$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft File: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft (raw, json) Hash identifier: QjOv60H+QrbneWZ5l2d0r1w6kru5wOZdLNZ9ynADuXw= Subject key identifier: FA:20:D5:8F:7C:12:EF:20:B6:67:5D:D6:3B:56:7E:15:F5:FD:F3:47 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 74CD2A1F8FFB937FC55BEE31EC55D34FA1663647 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft Manifest number: 0227 Signing time: Sat 03 May 2025 16:11:56 +0000 Manifest this update: Sat 03 May 2025 16:06:56 +0000 Manifest next update: Wed 07 May 2025 03:48:56 +0000 Files and hashes: 1: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl (hash: 8TYbF6AAim5JsFcdnq72j2zuoLMsF7MMT9rVSv1bltQ=) 2: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (hash: Q49EnVockO7Wf1pEkALOtAUiauf7qPnxOjOocdL9Yus=) 3: 3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa (hash: 2gVCxg+hDmKkdBfr1IN+Jz7t1loTVbupLhThyLDp4zk=) 4: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (hash: B08azy3XQsiTZf5UppG1ngPrOYAEwHH6x3322yJGfrI=) 5: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (hash: yOR4ha1iNJToiWgXnk0oG7heqETlfk80W41Jvd2P1xg=) 6: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (hash: TIp9WHuUqK5QCHJsHK2qMd4Di3b+YgT1J52ydC6PYvs=) 7: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (hash: s6MFeDXqeIkTAot5lzYFNGxoGgi1Yjw/2CsMKFqccxU=) 8: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (hash: zVGnPMz6FjIWNaiokQGONx21w4m18vhd71uDshC7eyA=) 9: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (hash: fr8+FrmlPGl8AfQlow8lySzaZVznKtOBprgMvRW46vw=) 10: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (hash: RZP1u67IkDY1VxYw8axwNJaL5jYZcoL8kOhW1c7O+Eg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 03:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:cd:2a:1f:8f:fb:93:7f:c5:5b:ee:31:ec:55:d3:4f:a1:66:36:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: May 3 16:06:56 2025 GMT Not After : May 7 03:48:56 2025 GMT Subject: CN=FA20D58F7C12EF20B6675DD63B567E15F5FDF347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f9:39:e7:a0:22:c5:38:b1:b9:16:16:cd:a3: 27:e5:19:ff:11:b2:c4:0f:c5:66:fe:23:db:39:ec: 23:e5:e3:8e:bc:3d:6b:5a:38:f0:19:9a:28:b0:a8: fa:80:43:f4:e1:fa:80:47:2e:c3:4c:c0:9f:02:55: bd:bc:72:bd:9b:16:02:cc:1a:13:6a:00:7c:98:e5: 33:de:34:62:1c:c4:b5:cc:69:25:69:c0:df:53:4c: a1:bc:ef:aa:9d:56:6c:94:dc:9e:dd:d4:20:8e:a0: b8:62:63:9e:b1:ab:de:17:a7:00:db:f5:52:91:a3: 8c:7c:0d:09:3b:9f:73:82:e7:59:be:a0:43:18:f7: 07:34:ff:d9:0e:13:a9:3c:0b:cb:6f:c4:39:cd:96: 7f:14:ec:e3:51:6d:30:f5:7b:7d:bd:7f:44:2b:d8: e6:d9:f5:b5:57:82:08:7e:f0:3a:e0:8b:cb:19:5c: 8c:6a:1c:27:80:b7:fc:06:e4:6f:6a:52:1e:7c:2b: 91:e1:73:fc:b2:8d:6b:eb:72:9b:87:1d:8f:1b:91: f9:f3:5e:d9:e8:e3:c0:60:67:03:90:49:71:d3:ef: 40:31:ee:2d:69:df:2b:47:66:c0:f8:97:2a:7a:60: fd:88:70:cf:35:c4:46:22:3c:5e:13:e2:8b:56:e9: b1:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:20:D5:8F:7C:12:EF:20:B6:67:5D:D6:3B:56:7E:15:F5:FD:F3:47 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:36:c8:0b:3f:6c:ee:c4:df:08:04:07:72:1b:b0:1c:a6:0e: 54:9f:06:3e:99:ac:97:37:e9:2d:4c:a8:ba:b7:3f:53:df:48: ba:b4:e2:8c:94:12:5e:d1:83:8f:9f:81:9b:12:ba:ef:d4:a0: be:74:08:3f:9b:ba:a1:8e:af:d6:5a:7e:5a:67:13:a1:95:4e: 85:58:0a:68:6f:92:4f:11:ea:57:18:93:15:64:3f:8e:5f:57: e8:5a:7c:72:e9:a0:f4:f3:24:a0:1a:c9:41:7a:73:cb:c0:ca: 78:8e:dc:49:19:a2:9c:b4:75:47:c9:71:51:7a:00:79:79:57: 2b:dc:39:07:a0:c2:6a:b1:0a:41:9d:84:4e:8e:99:86:de:c1: 41:e4:f4:c7:a6:ea:59:27:c9:4d:5c:33:92:a5:1a:f3:ca:ef: 7a:a4:91:f1:e6:ff:ef:2c:49:66:1c:da:a9:ef:1c:61:19:b6: 72:b3:9b:5b:bd:93:fb:db:a8:7a:50:17:83:40:79:c4:21:79: 72:de:c2:c7:59:6c:23:a3:c8:67:1c:a6:0a:27:48:12:18:0f: 49:1e:b8:66:31:ec:48:72:f8:de:8e:ab:9f:44:6f:4f:d5:0e: 53:34:1a:77:b3:69:e7:0b:2a:4f:00:5b:b3:d4:82:35:ac:dd: 76:32:d9:75 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdM0qH4/7k3/FW+4x7FXTT6FmNkcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTA1MDMxNjA2NTZaFw0yNTA1MDcwMzQ4NTZaMDMxMTAvBgNV BAMTKEZBMjBENThGN0MxMkVGMjBCNjY3NURENjNCNTY3RTE1RjVGREYzNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS+TnnoCLFOLG5FhbNoyflGf8R ssQPxWb+I9s57CPl4468PWtaOPAZmiiwqPqAQ/Th+oBHLsNMwJ8CVb28cr2bFgLM GhNqAHyY5TPeNGIcxLXMaSVpwN9TTKG876qdVmyU3J7d1CCOoLhiY56xq94XpwDb 9VKRo4x8DQk7n3OC51m+oEMY9wc0/9kOE6k8C8tvxDnNln8U7ONRbTD1e329f0Qr 2ObZ9bVXggh+8Drgi8sZXIxqHCeAt/wG5G9qUh58K5Hhc/yyjWvrcpuHHY8bkfnz Xtno48BgZwOQSXHT70Ax7i1p3ytHZsD4lyp6YP2IcM81xEYiPF4T4otW6bFVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+iDVj3wS7yC2Z13WO1Z+FfX980cwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzhkMGU2NDAtMjJlOS00NDFjLTg2 MzQtZjk1MjUzMDdkYTc2LzAvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYy MzZCNzQwMTY2MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHY2yAs/bO7E3wgEB3IbsBymDlSfBj6ZrJc3 6S1MqLq3P1PfSLq04oyUEl7Rg4+fgZsSuu/UoL50CD+buqGOr9ZaflpnE6GVToVY Cmhvkk8R6lcYkxVkP45fV+hafHLpoPTzJKAayUF6c8vAyniO3EkZopy0dUfJcVF6 AHl5VyvcOQegwmqxCkGdhE6OmYbewUHk9Mem6lknyU1cM5KlGvPK73qkkfHm/+8s SWYc2qnvHGEZtnKzm1u9k/vbqHpQF4NAecQheXLewsdZbCOjyGccpgonSBIYD0ke uGYx7Ehy+N6Oq59Eb0/VDlM0GnezaecLKk8AW7PUgjWs3XYy2XU= -----END CERTIFICATE-----Generated at Tue May 6 02:24:02 2025 by rpki-client