$ rpki-client -vvf repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft File: 16889A9053AE7EB169CF822E9EE670A5C618F97E.mft (raw, json) Hash identifier: S6TVSOyjsMqGlqgEye02jNxhVFtOW64Iaqt7Cp/MaSk= Subject key identifier: 58:BB:EF:4C:B2:F3:83:F8:E8:43:40:CB:24:AC:58:E6:2B:83:AB:75 Authority key identifier: 16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E Certificate issuer: /CN=16889A9053AE7EB169CF822E9EE670A5C618F97E Certificate serial: 3F93BED7815C6CD189382D4AA235745F708A84D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft Manifest number: F5 Signing time: Mon 12 May 2025 14:01:09 +0000 Manifest this update: Mon 12 May 2025 13:56:09 +0000 Manifest next update: Thu 15 May 2025 21:13:09 +0000 Files and hashes: 1: 16889A9053AE7EB169CF822E9EE670A5C618F97E.crl (hash: A4/ftLQ9Q4t68L+YXbdC8gV+FDx0zda5QUh79hVIpKE=) 2: 3130332e36372e38302e302f32332d3233203d3e20313532303031.roa (hash: dOd/WmcL1O2XqOSnpwsMSYP0+oN55Jz82rLt6CdY2eM=) 3: 3130332e36372e38312e302f32342d3234203d3e20313532303031.roa (hash: VUXxXSjdw/tewePYso0nLi7PuBiFv1hIb0UmgFSc+fg=) 4: 3130332e36372e38302e302f32342d3234203d3e20313532303031.roa (hash: km/J3O6wA+/+giyqpUHqvd0x617eyhN+dq0ZwqMW8PA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.crl rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 21:13:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:93:be:d7:81:5c:6c:d1:89:38:2d:4a:a2:35:74:5f:70:8a:84:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16889A9053AE7EB169CF822E9EE670A5C618F97E Validity Not Before: May 12 13:56:09 2025 GMT Not After : May 15 21:13:09 2025 GMT Subject: CN=58BBEF4CB2F383F8E84340CB24AC58E62B83AB75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7c:75:87:d7:ff:f3:0c:70:78:e4:63:2c:1a: 3a:4c:99:3c:71:6c:e5:91:7a:c3:9b:4c:65:2d:a7: b7:67:e8:62:f4:0d:0f:70:9a:ef:22:53:a1:2b:29: 2e:91:fb:87:01:bf:4e:e7:9c:0d:0c:8a:e9:0c:d0: aa:30:09:04:22:6a:04:92:96:09:59:c2:1e:4e:02: 3d:a2:42:82:72:c7:79:75:79:4b:cb:98:37:77:ca: 12:47:fa:29:b7:4c:8f:eb:b6:c5:80:31:19:ac:89: 0f:84:e6:7e:07:a0:d4:e0:2b:56:df:73:a2:f8:46: 13:7d:88:92:62:16:75:a5:07:56:48:57:22:3c:31: ba:cb:b0:92:ed:d5:6a:27:0b:27:e8:1a:80:97:5b: 9e:b3:78:e9:9b:cd:4e:95:f7:84:51:85:74:64:02: 3f:e6:1b:97:c1:70:e9:10:c1:8c:11:e1:05:0a:84: cc:cb:27:b2:1d:d0:31:0f:d1:b2:87:6b:da:89:a9: a3:04:05:67:01:5a:5c:10:93:9b:6b:a7:5f:76:10: e5:74:db:d7:14:cc:51:29:80:f7:53:6d:5d:6f:86: c0:65:bc:46:75:57:3c:53:91:4a:7b:a2:79:f2:65: 9b:45:b6:a7:c8:5a:c7:90:91:51:13:79:54:aa:72: 50:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:BB:EF:4C:B2:F3:83:F8:E8:43:40:CB:24:AC:58:E6:2B:83:AB:75 X509v3 Authority Key Identifier: keyid:16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:0f:21:a2:1d:62:8b:17:8d:42:33:84:a5:8f:cb:52:06:84: d7:46:c8:67:57:9d:1e:32:ce:49:53:f1:ca:52:1e:32:a7:a1: b1:b5:0c:c5:60:89:9a:70:12:a1:f6:bf:7b:46:7e:60:c8:9c: 9c:7d:32:33:96:c0:2c:11:7e:8b:51:7e:07:93:c9:b3:20:ee: a0:f2:46:82:e2:22:9c:10:93:80:11:2c:d2:f4:33:4e:07:87: 6e:c1:94:f9:67:35:e1:04:fd:9a:e4:8a:74:fd:96:94:a8:6b: 30:dc:50:67:db:92:74:d2:fb:f1:ba:dd:7d:ec:28:ad:37:69: b1:46:4e:cf:b1:a1:07:0b:eb:af:11:17:65:fb:cc:03:66:6e: 17:0d:3e:ad:78:57:57:25:66:d2:9f:38:fc:8b:d9:05:0d:f9: 78:5f:11:f3:96:9c:b4:15:ae:ba:a4:16:92:68:0c:3a:c7:7b: ae:92:0a:a7:4f:0c:14:cf:95:dd:21:90:1a:e9:83:ff:a1:c3: af:6b:7c:0d:27:a7:ac:4e:34:15:e1:02:a5:3e:f7:c4:eb:ac: cb:ef:44:94:42:b8:ce:dd:ef:04:96:4d:4e:1f:c0:f3:65:56: 07:72:7c:a7:87:7d:c5:c0:eb:18:45:ed:d7:af:3b:d1:0c:d5: cb:e5:0e:f0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUP5O+14FcbNGJOC1KojV0X3CKhNQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcwQTVD NjE4Rjk3RTAeFw0yNTA1MTIxMzU2MDlaFw0yNTA1MTUyMTEzMDlaMDMxMTAvBgNV BAMTKDU4QkJFRjRDQjJGMzgzRjhFODQzNDBDQjI0QUM1OEU2MkI4M0FCNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZfHWH1//zDHB45GMsGjpMmTxx bOWResObTGUtp7dn6GL0DQ9wmu8iU6ErKS6R+4cBv07nnA0MiukM0KowCQQiagSS lglZwh5OAj2iQoJyx3l1eUvLmDd3yhJH+im3TI/rtsWAMRmsiQ+E5n4HoNTgK1bf c6L4RhN9iJJiFnWlB1ZIVyI8MbrLsJLt1WonCyfoGoCXW56zeOmbzU6V94RRhXRk Aj/mG5fBcOkQwYwR4QUKhMzLJ7Id0DEP0bKHa9qJqaMEBWcBWlwQk5trp192EOV0 29cUzFEpgPdTbV1vhsBlvEZ1VzxTkUp7onnyZZtFtqfIWseQkVETeVSqclDTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWLvvTLLzg/joQ0DLJKxY5iuDq3UwHwYDVR0j BBgwFoAUFoiakFOufrFpz4IunuZwpcYY+X4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTNmMmU5Yi0xMDY4LTRmYTktYmExZC01OWQwNzFhNDEyYTIvMC8xNjg4OUE5MDUz QUU3RUIxNjlDRjgyMkU5RUU2NzBBNUM2MThGOTdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcwQTVDNjE4 Rjk3RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGUzZjJlOWItMTA2OC00ZmE5LWJh MWQtNTlkMDcxYTQxMmEyLzAvMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcw QTVDNjE4Rjk3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACIPIaIdYosXjUIzhKWPy1IGhNdGyGdXnR4y zklT8cpSHjKnobG1DMVgiZpwEqH2v3tGfmDInJx9MjOWwCwRfotRfgeTybMg7qDy RoLiIpwQk4ARLNL0M04Hh27BlPlnNeEE/ZrkinT9lpSoazDcUGfbknTS+/G63X3s KK03abFGTs+xoQcL668RF2X7zANmbhcNPq14V1clZtKfOPyL2QUN+XhfEfOWnLQV rrqkFpJoDDrHe66SCqdPDBTPld0hkBrpg/+hw69rfA0np6xONBXhAqU+98TrrMvv RJRCuM7d7wSWTU4fwPNlVgdyfKeHfcXA6xhF7devO9EM1cvlDvA= -----END CERTIFICATE-----Generated at Mon May 12 23:01:26 2025 by rpki-client