$ rpki-client -vvf repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft File: 85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft (raw, json) Hash identifier: vFUykFWEzEIQGE8j17EMNATjxJik2dwol/V07C1RFBQ= Subject key identifier: 4C:3A:AE:0F:42:CF:48:6F:7A:CE:84:89:0B:D0:58:DB:D4:E8:CE:13 Authority key identifier: 85:EA:86:75:63:71:BA:89:BB:1A:E8:46:B5:C3:0D:DB:81:6A:CD:B9 Certificate issuer: /CN=85EA86756371BA89BB1AE846B5C30DDB816ACDB9 Certificate serial: 3001C34C4D7A59A683AF331631DFB2B1791C1FC0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft Manifest number: 01CB Signing time: Fri 09 May 2025 23:20:03 +0000 Manifest this update: Fri 09 May 2025 23:15:03 +0000 Manifest next update: Tue 13 May 2025 08:06:03 +0000 Files and hashes: 1: 85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl (hash: AVVn5nYDW3TH5IQTxba3kW178FHWaoE+Y4skpOim0HY=) 2: 3130332e3137342e37382e302f32332d3234203d3e203338333230.roa (hash: JLvwrDCSe45qQUH0nf/lghekanOyIElCFqxu5ayU5Q0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 08:06:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:01:c3:4c:4d:7a:59:a6:83:af:33:16:31:df:b2:b1:79:1c:1f:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85EA86756371BA89BB1AE846B5C30DDB816ACDB9 Validity Not Before: May 9 23:15:03 2025 GMT Not After : May 13 08:06:03 2025 GMT Subject: CN=4C3AAE0F42CF486F7ACE84890BD058DBD4E8CE13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4c:c6:75:3c:99:6f:d2:38:3f:24:91:61:de: 23:f1:49:eb:23:b5:db:40:25:82:cc:88:9f:67:fa: 81:5a:24:18:d4:12:b8:86:6f:52:ae:cc:21:9d:f0: 4a:eb:0f:d1:c3:9c:e5:0d:12:93:1e:04:0c:a8:62: ec:4a:50:18:3e:9d:fc:c6:e6:41:da:6c:91:d7:70: 80:a3:37:28:92:14:bb:65:07:83:ef:b7:4c:a3:57: 69:d5:85:e9:fe:28:3a:9a:a4:2b:63:d0:e8:50:d8: 68:fc:15:3e:62:7e:44:f9:fe:22:fe:ba:7f:03:39: a7:72:df:0b:7a:c6:46:e5:41:4b:33:e3:bc:2f:49: 8b:81:04:bf:59:cd:b1:79:59:30:3f:62:34:ae:86: e0:4b:7c:55:8a:27:2e:b8:d8:34:7d:e5:37:c9:33: e2:05:ae:1e:07:f0:23:bc:11:48:48:eb:87:ae:60: 12:09:99:08:54:81:63:35:ae:24:60:a8:6f:f4:d6: 92:c7:0b:25:bd:ab:b5:eb:88:36:94:e4:41:6f:80: 05:ad:1c:18:f9:6a:69:42:c8:f7:2a:2b:6c:5f:a7: 0f:ea:df:d5:e9:77:d1:37:87:47:1f:7d:23:8f:7d: 3a:35:79:68:be:02:b4:1d:0d:42:a2:8a:72:fc:4c: fa:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:3A:AE:0F:42:CF:48:6F:7A:CE:84:89:0B:D0:58:DB:D4:E8:CE:13 X509v3 Authority Key Identifier: keyid:85:EA:86:75:63:71:BA:89:BB:1A:E8:46:B5:C3:0D:DB:81:6A:CD:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:c2:94:c8:91:29:f4:9f:de:f1:83:68:18:13:ba:10:8c:e5: f5:52:35:39:dd:0c:94:e4:b7:bc:32:a9:dd:ad:a3:16:25:c3: b0:3d:71:bd:2b:49:85:78:8f:5a:26:23:e8:b0:77:e8:cd:65: 40:2c:d5:c7:bc:f9:dc:e7:9f:2e:9e:fa:26:3b:6e:c3:57:09: 74:ed:83:3d:1a:84:97:5b:4b:63:34:c0:95:6d:f8:5a:a3:0a: 15:e3:9f:39:46:92:c1:92:85:49:40:ac:00:45:d1:79:a6:75: 81:9f:c1:33:26:5d:fb:3e:00:7e:2c:5a:84:64:b8:a7:39:2e: c7:64:9c:1a:97:7a:0c:a7:27:7d:f9:74:69:04:3d:0c:17:58: 34:1d:e7:45:55:d5:eb:86:fa:b9:da:67:74:3c:0d:b0:e6:ed: c5:ec:f9:3b:7c:03:5e:0a:c3:43:1b:ba:80:e8:a4:f2:16:55: 66:99:39:c3:c5:b4:6e:93:ea:66:56:99:83:a9:b1:d3:bd:64: 21:3b:05:58:8c:c5:d3:1b:0e:0f:b3:b7:67:f4:fa:57:25:d6: 17:7a:a4:51:bd:a4:55:d4:01:48:16:46:6f:a9:a2:8a:dc:e8: 07:7e:30:a2:38:22:97:53:0a:b2:19:d8:ab:ec:13:6c:13:90: 95:29:eb:22 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMAHDTE16WaaDrzMWMd+ysXkcH8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBEREI4 MTZBQ0RCOTAeFw0yNTA1MDkyMzE1MDNaFw0yNTA1MTMwODA2MDNaMDMxMTAvBgNV BAMTKDRDM0FBRTBGNDJDRjQ4NkY3QUNFODQ4OTBCRDA1OERCRDRFOENFMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHTMZ1PJlv0jg/JJFh3iPxSesj tdtAJYLMiJ9n+oFaJBjUEriGb1KuzCGd8ErrD9HDnOUNEpMeBAyoYuxKUBg+nfzG 5kHabJHXcICjNyiSFLtlB4Pvt0yjV2nVhen+KDqapCtj0OhQ2Gj8FT5ifkT5/iL+ un8DOady3wt6xkblQUsz47wvSYuBBL9ZzbF5WTA/YjSuhuBLfFWKJy642DR95TfJ M+IFrh4H8CO8EUhI64euYBIJmQhUgWM1riRgqG/01pLHCyW9q7XriDaU5EFvgAWt HBj5amlCyPcqK2xfpw/q39Xpd9E3h0cffSOPfTo1eWi+ArQdDUKiinL8TPoVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTDquD0LPSG96zoSJC9BY29TozhMwHwYDVR0j BBgwFoAUheqGdWNxuom7GuhGtcMN24FqzbkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YmM2ZGExOS04NGJlLTRhNTAtYjQ2Ni0xZTg2ZGRiY2MzNWYvMC84NUVBODY3NTYz NzFCQTg5QkIxQUU4NDZCNUMzMEREQjgxNkFDREI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBEREI4MTZB Q0RCOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGJjNmRhMTktODRiZS00YTUwLWI0 NjYtMWU4NmRkYmNjMzVmLzAvODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBE REI4MTZBQ0RCOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJvClMiRKfSf3vGDaBgTuhCM5fVSNTndDJTk t7wyqd2toxYlw7A9cb0rSYV4j1omI+iwd+jNZUAs1ce8+dznny6e+iY7bsNXCXTt gz0ahJdbS2M0wJVt+FqjChXjnzlGksGShUlArABF0XmmdYGfwTMmXfs+AH4sWoRk uKc5LsdknBqXegynJ335dGkEPQwXWDQd50VV1euG+rnaZ3Q8DbDm7cXs+Tt8A14K w0MbuoDopPIWVWaZOcPFtG6T6mZWmYOpsdO9ZCE7BViMxdMbDg+zt2f0+lcl1hd6 pFG9pFXUAUgWRm+poorc6Ad+MKI4IpdTCrIZ2KvsE2wTkJUp6yI= -----END CERTIFICATE-----Generated at Sat May 10 03:04:20 2025 by rpki-client