$ rpki-client -vvf repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft File: 85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft (raw, json) Hash identifier: U3M6+xgMb0Yiyoq+fGsORSMJPIsPDnh9HrJpLu06kSM= Subject key identifier: 32:95:BA:70:B5:12:29:28:0A:E8:66:21:61:48:C8:3C:80:39:58:A7 Authority key identifier: 85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 Certificate issuer: /CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Certificate serial: 6255EA98DC285B926B829C56DDE6423054A76EDD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft Manifest number: 0267 Signing time: Mon 12 May 2025 09:41:33 +0000 Manifest this update: Mon 12 May 2025 09:36:33 +0000 Manifest next update: Thu 15 May 2025 14:26:33 +0000 Files and hashes: 1: 3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa (hash: K+UHygo4qrap0HRp21an4Bv2wYIc+LITQ2V+cthKQG0=) 2: 85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl (hash: KNQu+1olFlWt0O6fXuwYCs+Ce9z+mE13p29Hl5VE6lE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 10:15:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:55:ea:98:dc:28:5b:92:6b:82:9c:56:dd:e6:42:30:54:a7:6e:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Validity Not Before: May 12 09:36:33 2025 GMT Not After : May 15 14:26:33 2025 GMT Subject: CN=3295BA70B51229280AE866216148C83C803958A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:eb:6c:25:c7:e6:98:94:07:32:e8:26:d6:1c: f2:a7:b0:17:a4:f0:43:61:d0:44:2e:e9:9f:f9:0b: 12:b3:6d:b6:a8:67:3a:3e:81:e6:d9:1c:b2:b8:59: 4c:81:77:99:74:3a:5a:1c:bf:26:48:9c:3e:57:fd: a2:d4:d1:ae:d6:98:ae:8f:53:97:7b:8a:ba:9c:25: 5e:8c:d1:0f:ec:23:96:4a:84:41:12:29:5e:0c:cd: f7:cf:4b:62:58:1c:ba:ad:d6:34:80:87:66:41:da: ed:1a:0c:f0:10:76:a7:72:40:f0:58:a0:e1:fe:e8: 3c:47:30:d6:8d:9e:07:52:1e:e3:ad:f7:c9:9c:aa: 35:e1:0a:61:ea:0c:2a:1c:39:b9:be:a3:0c:51:69: f7:23:f2:74:14:5d:7e:b7:ca:5a:8a:37:9a:f8:22: 70:0c:45:d3:39:e7:d6:83:67:99:08:2d:14:7d:f8: d3:67:23:51:6a:ce:53:e4:47:11:6d:b2:d4:69:61: 98:29:d8:85:c7:f3:c8:05:80:f3:ae:36:b7:ed:bf: 1d:af:e2:9e:66:a6:fd:f6:91:72:bc:69:9e:e5:72: e5:d6:93:b8:e2:d8:7f:a2:da:c5:6a:a3:3d:43:f2: 97:22:14:ad:0a:e6:a2:bd:b1:65:16:be:17:a9:bc: 45:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:95:BA:70:B5:12:29:28:0A:E8:66:21:61:48:C8:3C:80:39:58:A7 X509v3 Authority Key Identifier: keyid:85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:1d:af:01:73:77:28:ce:06:07:11:57:77:6c:48:bd:fa:18: d4:51:0c:a5:47:04:34:ba:7c:77:67:47:f9:a5:31:01:5a:2d: d7:c0:29:79:1e:79:ab:6d:9d:f6:66:ac:7d:04:9c:4c:f5:33: 7a:fa:bb:24:21:4a:ea:a2:c9:d8:7e:57:5c:3a:2a:e2:f6:ad: 55:de:5c:10:5f:dc:d9:78:b1:11:d1:78:49:c3:3e:da:34:ec: 59:61:b3:f7:af:c1:b2:cd:4b:00:41:0d:31:ab:1c:be:ad:cb: 6a:cd:30:65:cf:c8:82:f8:37:e6:ac:13:a4:c6:c2:93:9d:b4: 66:a1:93:60:6a:28:ad:d8:42:12:98:c6:82:60:3c:e7:ee:97: 01:fe:09:7f:bb:25:c8:10:0f:02:9d:ba:25:ed:e1:7a:f5:41: 70:07:04:f1:9c:7a:df:70:e2:23:1f:5e:b3:a8:f2:31:6b:cf: c0:af:f7:88:15:a2:68:a0:1b:e3:1f:cc:2f:12:7e:e3:8f:30: 7c:3b:88:fe:4e:9f:87:09:bb:be:bd:0f:3d:bc:d3:41:4f:a8: bb:e3:8b:8e:01:4c:84:4d:cd:de:a4:d0:f6:b6:ce:13:8d:a0: 56:70:b6:16:4e:f9:ba:b1:12:6b:ef:9e:8f:f7:ea:7a:ea:22: 18:a7:df:29 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYlXqmNwoW5JrgpxW3eZCMFSnbt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMx RDMzN0FDMzAeFw0yNTA1MTIwOTM2MzNaFw0yNTA1MTUxNDI2MzNaMDMxMTAvBgNV BAMTKDMyOTVCQTcwQjUxMjI5MjgwQUU4NjYyMTYxNDhDODNDODAzOTU4QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD62wlx+aYlAcy6CbWHPKnsBek 8ENh0EQu6Z/5CxKzbbaoZzo+gebZHLK4WUyBd5l0OlocvyZInD5X/aLU0a7WmK6P U5d7irqcJV6M0Q/sI5ZKhEESKV4MzffPS2JYHLqt1jSAh2ZB2u0aDPAQdqdyQPBY oOH+6DxHMNaNngdSHuOt98mcqjXhCmHqDCocObm+owxRafcj8nQUXX63ylqKN5r4 InAMRdM559aDZ5kILRR9+NNnI1FqzlPkRxFtstRpYZgp2IXH88gFgPOuNrftvx2v 4p5mpv32kXK8aZ7lcuXWk7ji2H+i2sVqoz1D8pciFK0K5qK9sWUWvhepvEUBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMpW6cLUSKSgK6GYhYUjIPIA5WKcwHwYDVR0j BBgwFoAUhejes4dC45DHv7NLHkq6wx0zesMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZDdmOWVmNC1mOTlmLTQ0ZmYtYjk2OC03MGQ0NTI0ZDcyMDcvMC84NUU4REVCMzg3 NDJFMzkwQzdCRkIzNEIxRTRBQkFDMzFEMzM3QUMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMxRDMz N0FDMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmQ3ZjllZjQtZjk5Zi00NGZmLWI5 NjgtNzBkNDUyNGQ3MjA3LzAvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJB QzMxRDMzN0FDMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMYdrwFzdyjOBgcRV3dsSL36GNRRDKVHBDS6 fHdnR/mlMQFaLdfAKXkeeattnfZmrH0EnEz1M3r6uyQhSuqiydh+V1w6KuL2rVXe XBBf3Nl4sRHReEnDPto07Flhs/evwbLNSwBBDTGrHL6ty2rNMGXPyIL4N+asE6TG wpOdtGahk2BqKK3YQhKYxoJgPOfulwH+CX+7JcgQDwKduiXt4Xr1QXAHBPGcet9w 4iMfXrOo8jFrz8Cv94gVomigG+MfzC8SfuOPMHw7iP5On4cJu769Dz2800FPqLvj i44BTIRNzd6k0Pa2zhONoFZwthZO+bqxEmvvno/36nrqIhin3yk= -----END CERTIFICATE-----Generated at Mon May 12 10:43:22 2025 by rpki-client