$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft File: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft (raw, json) Hash identifier: ol8CqXN9rZxZVl+7otz/8pOIPyk/uKY8T3HvV/LxYBY= Subject key identifier: 14:A3:FA:1F:AF:AF:5D:E8:19:7D:4E:3D:D7:7A:48:EA:FF:87:EC:82 Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 6572B7446FBDFA8FB902238E44ECB28BC9499757 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft Manifest number: 7F Signing time: Thu 08 May 2025 21:21:59 +0000 Manifest this update: Thu 08 May 2025 21:16:59 +0000 Manifest next update: Mon 12 May 2025 08:44:59 +0000 Files and hashes: 1: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (hash: W7WMatvzYXuALvuTzGQVbHotqWD0nd56JaqQ7uT/XBU=) 2: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (hash: 9LNgGVv86zEnKjQNsGSTYEvVvGQkNogYzW1V+EdhwJM=) 3: 323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa (hash: 68fT/6O+GQIrkXJcp+Dg6OpaZLLbbrSI6G1YMP9fXt0=) 4: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (hash: i5RZxjcZhVQvmnAc/gMhyUIUY8n5jdbL7g9L8hbgD/Y=) 5: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl (hash: d9qKSwwtpXXbuf5tzZdNpX66nFt55QMWsIjhPp0p0VY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 08:44:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:72:b7:44:6f:bd:fa:8f:b9:02:23:8e:44:ec:b2:8b:c9:49:97:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: May 8 21:16:59 2025 GMT Not After : May 12 08:44:59 2025 GMT Subject: CN=14A3FA1FAFAF5DE8197D4E3DD77A48EAFF87EC82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2a:10:e5:04:42:2e:32:44:f9:6d:c3:32:fc: 47:3f:7c:28:f2:54:e7:da:af:6e:44:68:3b:36:f7: f8:e7:99:7c:45:19:13:dc:fb:8c:01:00:23:7a:fa: ee:11:fc:90:20:0a:70:d4:da:09:4d:3c:56:a8:5c: 2c:55:2b:60:92:8d:d2:c4:bc:ed:52:13:d2:9a:ea: d9:38:59:7e:10:9e:9f:8d:c3:13:db:7a:d2:d6:3b: c6:af:93:17:5f:c6:f8:d5:fb:c9:82:9f:a2:78:14: 13:d0:26:d9:5f:78:85:7a:2c:fe:c4:a6:44:0c:84: f3:07:97:92:ac:a9:a7:01:0d:5d:d4:fd:7e:cd:4b: e3:26:41:31:18:19:1e:82:77:40:47:a7:5c:5c:ad: 20:d4:cf:30:34:54:99:36:24:52:0f:0c:c2:45:24: ea:af:af:e9:4c:b2:c5:0b:6b:ce:77:ec:68:87:3b: 68:10:5e:87:39:25:20:45:e7:da:4c:3e:eb:1a:14: aa:8c:6d:7e:0c:53:05:a5:c4:58:14:89:c5:65:40: 11:49:eb:bf:ef:c6:a9:80:10:60:28:19:c0:9f:a9: 2b:08:ec:35:39:ba:84:ae:52:d8:19:2d:da:b5:f3: 79:78:25:90:60:3c:b4:2d:dd:1a:28:8f:bc:94:dc: e8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A3:FA:1F:AF:AF:5D:E8:19:7D:4E:3D:D7:7A:48:EA:FF:87:EC:82 X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:83:c9:19:3e:61:33:69:54:51:fa:06:e2:29:1c:33:c8:c5: c2:87:93:6c:8c:55:3f:38:44:d0:25:84:23:c3:bd:33:2e:2e: c7:e8:54:af:03:bc:93:a6:e5:f4:bc:d2:c2:29:f1:e2:89:0b: ee:cf:f1:8c:73:6e:f6:6e:d2:c9:4d:36:e1:f5:2a:3d:e0:a9: 95:54:00:1c:d8:8d:c3:58:e2:24:fd:48:be:3f:95:03:27:79: 71:6e:19:8f:78:df:1f:18:3d:4c:e9:71:ae:8a:a0:70:fc:85: b0:3c:6c:9a:72:4d:5e:21:c9:49:53:2d:12:18:3f:f5:bb:74: 51:25:68:e4:53:b6:61:9d:d9:cc:33:ea:a8:87:20:99:f2:83: e8:f9:5e:33:e5:dc:51:d6:07:3b:2d:bc:df:ef:99:ba:b4:da: 68:32:e6:f5:7e:33:38:54:27:79:01:90:ce:93:2f:f0:38:5c: 6c:08:cb:fe:74:0f:ec:2d:1f:6f:2e:62:68:5c:57:e1:45:35: 0f:b4:a5:2c:96:7f:8c:45:5b:fe:52:9d:54:30:0b:c2:3c:96: a8:51:e3:ac:23:24:b7:86:fc:a7:31:d2:5f:7f:e4:f9:db:32: c0:de:7a:03:e3:bf:b4:f1:2f:0e:a5:60:86:2b:b2:c5:3e:b5: ed:4f:d3:cc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZXK3RG+9+o+5AiOOROyyi8lJl1cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNTA1MDgyMTE2NTlaFw0yNTA1MTIwODQ0NTlaMDMxMTAvBgNV BAMTKDE0QTNGQTFGQUZBRjVERTgxOTdENEUzREQ3N0E0OEVBRkY4N0VDODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFKhDlBEIuMkT5bcMy/Ec/fCjy VOfar25EaDs29/jnmXxFGRPc+4wBACN6+u4R/JAgCnDU2glNPFaoXCxVK2CSjdLE vO1SE9Ka6tk4WX4Qnp+NwxPbetLWO8avkxdfxvjV+8mCn6J4FBPQJtlfeIV6LP7E pkQMhPMHl5KsqacBDV3U/X7NS+MmQTEYGR6Cd0BHp1xcrSDUzzA0VJk2JFIPDMJF JOqvr+lMssULa8537GiHO2gQXoc5JSBF59pMPusaFKqMbX4MUwWlxFgUicVlQBFJ 67/vxqmAEGAoGcCfqSsI7DU5uoSuUtgZLdq183l4JZBgPLQt3Rooj7yU3OidAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFKP6H6+vXegZfU4913pI6v+H7IIwHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGI3MmVjYTQtNzNhZC00ZTBiLWE2 YTYtN2E2NTY5OGI3M2JlLzAvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNG NDM0NDk3QkZFMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB+DyRk+YTNpVFH6BuIpHDPIxcKHk2yMVT84 RNAlhCPDvTMuLsfoVK8DvJOm5fS80sIp8eKJC+7P8YxzbvZu0slNNuH1Kj3gqZVU ABzYjcNY4iT9SL4/lQMneXFuGY943x8YPUzpca6KoHD8hbA8bJpyTV4hyUlTLRIY P/W7dFElaORTtmGd2cwz6qiHIJnyg+j5XjPl3FHWBzstvN/vmbq02mgy5vV+MzhU J3kBkM6TL/A4XGwIy/50D+wtH28uYmhcV+FFNQ+0pSyWf4xFW/5SnVQwC8I8lqhR 46wjJLeG/Kcx0l9/5PnbMsDeegPjv7TxLw6lYIYrssU+te1P08w= -----END CERTIFICATE-----Generated at Sat May 10 06:42:53 2025 by rpki-client