$ rpki-client -vvf repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft File: 3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft (raw, json) Hash identifier: kAeP3INBZDdIg8HaRDoCwXIpkyO5zyZ/arqpJBKsT7w= Subject key identifier: 7B:FF:95:B7:3E:EF:2A:E1:84:A0:2D:3B:BB:47:BB:E9:F5:BC:3E:9D Authority key identifier: 3B:A5:C1:01:90:AD:C9:6E:E3:4E:B4:A6:D0:54:45:70:22:CB:DE:E9 Certificate issuer: /CN=3BA5C10190ADC96EE34EB4A6D054457022CBDEE9 Certificate serial: 4EDA7EC2DAF76C097F51EC25AE9A99E4E4D6B259 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft Manifest number: 01D3 Signing time: Mon 05 May 2025 13:41:55 +0000 Manifest this update: Mon 05 May 2025 13:36:55 +0000 Manifest next update: Thu 08 May 2025 15:14:55 +0000 Files and hashes: 1: 3130332e3139302e36312e302f32342d3234203d3e20313439393031.roa (hash: 0FUmX3o0RRvRLbhaXpUU620mkMGet183fROAANIvvIw=) 2: 3130332e3139302e36302e302f32332d3233203d3e20313439393031.roa (hash: ieMGqtS8RhGJzVFgVXdHFZF0bIr1rTb711Dv1YSs4lQ=) 3: 3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl (hash: 5CpP8BjWBFfVIzqMOG903UU5HKbdhpXUZGILlahWiuc=) 4: 3130332e3139302e36302e302f32342d3234203d3e20313439393031.roa (hash: wVvC7RrM2/LqSU+eCUMpRT4VLMiy6hzOCmvyl4cCB/U=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 15:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:da:7e:c2:da:f7:6c:09:7f:51:ec:25:ae:9a:99:e4:e4:d6:b2:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BA5C10190ADC96EE34EB4A6D054457022CBDEE9 Validity Not Before: May 5 13:36:55 2025 GMT Not After : May 8 15:14:55 2025 GMT Subject: CN=7BFF95B73EEF2AE184A02D3BBB47BBE9F5BC3E9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:96:16:98:b2:60:76:80:7d:af:f6:c5:96:15: 32:75:d8:2f:29:7f:c3:19:18:57:a6:c9:a0:a0:94: 99:62:fd:d6:66:bd:fa:2b:7a:9d:e2:d6:36:c4:50: c4:4b:1a:db:ba:ca:b2:83:92:5c:75:b4:64:f9:31: 32:e5:15:a4:46:13:32:7d:cc:c6:de:4c:c9:1c:5b: 52:a0:b0:f1:fb:89:bd:87:3d:b3:30:79:58:3b:38: a4:02:1a:ff:23:f6:19:94:c1:81:c6:e1:0f:84:b6: d5:91:01:8c:46:37:30:7b:a7:1e:42:3a:ea:c7:37: 81:99:7e:56:d9:54:b8:c3:0e:52:a6:e4:72:ae:6e: 69:3f:e1:82:47:1a:48:39:d0:e1:03:bd:61:eb:40: 9c:12:7b:3c:ae:da:ec:97:15:dd:d6:da:70:58:0b: 16:58:48:57:33:fe:57:bb:f9:61:ff:6c:21:fe:82: 09:2b:03:44:ba:f5:bd:f6:a6:d7:32:ad:77:ec:61: 15:4f:1f:8a:57:f2:b8:84:64:6d:f5:c9:15:f0:0d: 58:65:cb:e5:41:a4:37:82:83:d3:a1:12:fc:e6:2a: c8:95:ff:f1:05:11:92:d6:17:8a:ee:f3:54:88:12: 53:3b:d0:fb:a5:9c:ff:d5:6d:90:1b:e9:fc:9b:a8: 84:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:FF:95:B7:3E:EF:2A:E1:84:A0:2D:3B:BB:47:BB:E9:F5:BC:3E:9D X509v3 Authority Key Identifier: keyid:3B:A5:C1:01:90:AD:C9:6E:E3:4E:B4:A6:D0:54:45:70:22:CB:DE:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:73:aa:47:a9:06:c2:ef:0c:f8:9f:d6:a4:55:57:60:99:0f: ba:89:0a:ef:20:f4:31:18:6e:b3:22:54:76:2e:28:da:d2:a5: b4:8b:00:75:30:b9:50:8d:64:e3:36:07:4a:d6:38:fe:b0:39: 0e:61:b2:6d:4c:e6:27:34:11:4a:3e:a1:8a:cf:53:19:07:be: 5b:91:56:cb:0e:1f:17:52:15:d5:a8:13:88:ca:da:23:08:a8: 98:0d:22:ff:10:c4:6b:3a:26:51:35:52:11:59:d0:ff:f9:11: d4:f4:24:3e:1d:2d:8a:2b:a1:c8:ab:3d:74:4c:49:23:1c:04: 9c:0b:4b:03:c4:b9:6b:07:d0:6a:4c:38:59:23:10:e6:a1:52: cb:4d:e1:d4:85:80:34:6a:57:38:a8:b3:b9:ae:2c:57:0b:5a: a6:50:32:35:f1:9a:f4:5b:b9:38:50:86:33:b3:0e:f1:23:75: 28:4c:d4:d4:d8:3f:98:91:4a:d8:8e:a3:09:2f:2f:59:fd:42: d8:14:66:0b:b4:1b:1e:17:37:7e:6e:ed:62:84:d8:7e:70:03: 6d:43:3f:4b:7d:15:40:60:51:ef:a5:15:c9:c1:94:8d:5d:3b: 2a:35:22:ac:3f:2e:d4:32:c6:e2:7a:8f:09:f3:86:01:28:b4: 55:24:4e:b0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTtp+wtr3bAl/UewlrpqZ5OTWslkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1NzAy MkNCREVFOTAeFw0yNTA1MDUxMzM2NTVaFw0yNTA1MDgxNTE0NTVaMDMxMTAvBgNV BAMTKDdCRkY5NUI3M0VFRjJBRTE4NEEwMkQzQkJCNDdCQkU5RjVCQzNFOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2lhaYsmB2gH2v9sWWFTJ12C8p f8MZGFemyaCglJli/dZmvforep3i1jbEUMRLGtu6yrKDklx1tGT5MTLlFaRGEzJ9 zMbeTMkcW1KgsPH7ib2HPbMweVg7OKQCGv8j9hmUwYHG4Q+EttWRAYxGNzB7px5C OurHN4GZflbZVLjDDlKm5HKubmk/4YJHGkg50OEDvWHrQJwSezyu2uyXFd3W2nBY CxZYSFcz/le7+WH/bCH+ggkrA0S69b32ptcyrXfsYRVPH4pX8riEZG31yRXwDVhl y+VBpDeCg9OhEvzmKsiV//EFEZLWF4ru81SIElM70PulnP/VbZAb6fybqIQNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUe/+Vtz7vKuGEoC07u0e76fW8Pp0wHwYDVR0j BBgwFoAUO6XBAZCtyW7jTrSm0FRFcCLL3ukwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZTMxNDg1OC1iMzNhLTRiNjUtOWE1NS1kY2U0MWUyMjM4NzMvMC8zQkE1QzEwMTkw QURDOTZFRTM0RUI0QTZEMDU0NDU3MDIyQ0JERUU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1NzAyMkNC REVFOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWUzMTQ4NTgtYjMzYS00YjY1LTlh NTUtZGNlNDFlMjIzODczLzAvM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1 NzAyMkNCREVFOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE5zqkepBsLvDPif1qRVV2CZD7qJCu8g9DEY brMiVHYuKNrSpbSLAHUwuVCNZOM2B0rWOP6wOQ5hsm1M5ic0EUo+oYrPUxkHvluR VssOHxdSFdWoE4jK2iMIqJgNIv8QxGs6JlE1UhFZ0P/5EdT0JD4dLYorocirPXRM SSMcBJwLSwPEuWsH0GpMOFkjEOahUstN4dSFgDRqVzios7muLFcLWqZQMjXxmvRb uThQhjOzDvEjdShM1NTYP5iRStiOowkvL1n9QtgUZgu0Gx4XN35u7WKE2H5wA21D P0t9FUBgUe+lFcnBlI1dOyo1Iqw/LtQyxuJ6jwnzhgEotFUkTrA= -----END CERTIFICATE-----Generated at Wed May 7 19:28:51 2025 by rpki-client