$ rpki-client -vvf repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft File: 5DF7F909917C4DA09D7486E2B70323E7972B7675.mft (raw, json) Hash identifier: nIQApkKVBoaVi0QtBbJFYA+f6vhDSIDz13jhV+8iUOQ= Subject key identifier: 2E:F2:76:4E:3C:32:4B:B7:42:1F:FC:46:0A:9E:C8:15:D9:73:5F:57 Authority key identifier: 5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 Certificate issuer: /CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Certificate serial: 3AF6D63B1051FCF24E74B577C34C5ED5E99429FC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft Manifest number: 01E3 Signing time: Sat 03 May 2025 18:11:41 +0000 Manifest this update: Sat 03 May 2025 18:06:41 +0000 Manifest next update: Wed 07 May 2025 01:36:41 +0000 Files and hashes: 1: 5DF7F909917C4DA09D7486E2B70323E7972B7675.crl (hash: zoKVIsZsF2joFfran+lDo4dI2S38yQ5wiu7bjWJRVWw=) 2: 3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa (hash: uTV9a8fdyT6ZmJ8NRNVsn4KQvmLK6xkJNJmzdYWe1pQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 01:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:f6:d6:3b:10:51:fc:f2:4e:74:b5:77:c3:4c:5e:d5:e9:94:29:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Validity Not Before: May 3 18:06:41 2025 GMT Not After : May 7 01:36:41 2025 GMT Subject: CN=2EF2764E3C324BB7421FFC460A9EC815D9735F57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:30:fc:52:47:eb:98:46:80:c2:a7:ea:21:ea: 12:d0:3b:26:ac:28:2d:66:b1:5c:a3:71:2b:f3:ad: f8:82:8b:1f:38:b4:9d:8b:21:e9:98:55:dd:4b:9c: 23:24:37:f4:07:66:56:a4:79:75:ae:e5:3e:51:f6: 5a:ef:15:0d:9f:f4:a7:ae:29:e1:b7:84:cf:0b:8b: a6:d8:68:2d:27:bf:65:9b:a1:61:80:32:ba:15:09: 92:cd:bd:db:9e:a5:eb:62:d1:e4:f8:23:28:75:7b: bd:31:c2:35:a4:e9:fe:97:27:c0:cf:8b:02:a2:ba: c0:50:51:f3:9f:c4:7c:5b:11:e8:f9:08:cd:9d:f2: 46:8f:c2:c7:bd:b8:4d:53:cd:af:6d:68:74:81:7e: e8:3c:a5:37:69:88:89:f5:af:67:99:aa:03:b8:99: d5:9a:7c:98:c9:39:1e:f7:b8:8b:4f:b4:5f:91:15: 1c:2f:c3:52:5e:aa:7f:1c:dd:09:16:fb:2c:7e:57: 7b:36:68:f1:68:42:33:8b:b1:86:e1:81:7a:9c:5d: 07:82:41:a9:c1:24:51:ec:82:35:e8:55:07:87:12: 54:72:00:70:7a:fd:46:51:fa:7c:0d:7f:92:c8:18: 06:ff:17:87:c2:d1:b9:ec:a1:48:3a:17:0b:ad:a6: a7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F2:76:4E:3C:32:4B:B7:42:1F:FC:46:0A:9E:C8:15:D9:73:5F:57 X509v3 Authority Key Identifier: keyid:5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:e0:5e:c1:1f:b6:3d:bb:22:23:7d:50:dc:c0:e9:55:fb:8b: d1:c0:c6:13:da:1b:d3:bd:61:6f:38:f3:00:e3:9e:5b:f0:3f: 3b:2c:4a:f5:90:2f:9d:2d:03:84:b7:ae:84:fe:f4:94:36:a4: 7c:f8:5b:d9:a3:ca:66:20:4b:9a:cf:9d:fd:a1:83:37:63:a4: c6:f4:c8:b8:96:18:a5:73:e9:fa:57:eb:16:7f:3e:56:98:8e: ca:90:c3:34:a3:e9:4c:5d:44:58:17:d0:58:40:e3:40:74:18: 14:91:5b:4a:5d:67:75:56:2f:d4:f5:a4:e3:33:41:70:8e:17: 36:67:a7:d3:32:30:6d:8a:cd:ca:51:a0:56:8f:ca:7c:21:8b: 08:b5:0c:dc:db:9b:77:83:93:ef:07:5e:fd:1d:10:ad:f9:9d: 8c:0a:71:f5:b0:e7:45:2a:90:de:19:f9:0a:72:b4:a4:b3:fd: 4b:92:0f:20:d3:d4:22:4b:e0:85:b7:36:b9:c7:3a:d2:77:a6: 5f:2f:0a:e2:7e:2a:4a:23:ae:8f:2a:e3:56:79:d5:96:cc:0c: 85:6d:cb:0a:e7:ee:98:29:02:07:c9:b1:8e:d2:10:a1:fe:f9: 9a:ec:74:3b:71:7c:c2:ef:93:5a:02:44:53:49:38:60:eb:65: 8c:2b:50:01 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOvbWOxBR/PJOdLV3w0xe1emUKfwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5 NzJCNzY3NTAeFw0yNTA1MDMxODA2NDFaFw0yNTA1MDcwMTM2NDFaMDMxMTAvBgNV BAMTKDJFRjI3NjRFM0MzMjRCQjc0MjFGRkM0NjBBOUVDODE1RDk3MzVGNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCMPxSR+uYRoDCp+oh6hLQOyas KC1msVyjcSvzrfiCix84tJ2LIemYVd1LnCMkN/QHZlakeXWu5T5R9lrvFQ2f9Keu KeG3hM8Li6bYaC0nv2WboWGAMroVCZLNvduepeti0eT4Iyh1e70xwjWk6f6XJ8DP iwKiusBQUfOfxHxbEej5CM2d8kaPwse9uE1Tza9taHSBfug8pTdpiIn1r2eZqgO4 mdWafJjJOR73uItPtF+RFRwvw1Jeqn8c3QkW+yx+V3s2aPFoQjOLsYbhgXqcXQeC QanBJFHsgjXoVQeHElRyAHB6/UZR+nwNf5LIGAb/F4fC0bnsoUg6FwutpqcTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULvJ2TjwyS7dCH/xGCp7IFdlzX1cwHwYDVR0j BBgwFoAUXff5CZF8TaCddIbitwMj55crdnUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2I2NGMzZS1iMTNkLTQyN2EtYjk4Mi00Mzk0MDczZTVjZjUvMC81REY3RjkwOTkx N0M0REEwOUQ3NDg2RTJCNzAzMjNFNzk3MkI3Njc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5NzJC NzY3NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDdiNjRjM2UtYjEzZC00MjdhLWI5 ODItNDM5NDA3M2U1Y2Y1LzAvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIz RTc5NzJCNzY3NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFrgXsEftj27IiN9UNzA6VX7i9HAxhPaG9O9 YW848wDjnlvwPzssSvWQL50tA4S3roT+9JQ2pHz4W9mjymYgS5rPnf2hgzdjpMb0 yLiWGKVz6fpX6xZ/PlaYjsqQwzSj6UxdRFgX0FhA40B0GBSRW0pdZ3VWL9T1pOMz QXCOFzZnp9MyMG2KzcpRoFaPynwhiwi1DNzbm3eDk+8HXv0dEK35nYwKcfWw50Uq kN4Z+QpytKSz/UuSDyDT1CJL4IW3NrnHOtJ3pl8vCuJ+Kkojro8q41Z51ZbMDIVt ywrn7pgpAgfJsY7SEKH++ZrsdDtxfMLvk1oCRFNJOGDrZYwrUAE= -----END CERTIFICATE-----Generated at Mon May 5 23:47:02 2025 by rpki-client