$ rpki-client -vvf repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft File: 210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft (raw, json) Hash identifier: IzJjXdWng7GhTwm5AHydcBdEh+N3O5qo2hFHDBd1XHU= Subject key identifier: CF:C4:91:D9:E0:F8:B9:06:80:88:C5:ED:87:EF:90:B1:7C:62:65:38 Authority key identifier: 21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 Certificate issuer: /CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Certificate serial: 44BFD54A95742872D2A239D1C80724F58FBB4B28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft Manifest number: 01BF Signing time: Sun 11 May 2025 15:51:20 +0000 Manifest this update: Sun 11 May 2025 15:46:20 +0000 Manifest next update: Wed 14 May 2025 22:44:20 +0000 Files and hashes: 1: 210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl (hash: KhU1ppeOIQuDz25lxElXL76I4ERfXiK+6JaiDUh6Nks=) 2: 3130332e3139332e3136362e302f32332d3233203d3e20313530313835.roa (hash: 6gMRYCDTA91uCrSpOJHQwzXcDUzZZQ/fPopmQLU54uQ=) 3: 3130332e3139332e3136372e302f32342d3234203d3e20313530313835.roa (hash: GK6TjIFHP3OKYpdF9mQ2NlZ0xI3zyr1c1AWcP5mkKcw=) 4: 3130332e3139332e3136362e302f32342d3234203d3e20313530313835.roa (hash: jkr10nu1KheD3rFITjZKu8+8qzjxbIrM8OjPSducB+Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 22:44:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:bf:d5:4a:95:74:28:72:d2:a2:39:d1:c8:07:24:f5:8f:bb:4b:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Validity Not Before: May 11 15:46:20 2025 GMT Not After : May 14 22:44:20 2025 GMT Subject: CN=CFC491D9E0F8B9068088C5ED87EF90B17C626538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5d:6f:72:3d:33:95:23:c1:aa:40:86:d7:27: 51:28:20:0f:31:f9:5e:14:28:0b:e4:4e:cc:60:05: 00:c2:51:58:d6:a4:68:c5:26:e4:ae:78:d7:1b:11: c0:a3:f0:ff:c5:76:59:4b:58:51:ec:7d:75:8b:9d: 5b:79:04:82:1c:3d:40:20:54:2f:a1:fe:a7:4a:08: dc:b9:f1:ff:13:ef:f9:ad:a3:02:ec:e6:ef:a3:90: e0:e9:9c:36:46:77:26:c0:0a:eb:32:05:39:b2:7d: 5d:d1:37:b6:d8:29:19:13:91:de:b7:b5:19:40:01: 99:87:4e:c2:e7:df:da:e3:3b:33:20:51:d0:04:76: 7a:e9:85:6f:68:00:30:60:98:77:75:95:d1:21:ec: 88:7a:33:3f:cb:18:41:45:02:e3:0a:ec:98:8d:f8: 5e:a3:95:dd:67:6c:42:9c:a4:68:b0:fc:b4:7e:b6: e2:af:8f:39:09:e8:04:74:c2:32:e0:7c:55:36:d0: 88:2a:d7:c2:90:87:68:78:0a:1e:6b:07:35:35:50: dd:22:ee:4c:13:7b:77:a9:b1:bd:45:80:e0:54:8b: e5:2a:d7:4f:42:a0:3e:f2:dc:21:a6:c1:86:76:51: 4b:9f:19:43:1d:26:b0:ca:63:84:46:9f:50:a7:e9: da:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C4:91:D9:E0:F8:B9:06:80:88:C5:ED:87:EF:90:B1:7C:62:65:38 X509v3 Authority Key Identifier: keyid:21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:3d:bd:e2:1f:ca:df:b9:03:a7:59:67:d5:41:e1:71:12:ca: 9c:ea:fe:81:30:c3:90:89:55:21:e9:aa:4d:33:d1:90:16:12: 81:ae:4e:f8:f7:89:1b:8b:c6:f2:66:d2:93:d3:e5:f4:d8:0a: 1b:9d:04:ef:41:6d:de:79:79:a0:e8:78:6c:88:73:94:84:f4: fd:31:71:f5:ca:b2:c2:40:b8:34:ad:0f:f4:f4:13:21:1c:e7: 96:7c:85:71:6c:ce:09:a5:dd:e8:07:bb:33:e3:09:b6:d4:0f: eb:5b:e5:15:ff:d5:8e:4e:e7:9f:ad:90:8b:d8:a0:04:54:ac: 85:d9:ae:6a:c5:c6:89:05:e5:a2:55:99:99:22:b7:14:41:05: 2a:90:a4:42:d4:b9:31:f8:12:1f:2f:d8:89:d7:e1:07:2a:d5: 46:ab:6d:2a:0e:43:f2:4b:0c:fd:e2:e0:2a:41:77:ae:a1:6b: f5:f9:49:c1:96:35:4b:30:a7:8f:ef:77:29:fa:32:fc:9f:c8: 0c:ca:1e:f1:7f:ae:62:f9:4d:3e:b7:91:5c:a8:17:08:d9:cd: ed:08:87:23:b7:5e:32:36:4b:8f:b5:03:e3:d5:13:df:05:b2: ff:9b:2d:ba:e1:eb:ba:f5:64:c0:c1:42:52:58:b8:fc:76:3a: db:26:de:ae -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURL/VSpV0KHLSojnRyAck9Y+7SygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJE QzlCODFBNzAeFw0yNTA1MTExNTQ2MjBaFw0yNTA1MTQyMjQ0MjBaMDMxMTAvBgNV BAMTKENGQzQ5MUQ5RTBGOEI5MDY4MDg4QzVFRDg3RUY5MEIxN0M2MjY1MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXXW9yPTOVI8GqQIbXJ1EoIA8x +V4UKAvkTsxgBQDCUVjWpGjFJuSueNcbEcCj8P/FdllLWFHsfXWLnVt5BIIcPUAg VC+h/qdKCNy58f8T7/mtowLs5u+jkODpnDZGdybACusyBTmyfV3RN7bYKRkTkd63 tRlAAZmHTsLn39rjOzMgUdAEdnrphW9oADBgmHd1ldEh7Ih6Mz/LGEFFAuMK7JiN +F6jld1nbEKcpGiw/LR+tuKvjzkJ6AR0wjLgfFU20Igq18KQh2h4Ch5rBzU1UN0i 7kwTe3epsb1FgOBUi+Uq109CoD7y3CGmwYZ2UUufGUMdJrDKY4RGn1Cn6doNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUz8SR2eD4uQaAiMXth++QsXxiZTgwHwYDVR0j BBgwFoAUIQvnvVEvEi/WP+kFen8VItybgacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzAzNjk3NC04MTMxLTQ1YWYtOTRjZS1mNDliNDgxMWMxNzMvMC8yMTBCRTdCRDUx MkYxMjJGRDYzRkU5MDU3QTdGMTUyMkRDOUI4MUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJEQzlC ODFBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjcwMzY5NzQtODEzMS00NWFmLTk0 Y2UtZjQ5YjQ4MTFjMTczLzAvMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1 MjJEQzlCODFBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKc9veIfyt+5A6dZZ9VB4XESypzq/oEww5CJ VSHpqk0z0ZAWEoGuTvj3iRuLxvJm0pPT5fTYChudBO9Bbd55eaDoeGyIc5SE9P0x cfXKssJAuDStD/T0EyEc55Z8hXFszgml3egHuzPjCbbUD+tb5RX/1Y5O55+tkIvY oARUrIXZrmrFxokF5aJVmZkitxRBBSqQpELUuTH4Eh8v2InX4Qcq1UarbSoOQ/JL DP3i4CpBd66ha/X5ScGWNUswp4/vdyn6MvyfyAzKHvF/rmL5TT63kVyoFwjZze0I hyO3XjI2S4+1A+PVE98Fsv+bLbrh67r1ZMDBQlJYuPx2Otsm3q4= -----END CERTIFICATE-----Generated at Tue May 13 00:59:09 2025 by rpki-client