$ rpki-client -vvf repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft File: 523EE8D6F461B8FD4106F482C46C1029B1013145.mft (raw, json) Hash identifier: awqR1mFc2+MqR70+xIk0uLpiKxZDcUpwfLbr2zJXiLg= Subject key identifier: B3:1C:81:52:03:AD:7C:CC:0D:2C:DC:68:9E:D1:76:19:87:93:5E:77 Authority key identifier: 52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 Certificate issuer: /CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Certificate serial: 1B7A6B206212E5F65809F1F762D8C2DFA5F8785F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft Manifest number: 86 Signing time: Tue 06 May 2025 19:50:35 +0000 Manifest this update: Tue 06 May 2025 19:45:35 +0000 Manifest next update: Sat 10 May 2025 03:02:35 +0000 Files and hashes: 1: 3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa (hash: NGJ06HPZPnasggQ7SzYoKC32u86oginffTyP/A+SYes=) 2: 3130332e31392e38312e302f32342d3234203d3e20313332363339.roa (hash: qpoFl5JoTzbSM2hPO0hoJAUaowyf53VlGJf2OUjDyLM=) 3: 3130332e3132392e3233302e302f32342d3234203d3e20313332363339.roa (hash: h0Ikm5xLILqHiZgjn6vJMZ/MDEgRmvD05eIzOebsCJ4=) 4: 3130332e31392e38302e302f32342d3234203d3e20313332363339.roa (hash: DE4nHNca8ayWoDl52eSSRth/7jHheEal78ri52HzLS8=) 5: 523EE8D6F461B8FD4106F482C46C1029B1013145.crl (hash: nrhXV/AItKbsUWAFkTiTlykSo0JgFn76967/i+Rthy0=) 6: 3130332e3132392e3233312e302f32342d3234203d3e20313332363339.roa (hash: AGtr53jIPwrIQP7ijk4+cdUWZ6tDTIQGMkK4BbIW1E8=) 7: 3130332e31392e38302e302f32332d3234203d3e20313332363339.roa (hash: rEiPJnrdrYYlFEBaRzbUD9BJkoKBn51ZZoCL2QKX2fk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 03:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:7a:6b:20:62:12:e5:f6:58:09:f1:f7:62:d8:c2:df:a5:f8:78:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Validity Not Before: May 6 19:45:35 2025 GMT Not After : May 10 03:02:35 2025 GMT Subject: CN=B31C815203AD7CCC0D2CDC689ED1761987935E77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:64:99:4c:72:b1:ed:0b:7a:44:f9:3e:51:c7: 22:81:af:ec:bf:fb:e8:ab:d4:31:f2:4b:0f:36:fc: e7:a6:68:3e:a3:e6:fa:3c:d1:ea:6b:41:0b:d2:69: 25:e9:c5:db:5c:81:30:0f:aa:94:b6:f8:26:8f:91: 46:a8:c7:9e:3d:60:e1:05:0d:43:a8:3f:74:82:12: a4:62:61:db:b3:61:d7:60:f9:f4:ea:e4:2f:12:36: 47:3f:4d:d1:34:80:14:31:bb:4e:dc:96:b7:6b:b6: 15:ed:98:28:23:b3:e0:94:3f:2e:9a:b7:e6:93:d0: fd:c8:00:7f:aa:7c:2f:74:df:35:fe:fc:52:eb:ca: a3:0a:be:25:79:88:19:5e:64:23:5c:39:9e:3c:1f: 6c:af:b0:c1:64:34:6d:e3:29:bd:eb:3d:dc:37:54: 76:29:ca:9e:bd:6a:c1:f5:b3:7d:c5:b6:ed:dc:03: c1:6b:7a:58:bb:e7:c5:04:3a:2b:f5:a3:59:ea:b5: 84:12:85:52:1d:c7:ea:f3:77:ac:5a:c8:50:48:66: d3:b8:bf:a5:fd:c9:4c:13:ff:f1:32:a2:32:45:51: 98:b7:7b:f2:86:48:05:c8:61:a2:84:3a:0d:60:4e: e3:16:ca:5e:d1:8c:7d:86:f7:07:18:7f:8f:04:e8: f8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:1C:81:52:03:AD:7C:CC:0D:2C:DC:68:9E:D1:76:19:87:93:5E:77 X509v3 Authority Key Identifier: keyid:52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:a3:cb:2c:58:3b:77:8b:54:8d:3d:81:5a:41:23:c9:61:a8: ee:52:07:f6:64:a2:d1:32:3f:9c:e7:e1:34:7c:3c:e6:ff:4f: 3d:f7:04:7f:37:11:71:27:39:c6:8f:eb:4b:77:f0:7f:49:6e: 4b:dc:c3:bb:24:af:e4:b3:6f:cd:6c:8a:d7:5c:25:fc:98:b3: 63:da:d5:5d:a2:2f:c6:dd:99:4c:6c:e2:a2:9e:4c:27:1a:36: 84:68:89:af:71:88:75:31:44:83:3d:f2:c6:ee:41:dd:d8:32: 28:25:8a:76:0f:ba:d1:07:82:7e:6a:bd:1a:b5:e2:99:38:a2: a1:8a:5e:21:c3:c2:d7:1a:cc:fa:1f:3a:5b:0e:0a:56:98:de: eb:59:59:7c:25:7f:e4:05:e7:88:cf:52:60:d2:16:ae:7a:c6: 4c:cc:f3:46:68:e2:be:4d:1d:d5:44:4e:af:fb:9c:78:cf:7a: 3b:fd:3a:c5:16:ae:ea:ad:d3:1b:6a:28:6d:f7:c3:55:5f:5b: 1c:81:37:7c:52:fc:e1:21:b7:e6:56:af:aa:db:ee:bc:92:66: 34:22:52:ea:f2:39:c8:c8:5b:07:06:64:3d:35:6c:2e:83:54: 35:6a:2b:fa:ef:60:00:9f:b0:fc:24:cd:8f:9e:8b:16:b2:85: d5:b7:71:17 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG3prIGIS5fZYCfH3YtjC36X4eF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlC MTAxMzE0NTAeFw0yNTA1MDYxOTQ1MzVaFw0yNTA1MTAwMzAyMzVaMDMxMTAvBgNV BAMTKEIzMUM4MTUyMDNBRDdDQ0MwRDJDREM2ODlFRDE3NjE5ODc5MzVFNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiZJlMcrHtC3pE+T5RxyKBr+y/ ++ir1DHySw82/OemaD6j5vo80eprQQvSaSXpxdtcgTAPqpS2+CaPkUaox549YOEF DUOoP3SCEqRiYduzYddg+fTq5C8SNkc/TdE0gBQxu07clrdrthXtmCgjs+CUPy6a t+aT0P3IAH+qfC903zX+/FLryqMKviV5iBleZCNcOZ48H2yvsMFkNG3jKb3rPdw3 VHYpyp69asH1s33Ftu3cA8Freli758UEOiv1o1nqtYQShVIdx+rzd6xayFBIZtO4 v6X9yUwT//EyojJFUZi3e/KGSAXIYaKEOg1gTuMWyl7RjH2G9wcYf48E6PjzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsxyBUgOtfMwNLNxontF2GYeTXncwHwYDVR0j BBgwFoAUUj7o1vRhuP1BBvSCxGwQKbEBMUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YWE0Mjc0Mi04OWQyLTQ5YmItOGEzZS0yOTRjMzY4OTcxZjUvMC81MjNFRThENkY0 NjFCOEZENDEwNkY0ODJDNDZDMTAyOUIxMDEzMTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlCMTAx MzE0NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmFhNDI3NDItODlkMi00OWJiLThh M2UtMjk0YzM2ODk3MWY1LzAvNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEw MjlCMTAxMzE0NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABOjyyxYO3eLVI09gVpBI8lhqO5SB/ZkotEy P5zn4TR8POb/Tz33BH83EXEnOcaP60t38H9Jbkvcw7skr+Szb81sitdcJfyYs2Pa 1V2iL8bdmUxs4qKeTCcaNoRoia9xiHUxRIM98sbuQd3YMiglinYPutEHgn5qvRq1 4pk4oqGKXiHDwtcazPofOlsOClaY3utZWXwlf+QF54jPUmDSFq56xkzM80Zo4r5N HdVETq/7nHjPejv9OsUWruqt0xtqKG33w1VfWxyBN3xS/OEht+ZWr6rb7rySZjQi UuryOcjIWwcGZD01bC6DVDVqK/rvYACfsPwkzY+eixayhdW3cRc= -----END CERTIFICATE-----Generated at Thu May 8 09:22:37 2025 by rpki-client