NUJCRkIwOTE4QUJGOTI2RTBBMjEwODcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQzRkRGMzJBNTJEMTE3OTVCQkZCMDkxOEFCRjkyNkUwQTIx MDg3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTdiZThiN2MtMjMyZi00N2U4LTlj ZGQtODgxN2QzOWI3MGVhLzAvODQzRkRGMzJBNTJEMTE3OTVCQkZCMDkxOEFCRjky NkUwQTIxMDg3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGoN0TJLchZvVaSCEgMtJ7rTSM0BYprp78nE JbTKOdGmx9T2zF1lGlYuuZE9naoUHhOXoByO7hCa2HyzlnA0IH1UjKlaAwiA98ds SCMWvunmLM64BSD+LeJFtmdkHSPiGaFjJRs4pZe0Z3KB7b3phndF57I/ZpU2r62X o0RIIealDExLmgeFbqFpMGuhrbHdExnJaKc57qmy7Hr+1Ox93utiY2LABtYRWD45 fcSk/GHdG+c2CfdAt6GZjPqCnFet1aboT582MNmGH95wUkujDzjJoYyA648vk26/ bdDDA/Ey635YhaDFf09PtOSIU4b8WAxpWM43e9o/tR3kYkJF6Is= -----END CERTIFICATE-----Generated at Thu May 8 14:28:30 2025 by rpki-client