$ rpki-client -vvf repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft File: D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft (raw, json) Hash identifier: nrvMEQK3r474zvy6SRVsdzioCtqYIzoUGxA7UnX2jcE= Subject key identifier: 51:9D:8E:AF:F6:71:5F:DD:5D:F6:6C:00:F1:B3:4A:05:C0:EE:65:F3 Authority key identifier: D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 Certificate issuer: /CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Certificate serial: 6298E8A5D8C5D6A1924A5A15CFE78560EB1FD426 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft Manifest number: 45 Signing time: Mon 05 May 2025 07:40:48 +0000 Manifest this update: Mon 05 May 2025 07:35:48 +0000 Manifest next update: Thu 08 May 2025 16:51:48 +0000 Files and hashes: 1: 3230322e3133332e342e302f32342d3234203d3e203234323030.roa (hash: aPtODejZ83CWdVDiKww6DVNDrHJed0ktroNcqSgEID0=) 2: 3230322e3133332e312e302f32342d3234203d3e203234323030.roa (hash: +WQDDpOr7BIkoO1ou9EO6AdPk7I9sWGQQ0uBCTy/cyM=) 3: 3230322e3133332e352e302f32342d3234203d3e203234323030.roa (hash: fpRL8Fma9ykhIZFDzSC08kbZM+itPsUgTlUHNfip6cw=) 4: 3230322e3133332e332e302f32342d3234203d3e203234323030.roa (hash: KBjjsWsKQFuN1REWppuBIRLZLM4xHEbHMPv7NBToWH4=) 5: D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl (hash: lH4hh3XPIbsgrq49UI0peYoc7emhyOqGMukxE0mJUoY=) 6: 3230322e3133332e362e302f32342d3234203d3e203234323030.roa (hash: PwrwjwU7TfjmAzlVIhNNq7JmiMiE2zPrnJS6Vjw4fpA=) 7: 3230322e3133332e322e302f32342d3234203d3e203234323030.roa (hash: bz45Mn7ZgKZreN1WmgS7I4+teMbA4Do/dtC0u8jELGY=) 8: 3230322e3133332e302e302f32312d3231203d3e203234323030.roa (hash: TfiqH+4JRlzCqMd+ohke3uaa5qrL5wiizfc5eyZU4Bw=) 9: 3230322e3133332e302e302f32342d3234203d3e203234323030.roa (hash: Pppa12U1FBCWUbrjFLtimpCCb2f/w2y+Q5IjM+b5DpI=) 10: 3230322e3133332e372e302f32342d3234203d3e203234323030.roa (hash: sHrERPT1Gki4rCwtxWJOl3kaPuH5N8410kKwTEyBzNs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 16:51:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:98:e8:a5:d8:c5:d6:a1:92:4a:5a:15:cf:e7:85:60:eb:1f:d4:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Validity Not Before: May 5 07:35:48 2025 GMT Not After : May 8 16:51:48 2025 GMT Subject: CN=519D8EAFF6715FDD5DF66C00F1B34A05C0EE65F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c5:ff:b9:be:65:32:c4:5b:7d:f8:20:2c:4c: 29:60:e3:f9:d0:9e:34:97:11:69:e6:83:6e:3b:0d: 2e:94:cd:5d:31:36:12:13:4e:e5:8b:41:f3:68:39: 98:73:7b:da:39:59:46:fe:b8:39:1a:73:fc:24:08: ba:6a:c5:f6:c5:a0:40:e2:86:15:bd:05:ef:a1:d5: c0:76:d7:ef:3f:65:1e:5b:6b:80:2a:dd:8b:12:1f: 13:a2:b5:71:63:5a:12:db:75:2d:aa:c3:77:41:7b: 2d:0b:6d:18:4b:86:d1:f5:b0:e5:46:ae:24:6b:77: 1a:cd:fb:9e:6b:d9:04:ef:33:26:6c:53:72:b9:a6: 17:15:a4:1f:36:3e:a6:2e:7c:bf:63:b6:cf:05:5e: 9e:84:f5:0c:67:d0:d7:47:66:46:fd:18:e6:db:a0: 3f:11:e4:14:8d:67:b5:25:98:3d:e0:05:d6:3d:ef: b3:59:24:eb:1e:a6:62:84:9e:5a:1a:c4:da:3b:0e: 87:d1:33:95:ed:29:f2:8e:ca:ee:00:89:bb:fc:a1: f2:8b:64:e7:60:7b:9b:6c:a5:a1:15:4b:a1:6f:3a: 1c:ec:00:83:a1:f8:46:0f:4c:40:ea:85:10:f8:57: cf:24:9c:b7:6b:e2:4e:2c:7e:59:64:ed:c0:33:8f: 4a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:9D:8E:AF:F6:71:5F:DD:5D:F6:6C:00:F1:B3:4A:05:C0:EE:65:F3 X509v3 Authority Key Identifier: keyid:D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ca:d9:0a:a5:c5:56:77:56:ba:4e:cb:77:f8:ed:29:38:d3:80: b9:8c:d2:0d:46:72:47:a6:2d:11:b7:c9:ff:68:45:95:30:46: 86:5e:61:8f:e3:0c:81:e9:dd:f4:20:09:2e:28:69:e2:21:c9: 7f:d5:23:0c:56:85:44:91:db:25:b9:c4:fe:f9:f2:ce:26:f6: 72:ba:b6:70:5d:e3:0e:d5:2c:86:75:0b:32:3d:98:29:c7:ce: 05:07:fe:a2:ae:ed:cb:2b:e9:ef:71:5e:3f:34:ff:7a:b6:e9: 3e:9b:cc:6a:a4:a1:82:5e:66:4b:42:89:fd:d1:76:82:25:6d: c5:35:b4:ae:71:5f:4a:fa:ba:d2:62:d2:a3:bc:72:24:4d:d7: fb:66:4d:8f:72:79:d7:16:50:af:81:80:94:54:27:35:d8:8f: 75:b2:e7:23:ed:11:36:23:ad:ae:b9:53:f6:70:82:f9:da:26: f1:4e:b5:48:da:2a:20:b3:f3:96:4b:5f:8e:5b:c3:d1:a9:a1: e9:2c:14:1a:f4:e5:5e:6d:a1:7c:e2:8a:54:8c:52:08:50:3e: c8:86:92:6f:ee:87:13:62:dd:20:a2:6b:d7:d0:97:35:0f:35: 38:00:82:9a:ec:1c:54:ef:3b:23:74:bd:0a:1c:d5:5a:f1:34: b7:ac:c9:18 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYpjopdjF1qGSSloVz+eFYOsf1CYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4 QkE3QkU0MDAeFw0yNTA1MDUwNzM1NDhaFw0yNTA1MDgxNjUxNDhaMDMxMTAvBgNV BAMTKDUxOUQ4RUFGRjY3MTVGREQ1REY2NkMwMEYxQjM0QTA1QzBFRTY1RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtxf+5vmUyxFt9+CAsTClg4/nQ njSXEWnmg247DS6UzV0xNhITTuWLQfNoOZhze9o5WUb+uDkac/wkCLpqxfbFoEDi hhW9Be+h1cB21+8/ZR5ba4Aq3YsSHxOitXFjWhLbdS2qw3dBey0LbRhLhtH1sOVG riRrdxrN+55r2QTvMyZsU3K5phcVpB82PqYufL9jts8FXp6E9Qxn0NdHZkb9GObb oD8R5BSNZ7UlmD3gBdY977NZJOsepmKEnloaxNo7DofRM5XtKfKOyu4Aibv8ofKL ZOdge5tspaEVS6FvOhzsAIOh+EYPTEDqhRD4V88knLdr4k4sfllk7cAzj0pTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUZ2Or/ZxX91d9mwA8bNKBcDuZfMwHwYDVR0j BBgwFoAU0MbXXDw0fVsnx4kR9ixfq4unvkAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzY2OWVhNC1lODJmLTQ2YzMtOGRkMy0yZTk4ODE1OWIyMDIvMC9EMEM2RDc1QzND MzQ3RDVCMjdDNzg5MTFGNjJDNUZBQjhCQTdCRTQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4QkE3 QkU0MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjM2NjllYTQtZTgyZi00NmMzLThk ZDMtMmU5ODgxNTliMjAyLzAvRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVG QUI4QkE3QkU0MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMrZCqXFVndWuk7Ld/jtKTjTgLmM0g1Gckem LRG3yf9oRZUwRoZeYY/jDIHp3fQgCS4oaeIhyX/VIwxWhUSR2yW5xP758s4m9nK6 tnBd4w7VLIZ1CzI9mCnHzgUH/qKu7csr6e9xXj80/3q26T6bzGqkoYJeZktCif3R doIlbcU1tK5xX0r6utJi0qO8ciRN1/tmTY9yedcWUK+BgJRUJzXYj3Wy5yPtETYj ra65U/ZwgvnaJvFOtUjaKiCz85ZLX45bw9GpoeksFBr05V5toXziilSMUghQPsiG km/uhxNi3SCia9fQlzUPNTgAgprsHFTvOyN0vQoc1VrxNLesyRg= -----END CERTIFICATE-----Generated at Wed May 7 17:55:25 2025 by rpki-client