$ rpki-client -vvf repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft File: CA5B0322788B7A041373A944677E83F0D48FF4E7.mft (raw, json) Hash identifier: 4QwX1nVdurEUQm9p9WDbE86CJp6hozx15Ypi3FJ5h9M= Subject key identifier: F4:37:65:B3:0E:02:7B:38:05:02:16:D6:AF:11:E7:F2:81:92:08:76 Authority key identifier: CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 Certificate issuer: /CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Certificate serial: 43EF296AED8798D208698FC5B64306D3EAFDFFB5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft Manifest number: 8D Signing time: Sat 10 May 2025 06:41:08 +0000 Manifest this update: Sat 10 May 2025 06:36:08 +0000 Manifest next update: Tue 13 May 2025 09:58:08 +0000 Files and hashes: 1: CA5B0322788B7A041373A944677E83F0D48FF4E7.crl (hash: oxkprhvdrANzbHPMPTcJFIlZaCnW+dr2qTs0n5awpEU=) 2: 3130332e37312e3136302e302f32322d3234203d3e20313339393831.roa (hash: uCrO/TheTmT5JDmkvR9LLSLwfYgCtexW8+T2kZ9fffo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 09:58:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ef:29:6a:ed:87:98:d2:08:69:8f:c5:b6:43:06:d3:ea:fd:ff:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Validity Not Before: May 10 06:36:08 2025 GMT Not After : May 13 09:58:08 2025 GMT Subject: CN=F43765B30E027B38050216D6AF11E7F281920876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c5:30:bb:1a:da:75:85:1d:32:3d:4a:41:b9: 8a:28:af:8a:4f:8c:e5:fd:1a:e6:66:18:f3:aa:98: f2:64:0d:bd:a4:4d:e4:6c:21:cf:a7:a9:ab:5e:5a: 92:80:a4:77:df:d1:e6:e0:9c:40:88:b0:4a:8a:bf: 68:89:63:d3:f5:e4:41:4b:fc:38:f6:7f:d4:43:2f: b4:0e:19:f8:dd:de:5c:6a:c3:c3:e4:ec:38:9e:0c: 2b:8c:0a:8f:a0:4e:b8:0f:1d:33:94:79:ff:8b:43: 40:57:ad:48:ea:e4:5c:80:67:1e:1d:90:b7:28:11: 89:f2:bb:1b:6c:eb:f9:0c:e3:82:56:33:4d:29:32: 6e:e8:5d:86:cc:a5:ac:cd:10:41:e3:4c:89:4f:c7: 92:a7:57:84:ea:8f:99:89:cb:bb:55:2a:83:f4:3f: 48:c7:fa:01:91:73:ad:79:07:6b:71:31:97:fb:09: 25:80:2d:9d:e8:d4:1e:c6:ad:0a:f0:23:75:33:c7: 35:a1:13:95:16:1d:eb:ac:36:58:c8:ad:0a:5a:7d: f0:6e:56:ce:b2:28:a8:ae:bf:23:c6:58:8b:f6:a4: 0a:54:bc:32:c0:3a:7b:c3:f6:77:f4:2b:98:7f:b2: bd:0c:09:4a:a4:1b:b8:7b:b8:eb:84:31:30:3a:2c: d2:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:37:65:B3:0E:02:7B:38:05:02:16:D6:AF:11:E7:F2:81:92:08:76 X509v3 Authority Key Identifier: keyid:CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:01:e4:33:c4:f8:61:61:bf:eb:ad:15:b0:67:64:03:05:31: f3:75:80:de:31:5d:09:12:eb:d0:e3:14:4d:fe:81:77:a3:12: d2:be:86:19:1f:88:d6:42:02:5c:59:f8:30:1a:78:a7:c8:4e: c2:72:5b:84:49:63:e4:8a:3c:a1:4a:cb:04:05:bc:62:f7:48: 0a:45:49:14:26:fd:c7:a5:19:9a:32:dc:4c:3b:1f:e6:33:13: 34:68:3c:f9:fd:ff:7f:2d:3c:13:94:85:d7:d3:c6:13:c4:2e: f1:ac:df:9d:8e:15:d6:10:c5:58:d4:2a:e3:11:46:d1:69:5e: 51:ff:1b:fd:38:66:f5:5f:c5:e6:a2:ae:52:3f:d2:6d:6f:dc: 70:50:be:86:71:a4:c9:d6:f1:f0:88:fa:16:6a:75:48:17:5b: 84:2a:8f:fd:50:1c:82:a0:99:3d:92:3b:15:c5:73:ca:ab:05: 4c:27:d0:12:75:63:78:ca:e8:58:8b:f2:11:5f:20:49:ae:55: 4e:fc:3a:ff:c6:01:dd:59:ac:08:ef:ec:fc:fa:cb:d3:e7:d3: fc:87:66:1d:62:2b:e1:d2:2b:a2:22:ce:80:02:d2:d9:da:41: b2:47:3d:bd:68:31:da:ce:41:1e:19:b1:b7:a3:df:1f:a6:72: ef:95:51:86 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ+8pau2HmNIIaY/FtkMG0+r9/7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBE NDhGRjRFNzAeFw0yNTA1MTAwNjM2MDhaFw0yNTA1MTMwOTU4MDhaMDMxMTAvBgNV BAMTKEY0Mzc2NUIzMEUwMjdCMzgwNTAyMTZENkFGMTFFN0YyODE5MjA4NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwxTC7Gtp1hR0yPUpBuYoor4pP jOX9GuZmGPOqmPJkDb2kTeRsIc+nqateWpKApHff0ebgnECIsEqKv2iJY9P15EFL /Dj2f9RDL7QOGfjd3lxqw8Pk7DieDCuMCo+gTrgPHTOUef+LQ0BXrUjq5FyAZx4d kLcoEYnyuxts6/kM44JWM00pMm7oXYbMpazNEEHjTIlPx5KnV4Tqj5mJy7tVKoP0 P0jH+gGRc615B2txMZf7CSWALZ3o1B7GrQrwI3UzxzWhE5UWHeusNljIrQpaffBu Vs6yKKiuvyPGWIv2pApUvDLAOnvD9nf0K5h/sr0MCUqkG7h7uOuEMTA6LNJpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9Ddlsw4CezgFAhbWrxHn8oGSCHYwHwYDVR0j BBgwFoAUylsDIniLegQTc6lEZ36D8NSP9OcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZWJhODY3YS04Zjg0LTQ2NjMtYjMyMC1mNDM1MjgyYjlmZmUvMC9DQTVCMDMyMjc4 OEI3QTA0MTM3M0E5NDQ2NzdFODNGMEQ0OEZGNEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBENDhG RjRFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGViYTg2N2EtOGY4NC00NjYzLWIz MjAtZjQzNTI4MmI5ZmZlLzAvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgz RjBENDhGRjRFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACIB5DPE+GFhv+utFbBnZAMFMfN1gN4xXQkS 69DjFE3+gXejEtK+hhkfiNZCAlxZ+DAaeKfITsJyW4RJY+SKPKFKywQFvGL3SApF SRQm/celGZoy3Ew7H+YzEzRoPPn9/38tPBOUhdfTxhPELvGs352OFdYQxVjUKuMR RtFpXlH/G/04ZvVfxeairlI/0m1v3HBQvoZxpMnW8fCI+hZqdUgXW4Qqj/1QHIKg mT2SOxXFc8qrBUwn0BJ1Y3jK6FiL8hFfIEmuVU78Ov/GAd1ZrAjv7Pz6y9Pn0/yH Zh1iK+HSK6IizoAC0tnaQbJHPb1oMdrOQR4Zsbej3x+mcu+VUYY= -----END CERTIFICATE-----Generated at Sun May 11 07:36:21 2025 by rpki-client