$ rpki-client -vvf repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft File: 157E8817E413B3A8B2866190AD82151E868B1FA7.mft (raw, json) Hash identifier: /GyJuS1IXAtOooWdQ1APVp4p0uI0DIRiL5ZKB5eUnKs= Subject key identifier: B6:D9:B0:0B:FF:07:21:B5:DE:24:E3:39:BE:77:45:AB:BE:01:9B:94 Authority key identifier: 15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 Certificate issuer: /CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Certificate serial: 7E415AFFD34083FC4DBD1EAA1D76480DA64E07BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft Manifest number: 01BE Signing time: Sun 11 May 2025 15:42:15 +0000 Manifest this update: Sun 11 May 2025 15:37:15 +0000 Manifest next update: Wed 14 May 2025 17:55:15 +0000 Files and hashes: 1: 323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa (hash: +plvagJTEWEKvn5SZaftcn0qBGmFNqSMLPgdfy0xJAc=) 2: 157E8817E413B3A8B2866190AD82151E868B1FA7.crl (hash: 75+rm2SMrTShowTmQHYJfYMk+Sd/rKNDZRcreqy4FvQ=) 3: 3130332e3132312e3139362e302f32342d3234203d3e20313439373130.roa (hash: wLJhuvg5cB3B041BJhH14/dahrjMuNKBOMiBv1ZxMUg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 17:55:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:41:5a:ff:d3:40:83:fc:4d:bd:1e:aa:1d:76:48:0d:a6:4e:07:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Validity Not Before: May 11 15:37:15 2025 GMT Not After : May 14 17:55:15 2025 GMT Subject: CN=B6D9B00BFF0721B5DE24E339BE7745ABBE019B94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:51:07:e1:f6:33:fa:fb:74:cf:18:54:c9:d9: bd:a8:24:75:f5:56:1b:1f:84:74:cd:64:4f:23:c8: 76:3e:6a:2a:63:bf:b3:71:0e:d6:b6:2d:66:c2:59: c7:1a:3a:a1:1a:0d:80:a2:b9:d8:39:72:9f:79:91: 4b:aa:8e:2b:e4:f4:b7:1a:57:60:4f:f2:0d:17:d2: 59:25:18:83:ec:0d:e4:b5:79:82:19:94:0d:8d:8f: d4:f1:ce:40:7c:cf:f1:f8:83:e9:cb:dd:0b:32:61: 81:69:1e:99:d8:6f:b2:26:80:01:b6:83:f0:83:09: 63:f3:2d:0c:e7:a9:fe:21:b3:ee:8b:c1:e4:bc:cb: 08:e3:de:57:96:22:f1:b8:24:fa:04:0b:e7:08:23: 39:3d:b3:bd:37:5e:f6:b6:44:f1:bf:c6:3b:88:9c: cd:58:13:bc:89:69:18:fb:a5:b7:99:71:f8:20:f3: 0c:34:05:aa:c7:32:87:31:53:18:24:04:9a:28:f5: 2b:b0:3c:bb:9f:97:00:c7:ab:ab:50:86:69:8f:4b: 2e:56:3e:15:2e:5f:ea:12:d9:cc:1a:4c:35:ae:80: 6c:51:64:78:ba:27:71:c9:4b:5c:f3:69:a0:13:67: b1:20:2c:33:03:a9:bc:38:26:b5:b8:d6:25:54:33: a9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:D9:B0:0B:FF:07:21:B5:DE:24:E3:39:BE:77:45:AB:BE:01:9B:94 X509v3 Authority Key Identifier: keyid:15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:2d:26:04:3e:f8:fe:d4:9d:02:0f:75:35:85:6a:30:48:4c: 1d:bf:34:30:43:a9:95:44:9d:0b:0f:e9:8e:93:10:6c:61:c1: b6:df:99:3b:a4:ea:f9:42:38:26:b4:0f:9a:7d:ae:ab:9d:8e: 6a:2c:d3:55:cc:bc:7d:45:ab:cb:1d:71:e8:4d:5c:5a:91:2e: 9e:7d:a8:51:e5:8c:54:db:97:45:71:9a:53:2b:4b:c6:1e:5f: 4f:3c:ae:bd:c6:c3:a5:c0:9c:02:77:35:56:7e:e5:e7:99:c2: b2:eb:bc:e2:d4:34:7f:4e:bc:bd:9b:44:d0:3d:e1:e1:be:71: e8:54:d8:e6:c3:59:17:0b:ce:a8:d0:77:c5:16:3a:a9:19:2a: 48:b2:6f:f6:f7:cb:a4:7f:28:8b:be:8c:2b:70:27:ab:5d:d3: 5e:b9:72:75:99:7a:c2:d1:61:5a:70:91:6b:30:77:2b:ad:4b: 27:53:d0:b3:4e:47:1d:b1:63:42:5e:19:28:83:c9:83:04:c6: 87:5f:0a:53:22:c1:46:f6:ee:b4:db:3d:e7:f5:3f:a3:05:17: 69:35:a4:1b:c1:1d:47:a8:76:90:0c:75:2d:dc:12:b7:cf:92: 45:35:fb:35:15:c7:61:21:20:77:ba:15:cb:d9:f8:34:5c:f7: c4:fc:5a:50 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfkFa/9NAg/xNvR6qHXZIDaZOB74wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4 NjhCMUZBNzAeFw0yNTA1MTExNTM3MTVaFw0yNTA1MTQxNzU1MTVaMDMxMTAvBgNV BAMTKEI2RDlCMDBCRkYwNzIxQjVERTI0RTMzOUJFNzc0NUFCQkUwMTlCOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8UQfh9jP6+3TPGFTJ2b2oJHX1 VhsfhHTNZE8jyHY+aipjv7NxDta2LWbCWccaOqEaDYCiudg5cp95kUuqjivk9Lca V2BP8g0X0lklGIPsDeS1eYIZlA2Nj9TxzkB8z/H4g+nL3QsyYYFpHpnYb7ImgAG2 g/CDCWPzLQznqf4hs+6LweS8ywjj3leWIvG4JPoEC+cIIzk9s703Xva2RPG/xjuI nM1YE7yJaRj7pbeZcfgg8ww0BarHMocxUxgkBJoo9SuwPLuflwDHq6tQhmmPSy5W PhUuX+oS2cwaTDWugGxRZHi6J3HJS1zzaaATZ7EgLDMDqbw4JrW41iVUM6nBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUttmwC/8HIbXeJOM5vndFq74Bm5QwHwYDVR0j BBgwFoAUFX6IF+QTs6iyhmGQrYIVHoaLH6cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2NkNjBiMi0wZjU3LTRmYzUtYmM2Mi0xZDliNmM0OGZjZjAvMC8xNTdFODgxN0U0 MTNCM0E4QjI4NjYxOTBBRDgyMTUxRTg2OEIxRkE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4NjhC MUZBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODNjZDYwYjItMGY1Ny00ZmM1LWJj NjItMWQ5YjZjNDhmY2YwLzAvMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1 MUU4NjhCMUZBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI0tJgQ++P7UnQIPdTWFajBITB2/NDBDqZVE nQsP6Y6TEGxhwbbfmTuk6vlCOCa0D5p9rqudjmos01XMvH1Fq8sdcehNXFqRLp59 qFHljFTbl0VxmlMrS8YeX088rr3Gw6XAnAJ3NVZ+5eeZwrLrvOLUNH9OvL2bRNA9 4eG+cehU2ObDWRcLzqjQd8UWOqkZKkiyb/b3y6R/KIu+jCtwJ6td0165cnWZesLR YVpwkWswdyutSydT0LNORx2xY0JeGSiDyYMExodfClMiwUb27rTbPef1P6MFF2k1 pBvBHUeodpAMdS3cErfPkkU1+zUVx2EhIHe6FcvZ+DRc98T8WlA= -----END CERTIFICATE-----Generated at Mon May 12 17:13:41 2025 by rpki-client