$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft File: 3308A0FBD29F359AD61CAA389208E1D74CC28164.mft (raw, json) Hash identifier: 5vT1SbPCEavoN0atGq3Ah97IAWlxhCDiaPCQqvyFjzE= Subject key identifier: CD:0A:E1:EF:E0:50:9D:B2:77:7E:58:2E:39:1F:39:36:32:B2:5C:C3 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 16F7619B9AED702C47D133D382E6BE50CA5107A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft Manifest number: B0 Signing time: Sun 11 May 2025 07:12:15 +0000 Manifest this update: Sun 11 May 2025 07:07:15 +0000 Manifest next update: Wed 14 May 2025 15:55:15 +0000 Files and hashes: 1: 3132312e3130312e3138392e302f32342d3234203d3e203338373835.roa (hash: Csz/yUZ7Lzvn/nuu4THB9U+el9Pek+D7VdsMj61HX6w=) 2: 3132312e3130312e3138382e302f32342d3234203d3e203338373835.roa (hash: jVBeyFMPWkiATlRCTVFrCw8EykcpuEgYVgn4T3UPT6M=) 3: 3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa (hash: db2ZBDbPQBZ+1fLhUcrVMNSFZdZMKLIQU1qfyXpKY5M=) 4: 3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa (hash: ldyK2huQ95pUCINHnT0U5z7ALHHC4dFAFsmJktUnRJw=) 5: 3308A0FBD29F359AD61CAA389208E1D74CC28164.crl (hash: t7uMlIA3r7ZvBGzr9r4sk5K/ijXRKAgtwAjxkFIcABo=) 6: 3132312e3130312e3139312e302f32342d3234203d3e203338373835.roa (hash: EV9DFisiiygvSyZKF0tZ0Lxf1X12CCisGawptespLsI=) 7: 3132312e3130312e3138342e302f32342d3234203d3e203338373835.roa (hash: cpQ+yGOPRMcycDguY5pOMH22P4g6dN/h+7VVRFd0gvs=) 8: 3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa (hash: Hv2jdXQUlOnlnToQUuoVlZDHe+biYftXfxb3LM1GOc0=) 9: 3132312e3130312e3138352e302f32342d3234203d3e203338373835.roa (hash: azmIwktH3vpajsF8gQt8znOMbH0C7Vn9MDVUjZva6CY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 15:55:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:f7:61:9b:9a:ed:70:2c:47:d1:33:d3:82:e6:be:50:ca:51:07:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: May 11 07:07:15 2025 GMT Not After : May 14 15:55:15 2025 GMT Subject: CN=CD0AE1EFE0509DB2777E582E391F393632B25CC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7a:44:39:62:48:32:b2:cc:4f:7d:74:e4:56: cb:73:0d:ef:26:48:63:07:77:46:8d:57:36:e5:33: 7f:f5:41:f9:df:fe:5c:c3:f4:e9:d6:71:e3:9c:bc: 8f:ce:1a:cb:a1:77:43:8e:7d:1c:60:e7:ba:e8:2c: d1:c5:b6:39:b8:50:00:be:45:94:98:af:f4:d7:24: a7:8d:08:a6:b6:e5:7d:3d:97:ab:ad:4b:9c:00:ee: 8f:f7:cb:b9:65:18:7e:8d:6b:f4:82:6f:aa:eb:be: 12:fc:74:c5:d8:37:cb:5b:34:fb:cd:64:b1:2d:f9: d8:92:bf:15:be:75:5a:f8:fa:70:ee:c0:c7:37:dc: dc:da:2e:92:c4:97:c7:de:fa:ea:16:4c:93:b7:0f: 32:af:ed:42:78:bd:1c:21:29:f6:aa:c5:1d:b8:e6: 46:da:41:7d:da:e9:e3:49:47:16:f0:87:6d:46:0a: 57:3e:ab:da:9c:5a:2e:cf:b8:a4:f0:13:fa:04:1d: 5f:f2:39:f6:67:cd:87:1c:47:a3:32:4c:0c:96:37: 50:de:4a:29:c9:bf:89:12:ea:53:b2:1f:af:ba:f0: 90:9f:b1:17:28:43:43:6b:d4:dd:da:a7:ac:c1:15: 04:48:39:68:4a:9b:a4:40:ed:14:ae:02:dd:1e:43: b6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:0A:E1:EF:E0:50:9D:B2:77:7E:58:2E:39:1F:39:36:32:B2:5C:C3 X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:d3:04:0d:6f:62:2e:8e:4b:4e:39:7f:6c:ed:4f:9b:03:70: 1b:e7:f8:e8:6c:19:42:a3:03:65:2d:45:df:80:19:f8:24:16: 3e:26:42:81:17:23:03:18:79:f2:54:b5:1c:a5:1e:84:04:47: 91:53:35:2c:7d:c3:4c:63:92:d0:50:af:0e:bd:b6:fa:a7:e8: 30:d9:fc:96:d9:a8:5c:b5:f0:1f:b3:c1:f6:f8:40:9e:af:0d: b1:1c:cf:1f:63:a3:e8:7f:c1:4e:1e:f6:e0:c8:50:f6:08:08: 9d:ce:1e:38:01:5d:ce:e9:46:63:f0:96:7f:e7:7e:9f:f2:67: 18:db:19:50:7f:c3:6b:dc:59:46:4e:9c:31:ec:2b:9e:85:69: 33:01:16:e9:f0:7c:f1:09:73:5a:d5:b7:84:d9:7b:d1:58:06: de:1b:26:f1:f8:21:db:ef:0f:5b:a0:72:24:93:a9:ca:c5:75: d8:d5:73:ea:10:ed:12:e8:78:77:1a:54:9a:f1:0f:07:ac:5e: 19:fe:bb:0b:6e:0b:52:12:e9:3b:cb:0f:fb:b5:8d:66:5c:f7: 3c:c2:d5:2e:d8:e9:2a:b1:0f:e9:9d:7b:a7:6b:e7:4e:12:5a: ef:44:0a:bb:f2:14:47:79:30:17:8e:be:a0:80:67:0a:64:17: 7c:2f:25:89 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFvdhm5rtcCxH0TPTgua+UMpRB6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNTA1MTEwNzA3MTVaFw0yNTA1MTQxNTU1MTVaMDMxMTAvBgNV BAMTKENEMEFFMUVGRTA1MDlEQjI3NzdFNTgyRTM5MUYzOTM2MzJCMjVDQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ekQ5YkgyssxPfXTkVstzDe8m SGMHd0aNVzblM3/1Qfnf/lzD9OnWceOcvI/OGsuhd0OOfRxg57roLNHFtjm4UAC+ RZSYr/TXJKeNCKa25X09l6utS5wA7o/3y7llGH6Na/SCb6rrvhL8dMXYN8tbNPvN ZLEt+diSvxW+dVr4+nDuwMc33NzaLpLEl8fe+uoWTJO3DzKv7UJ4vRwhKfaqxR24 5kbaQX3a6eNJRxbwh21GClc+q9qcWi7PuKTwE/oEHV/yOfZnzYccR6MyTAyWN1De SinJv4kS6lOyH6+68JCfsRcoQ0Nr1N3ap6zBFQRIOWhKm6RA7RSuAt0eQ7YlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzQrh7+BQnbJ3flguOR85NjKyXMMwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTU3MmRmYmUtNGNhMC00YTQ2LTgw MzctNDk2OGVkOTdjYWRjLzAvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUx RDc0Q0MyODE2NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEPTBA1vYi6OS045f2ztT5sDcBvn+OhsGUKj A2UtRd+AGfgkFj4mQoEXIwMYefJUtRylHoQER5FTNSx9w0xjktBQrw69tvqn6DDZ /JbZqFy18B+zwfb4QJ6vDbEczx9jo+h/wU4e9uDIUPYICJ3OHjgBXc7pRmPwln/n fp/yZxjbGVB/w2vcWUZOnDHsK56FaTMBFunwfPEJc1rVt4TZe9FYBt4bJvH4Idvv D1ugciSTqcrFddjVc+oQ7RLoeHcaVJrxDwesXhn+uwtuC1IS6TvLD/u1jWZc9zzC 1S7Y6SqxD+mde6dr504SWu9ECrvyFEd5MBeOvqCAZwpkF3wvJYk= -----END CERTIFICATE-----Generated at Mon May 12 11:10:08 2025 by rpki-client