$ rpki-client -vvf repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft File: 401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft (raw, json) Hash identifier: 5zWHbErq7AU2RuKIZAUtR1BX0TvifCdUD7bQ8cap3FA= Subject key identifier: 68:42:71:E6:AD:B8:79:8F:DA:1C:5F:DD:52:8A:52:F2:80:DF:E1:99 Authority key identifier: 40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD Certificate issuer: /CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD Certificate serial: 1F7F23383ACF66E71622A40A1806F32FAFABD82C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft Manifest number: 01B2 Signing time: Thu 08 May 2025 03:31:48 +0000 Manifest this update: Thu 08 May 2025 03:26:48 +0000 Manifest next update: Sun 11 May 2025 12:42:48 +0000 Files and hashes: 1: 401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl (hash: oiR2bnekfQnm0kxAFZMg+qQbZgxO/9olUSWcfwnChDk=) 2: 3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa (hash: a7mgV41OX87LjUgmR9JI4fbD1k92EJK28gdqBsIBQfU=) 3: 3130332e3136302e36382e302f32342d3234203d3e203438343635.roa (hash: xfIhG1WqC8mycFYz+vcqQY0Ov8VUQ3o8w6al6PEEFwc=) 4: 3130332e3136302e36392e302f32342d3234203d3e203438343635.roa (hash: auLcgmSGCQAKQQp7IS/UW/PKknCFg/ObGvfBAC+PkNE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 12:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:7f:23:38:3a:cf:66:e7:16:22:a4:0a:18:06:f3:2f:af:ab:d8:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD Validity Not Before: May 8 03:26:48 2025 GMT Not After : May 11 12:42:48 2025 GMT Subject: CN=684271E6ADB8798FDA1C5FDD528A52F280DFE199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:68:28:22:77:1d:b7:43:1f:f1:8d:2f:f8:db: 96:22:8d:44:80:6f:52:e3:df:bd:bb:8b:18:86:fe: 59:43:7e:88:e5:ce:71:09:38:68:33:0c:9c:a9:e8: 9a:9f:54:8a:b9:ae:34:28:94:9d:5b:fd:4d:e0:ce: 8d:2e:fa:f0:49:3c:c5:9f:00:51:4b:22:53:af:1b: 7d:a0:63:07:35:77:13:d9:18:9e:03:27:d4:a3:5e: 90:85:64:e7:cd:3e:81:8b:28:21:dc:32:be:63:3d: 37:78:e7:ca:3a:82:1a:ae:01:c3:f0:03:45:80:94: 1e:d0:84:30:bc:dc:95:64:0a:bc:f2:e8:e8:3d:79: 34:6d:f9:3c:4a:77:d9:14:93:15:30:00:16:85:d7: 8c:ef:66:22:fb:5f:56:49:3d:20:0e:e3:63:ad:89: d2:25:8f:c8:f1:00:f7:9b:1a:c3:dd:04:1e:a9:53: a5:26:7f:0a:41:9a:57:76:b5:04:fe:f8:f9:30:67: ce:6a:95:b4:c7:95:37:7e:71:e0:7d:47:60:59:6f: 79:0a:15:74:4e:23:8a:48:db:73:57:0d:c9:5b:ed: d4:b7:e0:0f:63:c0:56:73:46:e5:0c:40:b8:51:b3: 87:68:f7:74:32:15:d7:ad:5b:a0:ca:bc:63:24:47: 8a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:42:71:E6:AD:B8:79:8F:DA:1C:5F:DD:52:8A:52:F2:80:DF:E1:99 X509v3 Authority Key Identifier: keyid:40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:21:49:dc:84:63:3b:76:47:ab:55:ee:63:c2:31:45:75:bc: a8:3f:1c:fc:a5:7b:0a:76:c5:97:dd:7b:69:6e:e6:ae:3c:c2: 31:24:bd:3b:9b:7c:5a:0f:91:6f:76:91:e3:cc:0b:bc:62:69: 5e:7e:fb:c4:d7:0d:5f:0d:36:99:c1:4c:c0:e6:e3:a8:24:97: ac:bc:76:e5:6c:eb:00:42:93:7b:ec:f1:32:c5:c0:b1:ac:be: 09:cc:51:3b:1c:e4:74:50:a5:96:ec:fd:89:0a:82:3d:f9:a7: bb:a4:c0:82:5c:f5:90:64:23:5a:85:53:e5:fe:71:94:02:64: 39:30:94:76:4b:d7:7c:0a:fb:e3:b4:16:9e:d4:28:d6:7e:22: b4:a2:9c:10:2d:18:30:f5:00:fa:cf:ab:4e:42:34:ef:48:be: 9a:6d:cf:c6:b0:88:57:16:66:5c:5d:7f:d6:12:a4:3a:63:41: a6:6b:03:8d:a6:d5:f2:f3:9c:c3:9d:d4:e4:8a:a3:05:e0:41: 46:e8:2e:ed:0e:3a:ed:56:b7:2d:b3:b5:24:b6:20:28:09:36: 2a:d2:3e:cc:8b:77:0c:cd:be:55:e0:9e:e1:79:e7:b4:46:31: 9b:85:de:37:3e:ca:ce:17:15:c1:c1:d4:a9:c0:92:0c:06:09: 54:73:6a:73 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUH38jODrPZucWIqQKGAbzL6+r2CwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUzRkZG OURERTNERDAeFw0yNTA1MDgwMzI2NDhaFw0yNTA1MTExMjQyNDhaMDMxMTAvBgNV BAMTKDY4NDI3MUU2QURCODc5OEZEQTFDNUZERDUyOEE1MkYyODBERkUxOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEaCgidx23Qx/xjS/425YijUSA b1Lj3727ixiG/llDfojlznEJOGgzDJyp6JqfVIq5rjQolJ1b/U3gzo0u+vBJPMWf AFFLIlOvG32gYwc1dxPZGJ4DJ9SjXpCFZOfNPoGLKCHcMr5jPTd458o6ghquAcPw A0WAlB7QhDC83JVkCrzy6Og9eTRt+TxKd9kUkxUwABaF14zvZiL7X1ZJPSAO42Ot idIlj8jxAPebGsPdBB6pU6UmfwpBmld2tQT++PkwZ85qlbTHlTd+ceB9R2BZb3kK FXROI4pI23NXDclb7dS34A9jwFZzRuUMQLhRs4do93QyFdetW6DKvGMkR4rdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUaEJx5q24eY/aHF/dUopS8oDf4ZkwHwYDVR0j BBgwFoAUQBqlavWZzKLNcaaE/89T//nd490wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWM3OWZiZS00NzkwLTQ2YmUtYjliMi0wMzU5YjFhMThlMzMvMC80MDFBQTU2QUY1 OTlDQ0EyQ0Q3MUE2ODRGRkNGNTNGRkY5RERFM0RELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUzRkZGOURE RTNERC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGFjNzlmYmUtNDc5MC00NmJlLWI5 YjItMDM1OWIxYTE4ZTMzLzAvNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUz RkZGOURERTNERC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACMhSdyEYzt2R6tV7mPCMUV1vKg/HPylewp2 xZfde2lu5q48wjEkvTubfFoPkW92kePMC7xiaV5++8TXDV8NNpnBTMDm46gkl6y8 duVs6wBCk3vs8TLFwLGsvgnMUTsc5HRQpZbs/YkKgj35p7ukwIJc9ZBkI1qFU+X+ cZQCZDkwlHZL13wK++O0Fp7UKNZ+IrSinBAtGDD1APrPq05CNO9Ivpptz8awiFcW Zlxdf9YSpDpjQaZrA42m1fLznMOd1OSKowXgQUboLu0OOu1Wty2ztSS2ICgJNirS PsyLdwzNvlXgnuF557RGMZuF3jc+ys4XFcHB1KnAkgwGCVRzanM= -----END CERTIFICATE-----Generated at Sat May 10 04:54:03 2025 by rpki-client