$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft File: 2FD08E6755CF1CCAAF9D5834449797848A706B57.mft (raw, json) Hash identifier: OArBXZjHSzT6vSi/URNFJ7q15lj9lBAg4celxRQW/Jc= Subject key identifier: D6:55:AE:E0:DC:68:4B:8D:9D:EB:2C:96:AE:12:72:FA:02:CC:D8:FF Authority key identifier: 2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 Certificate issuer: /CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Certificate serial: 16A9E3DA9C0DE325C817C6CC0D2A969D1FBB93E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft Manifest number: 0375 Signing time: Wed 07 May 2025 23:11:56 +0000 Manifest this update: Wed 07 May 2025 23:06:56 +0000 Manifest next update: Sun 11 May 2025 07:53:56 +0000 Files and hashes: 1: 3130332e3136332e3232382e302f32342d3234203d3e20313431383935.roa (hash: wfB/tzQBppuc1HMLNKZS8DgmDxNdzRsLM2dhnwxSWec=) 2: 3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa (hash: hZedPSTR08Zc5q3i4frxXXEyzM8AAXb/PDgw+Iy1Wv4=) 3: 3130332e3136332e3232382e302f32332d3233203d3e20313431383935.roa (hash: +8jSV/P+qx2iDLcVmAlWUEpzsefjQgC+GskbssdGlnA=) 4: 2FD08E6755CF1CCAAF9D5834449797848A706B57.crl (hash: YUvmNkjCwFHn158HkHXxa7zoaHGi5E6AH+TiXSHBiiE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 07:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:a9:e3:da:9c:0d:e3:25:c8:17:c6:cc:0d:2a:96:9d:1f:bb:93:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Validity Not Before: May 7 23:06:56 2025 GMT Not After : May 11 07:53:56 2025 GMT Subject: CN=D655AEE0DC684B8D9DEB2C96AE1272FA02CCD8FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d8:5a:d0:c7:ba:ef:90:0c:48:c2:ba:f8:f3: 21:5a:24:51:6c:8c:52:0b:bf:6b:69:d0:41:f6:2a: 5c:a7:3b:8e:3a:f0:54:35:06:8b:91:53:bf:b0:4f: cb:69:78:93:32:27:aa:f8:5e:c4:70:46:c6:91:73: 3d:67:99:37:0d:20:e0:ca:4a:84:0c:f3:cf:e4:c6: e7:ab:28:a0:14:02:34:41:bd:d2:14:e0:2e:d3:3b: 7b:aa:2d:43:a0:83:9d:ee:f3:2a:f9:2b:0f:60:33: bd:58:83:fa:27:d1:2f:d1:12:8c:a9:9d:06:d3:6a: c5:4a:93:7a:8d:ee:1e:0c:1d:a3:82:45:a7:5f:4a: dd:04:aa:13:d3:13:47:86:8a:eb:d2:c1:a0:2c:4b: 45:e3:df:c5:f9:04:b5:45:71:bb:5a:e5:a3:02:f3: 1f:9b:e4:46:be:24:0e:a6:3e:13:1d:76:e5:32:9d: 24:ab:f7:d3:c8:ce:47:75:e8:4f:42:f9:7f:0d:92: a0:f0:e9:39:6d:49:d3:6c:be:01:3c:c2:af:60:fb: 9e:66:0b:2b:f1:91:0d:36:ce:60:d9:45:2d:c3:f9: fb:b7:44:c7:90:7c:ba:ae:29:75:41:a1:55:52:cc: f3:a4:bf:1e:8c:15:39:b2:e8:86:fe:c0:49:cb:f7: 34:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:55:AE:E0:DC:68:4B:8D:9D:EB:2C:96:AE:12:72:FA:02:CC:D8:FF X509v3 Authority Key Identifier: keyid:2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:41:20:8c:6b:55:24:0c:ff:eb:f4:03:7c:07:bd:44:f1:50: 86:86:82:f6:60:22:3b:3a:bf:04:01:a7:49:8d:61:fb:c8:e1: 2e:d3:2e:77:9b:57:3d:1d:85:e7:eb:fd:35:85:79:73:00:02: 07:57:ff:c4:5a:60:d6:90:65:99:d3:1f:f0:b8:55:11:1d:a1: c1:79:73:99:e9:5f:45:8a:4c:06:e3:02:b0:c1:ad:86:c6:d2: 43:a5:42:98:58:f0:75:30:07:f8:f8:ef:b2:b2:69:bb:af:38: a9:fd:b2:31:f9:1f:76:83:26:74:ac:b5:90:c0:ad:6d:fa:ed: a4:0f:91:fd:e8:06:e6:29:f5:49:ea:6d:50:24:e6:f5:51:2d: b0:73:b6:a7:3f:35:b4:c1:29:ce:98:8a:e9:8b:65:29:8d:8c: 74:b8:5e:e4:32:41:63:ec:f4:4e:b2:a6:04:a4:2e:92:7f:9b: 80:38:41:19:16:66:f3:59:ad:35:a9:5e:e1:e9:2f:62:6d:18: 2d:bb:90:6c:38:95:67:bf:2c:94:28:f5:76:d9:67:a7:61:eb: aa:15:0f:42:92:94:13:a6:55:ac:5b:88:7f:11:23:85:64:e7: af:4e:68:fb:ba:99:7b:3f:1e:0b:46:ce:af:17:16:d1:87:31: eb:07:ca:c8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFqnj2pwN4yXIF8bMDSqWnR+7k+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4 QTcwNkI1NzAeFw0yNTA1MDcyMzA2NTZaFw0yNTA1MTEwNzUzNTZaMDMxMTAvBgNV BAMTKEQ2NTVBRUUwREM2ODRCOEQ5REVCMkM5NkFFMTI3MkZBMDJDQ0Q4RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH2FrQx7rvkAxIwrr48yFaJFFs jFILv2tp0EH2KlynO4468FQ1BouRU7+wT8tpeJMyJ6r4XsRwRsaRcz1nmTcNIODK SoQM88/kxuerKKAUAjRBvdIU4C7TO3uqLUOgg53u8yr5Kw9gM71Yg/on0S/REoyp nQbTasVKk3qN7h4MHaOCRadfSt0EqhPTE0eGiuvSwaAsS0Xj38X5BLVFcbta5aMC 8x+b5Ea+JA6mPhMdduUynSSr99PIzkd16E9C+X8NkqDw6TltSdNsvgE8wq9g+55m CyvxkQ02zmDZRS3D+fu3RMeQfLquKXVBoVVSzPOkvx6MFTmy6Ib+wEnL9zTdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1lWu4NxoS42d6yyWrhJy+gLM2P8wHwYDVR0j BBgwFoAUL9COZ1XPHMqvnVg0RJeXhIpwa1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2QwZDdmYS1kNmY4LTRjMjItYjQ4YS01OGI4ZWQ4ZWRkYTcvMC8yRkQwOEU2NzU1 Q0YxQ0NBQUY5RDU4MzQ0NDk3OTc4NDhBNzA2QjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4QTcw NkI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGNkMGQ3ZmEtZDZmOC00YzIyLWI0 OGEtNThiOGVkOGVkZGE3LzAvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3 ODQ4QTcwNkI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKZBIIxrVSQM/+v0A3wHvUTxUIaGgvZgIjs6 vwQBp0mNYfvI4S7TLnebVz0dhefr/TWFeXMAAgdX/8RaYNaQZZnTH/C4VREdocF5 c5npX0WKTAbjArDBrYbG0kOlQphY8HUwB/j477KyabuvOKn9sjH5H3aDJnSstZDA rW367aQPkf3oBuYp9UnqbVAk5vVRLbBztqc/NbTBKc6YiumLZSmNjHS4XuQyQWPs 9E6ypgSkLpJ/m4A4QRkWZvNZrTWpXuHpL2JtGC27kGw4lWe/LJQo9XbZZ6dh66oV D0KSlBOmVaxbiH8RI4Vk569OaPu6mXs/HgtGzq8XFtGHMesHysg= -----END CERTIFICATE-----Generated at Thu May 8 13:05:26 2025 by rpki-client