$ rpki-client -vvf repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft File: 4E52504397B6835784BD4E67D8048C0D1CE3B242.mft (raw, json) Hash identifier: a+tp9173LS8UCTzZfBkEe1b6wT7ZXD8ma+rxX9UAVWY= Subject key identifier: FB:AD:F7:6E:FB:D5:C6:1F:82:94:12:58:3D:32:29:42:39:D1:CE:59 Authority key identifier: 4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 Certificate issuer: /CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Certificate serial: 10F8E254727F82EF09BAA6DD9F52B019D1E900CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject info access: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft Manifest number: 04D2 Signing time: Mon 12 May 2025 05:22:14 +0000 Manifest this update: Mon 12 May 2025 05:17:14 +0000 Manifest next update: Thu 15 May 2025 07:48:14 +0000 Files and hashes: 1: 34332e3234352e3138382e302f32322d3234203d3e203538333736.roa (hash: XNyUIRQtKNQg0scHLvGfTd1iQ5fTzdzUb2EnWutkjlI=) 2: 4E52504397B6835784BD4E67D8048C0D1CE3B242.crl (hash: sYeH/0OsSrIQwJRD8U3eshNCtNCpKEeaheJj/5Qqhmc=) 3: 323430333a653630303a3a2f33322d3332203d3e203538333736.roa (hash: j7YamreoNvDtpRRCa1576yblhtpzYGNi0GVQwvs+/uU=) 4: 3130332e32392e3134382e302f32322d3234203d3e203538333736.roa (hash: BdJaFao8B+TjAWAlyv2cIwAqEFZulu5t7ZhP4Qtv2fY=) 5: 323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa (hash: 28/7yzYFPU2INXX42MopSeFSOK24RIpHwZvJY6Bghl8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 07:48:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:f8:e2:54:72:7f:82:ef:09:ba:a6:dd:9f:52:b0:19:d1:e9:00:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Validity Not Before: May 12 05:17:14 2025 GMT Not After : May 15 07:48:14 2025 GMT Subject: CN=FBADF76EFBD5C61F829412583D32294239D1CE59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0b:09:38:16:e7:f6:5d:32:ae:09:18:0d:56: 20:0c:1e:44:8d:b3:f1:5f:e9:9e:e9:e5:d2:d7:92: ca:8d:15:30:45:a5:3d:e5:e0:e1:ac:84:0b:f1:a6: 07:ba:b0:59:25:56:31:40:32:c7:77:22:ae:95:60: 77:40:15:46:fc:b7:7a:cb:15:4f:6d:d2:f6:a8:45: ba:ca:ae:9b:f7:eb:78:e9:22:86:eb:ce:10:38:b2: b2:7c:a5:82:da:15:58:e9:ea:cb:02:9e:bb:ff:f0: 4b:e6:ad:f5:a4:26:e0:69:ed:89:bd:b9:11:1e:3c: d4:ac:88:4d:49:85:06:68:c6:3f:ea:f6:90:50:bb: 52:b2:a4:91:b9:58:64:2f:33:3d:66:e3:2c:53:d2: 11:6a:04:c3:96:b6:08:70:e2:49:ef:b9:6a:8c:f7: 26:36:97:ea:67:9d:eb:0e:21:af:7d:3a:8d:05:a0: 6d:66:e0:1b:8a:38:f6:f4:3d:1e:a1:3c:05:42:18: ac:e9:f7:94:fa:e9:18:3e:5b:57:75:7a:cb:2a:b0: 75:58:3e:4f:96:cd:2b:5e:84:eb:6d:aa:d4:2e:35: 81:f6:2e:a2:7e:22:0f:14:f5:7d:5f:b5:f1:5c:7e: 02:28:6c:30:e6:38:b6:6c:fd:6e:26:fc:cd:4a:e1: f5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:AD:F7:6E:FB:D5:C6:1F:82:94:12:58:3D:32:29:42:39:D1:CE:59 X509v3 Authority Key Identifier: keyid:4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:9d:d7:9e:f3:c3:d4:89:be:a6:68:73:52:10:1e:98:37:61: 3d:ab:a3:50:84:e0:bf:11:a3:e9:35:5f:36:aa:2a:9d:85:19: 65:a2:31:50:ae:05:48:d2:0f:13:76:90:ba:4f:81:17:7b:7d: 47:bb:d8:c8:34:94:c4:90:db:56:90:f8:49:f0:fe:59:6a:91: eb:ea:5f:54:6d:d6:8a:e6:90:5a:6b:bb:3c:cb:15:2f:af:ed: 3e:a9:b8:68:c9:dc:3d:6a:a0:27:de:90:8c:7f:2d:ff:ce:b3: 9e:30:7f:86:d7:b4:53:6c:64:ab:23:1f:35:6c:16:3c:59:3d: 76:47:86:81:a8:a6:e7:43:1a:1c:8c:a4:02:1d:10:c4:6e:5a: d2:77:93:1b:50:39:43:2d:84:a0:68:95:1b:e6:d7:2c:af:94: e3:2e:9f:92:05:5b:cb:12:0e:42:98:76:e9:db:a8:df:62:29: ff:78:9f:f1:ea:c7:52:a1:1a:a9:7d:13:91:57:3a:27:ec:ee: 0b:d9:43:55:6d:f1:77:87:0c:0f:ab:bc:9e:23:74:40:08:cf: 07:22:30:72:58:0f:32:08:76:ed:53:df:8d:5f:c8:85:07:fb: 5e:69:b1:c9:9b:56:3f:d6:9f:6e:ae:e7:a6:bc:79:80:02:50: 9e:01:27:da -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEPjiVHJ/gu8Juqbdn1KwGdHpAMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQx Q0UzQjI0MjAeFw0yNTA1MTIwNTE3MTRaFw0yNTA1MTUwNzQ4MTRaMDMxMTAvBgNV BAMTKEZCQURGNzZFRkJENUM2MUY4Mjk0MTI1ODNEMzIyOTQyMzlEMUNFNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBCwk4Fuf2XTKuCRgNViAMHkSN s/Ff6Z7p5dLXksqNFTBFpT3l4OGshAvxpge6sFklVjFAMsd3Iq6VYHdAFUb8t3rL FU9t0vaoRbrKrpv363jpIobrzhA4srJ8pYLaFVjp6ssCnrv/8EvmrfWkJuBp7Ym9 uREePNSsiE1JhQZoxj/q9pBQu1KypJG5WGQvMz1m4yxT0hFqBMOWtghw4knvuWqM 9yY2l+pnnesOIa99Oo0FoG1m4BuKOPb0PR6hPAVCGKzp95T66Rg+W1d1essqsHVY Pk+WzStehOttqtQuNYH2LqJ+Ig8U9X1ftfFcfgIobDDmOLZs/W4m/M1K4fWpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+633bvvVxh+ClBJYPTIpQjnRzlkwHwYDVR0j BBgwFoAUTlJQQ5e2g1eEvU5n2ASMDRzjskIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTFkM2MzMC05NWRjLTRiNzItYWUxYi1hZDFlOThiMGUxNzkvMC80RTUyNTA0Mzk3 QjY4MzU3ODRCRDRFNjdEODA0OEMwRDFDRTNCMjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQxQ0Uz QjI0Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODkxZDNjMzAtOTVkYy00YjcyLWFl MWItYWQxZTk4YjBlMTc5LzAvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhD MEQxQ0UzQjI0Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJKd157zw9SJvqZoc1IQHpg3YT2ro1CE4L8R o+k1XzaqKp2FGWWiMVCuBUjSDxN2kLpPgRd7fUe72Mg0lMSQ21aQ+Enw/llqkevq X1Rt1ormkFpruzzLFS+v7T6puGjJ3D1qoCfekIx/Lf/Os54wf4bXtFNsZKsjHzVs FjxZPXZHhoGopudDGhyMpAIdEMRuWtJ3kxtQOUMthKBolRvm1yyvlOMun5IFW8sS DkKYdunbqN9iKf94n/Hqx1KhGql9E5FXOifs7gvZQ1Vt8XeHDA+rvJ4jdEAIzwci MHJYDzIIdu1T341fyIUH+15pscmbVj/Wn26u56a8eYACUJ4BJ9o= -----END CERTIFICATE-----Generated at Mon May 12 11:07:28 2025 by rpki-client