$ rpki-client -vvf repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft File: 27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft (raw, json) Hash identifier: yL8znTkNxTosUP0vtKiJaZzojr4yAd9a32wSA3+57JQ= Subject key identifier: 3E:91:B1:BE:B6:27:49:5F:44:FE:8E:9D:AB:CC:7D:BA:52:DB:BE:51 Authority key identifier: 27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC Certificate issuer: /CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Certificate serial: 3388C22A12A7FD1169A4BDA1946136DE42FEB55B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft Manifest number: 0158 Signing time: Mon 05 May 2025 06:51:13 +0000 Manifest this update: Mon 05 May 2025 06:46:13 +0000 Manifest next update: Thu 08 May 2025 12:13:13 +0000 Files and hashes: 1: 3130332e37302e31392e302f32342d3234203d3e20313335343632.roa (hash: 6N2J2kg+Zlk+0sQHWC1BIhfECV5xjbZiRhQRFmUUNag=) 2: 3130332e37302e31362e302f32342d3234203d3e20313335343632.roa (hash: JiNsqLJvEYFIyhrR6R0JR1hrj3KWiaaB75HG9L5QPcg=) 3: 27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl (hash: cXqxJyccCXo+VPeTg0BVoFPwI87x22XZT7cSFI3famo=) 4: 3130332e37302e31382e302f32342d3234203d3e20313335343632.roa (hash: Q3xxSdQXC23vXFGFdHyLQV020HZB9BgH6IL3S5vtQAA=) 5: 3130332e37302e31372e302f32342d3234203d3e20313335343632.roa (hash: 6gVzJ3lnoTzbRecAFAnRC8x24kDXXXW3lAWqPBdz2dw=) 6: 3130332e37302e31362e302f32322d3232203d3e20313335343632.roa (hash: 1f4e1XEuXG9su40zHvwmNI+q39l2fKb22IFThBoIE0Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 12:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:88:c2:2a:12:a7:fd:11:69:a4:bd:a1:94:61:36:de:42:fe:b5:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Validity Not Before: May 5 06:46:13 2025 GMT Not After : May 8 12:13:13 2025 GMT Subject: CN=3E91B1BEB627495F44FE8E9DABCC7DBA52DBBE51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c3:81:05:bf:1f:2f:dd:48:75:35:b6:ab:73: f2:40:26:91:66:c1:87:7c:6f:66:6b:85:3d:c2:09: cd:bc:95:91:41:62:1b:0c:76:17:5c:5c:7f:ad:b5: f6:15:d3:31:5b:f3:4f:7d:eb:fd:79:5e:48:7f:99: d7:b6:20:7e:8b:e3:03:4f:f9:3d:4d:31:95:d3:6e: 5d:3f:20:0e:49:53:5b:4a:94:94:37:02:5f:19:4f: a7:37:8a:40:61:32:c5:66:92:d2:99:0e:35:cc:f0: 9f:12:ce:72:00:2f:20:40:2c:74:77:80:2b:ef:b7: 06:9a:f9:fc:1e:fe:64:3c:c5:fd:ce:08:7f:7d:a6: 91:89:a4:1b:37:d0:4d:44:81:37:f9:7e:38:8f:19: 65:35:e7:2e:da:d0:a1:76:60:fc:94:de:a8:25:a1: 26:4e:29:8a:ac:95:7d:fa:0a:ea:e6:f7:47:92:14: de:d1:cd:20:e7:67:8b:83:8e:6e:e0:63:d7:6a:8e: ce:ee:28:33:ab:82:bd:d2:39:82:89:c2:13:bf:7e: 9c:d9:ca:54:07:2d:63:a8:ee:4b:cc:b2:25:e5:bf: a3:1c:71:49:d3:be:94:65:8f:73:d0:cd:5b:85:63: c0:cf:b1:2f:f9:d0:8d:02:e3:12:df:68:0d:bb:a5: ee:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:91:B1:BE:B6:27:49:5F:44:FE:8E:9D:AB:CC:7D:BA:52:DB:BE:51 X509v3 Authority Key Identifier: keyid:27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:89:fd:61:32:73:8e:88:e0:18:18:28:1f:5c:2a:56:29:ac: fe:a7:4c:38:54:3b:7b:7c:43:7f:a9:8f:bb:0e:ca:e7:36:48: a0:28:8c:33:80:1a:ca:cf:b3:68:28:00:b0:bd:86:b7:e6:98: 1a:a4:bc:e8:a2:ff:a8:b3:c5:96:c9:1d:38:f8:d7:96:95:88: df:c8:eb:2b:56:bc:d4:4c:2b:c7:55:f8:5d:00:d6:a2:2a:b2: 24:02:86:86:7d:5f:71:02:38:ab:11:65:28:35:a9:7c:ce:cb: 88:13:6a:af:d9:fd:23:37:a3:39:fb:8a:b0:45:5f:31:2e:b4: fe:8d:7b:03:c7:c9:7a:89:1d:96:02:16:d5:40:b6:6f:f1:13: 2e:43:4f:41:ac:ba:da:0c:06:69:f7:03:23:d0:25:3a:00:43: 8a:73:df:e8:66:fa:19:5c:05:de:f8:ed:34:19:8d:95:31:8b: 3f:81:8e:c2:dd:eb:74:e0:59:be:0c:c7:a8:76:37:81:11:25: f8:43:c2:ca:76:bc:3e:7c:05:ff:d3:e1:43:5a:33:5a:e5:25: c2:ab:0e:53:8d:4b:ff:0d:8c:90:2d:4f:5c:39:e8:aa:20:8c: 50:8b:ee:85:10:79:49:04:08:f4:b0:a0:05:d1:f1:07:ce:f4: af:c3:01:29 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUM4jCKhKn/RFppL2hlGE23kL+tVswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlC NTM2OTVGQzAeFw0yNTA1MDUwNjQ2MTNaFw0yNTA1MDgxMjEzMTNaMDMxMTAvBgNV BAMTKDNFOTFCMUJFQjYyNzQ5NUY0NEZFOEU5REFCQ0M3REJBNTJEQkJFNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2w4EFvx8v3Uh1Nbarc/JAJpFm wYd8b2ZrhT3CCc28lZFBYhsMdhdcXH+ttfYV0zFb80996/15Xkh/mde2IH6L4wNP +T1NMZXTbl0/IA5JU1tKlJQ3Al8ZT6c3ikBhMsVmktKZDjXM8J8SznIALyBALHR3 gCvvtwaa+fwe/mQ8xf3OCH99ppGJpBs30E1EgTf5fjiPGWU15y7a0KF2YPyU3qgl oSZOKYqslX36Curm90eSFN7RzSDnZ4uDjm7gY9dqjs7uKDOrgr3SOYKJwhO/fpzZ ylQHLWOo7kvMsiXlv6MccUnTvpRlj3PQzVuFY8DPsS/50I0C4xLfaA27pe61AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPpGxvrYnSV9E/o6dq8x9ulLbvlEwHwYDVR0j BBgwFoAUJ7dzoXPgQA+8DX/t/P94CbU2lfwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmY0ZDRmMS1iMzZjLTRhNDYtODg0NC00ZTZjN2EzYzk3ZDkvMC8yN0I3NzNBMTcz RTA0MDBGQkMwRDdGRURGQ0ZGNzgwOUI1MzY5NUZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlCNTM2 OTVGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODZmNGQ0ZjEtYjM2Yy00YTQ2LTg4 NDQtNGU2YzdhM2M5N2Q5LzAvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4 MDlCNTM2OTVGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJGJ/WEyc46I4BgYKB9cKlYprP6nTDhUO3t8 Q3+pj7sOyuc2SKAojDOAGsrPs2goALC9hrfmmBqkvOii/6izxZbJHTj415aViN/I 6ytWvNRMK8dV+F0A1qIqsiQChoZ9X3ECOKsRZSg1qXzOy4gTaq/Z/SM3ozn7irBF XzEutP6NewPHyXqJHZYCFtVAtm/xEy5DT0GsutoMBmn3AyPQJToAQ4pz3+hm+hlc Bd747TQZjZUxiz+BjsLd63TgWb4Mx6h2N4ERJfhDwsp2vD58Bf/T4UNaM1rlJcKr DlONS/8NjJAtT1w56KogjFCL7oUQeUkECPSwoAXR8QfO9K/DASk= -----END CERTIFICATE-----Generated at Wed May 7 10:36:56 2025 by rpki-client