$ rpki-client -vvf repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft File: 389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft (raw, json) Hash identifier: dmE1fsG040CcD12o21Fo5uy7oEhZgppVHXwcFL7rwEY= Subject key identifier: 0A:2F:F5:4D:89:7F:D8:0E:0F:E6:02:C6:72:F2:9B:0D:F6:BD:86:4E Authority key identifier: 38:9E:7C:13:CF:63:44:AE:B9:30:01:CD:4C:5A:C7:94:01:25:2A:5C Certificate issuer: /CN=389E7C13CF6344AEB93001CD4C5AC79401252A5C Certificate serial: 23D68CEA5DE72D0A7AB3EC717B3EAB5771C64C1D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft Manifest number: 04D4 Signing time: Thu 15 May 2025 08:02:06 +0000 Manifest this update: Thu 15 May 2025 07:57:06 +0000 Manifest next update: Sun 18 May 2025 12:41:06 +0000 Files and hashes: 1: 3130332e38302e39312e302f32342d3234203d3e20313337333033.roa (hash: +5ArSDkm8nFNY2pJsCcc5rpBFK1QZi3XeCjPa44v8Qg=) 2: 3138322e35342e3134302e302f32322d3234203d3e203535363835.roa (hash: eHRe7UN4yHEuP/bcxvXuiWUL1Jq+AhWRZYK0EAkak0g=) 3: 3130332e36302e3138302e302f32322d3234203d3e203535363835.roa (hash: KUcP7h07thnbz4HgYEXRhyo/VKL71mkoKsjlqNyH3oE=) 4: 3130332e38302e39302e302f32342d3234203d3e20313337333033.roa (hash: 7gyXsXhXbz+5Y778CqurXCGCsFoCA1QhjfVs/TUp3oQ=) 5: 3130332e38302e38382e302f32322d3234203d3e203535363835.roa (hash: xiXqHT30gah4SfdCSJA1bqssFdqa9R1vtVtP0INDihk=) 6: 3130332e36302e3138332e302f32342d3234203d3e20313431363330.roa (hash: /yhg5qr+BfUwCEkWIHjx5Xurv6fbCx8q1w5UII3HZ8w=) 7: 389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl (hash: zYk6XH3N75Lfjcl3ST36JXwyW42ZpLGXiQAxSR6tdKo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 12:41:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:d6:8c:ea:5d:e7:2d:0a:7a:b3:ec:71:7b:3e:ab:57:71:c6:4c:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=389E7C13CF6344AEB93001CD4C5AC79401252A5C Validity Not Before: May 15 07:57:06 2025 GMT Not After : May 18 12:41:06 2025 GMT Subject: CN=0A2FF54D897FD80E0FE602C672F29B0DF6BD864E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4f:07:50:db:91:96:3c:fc:56:55:d8:45:46: ef:73:8e:a6:b7:e8:a9:ff:f6:82:4d:bd:b3:4e:ad: 24:a6:3d:1d:73:a6:b3:22:6d:e6:63:be:4f:23:f5: fd:64:65:58:6e:5b:bd:b0:6c:38:6a:ca:5f:9c:2f: c4:26:18:bb:50:51:22:d9:be:1a:3f:2d:f4:0b:0e: 97:86:71:5e:f5:0e:61:b1:10:3c:79:be:fc:c2:bc: 34:81:2a:4c:f7:a6:43:49:38:ae:99:6a:a0:6c:16: 0c:f7:a0:ba:55:f5:2e:81:aa:2c:89:59:80:c4:c5: ae:60:93:17:c8:df:0f:53:c6:68:6e:38:06:af:f0: 20:cb:6f:09:cd:89:85:49:d2:53:78:bf:e6:e7:50: 52:f7:71:65:7b:e0:06:00:c7:f8:6a:fa:63:48:28: a8:16:f2:1e:a9:3a:1d:fd:71:b7:4b:29:6b:70:61: 33:cd:2f:0c:50:71:4a:d1:93:0e:9a:ca:31:c2:55: f0:42:fc:e3:0b:a0:1b:f1:31:29:66:bf:4b:62:73: 41:f6:30:ce:50:a9:50:cf:50:83:85:2e:c1:ac:79: 09:f2:7d:53:1d:97:da:5f:4e:38:31:82:f0:38:18: 1c:c7:e0:f0:c7:a4:85:ea:23:91:77:11:5c:fe:86: 95:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:2F:F5:4D:89:7F:D8:0E:0F:E6:02:C6:72:F2:9B:0D:F6:BD:86:4E X509v3 Authority Key Identifier: keyid:38:9E:7C:13:CF:63:44:AE:B9:30:01:CD:4C:5A:C7:94:01:25:2A:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:ec:6b:a3:32:3a:99:c2:21:13:23:47:31:ef:be:8c:a3:0b: e6:55:64:83:2b:16:d1:b0:1b:91:4d:94:cb:9b:30:be:e3:52: 78:ce:24:a2:4b:a5:0c:d9:10:1d:c9:ec:cc:dc:d0:ba:70:80: 82:2d:de:37:6a:21:db:5a:bd:6f:d3:3b:34:2b:d4:7f:46:5c: 34:24:1f:65:aa:fe:5d:ae:77:41:5d:18:41:c8:88:58:6e:8e: 7e:de:0b:6c:91:91:11:2d:ca:36:2d:73:1e:b1:d2:27:5a:1d: fc:4e:5f:bc:f2:5f:9d:31:dc:5d:69:66:97:66:a2:6f:7d:5e: 80:d7:b6:5d:f3:15:97:be:36:12:38:39:55:e0:be:2c:36:02: c5:b0:53:a5:3a:f1:c3:ea:53:25:f6:36:73:5b:73:d2:14:52: 81:61:11:61:c0:92:5d:f2:3c:c5:96:8a:54:80:d1:55:18:5e: 96:3a:66:73:34:a0:58:b1:0a:04:e6:1e:97:98:cd:fd:ab:69: fd:3c:b4:9b:35:aa:c0:dd:20:87:2b:57:aa:7f:c1:0e:c2:90: 8a:ad:b3:a7:1f:f3:a2:c6:18:95:da:68:45:fa:c0:4f:6d:eb: fd:2d:90:b0:75:d2:35:d7:53:9f:98:7b:e3:07:d2:58:33:c4: 7e:88:b2:25 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUI9aM6l3nLQp6s+xxez6rV3HGTB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3OTQw MTI1MkE1QzAeFw0yNTA1MTUwNzU3MDZaFw0yNTA1MTgxMjQxMDZaMDMxMTAvBgNV BAMTKDBBMkZGNTREODk3RkQ4MEUwRkU2MDJDNjcyRjI5QjBERjZCRDg2NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxTwdQ25GWPPxWVdhFRu9zjqa3 6Kn/9oJNvbNOrSSmPR1zprMibeZjvk8j9f1kZVhuW72wbDhqyl+cL8QmGLtQUSLZ vho/LfQLDpeGcV71DmGxEDx5vvzCvDSBKkz3pkNJOK6ZaqBsFgz3oLpV9S6BqiyJ WYDExa5gkxfI3w9TxmhuOAav8CDLbwnNiYVJ0lN4v+bnUFL3cWV74AYAx/hq+mNI KKgW8h6pOh39cbdLKWtwYTPNLwxQcUrRkw6ayjHCVfBC/OMLoBvxMSlmv0tic0H2 MM5QqVDPUIOFLsGseQnyfVMdl9pfTjgxgvA4GBzH4PDHpIXqI5F3EVz+hpUDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUCi/1TYl/2A4P5gLGcvKbDfa9hk4wHwYDVR0j BBgwFoAUOJ58E89jRK65MAHNTFrHlAElKlwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjAzMmJjOS02MDVhLTQyNTMtYTRjZC02MmYxMjQxMjZlYWMvMC8zODlFN0MxM0NG NjM0NEFFQjkzMDAxQ0Q0QzVBQzc5NDAxMjUyQTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3OTQwMTI1 MkE1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODIwMzJiYzktNjA1YS00MjUzLWE0 Y2QtNjJmMTI0MTI2ZWFjLzAvMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3 OTQwMTI1MkE1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHbsa6MyOpnCIRMjRzHvvoyjC+ZVZIMrFtGw G5FNlMubML7jUnjOJKJLpQzZEB3J7Mzc0LpwgIIt3jdqIdtavW/TOzQr1H9GXDQk H2Wq/l2ud0FdGEHIiFhujn7eC2yRkREtyjYtcx6x0idaHfxOX7zyX50x3F1pZpdm om99XoDXtl3zFZe+NhI4OVXgviw2AsWwU6U68cPqUyX2NnNbc9IUUoFhEWHAkl3y PMWWilSA0VUYXpY6ZnM0oFixCgTmHpeYzf2raf08tJs1qsDdIIcrV6p/wQ7CkIqt s6cf86LGGJXaaEX6wE9t6/0tkLB10jXXU5+Ye+MH0lgzxH6IsiU= -----END CERTIFICATE-----Generated at Fri May 16 07:35:45 2025 by rpki-client