$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft File: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft (raw, json) Hash identifier: fwkgSsjh0KP7/uMhEbIdy+Gb+KhJa7Oa+n7sanX+pmA= Subject key identifier: 00:65:2A:99:0E:2D:D6:2E:3F:F8:35:EB:42:C1:9B:05:A6:16:88:79 Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 1D3C36C78A83ECECADAE1C995F7F79951AB37F80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft Manifest number: 04DF Signing time: Tue 06 May 2025 13:01:18 +0000 Manifest this update: Tue 06 May 2025 12:56:18 +0000 Manifest next update: Fri 09 May 2025 21:58:18 +0000 Files and hashes: 1: 3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa (hash: Gss2BFwCvkYMrYmTDPR8XZwGfdbzMzVTFBRvuPZp/uA=) 2: 3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa (hash: 4JNXGbFSJKtM5CgL+QrVp+IPBcHdXzt9z515t4i/+vk=) 3: 323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa (hash: CwXU9VaKpcKaIL0+cwM5Fjr5bkAAawnd7hCNC9U00Bg=) 4: 3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa (hash: e9uiS3KNGlZ+EQjSXY4m6NwJ9lRr8aifmafZU96mQ7k=) 5: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl (hash: lEpP5l+1tjiYM8jWTt7+O3ArpXawhFbYOlhPrPUPiaw=) 6: 3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa (hash: Rrqdw9OPSaMzJqqbJeil51yS0Dp8UexGZcFlKd3Gk5M=) 7: 3130332e3233352e37352e302f32342d3234203d3e20313335343434.roa (hash: lz/aRA5xwGbvGMSgXL70n8EEkKYV5RNTgznI5gnec7Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 21:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:3c:36:c7:8a:83:ec:ec:ad:ae:1c:99:5f:7f:79:95:1a:b3:7f:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: May 6 12:56:18 2025 GMT Not After : May 9 21:58:18 2025 GMT Subject: CN=00652A990E2DD62E3FF835EB42C19B05A6168879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c2:ce:61:84:0d:35:f4:7d:ba:1b:98:26:f2: 04:db:6b:71:19:fe:8c:8c:f8:37:ab:6d:55:d4:5a: 67:4d:25:0b:fc:ce:d6:c7:ee:b7:f6:5f:b1:72:63: 8e:d0:3c:5e:32:2d:5d:88:57:4d:5d:fc:9b:b5:89: d6:fb:c3:04:e1:ec:13:5e:60:46:f5:cd:9d:fa:d9: 0b:5e:76:9a:78:4d:10:0e:7a:dd:b4:51:14:c1:df: e3:15:d0:73:ea:5e:8e:73:2b:62:15:06:c9:6f:bd: 0b:da:fc:21:b5:1c:a1:e0:d5:25:ee:88:dd:d9:48: b2:c9:b0:52:dc:87:34:2b:15:f8:d5:81:23:f7:57: 9d:42:31:1f:11:89:62:4e:0e:92:1f:fe:64:3b:d8: 79:61:8e:20:9c:12:6d:17:e6:33:31:a6:d4:fc:51: a4:42:72:02:6e:d9:ee:b4:68:48:8f:a5:45:1f:aa: 46:e2:8a:ed:17:12:c8:ee:bb:e1:93:5c:c3:ee:ab: 0d:e8:99:9a:ab:35:ca:a6:7f:a6:e7:ae:f5:61:41: f9:de:5d:b5:6c:a5:58:96:5a:2e:22:9a:60:c5:d4: b2:76:c7:71:a4:e4:37:28:f7:58:11:5c:ad:78:4c: 32:ab:f6:34:24:40:81:eb:19:6c:31:8a:31:77:9d: e6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:65:2A:99:0E:2D:D6:2E:3F:F8:35:EB:42:C1:9B:05:A6:16:88:79 X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:89:fb:4d:ff:79:9d:14:cb:39:6e:5a:8e:16:b6:99:7f:f0: 6a:cd:22:fb:42:9d:56:54:02:7e:aa:62:0f:1b:0f:8b:ae:df: 82:38:da:53:a6:f8:94:01:96:7b:15:c5:84:30:b4:5d:7e:ce: 9a:83:12:6c:bc:89:89:91:e7:dc:f1:6f:95:38:49:4a:20:68: 91:3e:01:5b:95:a7:f1:6f:f6:2f:55:a4:3e:e7:07:95:d7:f2: 7d:94:67:ab:b0:dc:5f:14:a8:03:1d:75:c2:8f:3e:8a:dd:ee: 64:7c:e7:44:ff:db:49:5e:51:2c:c1:35:31:de:93:fa:f7:f0: e7:d8:2b:3b:b6:e7:50:e0:cd:2d:24:0d:58:a7:44:4c:43:bc: 56:44:35:ed:27:16:70:04:c1:c2:1e:ec:70:54:f0:23:22:c3: b7:64:be:a2:b5:9b:94:ac:af:b1:6c:2e:0c:3d:44:ea:4e:66: 6a:9b:2a:21:2e:be:f3:42:dd:29:3b:54:10:e5:75:25:1e:67: 52:18:f3:ea:ec:c0:ed:57:b5:50:6e:be:0b:1b:1c:37:b9:66: 78:8c:1d:ed:47:25:d4:35:82:1a:ba:44:fa:44:7b:40:a5:d0: f1:12:fb:80:33:8a:a9:af:8d:72:ee:46:89:b4:7d:35:39:ef: b4:5c:13:c8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHTw2x4qD7OytrhyZX395lRqzf4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNTA1MDYxMjU2MThaFw0yNTA1MDkyMTU4MThaMDMxMTAvBgNV BAMTKDAwNjUyQTk5MEUyREQ2MkUzRkY4MzVFQjQyQzE5QjA1QTYxNjg4NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEws5hhA019H26G5gm8gTba3EZ /oyM+DerbVXUWmdNJQv8ztbH7rf2X7FyY47QPF4yLV2IV01d/Ju1idb7wwTh7BNe YEb1zZ362Qtedpp4TRAOet20URTB3+MV0HPqXo5zK2IVBslvvQva/CG1HKHg1SXu iN3ZSLLJsFLchzQrFfjVgSP3V51CMR8RiWJODpIf/mQ72HlhjiCcEm0X5jMxptT8 UaRCcgJu2e60aEiPpUUfqkbiiu0XEsjuu+GTXMPuqw3omZqrNcqmf6bnrvVhQfne XbVspViWWi4immDF1LJ2x3Gk5Dco91gRXK14TDKr9jQkQIHrGWwxijF3neb/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAGUqmQ4t1i4/+DXrQsGbBaYWiHkwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjFhNzdhZGQtYTQ5YS00YzhmLWE3 MzUtZWY5NmMzM2FiMjlmLzAvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2 QTE4NkNGNTgyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAKJ+03/eZ0UyzluWo4Wtpl/8GrNIvtCnVZU An6qYg8bD4uu34I42lOm+JQBlnsVxYQwtF1+zpqDEmy8iYmR59zxb5U4SUogaJE+ AVuVp/Fv9i9VpD7nB5XX8n2UZ6uw3F8UqAMddcKPPord7mR850T/20leUSzBNTHe k/r38OfYKzu251DgzS0kDVinRExDvFZENe0nFnAEwcIe7HBU8CMiw7dkvqK1m5Ss r7FsLgw9ROpOZmqbKiEuvvNC3Sk7VBDldSUeZ1IY8+rswO1XtVBuvgsbHDe5ZniM He1HJdQ1ghq6RPpEe0Cl0PES+4AziqmvjXLuRom0fTU577RcE8g= -----END CERTIFICATE-----Generated at Thu May 8 10:50:57 2025 by rpki-client