$ rpki-client -vvf repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.mft File: 861DE86D91E4C7508D388EDBC70834681B43B5CA.mft (raw, json) Hash identifier: 8VyZfKio1vXm4q2P7fcX+6slqtCvUbQCDlzo0CjDYeQ= Subject key identifier: 80:4F:62:2D:4A:7B:33:01:0F:8A:52:A3:8C:0F:94:1D:BC:50:5A:C0 Authority key identifier: 86:1D:E8:6D:91:E4:C7:50:8D:38:8E:DB:C7:08:34:68:1B:43:B5:CA Certificate issuer: /CN=861DE86D91E4C7508D388EDBC70834681B43B5CA Certificate serial: 436B2699FE5CDEADFE5067E7DCB5D54AFC412910 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/861DE86D91E4C7508D388EDBC70834681B43B5CA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.mft Manifest number: 0487 Signing time: Fri 09 May 2025 00:31:32 +0000 Manifest this update: Fri 09 May 2025 00:26:32 +0000 Manifest next update: Mon 12 May 2025 09:44:32 +0000 Files and hashes: 1: 861DE86D91E4C7508D388EDBC70834681B43B5CA.crl (hash: DPOf8gbDA7xWfXs9+fDOy9++WdY16nPJAqmlQmpNC5U=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.crl rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/861DE86D91E4C7508D388EDBC70834681B43B5CA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 09:44:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:6b:26:99:fe:5c:de:ad:fe:50:67:e7:dc:b5:d5:4a:fc:41:29:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=861DE86D91E4C7508D388EDBC70834681B43B5CA Validity Not Before: May 9 00:26:32 2025 GMT Not After : May 12 09:44:32 2025 GMT Subject: CN=804F622D4A7B33010F8A52A38C0F941DBC505AC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:87:24:5d:dd:b9:74:09:86:83:cd:0a:87:66: 2c:2d:27:e3:82:86:6b:14:fb:c2:2d:3e:38:33:54: ca:5d:b9:f5:6a:68:af:6c:4a:e4:f0:7a:2d:a0:5c: e3:d6:7c:98:66:42:89:b3:b3:49:2c:70:17:88:cf: cd:8e:31:ad:77:e7:63:bd:d7:39:d2:fd:5d:eb:5e: d7:32:1c:e3:c7:1c:11:05:4a:7a:4f:c2:fe:08:0e: 52:6a:3c:a2:89:3b:17:2c:9a:f2:a4:4f:46:b5:8a: 15:4e:f8:24:0f:59:7a:cc:a5:73:5f:77:38:6f:a2: 3a:9c:f4:0d:50:ed:2e:ce:ac:34:89:f0:e3:b5:3d: e9:c3:64:42:29:bc:5a:e1:56:f7:f8:51:c0:92:cd: 0d:c8:4e:99:a2:b6:92:93:ec:f1:af:ff:d2:59:78: c3:be:32:33:4d:76:d7:4a:0f:9b:cd:1f:ed:9d:38: 91:ea:ba:34:a2:08:31:87:93:4d:a9:ef:a8:4e:9f: 5f:28:b9:1e:ff:fa:2a:5e:8d:7d:d0:fa:87:eb:61: 99:9b:4a:13:c4:a3:a6:f5:66:c7:38:83:37:a1:ac: 72:d6:1a:b2:d1:cf:34:cb:34:35:43:8d:98:66:04: cf:1f:42:68:f5:9e:82:d9:d2:b7:48:9c:c1:ea:19: 42:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:4F:62:2D:4A:7B:33:01:0F:8A:52:A3:8C:0F:94:1D:BC:50:5A:C0 X509v3 Authority Key Identifier: keyid:86:1D:E8:6D:91:E4:C7:50:8D:38:8E:DB:C7:08:34:68:1B:43:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/861DE86D91E4C7508D388EDBC70834681B43B5CA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:32:0c:8d:83:fd:31:32:e3:f8:ed:50:e9:d3:ff:ee:1b:99: c6:ae:80:8b:08:14:96:05:d0:cb:b3:f5:61:8b:81:a6:05:78: d3:e6:4d:78:51:65:ab:37:27:e4:b7:f6:eb:bb:35:61:bf:2d: ce:59:37:5c:f0:60:51:bd:09:31:b0:18:69:c2:89:a6:33:b8: cd:b0:87:31:b3:f0:d4:03:6f:5d:2d:2b:aa:32:5e:a2:2d:76: df:ab:33:89:fb:c5:16:36:77:eb:c5:1e:e5:d5:85:16:d7:76: cf:dd:44:2b:22:19:cf:eb:d2:68:9a:f2:53:80:f9:ab:8f:e8: be:93:ea:1e:04:18:dd:3e:00:fd:7f:f5:9c:a0:60:ff:99:50: ee:52:99:53:05:05:c3:fc:90:6a:1a:73:96:6e:40:18:c5:3a: 94:a6:bb:94:b6:c3:52:1d:68:56:0b:0d:f8:d4:fd:fb:24:07: 37:3f:84:03:f6:94:1c:10:48:cb:c3:d6:ec:83:ff:fc:38:82: 18:92:28:6c:cc:f1:64:3e:9d:e8:d1:9a:a8:f5:3f:b3:11:2f: 9b:24:13:e1:0c:79:54:48:9e:17:ee:60:85:65:ff:a8:7f:67: 1d:e4:e6:9e:17:ca:b8:12:26:a8:a3:6f:bf:1c:20:7c:ed:2f: 47:b4:06:cc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ2smmf5c3q3+UGfn3LXVSvxBKRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYxREU4NkQ5MUU0Qzc1MDhEMzg4RURCQzcwODM0Njgx QjQzQjVDQTAeFw0yNTA1MDkwMDI2MzJaFw0yNTA1MTIwOTQ0MzJaMDMxMTAvBgNV BAMTKDgwNEY2MjJENEE3QjMzMDEwRjhBNTJBMzhDMEY5NDFEQkM1MDVBQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHhyRd3bl0CYaDzQqHZiwtJ+OC hmsU+8ItPjgzVMpdufVqaK9sSuTwei2gXOPWfJhmQomzs0kscBeIz82OMa1352O9 1znS/V3rXtcyHOPHHBEFSnpPwv4IDlJqPKKJOxcsmvKkT0a1ihVO+CQPWXrMpXNf dzhvojqc9A1Q7S7OrDSJ8OO1PenDZEIpvFrhVvf4UcCSzQ3ITpmitpKT7PGv/9JZ eMO+MjNNdtdKD5vNH+2dOJHqujSiCDGHk02p76hOn18ouR7/+ipejX3Q+ofrYZmb ShPEo6b1Zsc4gzehrHLWGrLRzzTLNDVDjZhmBM8fQmj1noLZ0rdInMHqGULXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgE9iLUp7MwEPilKjjA+UHbxQWsAwHwYDVR0j BBgwFoAUhh3obZHkx1CNOI7bxwg0aBtDtcowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NjlmMjk4OC1jYWIzLTQ1YWEtOTdlNS02Mzg1ZjA3ZmYxY2QvMC84NjFERTg2RDkx RTRDNzUwOEQzODhFREJDNzA4MzQ2ODFCNDNCNUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODYxREU4NkQ5MUU0Qzc1MDhEMzg4RURCQzcwODM0NjgxQjQz QjVDQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODY5ZjI5ODgtY2FiMy00NWFhLTk3 ZTUtNjM4NWYwN2ZmMWNkLzAvODYxREU4NkQ5MUU0Qzc1MDhEMzg4RURCQzcwODM0 NjgxQjQzQjVDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJYyDI2D/TEy4/jtUOnT/+4bmcaugIsIFJYF 0Muz9WGLgaYFeNPmTXhRZas3J+S39uu7NWG/Lc5ZN1zwYFG9CTGwGGnCiaYzuM2w hzGz8NQDb10tK6oyXqItdt+rM4n7xRY2d+vFHuXVhRbXds/dRCsiGc/r0mia8lOA +auP6L6T6h4EGN0+AP1/9ZygYP+ZUO5SmVMFBcP8kGoac5ZuQBjFOpSmu5S2w1Id aFYLDfjU/fskBzc/hAP2lBwQSMvD1uyD//w4ghiSKGzM8WQ+nejRmqj1P7MRL5sk E+EMeVRInhfuYIVl/6h/Zx3k5p4XyrgSJqijb78cIHztL0e0Bsw= -----END CERTIFICATE-----Generated at Fri May 9 05:32:55 2025 by rpki-client