$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft File: 4C44F6F543BDBB858D3656D41A36660407672BDE.mft (raw, json) Hash identifier: 23YPSekjTgtvubTn3VOAJ/80X4jzrAIIT/7hEAMQass= Subject key identifier: 9D:C5:2F:8E:94:37:F8:FD:BE:67:59:A4:0F:65:CC:4A:AE:1F:F8:8F Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 3F881B9083D43FF9C6DB4CBCD11F36E4BA7658EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft Manifest number: 0220 Signing time: Wed 07 May 2025 03:40:56 +0000 Manifest this update: Wed 07 May 2025 03:35:56 +0000 Manifest next update: Sat 10 May 2025 11:20:56 +0000 Files and hashes: 1: 4C44F6F543BDBB858D3656D41A36660407672BDE.crl (hash: toMrKua6qZzSIG2rDFTsJ45QazYPycDcxTRFX7/Nsjo=) 2: 3130332e32392e3138352e302f32342d3234203d3e203536323630.roa (hash: rlZNRe9QwPDxRgCp5O054ihVTvOafRmbaG0Hj+9kO5Q=) 3: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (hash: 8Rg4KVnY/32fl4fG4uMRblRtiju0uviBp14XLoqECcw=) 4: 3130332e32392e3138342e302f32342d3234203d3e203536323630.roa (hash: PxQIpqbQq2jLhpu3Xowhx5fys0b4IY/JPo7Tka0HdFo=) 5: 3130332e31312e3130362e302f32342d3234203d3e203536323630.roa (hash: /oNKkVvACpGRwEaHQtz+NrUuOBWsbNWp6QRHeV0MPMU=) 6: 3130332e31312e3130372e302f32342d3234203d3e203538343832.roa (hash: 4O8b726/lpcYZIzCbq+BOqW7rrh6L+bwyN5I34NP9Oc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 11:20:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:88:1b:90:83:d4:3f:f9:c6:db:4c:bc:d1:1f:36:e4:ba:76:58:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: May 7 03:35:56 2025 GMT Not After : May 10 11:20:56 2025 GMT Subject: CN=9DC52F8E9437F8FDBE6759A40F65CC4AAE1FF88F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0f:9b:0e:5e:1e:eb:eb:cc:fa:b7:9d:8d:42: fc:cf:58:9a:54:f7:4e:b3:90:40:58:12:ba:45:7c: e7:b9:55:e0:ed:34:8b:b5:02:01:73:b7:8b:e9:50: d6:da:fb:fe:30:bb:5e:01:82:d4:0a:aa:f1:ec:e5: 53:07:67:96:13:97:e8:4e:1a:32:eb:7d:06:1c:79: f3:42:16:85:d0:18:be:d3:2d:c0:93:d7:0e:14:2a: 6a:ea:05:fc:58:d0:c6:5f:9b:94:5f:72:9b:37:e5: c9:71:a4:42:41:fc:f1:c6:b6:9e:63:59:75:c4:8a: dd:01:4a:74:75:7a:76:dc:28:8b:a9:57:62:54:48: 6b:3f:31:85:da:bd:e0:78:26:3c:6b:08:87:54:d0: ed:da:51:79:77:b8:91:23:2a:ef:2d:13:f0:f2:98: 93:2c:5b:3f:b1:4e:6c:e1:5d:f7:2f:ff:2c:49:ba: 95:23:d8:db:e7:37:b5:17:29:37:d8:20:3b:05:24: 92:04:24:ab:23:4d:69:a0:36:d3:be:9d:70:e4:60: a0:cc:da:ed:ab:ae:24:ad:a0:93:5b:59:5a:71:0b: c7:79:d0:70:09:4d:f2:e9:1b:6f:58:0f:59:3d:9e: ea:8d:d6:f3:99:92:15:4e:fa:01:ca:c9:f1:41:7a: 43:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:C5:2F:8E:94:37:F8:FD:BE:67:59:A4:0F:65:CC:4A:AE:1F:F8:8F X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:8b:50:db:4a:a3:a9:84:6a:ec:ad:89:5b:03:5f:28:6e:13: 46:a1:00:37:18:e2:b9:67:7b:bd:a0:36:9e:c7:c2:97:88:4b: c9:74:be:03:89:cf:cb:b1:01:28:81:6d:38:79:2e:53:eb:b7: 9a:c4:e3:35:2a:71:38:7c:bd:85:c0:14:a6:80:6f:88:39:1b: bc:ed:ba:8d:c8:93:9f:2b:b0:21:7d:a9:fc:ae:0c:d2:a4:2a: b2:58:f4:cc:1f:73:e7:60:91:f0:34:50:c1:ce:aa:ca:a8:d1: 10:22:c8:c1:d6:0c:21:d2:1c:22:50:9e:8e:0f:b7:0e:7b:12: 58:04:f1:c5:36:fc:54:b0:8e:92:9e:87:e5:0c:0d:b8:1e:8c: d0:9f:b2:ca:e3:5c:64:87:f6:0c:c0:49:27:d5:15:1f:32:75: 86:63:f5:ec:45:44:cd:fe:62:ed:8c:12:b3:89:c0:58:88:b9: e2:32:af:10:a3:52:2b:25:4f:11:50:67:61:46:81:ff:f5:85: 77:6d:85:b6:8f:72:de:17:ad:ac:a0:f8:8e:74:25:50:cd:7f: 58:b6:ad:1a:e4:cd:7b:c2:ca:4f:74:5c:19:2f:de:70:45:a5: 38:4f:1f:eb:fb:b1:38:9e:45:ba:fa:94:66:21:4e:e4:47:7c: 69:e0:92:10 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUP4gbkIPUP/nG20y80R825Lp2WOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNTA1MDcwMzM1NTZaFw0yNTA1MTAxMTIwNTZaMDMxMTAvBgNV BAMTKDlEQzUyRjhFOTQzN0Y4RkRCRTY3NTlBNDBGNjVDQzRBQUUxRkY4OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbD5sOXh7r68z6t52NQvzPWJpU 906zkEBYErpFfOe5VeDtNIu1AgFzt4vpUNba+/4wu14BgtQKqvHs5VMHZ5YTl+hO GjLrfQYcefNCFoXQGL7TLcCT1w4UKmrqBfxY0MZfm5Rfcps35clxpEJB/PHGtp5j WXXEit0BSnR1enbcKIupV2JUSGs/MYXaveB4JjxrCIdU0O3aUXl3uJEjKu8tE/Dy mJMsWz+xTmzhXfcv/yxJupUj2NvnN7UXKTfYIDsFJJIEJKsjTWmgNtO+nXDkYKDM 2u2rriStoJNbWVpxC8d50HAJTfLpG29YD1k9nuqN1vOZkhVO+gHKyfFBekOXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUncUvjpQ3+P2+Z1mkD2XMSq4f+I8wHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODVmMmM2NmMtMWY4Ny00ZDk4LWE0 NjctMzIxOGI2NDViM2FjLzAvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2 MDQwNzY3MkJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH6LUNtKo6mEauytiVsDXyhuE0ahADcY4rln e72gNp7HwpeIS8l0vgOJz8uxASiBbTh5LlPrt5rE4zUqcTh8vYXAFKaAb4g5G7zt uo3Ik58rsCF9qfyuDNKkKrJY9Mwfc+dgkfA0UMHOqsqo0RAiyMHWDCHSHCJQno4P tw57ElgE8cU2/FSwjpKeh+UMDbgejNCfssrjXGSH9gzASSfVFR8ydYZj9exFRM3+ Yu2MErOJwFiIueIyrxCjUislTxFQZ2FGgf/1hXdthbaPct4Xrayg+I50JVDNf1i2 rRrkzXvCyk90XBkv3nBFpThPH+v7sTieRbr6lGYhTuRHfGngkhA= -----END CERTIFICATE-----Generated at Fri May 9 02:50:03 2025 by rpki-client