$ rpki-client -vvf repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft File: A2F125E1CDB95BA2AF5636AF284A399496555F38.mft (raw, json) Hash identifier: 1wSJrZQ9yhpBf4S7oyxiYYl1jsol6YUYPBcwU20DYw4= Subject key identifier: DE:5F:7D:A5:CC:9B:A9:80:DC:3B:9E:E0:1B:60:77:73:9B:7E:D8:65 Authority key identifier: A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 Certificate issuer: /CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Certificate serial: 3ADE401F2807EB18252D527B7CA29AB9E5F6D738 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft Manifest number: 01BB Signing time: Thu 08 May 2025 08:31:54 +0000 Manifest this update: Thu 08 May 2025 08:26:54 +0000 Manifest next update: Sun 11 May 2025 17:34:54 +0000 Files and hashes: 1: A2F125E1CDB95BA2AF5636AF284A399496555F38.crl (hash: lksWmLgxohqhvZf5WB0n1etgvbL6LaKXqdYwim1fmMM=) 2: 3130332e3139312e3231382e302f32342d3234203d3e20313439393330.roa (hash: zLfKDuc3jNTwhPewKCkQdrraOM+o8tM8JoTok2PPCpE=) 3: 3130332e3139312e3231392e302f32342d3234203d3e20313439393330.roa (hash: /BAWrcQPac6z7r0Aw+CQfRooZAASQixIkDdl1c+PelY=) 4: 3130332e3139312e3231382e302f32332d3234203d3e20313439393330.roa (hash: k7X14J+QdS7MEz6uDJt6u3xkxSH91jVPDLJqXdryTNc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 17:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:de:40:1f:28:07:eb:18:25:2d:52:7b:7c:a2:9a:b9:e5:f6:d7:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Validity Not Before: May 8 08:26:54 2025 GMT Not After : May 11 17:34:54 2025 GMT Subject: CN=DE5F7DA5CC9BA980DC3B9EE01B6077739B7ED865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c4:a7:43:d1:ed:9a:37:9f:fd:15:ef:c6:c8: 2d:43:e2:7c:a1:53:90:ab:fa:23:94:ca:6d:41:b6: 6b:6f:a7:3e:9d:e4:6a:51:5f:29:28:09:a9:95:a0: 37:44:cd:6e:c5:a5:b0:35:26:dd:d3:97:b6:02:09: 0f:03:b0:fd:f7:dd:9b:90:f7:13:81:e2:64:cc:11: e6:5b:4b:2a:d2:36:c9:a6:06:46:d4:8c:6f:da:58: ad:af:bf:c5:b1:67:f7:b8:a4:ec:df:ca:12:4f:7c: 94:46:d2:a1:9e:b5:c1:d9:06:c1:50:45:3a:2b:21: b3:af:07:a7:d2:fb:9d:32:c5:4c:d9:97:33:d1:b7: 38:6a:83:c2:d5:a3:2c:9c:d7:d3:ae:04:df:a9:88: c6:77:ed:9c:df:5a:1d:1e:ab:96:b3:cc:f4:81:d6: ed:95:80:57:01:5e:75:c8:10:0a:56:6c:f9:94:08: b9:62:d1:e1:aa:3b:03:b6:30:7d:11:39:92:d3:9a: f1:1c:59:ca:4b:ce:16:2f:e6:c5:01:d5:3e:85:6c: bb:1e:e9:07:76:e1:c9:91:ae:30:9d:59:3c:01:d3: 21:5b:d5:ef:18:b2:7d:e7:c1:52:ae:5b:cd:7e:88: 71:db:94:91:de:fc:98:65:0b:4d:cf:ee:f0:8b:43: f8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:5F:7D:A5:CC:9B:A9:80:DC:3B:9E:E0:1B:60:77:73:9B:7E:D8:65 X509v3 Authority Key Identifier: keyid:A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:51:fb:47:7f:da:be:46:a5:a8:c5:fc:8b:45:e6:0f:e8:fe: 7f:04:16:20:1f:90:46:d2:18:13:04:ee:25:29:16:51:02:1a: 7b:ff:d5:1f:04:79:ea:ae:50:96:8b:62:ed:44:7d:b2:5b:3b: ac:b4:4f:41:f6:c6:58:c9:27:54:de:69:43:fa:30:66:77:f1: 9d:31:e2:34:64:66:14:bf:b5:ca:8e:a1:70:1b:33:4e:1c:6b: 1f:1c:7d:9d:16:ec:96:ef:b1:d2:1f:3e:44:7a:fb:da:4f:6d: ee:a0:01:db:d3:fd:be:ae:2a:88:8b:2c:f3:56:d2:9d:99:b3: d6:06:06:78:85:b4:29:f7:4b:e7:92:41:d7:97:7d:ad:ad:90: 1c:c4:fd:9d:43:ef:87:d5:59:ff:0e:8d:27:3c:3a:ec:d9:24: 26:ec:7b:97:34:e9:e7:0f:c5:bf:4b:6d:e7:17:f2:a6:76:7a: 2e:6c:fc:83:87:4b:c7:09:1a:a5:74:d9:55:1d:c5:d6:8b:8a: a7:4e:e4:f9:56:5f:11:36:39:3c:40:86:12:2d:b0:c1:3d:fc: e4:d2:24:2f:3a:63:d6:52:ce:e9:5e:fe:2a:89:a9:1c:de:c5: e4:73:c2:6f:f1:3f:e1:03:64:8c:b8:00:71:56:12:ec:9f:5e: a0:77:fc:27 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOt5AHygH6xglLVJ7fKKaueX21zgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5 NjU1NUYzODAeFw0yNTA1MDgwODI2NTRaFw0yNTA1MTExNzM0NTRaMDMxMTAvBgNV BAMTKERFNUY3REE1Q0M5QkE5ODBEQzNCOUVFMDFCNjA3NzczOUI3RUQ4NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2xKdD0e2aN5/9Fe/GyC1D4nyh U5Cr+iOUym1Btmtvpz6d5GpRXykoCamVoDdEzW7FpbA1Jt3Tl7YCCQ8DsP333ZuQ 9xOB4mTMEeZbSyrSNsmmBkbUjG/aWK2vv8WxZ/e4pOzfyhJPfJRG0qGetcHZBsFQ RTorIbOvB6fS+50yxUzZlzPRtzhqg8LVoyyc19OuBN+piMZ37ZzfWh0eq5azzPSB 1u2VgFcBXnXIEApWbPmUCLli0eGqOwO2MH0ROZLTmvEcWcpLzhYv5sUB1T6FbLse 6Qd24cmRrjCdWTwB0yFb1e8Ysn3nwVKuW81+iHHblJHe/JhlC03P7vCLQ/iBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3l99pcybqYDcO57gG2B3c5t+2GUwHwYDVR0j BBgwFoAUovEl4c25W6KvVjavKEo5lJZVXzgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzM3MGQyNC1hNjU2LTQzMzYtODQyYi05YmQ1ZGNhMmI0MGEvMC9BMkYxMjVFMUNE Qjk1QkEyQUY1NjM2QUYyODRBMzk5NDk2NTU1RjM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5NjU1 NUYzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjMzNzBkMjQtYTY1Ni00MzM2LTg0 MmItOWJkNWRjYTJiNDBhLzAvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5 OTQ5NjU1NUYzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIVR+0d/2r5GpajF/ItF5g/o/n8EFiAfkEbS GBME7iUpFlECGnv/1R8EeequUJaLYu1EfbJbO6y0T0H2xljJJ1TeaUP6MGZ38Z0x 4jRkZhS/tcqOoXAbM04cax8cfZ0W7JbvsdIfPkR6+9pPbe6gAdvT/b6uKoiLLPNW 0p2Zs9YGBniFtCn3S+eSQdeXfa2tkBzE/Z1D74fVWf8OjSc8OuzZJCbse5c06ecP xb9LbecX8qZ2ei5s/IOHS8cJGqV02VUdxdaLiqdO5PlWXxE2OTxAhhItsME9/OTS JC86Y9ZSzule/iqJqRzexeRzwm/xP+EDZIy4AHFWEuyfXqB3/Cc= -----END CERTIFICATE-----Generated at Fri May 9 19:23:15 2025 by rpki-client