$ rpki-client -vvf repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.mft File: D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.mft (raw, json) Hash identifier: Jzs6WeltdAzqvAr2QJGi5QWL1vbouHnW7HCNRzJtxzM= Subject key identifier: 75:B1:54:EA:0F:C6:00:8A:39:BB:B0:C0:30:3A:8B:9F:60:23:9F:12 Authority key identifier: D3:B0:DD:BB:8E:07:FC:D9:8A:39:9C:90:C5:B3:FC:32:B4:FA:28:F0 Certificate issuer: /CN=D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0 Certificate serial: 0CCDA0814BED5949296DDE64EB2BD2673855EC09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.mft Manifest number: 50 Signing time: Wed 07 May 2025 10:00:02 +0000 Manifest this update: Wed 07 May 2025 09:55:02 +0000 Manifest next update: Sat 10 May 2025 19:45:02 +0000 Files and hashes: 1: 3136302e32322e3138372e302f32342d3234203d3e20313532383233.roa (hash: cvyj6LKtTOVBTWTHZighgw+CFWQteArr8dC6m6wOVeI=) 2: D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.crl (hash: UOigBufRSs801wwX3kfZYA1rq+8D7ezzfd9XfWpNK24=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.crl rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 19:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:cd:a0:81:4b:ed:59:49:29:6d:de:64:eb:2b:d2:67:38:55:ec:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0 Validity Not Before: May 7 09:55:02 2025 GMT Not After : May 10 19:45:02 2025 GMT Subject: CN=75B154EA0FC6008A39BBB0C0303A8B9F60239F12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:60:98:3c:77:a9:af:cb:26:e4:b4:c4:ab:bf: 2b:92:64:df:c2:e7:c7:fb:a6:a1:48:01:db:00:d6: 82:e8:0f:c0:d1:50:de:fe:90:65:b2:2f:5c:d7:f8: de:2a:7a:ee:8f:55:c5:48:65:59:a9:7a:65:4f:2a: e5:3c:d8:b7:5b:4a:39:7f:60:c1:90:02:34:ce:13: 22:53:90:ee:45:37:9d:27:69:94:cf:d6:71:9e:d7: bd:b5:c8:45:0c:64:3f:07:e7:37:87:d3:4e:97:a4: f6:bf:23:2a:14:c1:0b:32:7c:f1:61:22:e8:40:8c: b4:bc:3c:8c:fc:ea:68:c5:52:a0:31:cc:73:76:ef: 53:9e:61:b6:3a:9b:a3:c2:8d:81:31:d0:ed:a1:7e: d4:4f:b3:15:84:99:b4:98:22:df:a7:ec:ea:23:bf: 27:07:6b:65:67:ec:2a:e3:48:13:a9:15:08:4e:be: 3a:de:88:d4:4b:06:0b:57:14:84:f7:99:26:f0:dd: 69:54:16:10:9f:a0:d2:67:67:34:6a:78:e1:2c:3b: 2b:fe:f5:49:51:20:e2:00:51:f9:e8:05:20:da:18: 05:f8:3c:cd:35:74:e3:c1:a6:51:37:01:cf:bb:70: a7:dd:c9:c2:12:ff:d1:b9:66:16:37:77:19:c9:c9: f9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B1:54:EA:0F:C6:00:8A:39:BB:B0:C0:30:3A:8B:9F:60:23:9F:12 X509v3 Authority Key Identifier: keyid:D3:B0:DD:BB:8E:07:FC:D9:8A:39:9C:90:C5:B3:FC:32:B4:FA:28:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:fe:7d:37:42:7c:ab:a3:a8:f3:91:56:8e:51:c1:f7:89:5e: cb:33:80:3f:76:74:3b:96:f7:4a:8e:dd:08:b3:a1:84:d3:80: c8:52:ae:15:5a:9b:97:65:6c:30:61:ca:23:5a:05:70:55:57: 7a:02:ff:f4:ee:c6:67:7c:16:a5:31:70:54:12:11:73:43:74: c3:d2:45:c3:70:d6:68:75:7e:44:8c:c4:93:87:bd:28:2e:ec: e3:67:22:57:f4:ef:30:bb:1a:42:ba:e2:32:ac:6c:fb:4b:72: 15:1d:34:77:17:73:2c:a7:7f:ed:7e:8d:b0:3a:5d:70:13:91: 8b:88:d5:80:8b:94:c5:e8:6a:b8:ef:a1:7f:55:8c:b0:f2:6a: fe:e1:35:f3:c3:13:43:99:9d:b7:b1:bc:65:44:a0:86:95:cd: 26:fe:3f:77:80:a9:4a:a5:c1:b0:ae:ea:84:54:59:c5:3f:c9: 12:b9:9e:cf:09:97:a1:77:ce:a6:89:7a:1b:b2:34:1d:a7:19: 81:c2:f8:0b:47:aa:ec:76:51:2e:67:4f:b9:ef:15:e4:aa:b2: 5a:71:ea:d4:b1:71:c5:2e:1a:65:67:cc:47:59:01:13:58:c8: 44:1c:c8:34:0b:10:72:3e:a2:a1:ec:ca:41:45:e5:d8:f3:4c: 2b:b1:e2:b4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDM2ggUvtWUkpbd5k6yvSZzhV7AkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNCMEREQkI4RTA3RkNEOThBMzk5QzkwQzVCM0ZDMzJC NEZBMjhGMDAeFw0yNTA1MDcwOTU1MDJaFw0yNTA1MTAxOTQ1MDJaMDMxMTAvBgNV BAMTKDc1QjE1NEVBMEZDNjAwOEEzOUJCQjBDMDMwM0E4QjlGNjAyMzlGMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHYJg8d6mvyybktMSrvyuSZN/C 58f7pqFIAdsA1oLoD8DRUN7+kGWyL1zX+N4qeu6PVcVIZVmpemVPKuU82LdbSjl/ YMGQAjTOEyJTkO5FN50naZTP1nGe1721yEUMZD8H5zeH006XpPa/IyoUwQsyfPFh IuhAjLS8PIz86mjFUqAxzHN271OeYbY6m6PCjYEx0O2hftRPsxWEmbSYIt+n7Ooj vycHa2Vn7CrjSBOpFQhOvjreiNRLBgtXFIT3mSbw3WlUFhCfoNJnZzRqeOEsOyv+ 9UlRIOIAUfnoBSDaGAX4PM01dOPBplE3Ac+7cKfdycIS/9G5ZhY3dxnJyfmPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdbFU6g/GAIo5u7DAMDqLn2AjnxIwHwYDVR0j BBgwFoAU07Ddu44H/NmKOZyQxbP8MrT6KPAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDlmOThmMy03MmYwLTQwMDYtYmU5OS1iOWE5ZThkOWQyYmYvMC9EM0IwRERCQjhF MDdGQ0Q5OEEzOTlDOTBDNUIzRkMzMkI0RkEyOEYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDNCMEREQkI4RTA3RkNEOThBMzk5QzkwQzVCM0ZDMzJCNEZB MjhGMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2Q5Zjk4ZjMtNzJmMC00MDA2LWJl OTktYjlhOWU4ZDlkMmJmLzAvRDNCMEREQkI4RTA3RkNEOThBMzk5QzkwQzVCM0ZD MzJCNEZBMjhGMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABv+fTdCfKujqPORVo5RwfeJXsszgD92dDuW 90qO3QizoYTTgMhSrhVam5dlbDBhyiNaBXBVV3oC//Tuxmd8FqUxcFQSEXNDdMPS RcNw1mh1fkSMxJOHvSgu7ONnIlf07zC7GkK64jKsbPtLchUdNHcXcyynf+1+jbA6 XXATkYuI1YCLlMXoarjvoX9VjLDyav7hNfPDE0OZnbexvGVEoIaVzSb+P3eAqUql wbCu6oRUWcU/yRK5ns8Jl6F3zqaJehuyNB2nGYHC+AtHqux2US5nT7nvFeSqslpx 6tSxccUuGmVnzEdZARNYyEQcyDQLEHI+oqHsykFF5djzTCux4rQ= -----END CERTIFICATE-----Generated at Thu May 8 09:27:37 2025 by rpki-client