$ rpki-client -vvf repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft File: 95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft (raw, json) Hash identifier: tPYjKn1cvbTqjAtz8cTGCOTENwJDHR63ebfuXUopQaQ= Subject key identifier: 75:66:02:57:97:C3:2E:B1:D8:EB:8C:D6:F8:26:9D:1F:66:A5:FD:63 Authority key identifier: 95:FA:C3:8A:5C:B2:CE:A3:E5:FF:E2:49:56:26:A7:BE:A3:28:D6:89 Certificate issuer: /CN=95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689 Certificate serial: 69D6685C787DAA13B23F6F10388392DC5A87AC71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer Subject info access: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft Manifest number: 99 Signing time: Mon 12 May 2025 23:01:21 +0000 Manifest this update: Mon 12 May 2025 22:56:21 +0000 Manifest next update: Fri 16 May 2025 00:36:21 +0000 Files and hashes: 1: 3136302e31392e38382e302f32342d3234203d3e20313437303838.roa (hash: +Xk0mxGkc/lCxZDeUptrpwZhCqCSnBV/uCVgeNZ+WpY=) 2: 95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl (hash: gqI5qitconLhdvgT+uviw/uiPcCEMAieoiB16EzQv1c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 00:36:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:d6:68:5c:78:7d:aa:13:b2:3f:6f:10:38:83:92:dc:5a:87:ac:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689 Validity Not Before: May 12 22:56:21 2025 GMT Not After : May 16 00:36:21 2025 GMT Subject: CN=7566025797C32EB1D8EB8CD6F8269D1F66A5FD63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:15:3d:13:a9:4e:7e:4b:77:90:19:a9:e3:e5: bc:41:cb:95:cd:c9:a0:c2:8a:76:2b:d0:98:13:71: 02:3f:91:1b:6b:7b:26:6f:89:3c:6d:82:c4:23:d1: 40:88:f0:7b:64:23:10:50:b6:b3:4b:6b:96:c7:8c: ea:31:68:66:6e:1d:f2:b1:b1:8f:86:31:c7:bf:47: 59:d5:a3:ab:d1:21:fe:79:b3:95:2f:b3:63:28:d3: 54:78:a1:7f:92:9c:50:3d:b4:13:15:0d:f1:c4:b9: 6a:ed:7d:a2:0c:6d:07:33:8e:85:20:e3:fe:55:4a: 53:bf:76:86:3b:35:c8:74:0a:cc:93:8c:60:ae:bc: bb:76:ed:8d:d7:cf:0f:7a:df:10:a9:da:56:98:cb: 2f:b4:f6:64:58:bc:7a:29:45:2a:db:91:9c:ce:56: d0:4c:d9:e7:78:15:14:89:7a:4c:0d:05:ad:f5:e3: e5:48:84:f0:c4:02:c1:9c:4c:4b:7c:e4:9d:09:ab: 7f:ff:b9:b0:88:3a:4e:7f:78:d6:4c:67:2b:71:47: 90:26:90:42:7a:13:d6:13:c5:36:b6:68:3b:42:bc: a9:51:47:89:d1:43:18:15:61:66:7e:1d:a0:85:48: a9:b9:48:b8:54:21:82:63:a7:a0:3d:4a:92:cb:7f: 55:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:66:02:57:97:C3:2E:B1:D8:EB:8C:D6:F8:26:9D:1F:66:A5:FD:63 X509v3 Authority Key Identifier: keyid:95:FA:C3:8A:5C:B2:CE:A3:E5:FF:E2:49:56:26:A7:BE:A3:28:D6:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:51:a4:8d:8d:62:d7:6a:e2:70:44:21:16:fa:fa:02:59:36: f5:93:4a:28:98:f7:a4:ab:23:ad:f7:f0:6a:cd:bd:15:2a:34: 3b:d2:5c:da:3f:79:90:50:19:d7:1b:98:60:1c:f7:8a:b3:46: 02:85:2e:42:8d:c5:e9:c6:9a:3f:60:2c:b9:5e:b1:0f:51:41: 8c:87:00:88:55:fc:56:23:69:e8:2f:fc:d6:d7:9c:af:ab:46: 7f:e3:92:07:aa:05:96:8f:2d:52:5a:4b:b3:6c:5a:3a:2c:df: 23:cf:a3:8b:f8:56:41:cd:69:08:1b:a9:20:f3:15:c6:a0:22: a1:9a:d3:f0:bb:0f:da:dc:1c:e0:1c:32:b8:63:01:02:de:e6: d4:1f:2a:0f:d4:39:a0:8e:be:3d:6a:95:f7:ee:97:c7:56:19: e0:e4:8b:3c:54:98:6b:a6:34:bb:84:93:99:5d:57:ca:a6:38: c6:49:39:55:01:bd:0d:8a:b6:dd:79:d8:de:36:e7:28:0a:e6: b7:33:c9:00:70:6d:4e:e9:34:83:53:d3:2f:f4:17:3b:6a:66: 17:13:eb:d7:c5:dc:8d:76:36:ac:ef:ca:d3:ca:4c:63:d0:b7: 6e:16:eb:ce:1d:50:54:b7:d0:7b:fa:57:1e:86:66:1b:a5:6a: 64:f9:ca:2f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUadZoXHh9qhOyP28QOIOS3FqHrHEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3QkVB MzI4RDY4OTAeFw0yNTA1MTIyMjU2MjFaFw0yNTA1MTYwMDM2MjFaMDMxMTAvBgNV BAMTKDc1NjYwMjU3OTdDMzJFQjFEOEVCOENENkY4MjY5RDFGNjZBNUZENjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVFT0TqU5+S3eQGanj5bxBy5XN yaDCinYr0JgTcQI/kRtreyZviTxtgsQj0UCI8HtkIxBQtrNLa5bHjOoxaGZuHfKx sY+GMce/R1nVo6vRIf55s5Uvs2Mo01R4oX+SnFA9tBMVDfHEuWrtfaIMbQczjoUg 4/5VSlO/doY7Nch0CsyTjGCuvLt27Y3Xzw963xCp2laYyy+09mRYvHopRSrbkZzO VtBM2ed4FRSJekwNBa314+VIhPDEAsGcTEt85J0Jq3//ubCIOk5/eNZMZytxR5Am kEJ6E9YTxTa2aDtCvKlRR4nRQxgVYWZ+HaCFSKm5SLhUIYJjp6A9SpLLf1UjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdWYCV5fDLrHY64zW+CadH2al/WMwHwYDVR0j BBgwFoAUlfrDilyyzqPl/+JJVianvqMo1okwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NGRhNDE1Yi01ZjE3LTQ2MDItOWJkOS1mZDg0YWMyY2FlODYvMC85NUZBQzM4QTVD QjJDRUEzRTVGRkUyNDk1NjI2QTdCRUEzMjhENjg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3QkVBMzI4 RDY4OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODRkYTQxNWItNWYxNy00NjAyLTli ZDktZmQ4NGFjMmNhZTg2LzAvOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3 QkVBMzI4RDY4OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACRRpI2NYtdq4nBEIRb6+gJZNvWTSiiY96Sr I6338GrNvRUqNDvSXNo/eZBQGdcbmGAc94qzRgKFLkKNxenGmj9gLLlesQ9RQYyH AIhV/FYjaegv/NbXnK+rRn/jkgeqBZaPLVJaS7NsWjos3yPPo4v4VkHNaQgbqSDz FcagIqGa0/C7D9rcHOAcMrhjAQLe5tQfKg/UOaCOvj1qlfful8dWGeDkizxUmGum NLuEk5ldV8qmOMZJOVUBvQ2Ktt152N425ygK5rczyQBwbU7pNINT0y/0FztqZhcT 69fF3I12NqzvytPKTGPQt24W684dUFS30Hv6Vx6GZhulamT5yi8= -----END CERTIFICATE-----Generated at Tue May 13 20:39:30 2025 by rpki-client