$ rpki-client -vvf repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft File: 7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft (raw, json) Hash identifier: u0DS+Srvy2ZQQw3W5LhEQcoDdxdK/EpCEtqeW9U5Fd0= Subject key identifier: 5E:03:B6:B0:06:3D:31:C2:B0:BD:34:F1:3B:1B:F3:30:F1:2F:FD:C9 Authority key identifier: 70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E Certificate issuer: /CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Certificate serial: 216F8F564BC7F00E6A57DC67FCAF064B8FE7C919 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft Manifest number: 0469 Signing time: Sat 10 May 2025 11:01:17 +0000 Manifest this update: Sat 10 May 2025 10:56:17 +0000 Manifest next update: Tue 13 May 2025 11:09:17 +0000 Files and hashes: 1: 3130332e3134362e3139372e302f32342d3234203d3e20313339393431.roa (hash: a9rim8XhPQdPBnTRrhUohzYt6GpGCVRMKh2SkMkG9T8=) 2: 3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa (hash: lIIq1aJkVgn61JdaqWdkMl1np7mlcmVrzeimT0s2k+E=) 3: 3130332e3134362e3139362e302f32342d3234203d3e20313339393431.roa (hash: V1cdbz2B4KnRWdpevX8pRA5Z1G9fpGPOBnApCOURAWY=) 4: 7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl (hash: 6UO45fI9hNmCDt6DWRT7KkZgqXL6IhXZvEpZ7Hy9Cvs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 08:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:6f:8f:56:4b:c7:f0:0e:6a:57:dc:67:fc:af:06:4b:8f:e7:c9:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Validity Not Before: May 10 10:56:17 2025 GMT Not After : May 13 11:09:17 2025 GMT Subject: CN=5E03B6B0063D31C2B0BD34F13B1BF330F12FFDC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:63:76:97:26:a8:3d:b4:34:a7:3c:bc:85:2b: 99:b9:76:18:c2:48:cd:22:0a:58:de:92:5b:42:20: 26:0f:70:8f:56:65:b3:ae:59:ff:fe:84:0c:c8:ce: 28:3a:84:ad:66:a9:e7:b9:1f:54:f3:76:49:63:1d: 71:89:34:0f:a8:32:95:ac:6f:8e:1c:0a:64:c2:4d: fd:fe:39:37:5b:c2:69:ae:e6:d3:42:f2:5b:0f:5d: d9:53:7e:73:ba:8e:b4:cf:f5:2a:d9:1c:da:f5:6c: 42:45:64:2f:8a:a4:be:39:a1:dc:55:f5:7c:bf:26: 27:33:3f:ce:d6:f6:8b:b4:8a:c4:5c:21:07:26:71: 3f:0f:1e:7a:fd:ca:37:92:e7:e3:aa:9c:88:b1:bd: 94:4f:c9:c6:a4:60:37:96:f9:bd:bb:14:a9:b9:76: 8d:b7:5e:dc:b1:59:f9:cb:f2:8b:95:5c:c6:43:c6: ef:23:0a:f6:81:60:bf:90:ac:5d:07:b9:66:67:d6: 8e:ee:00:99:7a:9b:66:19:ba:69:b2:22:78:0e:7f: 46:e5:85:15:6d:d4:2f:f7:3a:a9:48:0e:69:9d:d1: 1c:c0:f0:88:92:ad:91:d4:7f:99:ba:d1:94:5d:a7: 97:83:0b:d7:f4:aa:b9:a8:fd:a8:67:5b:3c:99:88: 08:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:03:B6:B0:06:3D:31:C2:B0:BD:34:F1:3B:1B:F3:30:F1:2F:FD:C9 X509v3 Authority Key Identifier: keyid:70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:f9:58:37:51:52:4f:aa:63:46:b6:7e:db:7b:d1:5f:36:5c: 4e:47:7f:34:26:b6:36:3d:16:f5:f9:b5:a3:35:d4:cc:bc:63: 23:41:27:57:4f:6e:d5:c2:ba:45:73:d5:91:06:6d:51:50:e2: 81:c8:a2:47:ba:f9:f4:9f:d8:68:b9:7f:2e:df:1e:d6:47:05: 04:0f:12:f4:8e:12:9c:85:78:ba:f5:13:17:34:36:d8:55:35: cc:04:0f:fd:c0:30:8e:c3:f5:86:4a:80:0f:a2:df:e9:44:52: c1:50:ac:88:fc:be:d1:f6:7d:bf:25:e1:80:03:3a:c1:96:0d: 86:ee:06:1e:53:6c:15:cf:c0:8f:d8:5a:10:37:bd:ed:f5:34: fd:20:83:07:29:b1:3c:4e:6e:b6:2d:eb:33:e1:53:bf:1d:17: 1c:2f:b1:6a:43:93:31:d0:4d:b2:c4:be:3c:9b:82:00:e9:23: 1a:a1:64:27:d1:3a:2f:ba:94:49:d0:0f:da:38:bb:02:4a:06: fb:4d:90:4f:1f:87:8a:94:58:9f:47:e1:4b:d0:56:58:81:82: 4b:38:ac:fa:a9:d8:bb:e7:ea:95:1c:1f:21:c0:93:f3:15:d1: f0:0e:31:09:d9:ba:15:c5:cb:0d:19:83:d0:c5:f4:38:b9:f8: 7c:a1:8f:2c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIW+PVkvH8A5qV9xn/K8GS4/nyRkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NG NUIyQUE0RTAeFw0yNTA1MTAxMDU2MTdaFw0yNTA1MTMxMTA5MTdaMDMxMTAvBgNV BAMTKDVFMDNCNkIwMDYzRDMxQzJCMEJEMzRGMTNCMUJGMzMwRjEyRkZEQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaY3aXJqg9tDSnPLyFK5m5dhjC SM0iCljekltCICYPcI9WZbOuWf/+hAzIzig6hK1mqee5H1TzdkljHXGJNA+oMpWs b44cCmTCTf3+OTdbwmmu5tNC8lsPXdlTfnO6jrTP9SrZHNr1bEJFZC+KpL45odxV 9Xy/JiczP87W9ou0isRcIQcmcT8PHnr9yjeS5+OqnIixvZRPycakYDeW+b27FKm5 do23XtyxWfnL8ouVXMZDxu8jCvaBYL+QrF0HuWZn1o7uAJl6m2YZummyIngOf0bl hRVt1C/3OqlIDmmd0RzA8IiSrZHUf5m60ZRdp5eDC9f0qrmo/ahnWzyZiAhLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXgO2sAY9McKwvTTxOxvzMPEv/ckwHwYDVR0j BBgwFoAUcAiGh5nnfELkN/DXrM9oPPWyqk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MzUwNDhjNi04Y2NkLTQ2M2QtYWQzNC1hZTc0Mjg2NDdhOWMvMC83MDA4ODY4Nzk5 RTc3QzQyRTQzN0YwRDdBQ0NGNjgzQ0Y1QjJBQTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NGNUIy QUE0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODM1MDQ4YzYtOGNjZC00NjNkLWFk MzQtYWU3NDI4NjQ3YTljLzAvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4 M0NGNUIyQUE0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFT5WDdRUk+qY0a2ftt70V82XE5HfzQmtjY9 FvX5taM11My8YyNBJ1dPbtXCukVz1ZEGbVFQ4oHIoke6+fSf2Gi5fy7fHtZHBQQP EvSOEpyFeLr1Exc0NthVNcwED/3AMI7D9YZKgA+i3+lEUsFQrIj8vtH2fb8l4YAD OsGWDYbuBh5TbBXPwI/YWhA3ve31NP0ggwcpsTxObrYt6zPhU78dFxwvsWpDkzHQ TbLEvjybggDpIxqhZCfROi+6lEnQD9o4uwJKBvtNkE8fh4qUWJ9H4UvQVliBgks4 rPqp2Lvn6pUcHyHAk/MV0fAOMQnZuhXFyw0Zg9DF9Di5+Hyhjyw= -----END CERTIFICATE-----Generated at Sat May 10 21:02:12 2025 by rpki-client