$ rpki-client -vvf repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft File: 8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft (raw, json) Hash identifier: r42VeFunwvbBvwB9wS57nolUXWObAEZnjHHT1pU3viw= Subject key identifier: E8:6C:8F:73:C7:CF:40:41:18:69:EB:DB:7D:DE:E4:CA:BB:07:B3:7D Authority key identifier: 8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 Certificate issuer: /CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Certificate serial: 67097786D30FB280F57A6A7E132DACC5AF0CD2F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft Manifest number: 74 Signing time: Fri 09 May 2025 12:50:45 +0000 Manifest this update: Fri 09 May 2025 12:45:45 +0000 Manifest next update: Mon 12 May 2025 13:40:45 +0000 Files and hashes: 1: 3136302e32322e3235312e302f32342d3234203d3e20313430343536.roa (hash: k9ZzAkFQGvt+xqoKJ82nD9k3QBtwiwB5qwFg/LMZg2I=) 2: 8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl (hash: IWd/KFYD+yvn+7guK2NtVdUal191oKb060SPtBlJ8as=) 3: 3136302e32322e3235302e302f32342d3234203d3e20313430343536.roa (hash: oOhjxNchKYaSdtA4Y1DYNdIAblAIJ4R/DzgKf/zg2vo=) 4: 3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa (hash: MO6/lQY/Nl8VnXin+gA+foQOLuvJOUz6SX7TNLs7MqE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 11:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:09:77:86:d3:0f:b2:80:f5:7a:6a:7e:13:2d:ac:c5:af:0c:d2:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Validity Not Before: May 9 12:45:45 2025 GMT Not After : May 12 13:40:45 2025 GMT Subject: CN=E86C8F73C7CF40411869EBDB7DDEE4CABB07B37D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b5:5d:d4:8f:da:f0:a3:8d:4a:82:4f:f1:4f: 12:8c:6c:19:be:e9:cd:d3:b2:30:ad:64:1f:36:69: 58:06:2f:2b:fc:49:f1:a2:d0:ba:15:d9:36:2e:b9: 47:b5:57:d3:bc:eb:49:56:d7:f5:af:a9:9d:cd:59: 72:e9:7d:bd:5b:23:03:db:f0:35:81:5a:01:83:02: 91:26:dc:a6:15:cb:63:22:1e:c5:ce:42:ae:06:01: be:25:b5:40:af:ea:6c:d4:52:6a:2a:48:b9:b6:58: 7e:19:ed:a4:aa:10:96:19:8a:39:63:f4:66:f1:20: b1:f0:46:fa:10:a0:0f:75:48:c4:cf:c4:f8:3b:93: 3d:16:56:28:e4:99:9e:0b:6b:8f:28:47:b6:17:f1: 68:ba:55:41:68:bd:29:51:55:96:98:6b:fa:a2:80: c4:28:81:40:c7:06:80:ee:a4:23:5e:c9:60:5b:df: 19:fd:90:39:dc:4d:44:ba:5a:2e:81:3b:f5:bc:5a: 06:cd:37:28:a4:e0:b5:f5:7f:83:42:cd:cd:8e:33: a6:3a:b3:1d:62:f4:ef:18:70:13:38:fb:fa:03:85: ff:40:5a:02:57:e1:92:e9:b4:7b:57:19:79:49:98: f1:96:b2:75:3b:de:cc:e5:4e:0f:b5:c5:42:c1:82: e5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:6C:8F:73:C7:CF:40:41:18:69:EB:DB:7D:DE:E4:CA:BB:07:B3:7D X509v3 Authority Key Identifier: keyid:8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:53:73:f7:4b:fa:ab:90:39:42:11:d0:ab:44:1e:ce:5a:d4: 41:90:64:1f:b1:db:4b:3f:5f:f8:87:4c:15:4f:e4:d4:8f:61: e1:91:90:ca:19:42:f3:b4:a7:eb:71:e9:8e:41:d4:5b:9b:07: 4a:76:ee:f3:12:4e:ff:e2:a1:cb:98:dc:0a:65:df:61:31:d3: 45:89:fc:39:80:cb:6c:05:cb:38:70:7f:71:45:3a:97:fd:d5: c5:24:66:bd:43:6b:04:9e:39:98:ff:d0:a4:39:82:2e:b9:2d: e0:26:82:7d:3e:f1:88:d4:80:fb:75:68:d5:3b:49:79:af:39: f3:98:c9:0e:c9:05:96:01:69:e0:d2:e4:90:99:f0:73:16:1f: 62:09:1a:8c:74:17:1a:47:ba:0d:e7:16:e4:20:b0:f1:f8:41: ea:b9:c3:04:c5:7f:e2:fd:02:47:20:fe:1e:7d:ce:08:db:89: 1b:d2:59:d2:04:49:64:4d:b1:98:ee:77:d5:65:e6:8c:3a:4b: 32:ff:ea:91:ca:bd:5a:fb:bf:14:31:33:16:e9:7a:26:16:16: 12:7d:18:a0:2e:90:c3:b9:34:4a:1d:c5:ad:4a:20:25:90:00: c8:d5:ad:84:f8:16:40:56:6b:d5:59:7d:fc:e7:d5:1c:00:1c: 2b:50:1b:4e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZwl3htMPsoD1emp+Ey2sxa8M0vgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBF OUIyREEzNjAeFw0yNTA1MDkxMjQ1NDVaFw0yNTA1MTIxMzQwNDVaMDMxMTAvBgNV BAMTKEU4NkM4RjczQzdDRjQwNDExODY5RUJEQjdEREVFNENBQkIwN0IzN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBtV3Uj9rwo41Kgk/xTxKMbBm+ 6c3TsjCtZB82aVgGLyv8SfGi0LoV2TYuuUe1V9O860lW1/WvqZ3NWXLpfb1bIwPb 8DWBWgGDApEm3KYVy2MiHsXOQq4GAb4ltUCv6mzUUmoqSLm2WH4Z7aSqEJYZijlj 9GbxILHwRvoQoA91SMTPxPg7kz0WVijkmZ4La48oR7YX8Wi6VUFovSlRVZaYa/qi gMQogUDHBoDupCNeyWBb3xn9kDncTUS6Wi6BO/W8WgbNNyik4LX1f4NCzc2OM6Y6 sx1i9O8YcBM4+/oDhf9AWgJX4ZLptHtXGXlJmPGWsnU73szlTg+1xULBguXpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6GyPc8fPQEEYaevbfd7kyrsHs30wHwYDVR0j BBgwFoAUjiBZstJEhYXRHtKwFD/vwOmy2jYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDhhYjE1Ny1kODI3LTQ5YTgtYmI4Ni0yOGJlMTMxYzNkMjYvMC84RTIwNTlCMkQy NDQ4NTg1RDExRUQyQjAxNDNGRUZDMEU5QjJEQTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBFOUIy REEzNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTA4YWIxNTctZDgyNy00OWE4LWJi ODYtMjhiZTEzMWMzZDI2LzAvOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVG QzBFOUIyREEzNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABxTc/dL+quQOUIR0KtEHs5a1EGQZB+x20s/ X/iHTBVP5NSPYeGRkMoZQvO0p+tx6Y5B1FubB0p27vMSTv/iocuY3Apl32Ex00WJ /DmAy2wFyzhwf3FFOpf91cUkZr1DawSeOZj/0KQ5gi65LeAmgn0+8YjUgPt1aNU7 SXmvOfOYyQ7JBZYBaeDS5JCZ8HMWH2IJGox0FxpHug3nFuQgsPH4Qeq5wwTFf+L9 Akcg/h59zgjbiRvSWdIESWRNsZjud9Vl5ow6SzL/6pHKvVr7vxQxMxbpeiYWFhJ9 GKAukMO5NEodxa1KICWQAMjVrYT4FkBWa9VZffzn1RwAHCtQG04= -----END CERTIFICATE-----Generated at Sat May 10 22:04:52 2025 by rpki-client