$ rpki-client -vvf repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft File: 604C441ACDF554F380D7FED8F68B2EC7FB780413.mft (raw, json) Hash identifier: HiSoNSeiNCepZhq/HhXmDtCeKFdjEUg9apdTxM2CDAg= Subject key identifier: 0E:6F:C9:70:DB:FA:82:DA:27:E3:E7:E9:91:9F:4D:86:DE:E4:FA:D3 Authority key identifier: 60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 Certificate issuer: /CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Certificate serial: 7953F1E7FBBC725FFA53AA0ADFF6A2C1F94267C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject info access: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft Manifest number: 0195 Signing time: Sun 04 May 2025 16:41:00 +0000 Manifest this update: Sun 04 May 2025 16:36:00 +0000 Manifest next update: Thu 08 May 2025 02:26:00 +0000 Files and hashes: 1: 3130332e3139312e3139362e302f32332d3234203d3e20313439393334.roa (hash: 0P8RiV2EV8KtV2wVPDkhbbfmwCyYhPd1bfzDVq451ls=) 2: 3130332e3139312e3139362e302f32342d3234203d3e20313439393334.roa (hash: M890dag6EE1qtsFlPkd3PB/fu3TZaGNSDr48ih7+xpg=) 3: 604C441ACDF554F380D7FED8F68B2EC7FB780413.crl (hash: 29UYaEB/7ZXEUDNupIPiwomrPu7v3nTSO063fPhin+U=) 4: 3130332e3139312e3139372e302f32342d3234203d3e20313439393334.roa (hash: 9VCyBS9IIeec/M2Dmo8IoJQFogFZ4Fro1YlaePTTG58=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 02:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:53:f1:e7:fb:bc:72:5f:fa:53:aa:0a:df:f6:a2:c1:f9:42:67:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Validity Not Before: May 4 16:36:00 2025 GMT Not After : May 8 02:26:00 2025 GMT Subject: CN=0E6FC970DBFA82DA27E3E7E9919F4D86DEE4FAD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:1f:7d:d2:4f:80:1e:64:c1:c7:e1:0e:c5:61: 10:7e:8e:ec:0b:93:b9:92:b1:94:b9:18:3e:2c:ac: 9d:d2:02:84:51:5d:f8:77:70:e6:ea:ee:a3:84:07: dd:86:09:0c:92:5e:bc:4a:f2:0d:e0:a8:ca:48:ca: f6:a2:df:a3:6d:c3:29:0b:ba:1c:70:bf:5b:48:98: dd:04:07:7a:d0:14:89:6d:7c:bc:3a:c0:50:68:ec: 02:ef:ef:c4:ab:9e:74:d5:5a:5b:5a:d2:8c:a2:26: ec:ff:a9:7b:09:06:7b:9c:78:26:21:e8:b9:f2:1b: 03:f5:11:5c:07:77:f4:49:97:b8:55:ee:07:73:28: 9d:c4:15:20:12:6d:2a:74:be:1f:f8:1e:4b:3c:a2: 8a:cb:af:4a:66:a1:97:c7:c7:f3:c8:79:e6:b2:4c: 18:96:52:31:d8:26:5d:4f:49:15:41:3c:a6:36:b7: 4f:5d:a6:c8:17:d0:67:23:1a:cc:a0:e7:c9:a5:a3: 01:60:e6:8e:a8:2a:33:d9:b9:96:85:ea:5d:fe:0f: 42:10:99:4f:51:d3:f9:77:12:ae:be:18:07:c4:d5: d2:96:56:91:2e:82:5d:4e:f9:9d:a4:0b:05:2f:2a: e7:8f:0d:76:bf:f4:e9:41:21:63:b8:0a:40:e4:97: 1b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:6F:C9:70:DB:FA:82:DA:27:E3:E7:E9:91:9F:4D:86:DE:E4:FA:D3 X509v3 Authority Key Identifier: keyid:60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:84:a3:97:99:f0:23:fc:5c:bd:37:2f:72:10:d4:9e:88:8d: 5b:f6:c4:5d:e8:b8:79:6d:16:a9:4c:5e:ad:79:9c:07:29:1b: 0e:47:f0:f3:46:94:76:a4:86:7b:0d:77:5f:79:d4:ce:85:d0: 02:25:2a:f1:d4:56:0e:f6:80:5c:15:e8:23:f0:93:84:67:48: d0:52:e6:90:33:1d:e0:ba:69:4b:1d:9a:ee:81:e8:9c:1d:b8: 6b:20:f3:84:1b:31:ff:93:68:f4:82:73:63:23:df:22:fe:93: c7:d0:2f:d0:d6:85:dc:0d:1d:7b:3f:ca:5a:cf:3f:33:57:f8: 15:5b:f7:84:69:4a:13:a4:6a:3d:2f:96:01:cb:81:b7:6b:6f: 83:67:0a:68:91:3d:99:5d:d7:40:da:f4:82:20:5d:25:d8:a0: 25:91:01:34:04:6d:ac:04:29:d4:bf:1f:e1:38:43:1b:fa:f3: a8:05:f5:68:30:c0:c5:d2:8f:d9:ad:ac:89:83:6b:35:c9:43: 31:00:df:2b:d1:f5:2d:68:2d:1c:c6:7d:18:fd:33:15:b2:f4: 2e:f7:6f:91:26:be:fc:1e:1a:dd:0c:29:3f:b7:10:ee:44:09: 3e:82:4a:a1:de:cc:09:70:ef:f0:a8:71:2a:84:f7:6f:cd:25: 9a:9d:92:2b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeVPx5/u8cl/6U6oK3/aiwflCZ8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdG Qjc4MDQxMzAeFw0yNTA1MDQxNjM2MDBaFw0yNTA1MDgwMjI2MDBaMDMxMTAvBgNV BAMTKDBFNkZDOTcwREJGQTgyREEyN0UzRTdFOTkxOUY0RDg2REVFNEZBRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnH33ST4AeZMHH4Q7FYRB+juwL k7mSsZS5GD4srJ3SAoRRXfh3cObq7qOEB92GCQySXrxK8g3gqMpIyvai36NtwykL uhxwv1tImN0EB3rQFIltfLw6wFBo7ALv78SrnnTVWlta0oyiJuz/qXsJBnuceCYh 6LnyGwP1EVwHd/RJl7hV7gdzKJ3EFSASbSp0vh/4Hks8oorLr0pmoZfHx/PIeeay TBiWUjHYJl1PSRVBPKY2t09dpsgX0GcjGsyg58mlowFg5o6oKjPZuZaF6l3+D0IQ mU9R0/l3Eq6+GAfE1dKWVpEugl1O+Z2kCwUvKuePDXa/9OlBIWO4CkDklxs/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDm/JcNv6gton4+fpkZ9Nht7k+tMwHwYDVR0j BBgwFoAUYExEGs31VPOA1/7Y9osux/t4BBMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NWQ2ZWZmZi04NWIyLTRhZjQtODlhYi02ZDk4Yzk1MjdkYTQvMC82MDRDNDQxQUNE RjU1NEYzODBEN0ZFRDhGNjhCMkVDN0ZCNzgwNDEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdGQjc4 MDQxMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzVkNmVmZmYtODViMi00YWY0LTg5 YWItNmQ5OGM5NTI3ZGE0LzAvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJF QzdGQjc4MDQxMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABOEo5eZ8CP8XL03L3IQ1J6IjVv2xF3ouHlt FqlMXq15nAcpGw5H8PNGlHakhnsNd1951M6F0AIlKvHUVg72gFwV6CPwk4RnSNBS 5pAzHeC6aUsdmu6B6JwduGsg84QbMf+TaPSCc2Mj3yL+k8fQL9DWhdwNHXs/ylrP PzNX+BVb94RpShOkaj0vlgHLgbdrb4NnCmiRPZld10Da9IIgXSXYoCWRATQEbawE KdS/H+E4Qxv686gF9WgwwMXSj9mtrImDazXJQzEA3yvR9S1oLRzGfRj9MxWy9C73 b5EmvvweGt0MKT+3EO5ECT6CSqHezAlw7/CocSqE92/NJZqdkis= -----END CERTIFICATE-----Generated at Tue May 6 02:30:09 2025 by rpki-client