$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft File: D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft (raw, json) Hash identifier: 6gQkI+YLChVy27mC88Rk/gSbFJznzef0OiMV12u2sGY= Subject key identifier: 18:75:D9:AA:23:16:5F:0E:B7:EB:D9:40:5A:A5:81:50:71:E9:31:9C Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 5F895426EB1A642F69337D0D67E6F27D46B4F3B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft Manifest number: 0161 Signing time: Fri 09 May 2025 13:21:45 +0000 Manifest this update: Fri 09 May 2025 13:16:45 +0000 Manifest next update: Tue 13 May 2025 01:00:45 +0000 Files and hashes: 1: 3130332e3231332e3131382e302f32342d3234203d3e203338373530.roa (hash: zfUtoWma6yrS91X836rvH56Roq4o4T2ksBJ5tvM84KA=) 2: 3230322e3137392e3138382e302f32342d3234203d3e203338373530.roa (hash: YKogFc3LCv2smSbI9VS3VlSDt3/kbrsDgP8adJABQHE=) 3: 3230322e3137392e3138372e302f32342d3234203d3e203338373530.roa (hash: EBlmqDEWkMyCK1/XHbvpi2pPtqys0z6jD8DKxQ3Fr5M=) 4: 3230322e3137392e3138362e302f32342d3234203d3e203338373530.roa (hash: yZ3S3VlEg8XhUnYFrYIEtsQAe3osggFJf6UwQXimraQ=) 5: 3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa (hash: /N5+2aMU3EMAmEX99W6RjuRb23GuWa2brckaj7T7NN4=) 6: 3230322e3137392e3139312e302f32342d3234203d3e203338373530.roa (hash: iA2jtRPunwvVs+oxAYcMwVPx60+n92IM12/OQGz8E7Y=) 7: 3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa (hash: LULC79bR5urCWK9LJ8T/IwclWUcY8RdpHGD/jOzeh8c=) 8: 3230322e3137392e3138342e302f32342d3234203d3e203338373530.roa (hash: Yij8hR3THKb1LJQK8YbFbQB/18X0FAtAoVyRKdcSfao=) 9: 3130332e3231332e3131372e302f32342d3234203d3e203338373530.roa (hash: AVCQCYheS5BSoSfK63mymGbndnc3O67DIxifLxMIMRQ=) 10: 3130332e3231332e3131362e302f32342d3234203d3e203338373530.roa (hash: kGo5Z0dQmddNogvMWcoI94YtEIKcIPX6FTz3PKH2TGQ=) 11: 3230322e3137392e3139302e302f32342d3234203d3e203338373530.roa (hash: nxP8W10E3LZDtZxP90veGMWm2rYEk3wENcKTTfAcq3U=) 12: D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl (hash: 2PhTyzswAD4EsspWMMxTDrE4uOo3dun73xIzRqUxwSg=) 13: 3130332e3231332e3131392e302f32342d3234203d3e203338373530.roa (hash: f/arRfXAUGPd0PxBrTY92XVsLoDe3ia1QDQqr6ZPyiI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 01:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:89:54:26:eb:1a:64:2f:69:33:7d:0d:67:e6:f2:7d:46:b4:f3:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: May 9 13:16:45 2025 GMT Not After : May 13 01:00:45 2025 GMT Subject: CN=1875D9AA23165F0EB7EBD9405AA5815071E9319C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f5:c2:1d:a0:ec:f2:03:9a:fd:f1:d9:48:a2: 44:11:13:06:35:55:29:f8:50:9a:84:2b:87:2f:73: 99:31:d7:fb:37:47:98:11:2a:0e:3c:a2:8e:ec:97: 65:27:5a:89:83:67:86:06:0f:20:94:72:c6:56:79: ed:bd:43:be:e1:60:83:07:55:f0:02:d5:4a:ee:f1: 66:d8:78:3a:fc:86:32:52:52:97:d9:c8:30:1d:a3: 83:a8:ee:ad:40:c6:a5:dd:24:6c:66:d6:d2:39:6f: ff:56:14:28:5c:69:37:e3:74:ca:5d:1a:99:c4:8f: ac:68:0a:e3:5d:18:55:d1:c4:da:b7:8c:36:c8:66: a4:5b:48:ea:4d:9c:d2:06:2c:9a:56:3c:5e:68:79: 47:2a:82:a6:a7:9f:51:24:5d:dd:4a:69:6a:53:9c: e9:46:ae:20:93:c7:be:73:b8:91:67:55:fe:31:e0: fb:e3:9f:f3:2f:fa:c6:d4:f4:11:71:96:5f:bd:10: de:65:fe:8a:5b:28:71:74:13:48:c2:fd:7f:fc:3a: 8f:34:4f:d6:3b:f1:9f:56:87:d9:65:72:60:d3:80: f0:c1:a9:9e:06:26:55:c3:f6:78:bb:93:ba:8d:9e: d3:1a:ad:6d:b4:b1:8c:28:5d:21:76:e4:e8:72:ee: 19:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:75:D9:AA:23:16:5F:0E:B7:EB:D9:40:5A:A5:81:50:71:E9:31:9C X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:d9:30:88:52:65:b7:fe:e7:73:26:40:22:6e:14:b6:59:02: 95:97:15:a8:65:51:56:73:dc:da:e2:a0:77:f3:fd:1e:b3:de: 2f:e7:31:d4:04:96:51:63:79:d0:58:f2:4a:7f:ae:d3:4e:9d: d4:de:a3:e1:e3:85:6f:24:55:4b:e0:2f:a5:4f:54:f0:bd:c5: 0f:10:b8:5c:ed:1a:e0:a6:9f:78:5b:1b:6c:ef:94:0a:a1:4a: a1:8d:a9:71:a7:fc:be:44:d3:6c:f1:7c:0c:87:4e:3d:21:bc: 26:af:09:cd:bf:0d:90:00:4b:1b:e7:e8:e7:12:15:dc:bd:f3: 73:c2:53:c4:00:46:36:f7:c4:e1:39:f3:9f:1d:de:99:69:8a: b7:b2:18:cf:c7:eb:6b:d3:85:46:95:98:b5:63:ef:7f:90:b5: 8c:ba:93:a2:13:d3:6c:93:23:a9:32:b1:48:a9:1b:09:92:db: 93:ef:9e:98:c8:61:93:67:f2:9a:ea:79:58:04:4c:08:d6:d9: 46:e5:44:ff:a9:a4:ea:6d:0f:69:f1:1a:6d:96:a6:56:51:eb: d6:6c:5a:65:d0:56:9e:02:57:d1:56:33:82:f4:8b:5c:e5:e0: 62:4a:dc:40:83:d2:01:17:a3:dc:09:91:01:e9:81:39:12:65: 9c:74:bb:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUX4lUJusaZC9pM30NZ+byfUa087MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNTA1MDkxMzE2NDVaFw0yNTA1MTMwMTAwNDVaMDMxMTAvBgNV BAMTKDE4NzVEOUFBMjMxNjVGMEVCN0VCRDk0MDVBQTU4MTUwNzFFOTMxOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU9cIdoOzyA5r98dlIokQREwY1 VSn4UJqEK4cvc5kx1/s3R5gRKg48oo7sl2UnWomDZ4YGDyCUcsZWee29Q77hYIMH VfAC1Uru8WbYeDr8hjJSUpfZyDAdo4Oo7q1AxqXdJGxm1tI5b/9WFChcaTfjdMpd GpnEj6xoCuNdGFXRxNq3jDbIZqRbSOpNnNIGLJpWPF5oeUcqgqann1EkXd1KaWpT nOlGriCTx75zuJFnVf4x4Pvjn/Mv+sbU9BFxll+9EN5l/opbKHF0E0jC/X/8Oo80 T9Y78Z9Wh9llcmDTgPDBqZ4GJlXD9ni7k7qNntMarW20sYwoXSF25Ohy7hllAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGHXZqiMWXw6369lAWqWBUHHpMZwwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzBmNWNmZGItNzk4Ny00MzUxLWJj MmUtNjZjMjRmNDlmNDQwLzAvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5 RUU5REUzMjAxQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIrZMIhSZbf+53MmQCJuFLZZApWXFahlUVZz 3NrioHfz/R6z3i/nMdQEllFjedBY8kp/rtNOndTeo+HjhW8kVUvgL6VPVPC9xQ8Q uFztGuCmn3hbG2zvlAqhSqGNqXGn/L5E02zxfAyHTj0hvCavCc2/DZAASxvn6OcS Fdy983PCU8QARjb3xOE5858d3plpireyGM/H62vThUaVmLVj73+QtYy6k6IT02yT I6kysUipGwmS25PvnpjIYZNn8prqeVgETAjW2UblRP+ppOptD2nxGm2WplZR69Zs WmXQVp4CV9FWM4L0i1zl4GJK3ECD0gEXo9wJkQHpgTkSZZx0u+w= -----END CERTIFICATE-----Generated at Mon May 12 02:17:10 2025 by rpki-client