$ rpki-client -vvf repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft File: B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft (raw, json) Hash identifier: un6/sn7SKH/FlrGOWJxtvrTMquq2HDuUG14oNNL3DVc= Subject key identifier: 60:A7:7A:A0:C0:F4:E3:CB:48:56:AB:F6:F3:98:BA:86:2A:DA:73:84 Authority key identifier: B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 Certificate issuer: /CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Certificate serial: 3AA9D7E90128E2922CF0F916A27FC3F289754307 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft Manifest number: 01C0 Signing time: Sat 03 May 2025 20:02:00 +0000 Manifest this update: Sat 03 May 2025 19:57:00 +0000 Manifest next update: Wed 07 May 2025 03:50:00 +0000 Files and hashes: 1: 3130332e3138382e3235322e302f32342d3234203d3e20313439373337.roa (hash: kjCPg8CNqMlAMRebUqHb4gpHFMec5lXxDxlOd53bN+M=) 2: 3130332e3138382e3235332e302f32342d3234203d3e20313439373337.roa (hash: fMitGvSIMZKR/xojJDzG2iWApTg4bDt/1kqJnOfFiTo=) 3: B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl (hash: Fxx6srqaaY4C1J8cu8BnwZuEvrsd7SfUE8+JaLJMGYA=) 4: 3130332e3138382e3235322e302f32332d3233203d3e20313439373337.roa (hash: SLcrpmMGhS+iLPHlXSc6GQF6hzriCb0znzXu+cnHQhI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 03:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:a9:d7:e9:01:28:e2:92:2c:f0:f9:16:a2:7f:c3:f2:89:75:43:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Validity Not Before: May 3 19:57:00 2025 GMT Not After : May 7 03:50:00 2025 GMT Subject: CN=60A77AA0C0F4E3CB4856ABF6F398BA862ADA7384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:44:95:27:c1:12:81:ed:05:fc:3d:58:78:1c: f4:cb:12:66:b6:91:68:90:2d:0e:89:46:b7:2a:60: 7c:c3:d4:66:4b:cf:59:45:ee:e2:82:79:92:cf:0f: d4:3b:d3:70:e4:f7:a6:b2:b3:e5:08:a9:40:d7:1d: c3:08:b5:44:80:41:85:3e:f0:a5:58:e3:50:f2:c0: f3:01:f6:63:98:6c:13:e0:04:36:aa:65:e8:dc:c6: 95:db:fc:83:e6:25:cf:55:07:6f:d5:98:92:66:ed: 25:69:02:20:05:08:c9:cc:61:e2:1e:b6:c9:64:6c: bd:61:0b:2f:bf:a3:b9:b0:f2:14:67:62:ef:32:25: 04:50:af:59:c2:a3:ab:fa:4d:89:5c:25:40:ef:58: 5b:68:2b:1e:4e:19:71:7d:41:b0:92:f4:5d:c4:99: 2d:fd:e4:f3:07:62:fa:84:df:5d:8b:2c:8e:9a:c1: 5c:90:24:8c:59:7d:b3:7e:c9:97:23:50:f1:66:71: 90:b8:7e:d6:03:a2:7b:aa:f1:f3:72:0d:ef:d0:07: 04:6c:59:db:ea:08:f1:a0:c5:de:e1:b8:70:9d:4d: 70:29:c2:62:ae:21:1e:1d:9b:5c:b9:6b:d1:17:e8: c9:b5:45:16:4d:af:29:c1:7b:81:b8:ef:57:d9:4f: 8b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A7:7A:A0:C0:F4:E3:CB:48:56:AB:F6:F3:98:BA:86:2A:DA:73:84 X509v3 Authority Key Identifier: keyid:B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:d6:ee:e2:87:c3:14:b2:5f:b6:87:5c:ec:74:f2:f2:61:10: 85:90:32:5c:64:3a:5b:83:ae:9d:2d:18:a3:55:93:89:45:21: e1:03:e5:fd:ce:57:b0:d0:cb:65:79:27:5e:79:51:03:ae:72: 1a:a7:bd:6a:fe:c8:ff:3b:4a:63:00:09:0b:fc:ad:73:58:55: 04:df:9f:33:27:a0:15:c9:5a:81:3f:4c:81:75:a2:38:2d:67: 05:a1:01:4b:8f:cf:78:7e:8a:8d:f6:a6:c6:64:8b:f9:5a:60: a7:df:2e:bf:cd:fe:ad:e6:56:c6:d1:19:a0:76:f2:f3:06:27: bd:ab:50:26:3f:b5:cf:33:a8:01:ba:d8:4b:c8:e8:f5:f8:7c: 2d:ee:da:cf:cb:b7:1f:de:6a:63:13:35:72:19:36:cd:5f:f1: fd:ad:39:67:7b:d8:9b:43:e5:8a:f8:ff:aa:e9:f5:54:3d:a6: c7:62:76:5d:a0:cf:22:49:22:f0:a6:b0:e8:2b:85:1b:27:53: da:26:c9:6d:fa:c8:3e:02:4a:bf:3d:29:45:d8:38:c9:6e:25: 46:83:8c:4f:21:62:2c:71:1f:0e:7b:c1:2c:1c:cb:47:da:f8: e3:ad:3d:1f:d1:66:4d:7a:db:a9:a8:c5:16:a5:ad:18:a6:0b: 46:ba:a5:22 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOqnX6QEo4pIs8PkWon/D8ol1QwcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5 ODI1NERCMjAeFw0yNTA1MDMxOTU3MDBaFw0yNTA1MDcwMzUwMDBaMDMxMTAvBgNV BAMTKDYwQTc3QUEwQzBGNEUzQ0I0ODU2QUJGNkYzOThCQTg2MkFEQTczODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7RJUnwRKB7QX8PVh4HPTLEma2 kWiQLQ6JRrcqYHzD1GZLz1lF7uKCeZLPD9Q703Dk96ays+UIqUDXHcMItUSAQYU+ 8KVY41DywPMB9mOYbBPgBDaqZejcxpXb/IPmJc9VB2/VmJJm7SVpAiAFCMnMYeIe tslkbL1hCy+/o7mw8hRnYu8yJQRQr1nCo6v6TYlcJUDvWFtoKx5OGXF9QbCS9F3E mS395PMHYvqE312LLI6awVyQJIxZfbN+yZcjUPFmcZC4ftYDonuq8fNyDe/QBwRs WdvqCPGgxd7huHCdTXApwmKuIR4dm1y5a9EX6Mm1RRZNrynBe4G471fZT4vFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYKd6oMD048tIVqv285i6hirac4QwHwYDVR0j BBgwFoAUtel7cfr6JP+PorGjNVjYCpglTbIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWVkMDk4Yi00OWIxLTRmNTMtYjc1YS0yNzNlMTFjMjUxNDkvMC9CNUU5N0I3MUZB RkEyNEZGOEZBMkIxQTMzNTU4RDgwQTk4MjU0REIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5ODI1 NERCMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWFlZDA5OGItNDliMS00ZjUzLWI3 NWEtMjczZTExYzI1MTQ5LzAvQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4 MEE5ODI1NERCMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD/W7uKHwxSyX7aHXOx08vJhEIWQMlxkOluD rp0tGKNVk4lFIeED5f3OV7DQy2V5J155UQOuchqnvWr+yP87SmMACQv8rXNYVQTf nzMnoBXJWoE/TIF1ojgtZwWhAUuPz3h+io32psZki/laYKffLr/N/q3mVsbRGaB2 8vMGJ72rUCY/tc8zqAG62EvI6PX4fC3u2s/Ltx/eamMTNXIZNs1f8f2tOWd72JtD 5Yr4/6rp9VQ9psdidl2gzyJJIvCmsOgrhRsnU9omyW36yD4CSr89KUXYOMluJUaD jE8hYixxHw57wSwcy0fa+OOtPR/RZk1626moxRalrRimC0a6pSI= -----END CERTIFICATE-----Generated at Tue May 6 06:50:18 2025 by rpki-client