$ rpki-client -vvf repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft File: 428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft (raw, json) Hash identifier: TLF0I9mIlQjTs7vaVSSFbqLipL4NtOOOlrhEdsOhCAI= Subject key identifier: 97:03:65:07:71:05:76:17:C9:46:3E:85:7A:04:E9:EA:4A:61:F0:A8 Authority key identifier: 42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA Certificate issuer: /CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Certificate serial: 09268BFA39304E079A68D6398680FFA85C506CD2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft Manifest number: 01A6 Signing time: Mon 12 May 2025 10:21:18 +0000 Manifest this update: Mon 12 May 2025 10:16:18 +0000 Manifest next update: Thu 15 May 2025 20:38:18 +0000 Files and hashes: 1: 428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl (hash: R2JXnQRK7DBrNnfGlsVX7i8aDiVfiqh4h72TVJpMQds=) 2: 3130332e3139312e33392e302f32342d3234203d3e20313439393233.roa (hash: yfirY/IdmmUBXQP+agxLPC5R2mzKmb/7B1nbgYo1Od4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 20:38:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:26:8b:fa:39:30:4e:07:9a:68:d6:39:86:80:ff:a8:5c:50:6c:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Validity Not Before: May 12 10:16:18 2025 GMT Not After : May 15 20:38:18 2025 GMT Subject: CN=9703650771057617C9463E857A04E9EA4A61F0A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:76:cb:ce:c4:5e:4f:a7:7b:18:8c:82:86:c4: 65:78:3f:f3:07:9c:fc:37:2d:ae:9f:37:72:5d:13: 0c:4e:6f:34:c6:a3:27:78:4d:c7:b5:65:80:b5:b8: 22:ce:3d:67:dd:b5:d6:67:60:b1:8a:25:26:f2:5e: 08:2a:89:cd:69:70:9c:92:47:1d:bc:d9:0a:77:40: ed:27:ed:74:bc:57:b1:a8:9f:18:8d:db:39:fd:75: cd:f1:69:cf:03:15:24:c5:c3:ce:c3:b3:7e:80:e8: b4:89:e2:da:07:5e:11:07:c4:a1:5e:d1:a1:ab:b4: 9d:e5:a3:36:67:23:90:70:64:06:dc:aa:f7:6f:d2: e2:7f:cf:e3:69:d5:89:e9:a9:b7:3e:ec:12:d5:f9: 5b:6e:a6:9d:bd:1c:b4:e3:9d:e2:79:27:9e:e3:cc: e5:f9:80:bc:6a:8b:53:37:58:64:62:16:85:fd:4f: d2:ce:03:ea:4b:1b:57:6d:2c:1c:e5:ee:97:56:d0: ba:e1:f6:91:79:a7:f7:5c:e7:3b:b3:17:d9:5e:cb: bf:a1:37:65:06:5f:7d:d5:6e:0c:60:14:52:d6:41: 91:6b:82:ee:77:93:59:66:1d:bc:83:5c:c8:ff:29: ea:34:39:77:af:cd:56:44:f9:89:68:7e:41:b9:d4: 51:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:03:65:07:71:05:76:17:C9:46:3E:85:7A:04:E9:EA:4A:61:F0:A8 X509v3 Authority Key Identifier: keyid:42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:07:5d:31:91:6f:a1:1d:9a:bf:1c:e0:32:67:ac:1a:dc:72: 76:c8:53:c2:47:2b:41:a6:f6:1c:1b:70:f1:bc:f8:8f:76:b6: dd:41:95:c7:a0:6f:19:25:68:0a:9b:53:ca:14:45:66:8d:d6: fc:64:8c:75:b1:4c:57:79:e6:72:58:c5:ac:32:39:b1:0d:a7: bf:88:71:53:fb:f3:e1:71:27:c0:d2:c8:1a:75:3d:de:c6:ee: 53:fa:f3:43:82:94:c1:bf:7e:6e:ca:ae:a2:b7:a2:3b:a8:d7: 00:e4:ad:31:a9:56:e8:c2:7c:20:a2:46:16:b7:78:7c:66:57: 72:4a:d5:39:59:4c:90:b8:dd:0d:46:e0:9f:40:b3:9e:ec:f4: 1d:32:e2:02:25:0b:b2:c2:e6:dd:ac:9e:43:e3:2f:f4:c8:53: 8b:88:36:db:3e:18:f9:e2:97:4c:d2:8b:63:07:64:c1:38:ac: 5c:d4:9f:6c:0a:b8:b2:91:3b:2b:26:0f:29:67:00:f2:95:2d: 9e:54:56:9a:ea:63:46:a0:20:88:dd:76:87:d1:26:24:24:50: 01:4e:3f:79:cc:89:1c:2a:c3:a4:44:cb:90:4d:67:58:d4:17: 4f:ef:ff:24:1d:fa:10:61:9b:7c:f8:49:bd:12:38:52:c9:e7: c9:4c:3a:e2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCSaL+jkwTgeaaNY5hoD/qFxQbNIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3 RkIwQ0VDQTAeFw0yNTA1MTIxMDE2MThaFw0yNTA1MTUyMDM4MThaMDMxMTAvBgNV BAMTKDk3MDM2NTA3NzEwNTc2MTdDOTQ2M0U4NTdBMDRFOUVBNEE2MUYwQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrdsvOxF5Pp3sYjIKGxGV4P/MH nPw3La6fN3JdEwxObzTGoyd4Tce1ZYC1uCLOPWfdtdZnYLGKJSbyXggqic1pcJyS Rx282Qp3QO0n7XS8V7GonxiN2zn9dc3xac8DFSTFw87Ds36A6LSJ4toHXhEHxKFe 0aGrtJ3lozZnI5BwZAbcqvdv0uJ/z+Np1Ynpqbc+7BLV+Vtupp29HLTjneJ5J57j zOX5gLxqi1M3WGRiFoX9T9LOA+pLG1dtLBzl7pdW0Lrh9pF5p/dc5zuzF9ley7+h N2UGX33VbgxgFFLWQZFrgu53k1lmHbyDXMj/Keo0OXevzVZE+YlofkG51FGFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlwNlB3EFdhfJRj6FegTp6kph8KgwHwYDVR0j BBgwFoAUQoFz31iwwW2PuS+B80LWAX+wzsowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWY4NDI3OC1lMDZkLTQxMTktYmE0NC01YzMyOTY4YThiYmQvMC80MjgxNzNERjU4 QjBDMTZEOEZCOTJGODFGMzQyRDYwMTdGQjBDRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3RkIw Q0VDQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjVmODQyNzgtZTA2ZC00MTE5LWJh NDQtNWMzMjk2OGE4YmJkLzAvNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2 MDE3RkIwQ0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH0HXTGRb6Edmr8c4DJnrBrccnbIU8JHK0Gm 9hwbcPG8+I92tt1BlcegbxklaAqbU8oURWaN1vxkjHWxTFd55nJYxawyObENp7+I cVP78+FxJ8DSyBp1Pd7G7lP680OClMG/fm7KrqK3ojuo1wDkrTGpVujCfCCiRha3 eHxmV3JK1TlZTJC43Q1G4J9As57s9B0y4gIlC7LC5t2snkPjL/TIU4uINts+GPni l0zSi2MHZME4rFzUn2wKuLKROysmDylnAPKVLZ5UVprqY0agIIjddofRJiQkUAFO P3nMiRwqw6REy5BNZ1jUF0/v/yQd+hBhm3z4Sb0SOFLJ58lMOuI= -----END CERTIFICATE-----Generated at Tue May 13 02:13:41 2025 by rpki-client