$ rpki-client -vvf repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft File: 3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft (raw, json) Hash identifier: F/G4j2PWsVQaajlwTifqD3NIfDSvID3/yS3kqbl41U4= Subject key identifier: 62:03:D2:0D:E7:EA:8A:4E:B2:85:E6:7B:43:35:50:CF:AF:D8:0A:CB Authority key identifier: 34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB Certificate issuer: /CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Certificate serial: 768B4C727AA540A672AC436ABAA292CDD43A3CE0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft Manifest number: 01C9 Signing time: Mon 05 May 2025 22:20:56 +0000 Manifest this update: Mon 05 May 2025 22:15:56 +0000 Manifest next update: Fri 09 May 2025 01:27:56 +0000 Files and hashes: 1: 3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa (hash: 5ODCvpJsl+XnXZcZjU6a9g5frNriLFm4lEWGxVY15JQ=) 2: 3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa (hash: 6pWVSpFXVKH6EqJrCt3rmPa2Bj+n9pO/wL1SNQ2qvtg=) 3: 3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl (hash: GBbIvxaO8lkG6Djq7FUh7e8e82s32Ntcb6fCTuK+Rf8=) 4: 3130332e3139312e35362e302f32342d3234203d3e20313331373433.roa (hash: YfWdCVoIH1DQu9Nb8zknsBq3gjAx6STdl7+GflAiVVY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 01:27:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:8b:4c:72:7a:a5:40:a6:72:ac:43:6a:ba:a2:92:cd:d4:3a:3c:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Validity Not Before: May 5 22:15:56 2025 GMT Not After : May 9 01:27:56 2025 GMT Subject: CN=6203D20DE7EA8A4EB285E67B433550CFAFD80ACB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:53:87:59:ef:db:ab:0d:61:43:6b:46:c9:70: 75:f6:a0:29:04:16:71:64:61:08:4a:ca:5f:a9:0a: 07:61:b7:df:6b:bc:91:8b:10:3b:ab:da:fc:a5:eb: 93:c7:70:7d:7f:af:34:c6:2f:34:bc:89:66:ea:db: 75:e6:64:a6:6c:6d:88:13:20:c3:db:23:27:c4:14: c5:b9:a9:da:6a:3d:fb:51:25:5e:42:f0:cb:3b:37: d7:83:da:6b:ed:15:e9:7d:9f:12:82:96:44:dc:55: b8:b2:ba:04:97:c0:a4:05:2b:f7:40:78:54:a9:78: 2e:c3:64:0e:88:07:1c:93:c4:d0:7f:28:20:62:1c: 52:80:32:5d:3d:47:b1:c0:db:c6:d4:02:96:c1:81: b0:be:93:5b:c1:91:ec:15:b7:c3:81:5f:69:43:4a: eb:cd:5b:05:8d:3a:47:aa:70:e8:8e:15:33:67:f6: 07:84:fb:f7:89:83:2a:b9:69:8b:25:0f:2e:25:81: 09:2f:b2:cf:7a:fa:4f:d5:73:86:07:86:1e:88:3d: 3a:a5:21:52:c4:c1:e2:e3:f5:6d:08:52:55:c2:4c: c1:e3:54:05:68:7d:07:25:41:79:7d:ed:02:c1:1a: 3e:3d:c2:c0:0a:85:d4:16:d8:27:14:a9:4b:df:1c: c0:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:03:D2:0D:E7:EA:8A:4E:B2:85:E6:7B:43:35:50:CF:AF:D8:0A:CB X509v3 Authority Key Identifier: keyid:34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:25:c7:28:50:ca:ba:26:d6:aa:c3:03:ac:99:bd:15:af:db: 1a:33:46:4f:93:ed:05:d8:7e:56:68:49:5d:64:62:d0:6a:2b: e5:48:62:60:be:5d:16:b4:6b:2e:5a:f9:74:9f:e7:5a:13:b5: 8c:0a:c7:df:6d:25:75:79:71:9c:f9:9d:13:2b:73:73:d8:53: cb:c2:56:e6:c9:65:01:90:4d:c9:33:8e:be:26:59:65:12:e0: bf:c4:cc:94:a7:07:69:5d:a7:53:b0:6a:4f:67:99:a2:af:b0: 45:80:50:b6:4f:95:b6:c1:12:aa:d2:23:14:e0:0e:27:a5:87: 3b:af:40:e8:50:f1:b2:1b:ed:4b:29:8e:be:29:f3:a1:d6:90: 8b:4a:09:20:9f:ac:ec:25:2a:7f:c4:20:59:7b:8f:24:1d:c5: 36:ba:c2:5c:5e:dc:76:96:9b:0f:79:07:db:30:6b:79:3a:9f: d8:c0:1a:f2:f8:cf:10:5e:47:f3:ca:2f:80:cb:fb:5f:5e:40: 47:86:c2:5c:71:82:eb:e0:79:27:ad:75:99:75:e8:52:ca:02: 7c:0c:9a:f1:bc:a6:e9:ca:a9:ab:99:99:3a:2c:ae:08:d3:82: f2:84:40:9e:eb:55:99:f9:01:9b:5a:9a:af:8b:e2:5e:ca:4f: 26:6a:49:64 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdotMcnqlQKZyrENquqKSzdQ6POAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZC QTBCMzlCQjAeFw0yNTA1MDUyMjE1NTZaFw0yNTA1MDkwMTI3NTZaMDMxMTAvBgNV BAMTKDYyMDNEMjBERTdFQThBNEVCMjg1RTY3QjQzMzU1MENGQUZEODBBQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsU4dZ79urDWFDa0bJcHX2oCkE FnFkYQhKyl+pCgdht99rvJGLEDur2vyl65PHcH1/rzTGLzS8iWbq23XmZKZsbYgT IMPbIyfEFMW5qdpqPftRJV5C8Ms7N9eD2mvtFel9nxKClkTcVbiyugSXwKQFK/dA eFSpeC7DZA6IBxyTxNB/KCBiHFKAMl09R7HA28bUApbBgbC+k1vBkewVt8OBX2lD SuvNWwWNOkeqcOiOFTNn9geE+/eJgyq5aYslDy4lgQkvss96+k/Vc4YHhh6IPTql IVLEweLj9W0IUlXCTMHjVAVofQclQXl97QLBGj49wsAKhdQW2CcUqUvfHMBfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYgPSDefqik6yheZ7QzVQz6/YCsswHwYDVR0j BBgwFoAUNEjITd/5uZEtnRdJP+vbn7oLObswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjI5Y2E1MC1lOTVjLTQ1YmItOWMzMC02M2UxMmFmN2E1ZTEvMC8zNDQ4Qzg0RERG RjlCOTkxMkQ5RDE3NDkzRkVCREI5RkJBMEIzOUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZCQTBC MzlCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTIyOWNhNTAtZTk1Yy00NWJiLTlj MzAtNjNlMTJhZjdhNWUxLzAvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRC OUZCQTBCMzlCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC8lxyhQyrom1qrDA6yZvRWv2xozRk+T7QXY flZoSV1kYtBqK+VIYmC+XRa0ay5a+XSf51oTtYwKx99tJXV5cZz5nRMrc3PYU8vC VubJZQGQTckzjr4mWWUS4L/EzJSnB2ldp1Owak9nmaKvsEWAULZPlbbBEqrSIxTg DielhzuvQOhQ8bIb7Uspjr4p86HWkItKCSCfrOwlKn/EIFl7jyQdxTa6wlxe3HaW mw95B9swa3k6n9jAGvL4zxBeR/PKL4DL+19eQEeGwlxxguvgeSetdZl16FLKAnwM mvG8punKqauZmTosrgjTgvKEQJ7rVZn5AZtamq+L4l7KTyZqSWQ= -----END CERTIFICATE-----Generated at Thu May 8 00:47:07 2025 by rpki-client