$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft File: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft (raw, json) Hash identifier: Gs0DzZJdWnf3nvjUZvo4zUP/ClOd1p5+NIoiT33siUw= Subject key identifier: 2A:E5:64:15:99:D1:AC:14:A9:5B:65:30:FC:17:B4:CA:23:7F:C3:7A Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 281FA377A3085798A33FE20E0BB60212988D62E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft Manifest number: 0181 Signing time: Thu 08 May 2025 00:21:18 +0000 Manifest this update: Thu 08 May 2025 00:16:18 +0000 Manifest next update: Sun 11 May 2025 07:12:18 +0000 Files and hashes: 1: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl (hash: QuoXuoVJO7TsO3MLpVjNFOXNGGCeaHg5mRCuf6Nf94Q=) 2: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (hash: 1GaxlmyMBH5Av+K+s7DcySXoa/4RweD6yLZx8aQoKzc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 07:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:1f:a3:77:a3:08:57:98:a3:3f:e2:0e:0b:b6:02:12:98:8d:62:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: May 8 00:16:18 2025 GMT Not After : May 11 07:12:18 2025 GMT Subject: CN=2AE5641599D1AC14A95B6530FC17B4CA237FC37A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5f:59:9a:b2:4a:2a:51:f5:c9:1b:8a:c6:58: 72:2a:6f:31:b5:36:23:0a:5a:90:1d:4d:27:20:7f: 25:42:ac:05:d0:08:2e:33:53:e1:c3:14:f5:d4:e8: 28:7a:d4:4b:6a:e5:70:d9:c6:12:4c:bf:e1:ba:80: 6b:47:ef:5e:e7:96:7b:1a:85:fb:ea:ec:2c:6e:cc: 9b:20:e3:2e:bc:67:ec:f4:91:aa:b7:2c:83:7d:41: 53:29:90:a0:f4:f4:8d:a2:d7:bb:49:16:7e:ec:07: 08:cb:a3:b6:f4:26:cf:1f:ec:ce:52:c7:9c:00:e1: c3:32:13:6d:09:95:90:39:f7:8b:07:bb:64:ab:c3: 7b:49:af:b4:35:83:e2:e3:78:51:e3:42:5a:a9:43: 26:db:b7:f7:2c:4e:74:fc:05:41:bb:44:e6:cb:cc: 19:43:77:2d:00:3d:62:ae:71:d5:7c:95:07:5e:58: f1:e7:b2:ee:4d:43:0f:41:40:65:a6:92:7d:37:10: 3c:a0:48:07:24:c7:de:2c:6c:c1:52:bb:d8:97:6f: e1:77:49:02:ed:88:73:c4:7d:4d:38:95:a4:05:04: 4c:02:28:26:72:af:f5:15:2d:e0:9c:ab:b9:f7:e6: c2:f5:e1:3f:9c:db:c8:7d:93:ce:90:2a:08:9b:e3: 9f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E5:64:15:99:D1:AC:14:A9:5B:65:30:FC:17:B4:CA:23:7F:C3:7A X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:b4:48:42:f8:af:3d:d9:2a:19:93:de:68:5b:33:9b:8f:2b: 52:ba:3b:0a:5b:c3:d6:1f:81:17:60:ee:a3:9e:0f:47:a0:93: 06:3b:93:1d:34:fc:8b:60:c5:f7:64:55:5d:6c:61:fd:8d:de: 20:12:31:52:ff:70:e2:d6:8b:57:2c:af:9f:50:c6:bb:81:ef: 10:69:5b:00:32:11:5d:f6:fe:6b:93:7d:08:3c:77:15:c7:5a: db:3f:ba:c9:ee:23:3b:91:34:f6:06:ee:f4:fa:d8:12:a2:99: b9:5d:b3:db:9f:9e:77:ac:90:9f:57:bd:93:7c:42:ff:8d:3f: c8:92:0a:25:d7:ed:a9:25:28:64:81:63:cd:23:1e:b6:91:53: f8:cd:7f:2f:13:7c:3a:00:bb:5f:07:71:70:6e:ca:53:54:f6: 3c:8b:b5:bd:7a:40:1a:6d:8c:0b:75:d1:b1:af:7b:19:3f:fa: c9:32:53:ad:0a:f4:c4:55:29:c0:a2:ac:7b:0e:68:eb:b0:69: 33:69:74:b2:45:1d:52:eb:af:4a:01:b9:f7:9b:bd:83:7b:c9: b6:df:a7:b5:5e:ff:83:59:ca:70:73:fd:cd:f0:d2:f0:c2:fa: e0:09:39:f6:64:a2:cb:4f:5c:62:ac:1b:39:c2:5a:bc:54:a3: d2:f9:b5:56 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKB+jd6MIV5ijP+IOC7YCEpiNYuQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yNTA1MDgwMDE2MThaFw0yNTA1MTEwNzEyMThaMDMxMTAvBgNV BAMTKDJBRTU2NDE1OTlEMUFDMTRBOTVCNjUzMEZDMTdCNENBMjM3RkMzN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjX1maskoqUfXJG4rGWHIqbzG1 NiMKWpAdTScgfyVCrAXQCC4zU+HDFPXU6Ch61Etq5XDZxhJMv+G6gGtH717nlnsa hfvq7CxuzJsg4y68Z+z0kaq3LIN9QVMpkKD09I2i17tJFn7sBwjLo7b0Js8f7M5S x5wA4cMyE20JlZA594sHu2Srw3tJr7Q1g+LjeFHjQlqpQybbt/csTnT8BUG7RObL zBlDdy0APWKucdV8lQdeWPHnsu5NQw9BQGWmkn03EDygSAckx94sbMFSu9iXb+F3 SQLtiHPEfU04laQFBEwCKCZyr/UVLeCcq7n35sL14T+c28h9k86QKgib458jAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKuVkFZnRrBSpW2Uw/Be0yiN/w3owHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTY2YThmMjgtOWEwMy00Mzc2LWI2 MTItMzFmNWFkMWMxZWQ2LzAvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4 MTc1RUMzODcxRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADq0SEL4rz3ZKhmT3mhbM5uPK1K6Owpbw9Yf gRdg7qOeD0egkwY7kx00/ItgxfdkVV1sYf2N3iASMVL/cOLWi1csr59QxruB7xBp WwAyEV32/muTfQg8dxXHWts/usnuIzuRNPYG7vT62BKimblds9ufnneskJ9XvZN8 Qv+NP8iSCiXX7aklKGSBY80jHraRU/jNfy8TfDoAu18HcXBuylNU9jyLtb16QBpt jAt10bGvexk/+skyU60K9MRVKcCirHsOaOuwaTNpdLJFHVLrr0oBufebvYN7ybbf p7Ve/4NZynBz/c3w0vDC+uAJOfZkostPXGKsGznCWrxUo9L5tVY= -----END CERTIFICATE-----Generated at Thu May 8 06:26:05 2025 by rpki-client