$ rpki-client -vvf repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft File: 10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft (raw, json) Hash identifier: 5rTagNRNza3glQlk+sAhPq3WF/TBsD0UW7M+flF8xQU= Subject key identifier: 15:EA:A6:49:87:7D:C4:1C:9B:56:91:BE:49:50:DA:A2:87:02:1C:83 Authority key identifier: 10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B Certificate issuer: /CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Certificate serial: 13414281279D9B4D1F241F9EA3F77A0C318709B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft Manifest number: 5B Signing time: Thu 08 May 2025 17:51:36 +0000 Manifest this update: Thu 08 May 2025 17:46:36 +0000 Manifest next update: Sun 11 May 2025 20:12:36 +0000 Files and hashes: 1: 10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl (hash: VLERoQ1p4tHuKZSQzgPvbZq9PuLcUcPt68UMvg5vM58=) 2: 3130332e3137312e3235342e302f32342d3234203d3e20313432333939.roa (hash: EfPoQqtxgLuobpoazcJOzehsaHb5tIneq6Zek5DzcaE=) 3: 3130332e3137312e3235352e302f32342d3234203d3e20313432333939.roa (hash: J4isEyK1ySJtCWVpvhGVyfTYrZDUM8aentftYxqK7KA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 20:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:41:42:81:27:9d:9b:4d:1f:24:1f:9e:a3:f7:7a:0c:31:87:09:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Validity Not Before: May 8 17:46:36 2025 GMT Not After : May 11 20:12:36 2025 GMT Subject: CN=15EAA649877DC41C9B5691BE4950DAA287021C83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bc:c0:7d:fa:9c:69:12:70:11:2f:81:61:7c: 34:8e:e9:b6:44:1e:19:16:d4:26:8b:a2:be:bf:c5: dd:db:14:78:75:5a:b9:1b:0e:f8:76:d9:bd:0e:65: d0:fa:79:35:9b:93:ae:81:1f:98:1e:04:dd:0d:4a: b2:f0:64:4c:9f:9c:bd:3c:d0:18:fa:37:ef:e6:73: cf:e7:16:fc:10:4f:5e:f4:48:51:ec:7a:20:9b:bd: 91:c5:7a:1a:17:19:50:e6:b0:9c:9e:fc:f3:ce:f7: 99:b5:04:31:be:7f:91:fb:c8:f5:9a:57:7f:fd:7d: f4:5d:72:6f:6b:8a:2e:22:38:eb:a7:0d:d2:a5:ae: f7:b5:1c:80:89:93:cf:98:94:f3:48:5b:98:49:09: 44:fa:01:2a:48:b9:59:da:e3:e5:56:3f:e0:26:09: eb:41:97:0a:85:73:bd:54:af:1d:c5:d9:93:b2:7f: 3a:60:e1:94:80:9f:91:33:a3:20:42:5c:a1:5a:4b: 17:94:74:4f:8e:e5:64:37:1b:2c:30:f9:02:a6:19: c9:06:de:9b:69:d2:1c:a7:2f:bd:1d:e8:57:af:4f: de:2f:7b:52:ae:88:b1:4f:8d:9f:15:42:5b:a0:72: 5f:be:1b:c8:59:01:b7:b5:a7:1c:2e:4c:7c:b7:0d: 5e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:EA:A6:49:87:7D:C4:1C:9B:56:91:BE:49:50:DA:A2:87:02:1C:83 X509v3 Authority Key Identifier: keyid:10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:20:e4:10:23:9c:a9:48:e0:f1:de:22:ba:f4:f8:36:65:2e: 13:a9:2f:39:6a:80:75:d8:1c:f8:a9:ae:f6:44:23:60:b0:6c: 08:37:c4:66:cc:7c:cf:5b:c5:a1:65:e9:ef:12:80:32:40:85: 94:29:66:19:2d:dc:98:f2:36:6d:de:17:62:20:3e:da:01:ac: cc:fc:a9:cf:89:25:c4:4f:af:d1:93:e1:6a:3d:33:0c:b9:5f: 12:da:53:1e:4d:36:ab:be:e7:f1:b2:6c:aa:a3:d4:95:8a:42: c6:95:f6:31:29:97:f2:a8:0d:ce:04:15:fb:ed:1a:65:aa:46: 74:bb:6e:96:4e:91:f6:81:d3:34:01:f0:38:0a:7c:ce:92:6a: 78:71:a3:1c:7b:09:1d:3b:7b:f7:e2:b4:68:62:85:4a:0c:2e: 29:1c:ed:9c:f2:54:38:05:a8:a4:c3:20:b7:e2:6e:38:48:9d: 6d:79:ef:f5:ea:c1:7d:a9:3f:ec:e0:23:d1:5a:30:a3:fd:e3: 47:3b:4d:1f:6b:d1:b2:23:93:c9:29:ed:36:06:ee:2e:f7:32: b7:f7:3f:8c:50:79:9c:03:5a:e8:14:33:a5:ff:2d:d6:d4:05: 13:7d:e5:5c:98:38:31:52:1a:f1:6c:0a:cb:50:7b:10:01:35: ae:a6:42:63 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUE0FCgSedm00fJB+eo/d6DDGHCbcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0 Q0ZBMzE3QjAeFw0yNTA1MDgxNzQ2MzZaFw0yNTA1MTEyMDEyMzZaMDMxMTAvBgNV BAMTKDE1RUFBNjQ5ODc3REM0MUM5QjU2OTFCRTQ5NTBEQUEyODcwMjFDODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1vMB9+pxpEnARL4FhfDSO6bZE HhkW1CaLor6/xd3bFHh1WrkbDvh22b0OZdD6eTWbk66BH5geBN0NSrLwZEyfnL08 0Bj6N+/mc8/nFvwQT170SFHseiCbvZHFehoXGVDmsJye/PPO95m1BDG+f5H7yPWa V3/9ffRdcm9rii4iOOunDdKlrve1HICJk8+YlPNIW5hJCUT6ASpIuVna4+VWP+Am CetBlwqFc71Urx3F2ZOyfzpg4ZSAn5EzoyBCXKFaSxeUdE+O5WQ3Gyww+QKmGckG 3ptp0hynL70d6FevT94ve1KuiLFPjZ8VQlugcl++G8hZAbe1pxwuTHy3DV5XAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFeqmSYd9xBybVpG+SVDaoocCHIMwHwYDVR0j BBgwFoAUENNTbz0L9/eszopoUF7AMUz6MXswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjAxYzk2Ny05OWQwLTRjMjEtOTY0Mi04N2FkYTY3MTU1YzgvMC8xMEQzNTM2RjNE MEJGN0Y3QUNDRThBNjg1MDVFQzAzMTRDRkEzMTdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0Q0ZB MzE3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2IwMWM5NjctOTlkMC00YzIxLTk2 NDItODdhZGE2NzE1NWM4LzAvMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMw MzE0Q0ZBMzE3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJMg5BAjnKlI4PHeIrr0+DZlLhOpLzlqgHXY HPiprvZEI2CwbAg3xGbMfM9bxaFl6e8SgDJAhZQpZhkt3JjyNm3eF2IgPtoBrMz8 qc+JJcRPr9GT4Wo9Mwy5XxLaUx5NNqu+5/GybKqj1JWKQsaV9jEpl/KoDc4EFfvt GmWqRnS7bpZOkfaB0zQB8DgKfM6Sanhxoxx7CR07e/fitGhihUoMLikc7ZzyVDgF qKTDILfibjhInW157/XqwX2pP+zgI9FaMKP940c7TR9r0bIjk8kp7TYG7i73Mrf3 P4xQeZwDWugUM6X/LdbUBRN95VyYODFSGvFsCstQexABNa6mQmM= -----END CERTIFICATE-----Generated at Sat May 10 14:41:40 2025 by rpki-client