$ rpki-client -vvf repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft (raw, json) Hash identifier: 7tO6l152MS6PhTy3UfyKXWzAq6mwqy5AWAnTdLsjnA4= Subject key identifier: 27:23:1B:D7:78:8C:05:FA:48:8E:AD:0B:80:52:58:F8:37:46:A6:5F Authority key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Certificate issuer: /CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Certificate serial: 25815773479C2F85D6D6849E24F2C14AD81E54F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft Manifest number: 0208 Signing time: Tue 13 May 2025 01:01:09 +0000 Manifest this update: Tue 13 May 2025 00:56:09 +0000 Manifest next update: Fri 16 May 2025 05:54:09 +0000 Files and hashes: 1: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: pGfLfqeQeD8uU2thnQryvAF3YiN767pDKu8zHBjIsCs=) 2: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: qonOSoihdyEOGXKEjx0ElQczxx60RKjDCLheufBA0qE=) 3: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: yCac+KeTfH0lkjTAK49G4zxY27cUgoZJXWm+CK7QM48=) 4: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl (hash: IUJHVgm6BEa0sSVZRzKLcdnK5EU1y2AddYs5VB9SVlo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 02:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:81:57:73:47:9c:2f:85:d6:d6:84:9e:24:f2:c1:4a:d8:1e:54:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Validity Not Before: May 13 00:56:09 2025 GMT Not After : May 16 05:54:09 2025 GMT Subject: CN=27231BD7788C05FA488EAD0B805258F83746A65F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ec:e3:ca:d9:f7:5d:52:1c:e2:36:b1:de:c8: 28:24:ff:9e:fc:8c:87:48:c6:6b:82:b5:89:ce:f2: e4:70:81:6a:9f:c8:8b:ba:cb:11:96:15:a0:24:75: 4c:8a:ec:4e:53:41:b5:ad:b6:37:74:39:00:6f:ff: 49:1e:90:47:4c:75:94:3f:b2:67:61:6d:ad:f3:d3: e9:d5:97:79:fc:ac:1b:6e:84:1f:7a:32:46:1c:d4: 6e:1d:ff:73:60:98:b2:ef:24:e6:c3:24:00:c5:69: 3f:d8:75:80:29:eb:87:42:98:30:ae:51:97:85:5d: 38:b3:64:5b:c4:d5:fd:2b:fd:d3:b9:1b:4b:a9:59: f6:0a:50:27:d4:17:7c:62:7a:03:40:98:50:3f:f8: a4:6b:f9:24:b6:1f:10:c9:89:bd:cd:6f:c9:f0:9c: 04:ed:fc:c9:ee:ab:b6:9c:8a:ca:eb:4c:16:8c:0c: 80:67:ab:0c:c1:ab:f8:de:47:2f:9c:57:9e:2d:51: 86:f8:4c:93:16:cf:c9:2d:65:1a:d7:e0:0f:84:54: 98:37:8c:d6:14:26:2e:f1:a3:05:e4:4c:e9:c8:4e: da:0f:1f:0b:f1:3a:46:f7:26:68:f4:32:2c:fb:22: 68:22:10:ec:11:b4:98:fa:24:c1:f8:f3:df:dd:2a: c0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:23:1B:D7:78:8C:05:FA:48:8E:AD:0B:80:52:58:F8:37:46:A6:5F X509v3 Authority Key Identifier: keyid:AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:ef:30:57:e9:30:ee:79:38:9f:c0:17:8b:4b:3b:8d:79:1b: 5a:43:6d:d1:09:1b:e8:55:80:9e:6a:06:b4:86:5a:5f:a4:2d: 3e:95:ae:e3:bf:a7:37:e2:90:c3:67:b0:00:ea:65:94:c8:9e: 98:9b:dd:dd:11:64:46:d8:ba:11:4c:09:98:9c:8b:c6:5a:59: 94:78:f9:98:27:c9:12:30:81:dd:f5:26:2a:94:97:2c:74:3e: 63:39:dd:65:d4:d1:87:49:c6:2c:64:f9:3b:ec:06:5e:f0:42: 84:d3:c5:b9:39:7c:53:54:9c:98:fb:41:af:78:c7:89:2d:e3: f0:b8:18:ee:f5:07:84:d2:ce:3a:ff:d6:d4:ca:1c:01:98:6f: 2d:c0:9a:7b:1c:9b:28:14:60:df:e4:1f:8b:87:cd:75:0b:76: 67:51:51:81:a9:a6:0d:27:35:f0:25:4c:56:15:3b:05:9b:9b: c9:d2:2c:2c:d2:2e:13:ae:c7:3f:ea:81:a1:63:ff:c4:46:ca: 23:80:3d:6b:c4:8a:e5:a4:df:0e:ff:ef:db:75:ce:08:84:ce: cc:33:eb:8a:9c:51:b7:37:7e:c9:95:2d:be:fa:9a:56:7a:69: 36:03:e6:62:02:93:95:dc:c2:f8:69:6e:51:32:fd:30:6a:b1: 34:80:53:80 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJYFXc0ecL4XW1oSeJPLBStgeVPUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3 NDg2N0Y1MzAeFw0yNTA1MTMwMDU2MDlaFw0yNTA1MTYwNTU0MDlaMDMxMTAvBgNV BAMTKDI3MjMxQkQ3Nzg4QzA1RkE0ODhFQUQwQjgwNTI1OEY4Mzc0NkE2NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm7OPK2fddUhziNrHeyCgk/578 jIdIxmuCtYnO8uRwgWqfyIu6yxGWFaAkdUyK7E5TQbWttjd0OQBv/0kekEdMdZQ/ smdhba3z0+nVl3n8rBtuhB96MkYc1G4d/3NgmLLvJObDJADFaT/YdYAp64dCmDCu UZeFXTizZFvE1f0r/dO5G0upWfYKUCfUF3xiegNAmFA/+KRr+SS2HxDJib3Nb8nw nATt/Mnuq7acisrrTBaMDIBnqwzBq/jeRy+cV54tUYb4TJMWz8ktZRrX4A+EVJg3 jNYUJi7xowXkTOnITtoPHwvxOkb3Jmj0Miz7ImgiEOwRtJj6JMH489/dKsAhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJyMb13iMBfpIjq0LgFJY+DdGpl8wHwYDVR0j BBgwFoAUrSoPazAkv/EUWNcsjlYj+3SGf1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC9BRDJBMEY2QjMw MjRCRkYxMTQ1OEQ3MkM4RTU2MjNGQjc0ODY3RjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3NDg2 N0Y1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZhZjRkZTUtNTAzNy00OTE3LTlh OTMtMDE5MmM2OTU5YmZiLzAvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIz RkI3NDg2N0Y1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALnvMFfpMO55OJ/AF4tLO415G1pDbdEJG+hV gJ5qBrSGWl+kLT6VruO/pzfikMNnsADqZZTInpib3d0RZEbYuhFMCZici8ZaWZR4 +ZgnyRIwgd31JiqUlyx0PmM53WXU0YdJxixk+TvsBl7wQoTTxbk5fFNUnJj7Qa94 x4kt4/C4GO71B4TSzjr/1tTKHAGYby3AmnscmygUYN/kH4uHzXULdmdRUYGppg0n NfAlTFYVOwWbm8nSLCzSLhOuxz/qgaFj/8RGyiOAPWvEiuWk3w7/79t1zgiEzswz 64qcUbc3fsmVLb76mlZ6aTYD5mICk5XcwvhpblEy/TBqsTSAU4A= -----END CERTIFICATE-----Generated at Tue May 13 03:46:46 2025 by rpki-client