$ rpki-client -vvf repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft File: 9D21366ED4E3738A5F50E524109806C98D710BD3.mft (raw, json) Hash identifier: uILrak0Hi+0CT4ummm8mp8ofjAHGtTHy5uQfFSOn38s= Subject key identifier: EC:E1:9B:2D:72:FE:EF:59:79:F0:80:8C:CB:63:95:10:F0:3D:ED:61 Authority key identifier: 9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 Certificate issuer: /CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Certificate serial: 7EC297463B97DFCAB0714DDCC89F53A0145C7C3A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft Manifest number: 7B Signing time: Mon 12 May 2025 21:30:00 +0000 Manifest this update: Mon 12 May 2025 21:25:00 +0000 Manifest next update: Thu 15 May 2025 22:24:00 +0000 Files and hashes: 1: 3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa (hash: 1k/F9QvhsWyHzMYSAMED8rAGgh3NCF/Y7RiQpGt2sak=) 2: 3136302e32352e3131392e302f32342d3234203d3e20313533303936.roa (hash: CBQ7BcTAX1WXp7Ylcc4yi/0Cf14WakzZ7YKG6S9yjVU=) 3: 9D21366ED4E3738A5F50E524109806C98D710BD3.crl (hash: xd7iecj+99SW8iwL6hFngWDl5UfFiSIU3B2l2dKMAo8=) 4: 3136302e32352e3131382e302f32342d3234203d3e20313533303936.roa (hash: 1H3IKAx7UXRMU3wtvDvmP+OHRrM19D65H1BvyoXZOOA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 22:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:c2:97:46:3b:97:df:ca:b0:71:4d:dc:c8:9f:53:a0:14:5c:7c:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Validity Not Before: May 12 21:25:00 2025 GMT Not After : May 15 22:24:00 2025 GMT Subject: CN=ECE19B2D72FEEF5979F0808CCB639510F03DED61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:aa:c6:a0:85:e7:35:54:5b:a5:c8:3c:af:83: e5:12:ae:ee:42:d8:42:a9:d1:ec:a5:96:f1:52:f7: 98:b7:82:f3:ef:4b:57:22:74:8b:25:b8:84:ef:fa: 29:ae:a0:c7:9d:73:f2:8c:8a:6f:57:f4:84:b6:c1: bf:2e:ef:ff:33:a4:c3:04:0a:c0:d9:01:11:f5:b5: bc:d7:b9:40:23:d7:1d:a3:19:cc:38:5c:cc:91:a6: 42:84:41:bf:3c:a0:a8:33:60:e3:3b:68:37:06:e3: 80:05:4f:5b:9f:f0:cb:56:39:68:d5:2e:ac:61:e7: 70:b4:5a:0a:3f:3c:59:b6:37:5e:7f:a5:e6:03:16: 31:7b:2d:be:21:29:26:c8:dd:30:c1:85:4d:2a:6d: b9:3f:ba:0c:90:30:d7:28:0e:6d:88:9e:8a:9a:d7: ad:4e:96:62:1f:94:cd:ef:7c:da:42:65:e7:a6:67: ce:af:4f:18:f3:48:1a:c7:0b:5f:df:e0:a2:57:a6: 50:46:7a:78:d4:b2:41:fc:ab:68:07:d5:a3:b0:4f: c2:33:01:dc:f8:47:50:59:e2:26:a1:d6:28:e3:2b: 50:1a:0c:5d:82:7a:d3:55:f8:59:76:7a:13:cf:e7: 2b:8a:53:d7:2e:d3:9b:10:15:89:6f:d7:02:ea:ea: a8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:E1:9B:2D:72:FE:EF:59:79:F0:80:8C:CB:63:95:10:F0:3D:ED:61 X509v3 Authority Key Identifier: keyid:9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:95:a0:f0:0f:cd:69:4a:c0:d7:b1:d3:ba:27:4f:bc:ac:28: bc:dd:99:65:bb:fd:f3:0a:06:4f:4c:83:40:8d:3a:a4:59:93: 10:63:47:d2:e5:40:c3:8e:6c:f6:92:0a:89:25:43:39:b6:9d: 3f:e7:3d:cd:75:c8:6d:b7:61:0f:2b:1e:56:96:88:17:fe:94: df:54:ed:e0:74:ef:aa:fc:c8:af:0c:c0:6f:0a:15:01:2c:ea: e1:1c:fd:ab:89:84:95:f3:a8:4e:4b:3a:e0:43:0d:17:a6:f1: 5a:cc:5c:f8:9d:72:e6:7e:fc:29:8d:14:6a:c3:2e:67:a7:ba: 14:f6:4d:73:fe:33:c4:cf:25:09:1b:f4:60:aa:eb:55:be:d7: 5d:4a:95:f0:f9:03:e2:77:c7:8f:6d:40:af:a9:52:b9:43:58: 8b:ec:1d:38:f6:89:4a:a9:4d:09:82:6f:33:31:bd:36:bc:cc: db:fd:d4:65:54:e3:97:db:ca:41:be:d7:fa:c8:35:c4:f0:ea: b3:1e:d0:ab:71:d3:3b:1e:5a:a1:35:dc:b2:a8:b1:17:c7:9e: a2:84:cb:d2:43:b9:0e:30:27:e9:b8:51:5b:a0:bc:3c:cb:60: 4e:52:32:2a:c4:31:e9:f4:0b:9a:c4:70:46:4b:ec:bf:70:41: 30:c0:66:1a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfsKXRjuX38qwcU3cyJ9ToBRcfDowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4 RDcxMEJEMzAeFw0yNTA1MTIyMTI1MDBaFw0yNTA1MTUyMjI0MDBaMDMxMTAvBgNV BAMTKEVDRTE5QjJENzJGRUVGNTk3OUYwODA4Q0NCNjM5NTEwRjAzREVENjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4qsaghec1VFulyDyvg+USru5C 2EKp0eyllvFS95i3gvPvS1cidIsluITv+imuoMedc/KMim9X9IS2wb8u7/8zpMME CsDZARH1tbzXuUAj1x2jGcw4XMyRpkKEQb88oKgzYOM7aDcG44AFT1uf8MtWOWjV Lqxh53C0Wgo/PFm2N15/peYDFjF7Lb4hKSbI3TDBhU0qbbk/ugyQMNcoDm2Inoqa 161OlmIflM3vfNpCZeemZ86vTxjzSBrHC1/f4KJXplBGenjUskH8q2gH1aOwT8Iz Adz4R1BZ4iah1ijjK1AaDF2CetNV+Fl2ehPP5yuKU9cu05sQFYlv1wLq6qjZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7OGbLXL+71l58ICMy2OVEPA97WEwHwYDVR0j BBgwFoAUnSE2btTjc4pfUOUkEJgGyY1xC9MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MWU0NDY2NS1lODQ2LTQ1NWItYWExYS1kNWFiMDdkZWVkZjMvMC85RDIxMzY2RUQ0 RTM3MzhBNUY1MEU1MjQxMDk4MDZDOThENzEwQkQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4RDcx MEJEMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjFlNDQ2NjUtZTg0Ni00NTViLWFh MWEtZDVhYjA3ZGVlZGYzLzAvOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2 Qzk4RDcxMEJEMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJCVoPAPzWlKwNex07onT7ysKLzdmWW7/fMK Bk9Mg0CNOqRZkxBjR9LlQMOObPaSCoklQzm2nT/nPc11yG23YQ8rHlaWiBf+lN9U 7eB076r8yK8MwG8KFQEs6uEc/auJhJXzqE5LOuBDDRem8VrMXPidcuZ+/CmNFGrD LmenuhT2TXP+M8TPJQkb9GCq61W+111KlfD5A+J3x49tQK+pUrlDWIvsHTj2iUqp TQmCbzMxvTa8zNv91GVU45fbykG+1/rINcTw6rMe0Ktx0zseWqE13LKosRfHnqKE y9JDuQ4wJ+m4UVugvDzLYE5SMirEMen0C5rEcEZL7L9wQTDAZho= -----END CERTIFICATE-----Generated at Tue May 13 19:45:22 2025 by rpki-client