$ rpki-client -vvf repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft File: 21F5E152BA3E25561EA4D2E2986546412F44F15B.mft (raw, json) Hash identifier: eSF5xAAuHgrbbYY2NThw9WUvBnhaFGGOQAeQKSKE8J4= Subject key identifier: 1E:91:AE:89:E4:5D:6D:B0:A3:72:53:64:34:86:2D:93:45:4D:C0:4F Authority key identifier: 21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B Certificate issuer: /CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Certificate serial: 02AEAAD979B2E2220E895309D0EE1D8EC5D4FFFE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft Manifest number: 5A Signing time: Mon 05 May 2025 05:21:49 +0000 Manifest this update: Mon 05 May 2025 05:16:49 +0000 Manifest next update: Thu 08 May 2025 08:40:49 +0000 Files and hashes: 1: 3130332e3130362e37382e302f32332d3233203d3e203436303233.roa (hash: eJ9GbsoPpuqjf9GV+xkr8k7F5h0W8otETbBjey1b6zQ=) 2: 3130332e3130362e37392e302f32342d3234203d3e203436303233.roa (hash: +JichmiRgdBO5Ls93QqucE3C6EV+z6Am+M+Wk0rjli0=) 3: 3130332e3130362e37362e302f32322d3232203d3e203436303233.roa (hash: 2GYoGVGasxR8uDpvI7BrmDmU9LmzA4rGOfrvv4FSPFU=) 4: 3130332e3130362e37382e302f32342d3234203d3e203436303233.roa (hash: FSBT4Cl2oIA3FZ2v8CwqLAvZnqhyh2xxPvGzfautFn8=) 5: 3130332e3130362e37362e302f32332d3233203d3e203436303233.roa (hash: cL7ZL6RvGqaM5lLXVnNe5p70LEzT1elnw9tJI0VweII=) 6: 3130332e3130362e37362e302f32342d3234203d3e203436303233.roa (hash: rou4lQQn7ojgWvv4wv09Ssy99ZSAyWazNJbw+IJaxNs=) 7: 3130332e3130362e37372e302f32342d3234203d3e203436303233.roa (hash: iziNbMfSG5lJ/Wc6NMmyz4JELED2OvK44piqUsCFc7c=) 8: 21F5E152BA3E25561EA4D2E2986546412F44F15B.crl (hash: v0ZsK4tAdL1ODjhZRnVtf+CoiuUdLAZDmFzPy/PsxmM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 08:40:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ae:aa:d9:79:b2:e2:22:0e:89:53:09:d0:ee:1d:8e:c5:d4:ff:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Validity Not Before: May 5 05:16:49 2025 GMT Not After : May 8 08:40:49 2025 GMT Subject: CN=1E91AE89E45D6DB0A372536434862D93454DC04F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:10:e5:2e:4b:0c:f7:0d:2b:52:6d:fe:e6:6b: cf:f5:01:e7:ca:45:91:91:99:28:93:48:2d:16:ac: 1a:24:4f:59:d9:1f:1c:70:a7:8d:bc:50:9c:6d:43: 0c:ca:60:ff:3e:0d:c9:77:84:84:1f:cb:bf:74:0b: e1:e8:74:c1:13:81:1d:b6:46:2c:be:69:57:b4:cf: 30:b9:6f:33:6f:83:ab:d2:d8:48:9a:09:bb:8d:49: dc:eb:c1:f2:eb:bd:c2:e1:c9:37:3d:b3:89:30:c9: 4b:ed:b2:07:81:eb:cd:78:2e:af:12:9a:16:b8:6e: 19:99:d8:3f:f1:ef:83:f9:61:f8:9e:ce:62:5a:dd: 5d:b7:44:37:dc:2c:63:48:9a:08:91:c5:c9:69:38: f6:4b:58:60:72:91:18:0b:b1:a3:a9:1c:7e:1b:61: e5:5f:19:87:4c:f6:bb:51:ae:19:a8:4c:1f:a4:4d: 8d:c9:e8:02:87:cb:08:22:e2:28:53:bf:9a:95:67: 6f:85:8a:f3:3c:0f:48:49:1a:99:37:e7:34:5b:4d: 7b:f5:53:fe:4b:16:d1:57:fd:75:73:8d:df:01:de: 22:ee:35:49:ae:54:08:84:24:42:5b:a5:19:9a:ca: fc:3a:36:f9:4d:fc:ed:8d:84:db:fa:8f:59:9b:cc: 79:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:91:AE:89:E4:5D:6D:B0:A3:72:53:64:34:86:2D:93:45:4D:C0:4F X509v3 Authority Key Identifier: keyid:21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:39:3e:5d:6f:88:ca:8b:d6:31:d4:b1:dd:64:16:50:b6:ca: f6:8f:24:96:5b:07:3a:81:5e:8e:8b:d7:60:6d:5d:84:a9:75: 24:0a:73:bc:b1:2c:01:2a:62:12:b3:4d:4d:9b:8f:11:db:a1: 76:b1:21:cb:93:51:b6:f4:55:2f:66:6a:71:67:5f:58:42:74: 7d:50:b5:a3:0c:bc:c7:13:25:a7:26:43:2b:5b:95:23:75:41: ac:f1:53:8c:79:7b:79:36:33:ee:e9:6d:65:90:f2:eb:de:e7: 64:22:17:80:b4:e0:73:56:7c:e9:af:d7:86:15:48:58:ec:92: 9c:31:be:91:d4:25:fd:40:ff:f3:76:53:7a:18:a5:70:ef:fa: a6:3b:69:43:df:12:85:50:cd:a3:7b:8a:e3:66:96:5c:6d:f3: 5e:44:59:b1:66:0a:67:d3:77:4a:0a:d6:ed:6d:6f:c8:3e:d9: d9:44:d2:6f:1e:25:3b:c1:63:fb:98:65:47:ad:12:90:64:a5: 7f:78:bc:8f:c7:11:ac:c9:d5:1c:47:0d:ab:c0:d2:36:7b:38: 52:cf:ae:63:8d:a2:a0:d2:2e:27:72:08:46:16:8a:ac:62:0a: 4e:07:7c:f4:df:9f:77:df:1c:ea:83:72:c0:f5:19:6e:2e:33: b8:f7:dd:f8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAq6q2Xmy4iIOiVMJ0O4djsXU//4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEy RjQ0RjE1QjAeFw0yNTA1MDUwNTE2NDlaFw0yNTA1MDgwODQwNDlaMDMxMTAvBgNV BAMTKDFFOTFBRTg5RTQ1RDZEQjBBMzcyNTM2NDM0ODYyRDkzNDU0REMwNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNEOUuSwz3DStSbf7ma8/1AefK RZGRmSiTSC0WrBokT1nZHxxwp428UJxtQwzKYP8+Dcl3hIQfy790C+HodMETgR22 Riy+aVe0zzC5bzNvg6vS2EiaCbuNSdzrwfLrvcLhyTc9s4kwyUvtsgeB6814Lq8S mha4bhmZ2D/x74P5YfiezmJa3V23RDfcLGNImgiRxclpOPZLWGBykRgLsaOpHH4b YeVfGYdM9rtRrhmoTB+kTY3J6AKHywgi4ihTv5qVZ2+FivM8D0hJGpk35zRbTXv1 U/5LFtFX/XVzjd8B3iLuNUmuVAiEJEJbpRmayvw6NvlN/O2NhNv6j1mbzHkRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHpGuieRdbbCjclNkNIYtk0VNwE8wHwYDVR0j BBgwFoAUIfXhUro+JVYepNLimGVGQS9E8VswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j M2RkNjEzNS01NDhjLTQ4ODEtYWY3OC05M2FmOWYyYTI1MTYvMC8yMUY1RTE1MkJB M0UyNTU2MUVBNEQyRTI5ODY1NDY0MTJGNDRGMTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEyRjQ0 RjE1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzNkZDYxMzUtNTQ4Yy00ODgxLWFm NzgtOTNhZjlmMmEyNTE2LzAvMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2 NDEyRjQ0RjE1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADI5Pl1viMqL1jHUsd1kFlC2yvaPJJZbBzqB Xo6L12BtXYSpdSQKc7yxLAEqYhKzTU2bjxHboXaxIcuTUbb0VS9manFnX1hCdH1Q taMMvMcTJacmQytblSN1QazxU4x5e3k2M+7pbWWQ8uve52QiF4C04HNWfOmv14YV SFjskpwxvpHUJf1A//N2U3oYpXDv+qY7aUPfEoVQzaN7iuNmllxt815EWbFmCmfT d0oK1u1tb8g+2dlE0m8eJTvBY/uYZUetEpBkpX94vI/HEazJ1RxHDavA0jZ7OFLP rmONoqDSLidyCEYWiqxiCk4HfPTfn3ffHOqDcsD1GW4uM7j33fg= -----END CERTIFICATE-----Generated at Wed May 7 09:43:45 2025 by rpki-client