$ rpki-client -vvf repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft File: C70A343932991281F91796DB87B011987603BBF4.mft (raw, json) Hash identifier: sK9x9CNUxDBQf8eEMz009HWqFCnKpcaWOKgm81CCm4s= Subject key identifier: FE:39:20:AD:75:41:2D:E6:CC:88:95:60:D1:EB:6F:8A:EA:16:8B:5F Authority key identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 Certificate issuer: /CN=C70A343932991281F91796DB87B011987603BBF4 Certificate serial: 45F8057DB8068C1BA776305BC3349A2492396F88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft Manifest number: 01F2 Signing time: Fri 09 May 2025 20:01:30 +0000 Manifest this update: Fri 09 May 2025 19:56:30 +0000 Manifest next update: Tue 13 May 2025 07:31:30 +0000 Files and hashes: 1: 3130332e3138342e3132312e302f32342d3234203d3e20313439363633.roa (hash: TB7U9GvlAmHnGk0/8JpxDBGjqTq2O6M0WEaScBuoS/g=) 2: 3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa (hash: K/te+OOqq38HfLYFBM6maqhYABgY51ViE5jJN8jRKPY=) 3: 3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa (hash: 7CE9BXOCk+npQ95V1OHYui5nCFjD3JZ2DBCvcvu4/Kk=) 4: C70A343932991281F91796DB87B011987603BBF4.crl (hash: AFzveFHS/kC85TS9bQWk1d0QswUmxsYIzllZ+s/tLxQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 07:31:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:f8:05:7d:b8:06:8c:1b:a7:76:30:5b:c3:34:9a:24:92:39:6f:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C70A343932991281F91796DB87B011987603BBF4 Validity Not Before: May 9 19:56:30 2025 GMT Not After : May 13 07:31:30 2025 GMT Subject: CN=FE3920AD75412DE6CC889560D1EB6F8AEA168B5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:84:0e:1d:f1:cb:60:38:d4:5e:2d:5c:56:e7: bb:a2:08:2e:df:2d:f3:ff:00:09:fc:70:a8:bf:17: 8d:bf:b8:22:50:cb:78:11:d0:6b:1b:6f:61:51:63: af:cd:61:11:87:71:8f:c5:93:68:09:f5:16:ac:bb: 9b:83:f4:f9:d5:ce:3b:c2:45:e3:10:1b:20:fa:09: 8d:15:6c:17:76:74:0d:e8:f9:b7:10:33:51:65:af: ee:23:52:66:d7:3d:89:e0:22:68:5b:7a:55:5b:7e: ef:52:24:9c:ea:86:1b:33:a6:14:1b:f1:d2:f9:c1: 67:47:df:09:8e:97:09:75:73:1d:e6:ce:67:17:cd: 55:36:05:f0:1e:f8:f2:dd:b7:ce:01:7d:29:b0:31: 9f:d0:59:75:4f:dc:60:8f:2b:ec:a2:fa:6c:86:f7: e2:9e:24:96:49:d2:2e:34:4e:e9:8f:52:51:17:ee: 3e:dc:21:5f:80:86:16:23:74:5a:12:0f:1d:8e:e4: e5:6e:b7:8d:bc:02:0d:90:16:ac:13:e9:5c:fb:b1: 4b:f0:b2:f4:97:a6:8c:83:e2:44:b3:1e:00:e5:b1: 2d:02:fa:a7:f7:a8:8c:35:0d:4a:d2:f5:8e:12:ec: e1:1e:1e:bb:18:6a:fd:2c:d5:61:8e:b5:32:9f:73: af:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:39:20:AD:75:41:2D:E6:CC:88:95:60:D1:EB:6F:8A:EA:16:8B:5F X509v3 Authority Key Identifier: keyid:C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:9d:54:c2:5e:09:69:01:2b:2b:8a:63:80:67:0b:ab:fc:9f: c3:b9:d3:1c:a4:94:b0:4c:da:20:21:a1:56:a7:7c:d8:3f:5a: 83:dc:81:4c:3d:f9:f1:6c:ab:98:43:25:fb:9e:02:12:de:d0: b7:8c:13:15:eb:88:ac:00:e0:ac:1b:db:e9:e4:74:8d:27:58: de:9c:56:85:79:de:03:c2:72:ab:07:78:10:46:90:bb:80:06: ef:75:d0:cd:49:fd:04:8f:e9:2b:ec:bb:9c:cf:61:17:75:aa: 93:84:ce:a7:13:e1:0c:50:11:c2:bd:96:8f:38:4b:f7:33:e5: fc:54:b2:b3:9e:fb:78:a6:42:95:a2:b4:04:97:6b:c1:ec:c7: 0f:01:8e:c8:55:dd:38:fc:40:c9:14:b3:5b:3c:fa:65:f5:ba: ca:ff:61:31:d9:e2:f8:0c:96:fa:b7:7a:ee:05:ad:7d:b0:aa: 2b:b7:52:b9:0c:2e:d6:9c:ee:9a:e9:9a:91:df:31:ec:62:fa: 18:f8:df:3b:cd:8f:f8:e7:2f:18:3a:9d:fd:0d:2d:af:49:5b: 43:3d:79:a6:3f:e2:cb:d0:ed:41:25:75:68:e5:c8:78:ac:8c: c0:13:da:a4:50:50:37:68:be:62:1a:b7:a5:1d:a9:94:f2:39: 85:21:0f:a3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURfgFfbgGjBundjBbwzSaJJI5b4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3 NjAzQkJGNDAeFw0yNTA1MDkxOTU2MzBaFw0yNTA1MTMwNzMxMzBaMDMxMTAvBgNV BAMTKEZFMzkyMEFENzU0MTJERTZDQzg4OTU2MEQxRUI2RjhBRUExNjhCNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDohA4d8ctgONReLVxW57uiCC7f LfP/AAn8cKi/F42/uCJQy3gR0Gsbb2FRY6/NYRGHcY/Fk2gJ9Rasu5uD9PnVzjvC ReMQGyD6CY0VbBd2dA3o+bcQM1Flr+4jUmbXPYngImhbelVbfu9SJJzqhhszphQb 8dL5wWdH3wmOlwl1cx3mzmcXzVU2BfAe+PLdt84BfSmwMZ/QWXVP3GCPK+yi+myG 9+KeJJZJ0i40TumPUlEX7j7cIV+AhhYjdFoSDx2O5OVut428Ag2QFqwT6Vz7sUvw svSXpoyD4kSzHgDlsS0C+qf3qIw1DUrS9Y4S7OEeHrsYav0s1WGOtTKfc6/9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/jkgrXVBLebMiJVg0etviuoWi18wHwYDVR0j BBgwFoAUxwo0OTKZEoH5F5bbh7ARmHYDu/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmMxN2NjMi1mNGEyLTQxNWUtOGVhMi1mOWM0N2Y3NWM0Y2EvMC9DNzBBMzQzOTMy OTkxMjgxRjkxNzk2REI4N0IwMTE5ODc2MDNCQkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3NjAz QkJGNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmZjMTdjYzItZjRhMi00MTVlLThl YTItZjljNDdmNzVjNGNhLzAvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDEx OTg3NjAzQkJGNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGydVMJeCWkBKyuKY4BnC6v8n8O50xyklLBM 2iAhoVanfNg/WoPcgUw9+fFsq5hDJfueAhLe0LeMExXriKwA4Kwb2+nkdI0nWN6c VoV53gPCcqsHeBBGkLuABu910M1J/QSP6Svsu5zPYRd1qpOEzqcT4QxQEcK9lo84 S/cz5fxUsrOe+3imQpWitASXa8Hsxw8BjshV3Tj8QMkUs1s8+mX1usr/YTHZ4vgM lvq3eu4FrX2wqiu3UrkMLtac7prpmpHfMexi+hj43zvNj/jnLxg6nf0NLa9JW0M9 eaY/4svQ7UEldWjlyHisjMAT2qRQUDdovmIat6UdqZTyOYUhD6M= -----END CERTIFICATE-----Generated at Sat May 10 23:08:10 2025 by rpki-client