$ rpki-client -vvf repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft File: 0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft (raw, json) Hash identifier: MjtC7+oMx2EndgBar9uAjr+u6hW9g3VoXBdfxDWIS5c= Subject key identifier: 43:4D:19:82:5E:13:11:03:01:DF:BA:77:E2:91:55:EF:BE:20:52:70 Authority key identifier: 0C:E1:E1:11:46:E2:51:D0:CD:52:BD:83:7A:1A:0A:CD:B7:E0:BA:0C Certificate issuer: /CN=0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C Certificate serial: 105D56C066C02F9C9D9AED51E6AD6FFAD862BFC1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft Manifest number: 0101 Signing time: Fri 09 May 2025 09:01:49 +0000 Manifest this update: Fri 09 May 2025 08:56:49 +0000 Manifest next update: Mon 12 May 2025 14:09:49 +0000 Files and hashes: 1: 323030313a6466303a663963303a3a2f34382d3438203d3e20313439393037.roa (hash: /A4c0t6Y98cg2lIq++5SQTiV0ECjCxcXz8yePuUy48U=) 2: 0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl (hash: xP+ehvPZ7XUj2AeQg2TOEBOuTYsc2xncCHuNB/hC3lw=) 3: 3130332e3139302e3131332e302f32342d3234203d3e20313439393037.roa (hash: 6BP6Wg9K2CydFqVw55iYNyq05rAdRjLr1zk9t4b5GKw=) 4: 3130332e3139302e3131322e302f32342d3234203d3e20313439393037.roa (hash: zSZcK2ezC0OwcIoirCwbw8lg34i7IQmCM/PoAclIbTc=) 5: 3130332e3139302e3131322e302f32332d3234203d3e20313439393037.roa (hash: /ZMRp/k5nyna7+OV16C6wftA6bpNJZQ65/zvr/LPUR4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 14:09:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:5d:56:c0:66:c0:2f:9c:9d:9a:ed:51:e6:ad:6f:fa:d8:62:bf:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C Validity Not Before: May 9 08:56:49 2025 GMT Not After : May 12 14:09:49 2025 GMT Subject: CN=434D19825E13110301DFBA77E29155EFBE205270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:65:2d:53:cd:8b:67:6d:a8:7d:52:e8:a2:dd: ea:bc:52:6c:9b:72:7a:ae:70:dd:5a:64:eb:da:fd: b2:1c:78:ff:fe:d4:85:e3:92:03:81:50:47:21:33: 7a:27:50:7c:7c:56:12:75:dd:58:e2:02:66:65:17: a1:be:a9:a0:88:0a:ab:e6:db:40:75:68:3c:38:c5: b8:6d:47:85:b9:eb:63:0b:52:07:41:86:ab:3c:fc: 14:85:e8:64:c2:13:e7:29:8c:7d:6c:a9:27:31:fb: 34:64:c4:a2:a7:e2:d2:72:57:64:ce:57:5a:17:2e: f3:00:64:61:69:80:96:13:2e:7c:dd:dc:f0:fe:8b: 39:3b:f0:48:ef:fb:06:d3:d0:f5:cb:9f:80:22:cf: 8f:87:df:15:76:97:5d:15:55:ff:6f:ab:27:52:5e: 77:80:9f:a6:11:06:d0:da:31:02:15:84:01:10:af: ff:b8:5e:2a:d7:ee:62:a8:0e:dd:b5:0b:13:60:74: e5:1e:61:96:c0:be:56:39:fd:ad:26:45:45:7b:5f: d0:e1:df:fb:6e:d7:d8:ef:b7:a0:bf:45:e8:9f:ff: ea:99:9c:31:09:f7:22:d1:d6:f8:d3:65:17:67:e3: 71:2d:8f:9c:73:83:0a:52:a2:ec:94:95:6b:de:bd: 4c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4D:19:82:5E:13:11:03:01:DF:BA:77:E2:91:55:EF:BE:20:52:70 X509v3 Authority Key Identifier: keyid:0C:E1:E1:11:46:E2:51:D0:CD:52:BD:83:7A:1A:0A:CD:B7:E0:BA:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:a7:60:af:0e:88:60:0f:47:c9:07:e8:e3:f1:0b:b0:d3:52: 46:03:d0:05:54:38:45:dc:5a:67:e9:47:69:39:df:42:78:47: 40:de:25:06:b4:d8:8a:f8:21:21:57:59:f0:5e:ff:27:78:fe: 11:2b:8d:58:ea:e3:ec:7d:48:a1:99:6b:31:b6:34:76:dc:d2: bd:e8:08:fc:b0:d2:af:8c:b3:28:e7:96:a2:f2:6e:51:33:b8: 70:c6:c4:ac:37:08:3a:86:e2:9d:c5:b5:a9:ac:85:02:82:be: ce:fc:c1:86:cd:27:bb:85:fa:6b:e3:a4:e5:14:60:65:d8:bd: 18:8f:8d:0e:a4:3b:b1:23:2b:1f:7c:f5:15:43:1d:56:38:e9: 17:79:6a:e5:5a:66:d9:68:6f:10:7b:43:cc:73:3b:88:64:3b: a3:16:1c:b2:f0:5e:ae:53:e5:dd:22:c6:24:e2:38:3f:75:74: ff:a0:e5:ad:de:89:78:12:a4:63:01:85:9e:f8:61:ba:4f:76: 8e:13:d9:df:3d:ce:fb:c7:eb:a0:34:9e:cc:f7:74:f9:46:d1: d3:6a:d8:08:46:c3:fa:70:b3:05:94:8f:82:ac:39:46:7a:24: 70:54:89:3c:60:c4:e8:b0:8a:0e:5d:8b:25:38:0d:04:ec:28: 1c:68:63:31 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEF1WwGbAL5ydmu1R5q1v+thiv8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBBQ0RC N0UwQkEwQzAeFw0yNTA1MDkwODU2NDlaFw0yNTA1MTIxNDA5NDlaMDMxMTAvBgNV BAMTKDQzNEQxOTgyNUUxMzExMDMwMURGQkE3N0UyOTE1NUVGQkUyMDUyNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwZS1TzYtnbah9Uuii3eq8Umyb cnqucN1aZOva/bIceP/+1IXjkgOBUEchM3onUHx8VhJ13VjiAmZlF6G+qaCICqvm 20B1aDw4xbhtR4W562MLUgdBhqs8/BSF6GTCE+cpjH1sqScx+zRkxKKn4tJyV2TO V1oXLvMAZGFpgJYTLnzd3PD+izk78Ejv+wbT0PXLn4Aiz4+H3xV2l10VVf9vqydS XneAn6YRBtDaMQIVhAEQr/+4XirX7mKoDt21CxNgdOUeYZbAvlY5/a0mRUV7X9Dh 3/tu19jvt6C/Reif/+qZnDEJ9yLR1vjTZRdn43Etj5xzgwpSouyUlWvevUwRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQ00Zgl4TEQMB37p34pFV774gUnAwHwYDVR0j BBgwFoAUDOHhEUbiUdDNUr2DehoKzbfgugwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDUxNmE3YS00MTk1LTQ0YjMtYTI0ZS1jZjhlZDU3OGQ3OTEvMC8wQ0UxRTExMTQ2 RTI1MUQwQ0Q1MkJEODM3QTFBMEFDREI3RTBCQTBDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBBQ0RCN0Uw QkEwQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjA1MTZhN2EtNDE5NS00NGIzLWEy NGUtY2Y4ZWQ1NzhkNzkxLzAvMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBB Q0RCN0UwQkEwQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGqnYK8OiGAPR8kH6OPxC7DTUkYD0AVUOEXc WmfpR2k530J4R0DeJQa02Ir4ISFXWfBe/yd4/hErjVjq4+x9SKGZazG2NHbc0r3o CPyw0q+MsyjnlqLyblEzuHDGxKw3CDqG4p3FtamshQKCvs78wYbNJ7uF+mvjpOUU YGXYvRiPjQ6kO7EjKx989RVDHVY46Rd5auVaZtlobxB7Q8xzO4hkO6MWHLLwXq5T 5d0ixiTiOD91dP+g5a3eiXgSpGMBhZ74YbpPdo4T2d89zvvH66A0nsz3dPlG0dNq 2AhGw/pwswWUj4KsOUZ6JHBUiTxgxOiwig5diyU4DQTsKBxoYzE= -----END CERTIFICATE-----Generated at Sat May 10 05:29:50 2025 by rpki-client