$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft File: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft (raw, json) Hash identifier: uvr/So9hdh0jwYVXVwlnQub1Ivp+oE1cBc1Ivnk4I7c= Subject key identifier: 95:EF:29:15:F8:23:29:76:F4:66:30:F1:61:24:33:E7:D0:1A:79:44 Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 47551AA7C67E164852CAA0CDF211BC0D5F8D2929 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft Manifest number: 0194 Signing time: Fri 09 May 2025 03:01:15 +0000 Manifest this update: Fri 09 May 2025 02:56:15 +0000 Manifest next update: Mon 12 May 2025 14:00:15 +0000 Files and hashes: 1: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (hash: zqT5YWjMd6XfOxSy/65IPLyls5xiXGFCXPoGdWCUauk=) 2: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl (hash: YjaBAYCrttolqYbqASNBz6cf5N/jKwrFI2GSs84TeHY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 14:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:55:1a:a7:c6:7e:16:48:52:ca:a0:cd:f2:11:bc:0d:5f:8d:29:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: May 9 02:56:15 2025 GMT Not After : May 12 14:00:15 2025 GMT Subject: CN=95EF2915F8232976F46630F1612433E7D01A7944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:77:e5:0f:38:3b:68:7c:41:5d:ab:c2:62:9b: d4:75:05:87:80:2a:34:f4:f9:0d:13:cc:ea:b0:0e: 6d:24:ea:81:f0:d0:f2:13:2b:28:2c:a0:5a:b7:43: b2:66:11:0c:c4:46:85:ac:d5:ae:51:2b:01:97:de: a0:7f:45:ba:8c:2d:ae:76:6f:cc:3d:c6:4f:9a:46: 92:7f:85:33:57:e3:71:cf:d2:ac:a9:db:b7:eb:ca: ca:52:78:af:9b:93:a0:ad:ab:c3:99:f0:6c:f8:c8: d7:8d:e0:29:15:73:c0:26:7e:71:27:0b:4c:99:45: 4a:23:3d:a5:18:dd:49:06:dd:2d:6b:a3:f4:19:c7: 64:91:3b:17:db:d1:72:b5:87:eb:b2:ab:58:33:20: ca:b3:de:2f:e4:37:39:d1:6d:a3:65:d2:4e:b1:83: d6:2a:79:4a:89:e9:eb:92:47:b1:3b:84:46:85:5b: 01:92:0a:44:ba:cb:14:ab:6c:07:f8:e7:78:27:a5: 59:44:a5:99:86:d9:b4:7f:1f:dd:de:b1:d4:73:60: fe:7b:d8:58:2c:f5:a4:12:73:32:a6:e5:79:2e:5d: 8b:54:a9:60:ba:08:88:87:1e:79:83:6a:42:f3:51: de:de:62:2f:a2:b9:88:3f:be:34:47:64:83:a4:4c: 47:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:EF:29:15:F8:23:29:76:F4:66:30:F1:61:24:33:E7:D0:1A:79:44 X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:b9:57:ba:06:b4:55:2b:71:30:f0:57:e3:63:ce:e4:99:65: 74:90:0a:d0:f4:7c:ab:e2:16:ea:9c:f8:db:19:6e:0f:20:9f: e1:be:3f:17:22:bf:4a:1e:0f:54:df:ab:a0:62:44:ad:1a:27: 51:5f:a9:eb:55:81:6b:08:89:06:72:30:87:d3:60:c0:83:35: 2f:61:28:cb:77:f2:93:36:49:ec:4f:9b:c2:26:06:79:31:34: 21:95:b0:57:b6:7f:20:95:66:60:64:bd:22:ae:30:05:59:bc: 9b:f3:37:ed:5e:73:df:be:ce:90:34:6f:f0:d8:1c:0e:a8:0e: 5b:e7:24:44:63:ed:64:31:c9:03:77:1a:f0:31:1a:a9:03:61: ea:b6:85:e2:59:74:e6:a4:9d:7a:50:b5:f8:99:4f:c1:e6:02: 75:0c:1e:d2:f8:e0:49:fa:8d:2f:19:f5:19:ca:8e:f7:cc:0f: bd:81:c7:22:e2:07:e8:05:3f:a3:e0:19:87:58:13:40:43:93: 05:0f:36:81:78:68:34:35:ff:aa:20:24:5e:e6:2f:6e:fa:25: 5b:21:4c:dc:11:b8:e6:2d:8e:69:1c:86:8f:ba:56:e0:ec:af: 98:f9:9d:14:32:28:63:2e:f2:50:bf:78:be:27:91:36:35:47: 5c:b4:66:f9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUR1Uap8Z+FkhSyqDN8hG8DV+NKSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNTA1MDkwMjU2MTVaFw0yNTA1MTIxNDAwMTVaMDMxMTAvBgNV BAMTKDk1RUYyOTE1RjgyMzI5NzZGNDY2MzBGMTYxMjQzM0U3RDAxQTc5NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCud+UPODtofEFdq8Jim9R1BYeA KjT0+Q0TzOqwDm0k6oHw0PITKygsoFq3Q7JmEQzERoWs1a5RKwGX3qB/RbqMLa52 b8w9xk+aRpJ/hTNX43HP0qyp27fryspSeK+bk6Ctq8OZ8Gz4yNeN4CkVc8AmfnEn C0yZRUojPaUY3UkG3S1ro/QZx2SROxfb0XK1h+uyq1gzIMqz3i/kNznRbaNl0k6x g9YqeUqJ6euSR7E7hEaFWwGSCkS6yxSrbAf453gnpVlEpZmG2bR/H93esdRzYP57 2Fgs9aQSczKm5XkuXYtUqWC6CIiHHnmDakLzUd7eYi+iuYg/vjRHZIOkTEcdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUle8pFfgjKXb0ZjDxYSQz59AaeUQwHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2I3MWZjNmQtYWEzYi00ZWQ3LThm ZWMtNzQyN2FhMDYxZjhlLzAvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2 RDI5RUJGQjY0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG25V7oGtFUrcTDwV+NjzuSZZXSQCtD0fKvi Fuqc+NsZbg8gn+G+Pxciv0oeD1Tfq6BiRK0aJ1FfqetVgWsIiQZyMIfTYMCDNS9h KMt38pM2SexPm8ImBnkxNCGVsFe2fyCVZmBkvSKuMAVZvJvzN+1ec9++zpA0b/DY HA6oDlvnJERj7WQxyQN3GvAxGqkDYeq2heJZdOaknXpQtfiZT8HmAnUMHtL44En6 jS8Z9RnKjvfMD72BxyLiB+gFP6PgGYdYE0BDkwUPNoF4aDQ1/6ogJF7mL276JVsh TNwRuOYtjmkcho+6VuDsr5j5nRQyKGMu8lC/eL4nkTY1R1y0Zvk= -----END CERTIFICATE-----Generated at Sat May 10 01:22:01 2025 by rpki-client