$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft File: 21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json) Hash identifier: LmnbC0odi3As47meLt5gvZO1GOwgIu+tRrdEx6Wg21s= Subject key identifier: E9:DA:00:71:7D:24:74:B9:40:1C:59:A5:CC:93:24:34:BD:9C:80:F3 Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 1BD029D40C174D93A0181290DB72E3EE756C1DD4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft Manifest number: 048C Signing time: Thu 08 May 2025 20:52:41 +0000 Manifest this update: Thu 08 May 2025 20:47:41 +0000 Manifest next update: Mon 12 May 2025 08:40:41 +0000 Files and hashes: 1: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: OnBB+AVgOO2yluvkbnT8cnywdpmmnyLp0O1UDMPsJsk=) 2: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: 7blkTXyq3RKCIws921Czw5yMKl/tVjEFOw3lq63q9I8=) 3: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: Smb7HmzUf0UyLsjEJtoRvm3jALFW5SuffGaYfUAtD2s=) 4: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: 7caByxyqeMyGTLvWpUsSzWMwHPrlJn/P8ALQVggt+xA=) 5: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: RhfOeKNZ4j1KvALyW4SxaRw/kBv+Dgu0smuwmiknx1Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 08:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:d0:29:d4:0c:17:4d:93:a0:18:12:90:db:72:e3:ee:75:6c:1d:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: May 8 20:47:41 2025 GMT Not After : May 12 08:40:41 2025 GMT Subject: CN=E9DA00717D2474B9401C59A5CC932434BD9C80F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:57:42:21:3e:1c:1b:66:89:aa:b3:3f:0a:8f: 92:91:8f:93:ee:91:ba:78:9e:de:47:84:72:8e:04: cd:31:e9:18:6c:c2:9c:0d:21:d0:1e:c8:4a:31:af: 68:8b:dd:05:b7:8a:66:1a:7e:cc:4d:d6:8b:be:f2: 53:e1:58:0e:f7:e0:23:89:9d:21:f1:cf:c7:f0:43: 27:80:a1:61:12:92:d6:29:4e:e5:69:eb:0f:c5:11: c9:f4:38:cd:28:7c:51:f8:09:00:b6:3c:b6:e6:a6: c9:55:2f:65:8d:e2:eb:0e:cc:bd:b2:c6:e7:df:fe: 41:00:03:75:f8:c6:62:e8:fc:b7:e2:22:85:af:69: d9:1c:fd:8b:a7:43:65:3f:e0:58:e8:23:5e:61:c1: 21:b6:2a:2a:54:2b:93:d5:27:c4:c8:51:49:73:c7: 9d:cb:2f:5c:01:4d:6c:55:a6:fc:91:8a:c9:d2:65: 57:eb:b0:f6:3e:4d:18:ab:af:f1:c7:c1:72:2d:a5: 54:e8:0b:61:c3:92:9d:d0:58:e2:ab:4e:d7:d7:d9: 20:4f:ff:3d:b0:2d:a9:28:c7:52:ec:4c:27:eb:ce: 8c:6d:5d:9b:c3:20:8f:a5:b3:4d:df:1f:5f:f0:e9: 1a:80:68:71:1e:4e:c8:a0:5f:24:27:46:49:f1:ba: 28:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:DA:00:71:7D:24:74:B9:40:1C:59:A5:CC:93:24:34:BD:9C:80:F3 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:8f:cf:11:e6:24:6a:8f:4e:c3:f7:d0:df:91:d7:7c:aa:08: 9f:70:36:5d:55:b6:b2:2a:ec:b0:49:41:5c:87:18:b1:d5:9b: 83:eb:9b:3b:55:3a:93:20:53:19:55:c8:47:5e:1e:98:9d:ed: f5:37:e1:93:a9:d3:d0:eb:f2:17:72:3c:05:c9:cb:c7:83:51: 1d:f1:3d:5f:b2:fa:f9:1a:01:a8:b4:b1:8f:41:67:cd:c2:33: 2a:65:86:7c:2f:2c:b8:4a:c6:0a:2f:17:43:6f:71:5b:8b:6b: d7:62:51:ad:f9:92:e5:04:eb:3b:cf:bc:5c:74:3f:88:76:b7: 65:4a:4e:e3:fe:d1:f3:b7:e6:84:0c:4a:79:08:80:1a:70:d2: e6:ad:4f:81:4c:e8:04:dd:ee:65:1b:40:cc:c3:63:a8:8d:26: 86:f8:d4:ed:f8:67:f1:aa:f1:aa:94:c1:45:35:ff:d8:27:54: b4:e9:4d:16:60:33:1f:90:44:47:2a:dd:1b:40:fc:d7:63:17: 80:bf:e8:e9:b8:c5:20:0a:38:b7:81:2f:f9:9d:57:9a:5e:56: 90:ae:a4:3c:ff:6d:cf:0a:99:77:dc:c1:28:d2:ae:9b:8e:12: 44:72:10:33:e9:7e:de:ab:2e:70:c7:2b:87:2d:62:0b:c7:07: 7e:72:9b:e5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG9Ap1AwXTZOgGBKQ23Lj7nVsHdQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNTA1MDgyMDQ3NDFaFw0yNTA1MTIwODQwNDFaMDMxMTAvBgNV BAMTKEU5REEwMDcxN0QyNDc0Qjk0MDFDNTlBNUNDOTMyNDM0QkQ5QzgwRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4V0IhPhwbZomqsz8Kj5KRj5Pu kbp4nt5HhHKOBM0x6RhswpwNIdAeyEoxr2iL3QW3imYafsxN1ou+8lPhWA734COJ nSHxz8fwQyeAoWESktYpTuVp6w/FEcn0OM0ofFH4CQC2PLbmpslVL2WN4usOzL2y xuff/kEAA3X4xmLo/LfiIoWvadkc/YunQ2U/4FjoI15hwSG2KipUK5PVJ8TIUUlz x53LL1wBTWxVpvyRisnSZVfrsPY+TRirr/HHwXItpVToC2HDkp3QWOKrTtfX2SBP /z2wLakox1LsTCfrzoxtXZvDII+ls03fH1/w6RqAaHEeTsigXyQnRknxuihRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6doAcX0kdLlAHFmlzJMkNL2cgPMwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmRhYmMwYmEtOTIyMi00YzQ1LTgz NDItZWI4NjQzYzQ5NjdkLzAvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5Qzgz NjNERDAwOTExQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHyPzxHmJGqPTsP30N+R13yqCJ9wNl1VtrIq 7LBJQVyHGLHVm4PrmztVOpMgUxlVyEdeHpid7fU34ZOp09Dr8hdyPAXJy8eDUR3x PV+y+vkaAai0sY9BZ83CMyplhnwvLLhKxgovF0NvcVuLa9diUa35kuUE6zvPvFx0 P4h2t2VKTuP+0fO35oQMSnkIgBpw0uatT4FM6ATd7mUbQMzDY6iNJob41O34Z/Gq 8aqUwUU1/9gnVLTpTRZgMx+QREcq3RtA/NdjF4C/6Om4xSAKOLeBL/mdV5peVpCu pDz/bc8KmXfcwSjSrpuOEkRyEDPpft6rLnDHK4ctYgvHB35ym+U= -----END CERTIFICATE-----Generated at Sat May 10 10:03:37 2025 by rpki-client