$ rpki-client -vvf repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft File: 2B90BB17E78B62C15179029C6583E42BD7E18277.mft (raw, json) Hash identifier: HVU9Ce4DJ2Q+EP92uXiIk5VE8YYlBcUpLq5MIyBLMNc= Subject key identifier: 4C:59:BC:E5:6D:6E:F1:BF:36:97:3D:2B:95:90:97:BA:E8:D1:31:82 Authority key identifier: 2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 Certificate issuer: /CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Certificate serial: 717874842D9D13708E7C2BD65F0D2D13D484D902 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft Manifest number: 4A Signing time: Sun 11 May 2025 03:00:36 +0000 Manifest this update: Sun 11 May 2025 02:55:36 +0000 Manifest next update: Wed 14 May 2025 14:29:36 +0000 Files and hashes: 1: 3130332e38302e3231342e302f32332d3233203d3e20313533303932.roa (hash: kTHvzmqB/2veUohEP9ZdbxC595Rgd4EACGX8AypsPpY=) 2: 2B90BB17E78B62C15179029C6583E42BD7E18277.crl (hash: juX/eT/6dK9NzWjZipMsiqGnzczkUhZhDEVXNWucY4w=) 3: 3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa (hash: xGHUucKhH5kmQ+65YZMYfuYlyW3kJ8ie5abut/yqhlk=) 4: 3130332e38302e3231352e302f32342d3234203d3e20313533303932.roa (hash: 4Y5Ddm6yUymC+qHSs8fVActMjjMDZEcHLdC59v78BoQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:78:74:84:2d:9d:13:70:8e:7c:2b:d6:5f:0d:2d:13:d4:84:d9:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Validity Not Before: May 11 02:55:36 2025 GMT Not After : May 14 14:29:36 2025 GMT Subject: CN=4C59BCE56D6EF1BF36973D2B959097BAE8D13182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9a:83:44:4f:8b:da:5c:3a:4f:39:26:08:63: a1:79:ce:ff:8b:98:77:2b:4c:3f:36:7c:c7:00:d8: b4:ab:cb:62:08:b6:2e:6c:ea:ea:bd:89:9a:38:95: 34:2a:b8:90:8e:79:b7:1e:35:e7:78:02:07:4c:3c: 87:b5:b0:66:fe:c9:3c:fd:f0:b6:0e:0c:a0:12:39: b2:25:ec:0a:d8:66:af:bb:60:04:91:51:a8:7f:04: ce:b7:27:85:6a:e8:0f:81:0b:7a:78:2e:cc:80:99: 71:3c:e4:c9:94:88:f8:a0:bf:16:f2:e8:a4:5d:25: e3:7f:42:49:f3:da:0d:80:c1:a1:38:40:d9:17:78: 63:92:67:ea:af:64:d3:aa:3f:84:6f:11:7d:61:98: 00:ed:b4:2d:a0:b9:63:48:c0:2c:57:c7:f4:f8:e9: c1:ce:a1:ad:db:14:86:e7:c1:88:6c:2d:85:ba:36: 2f:24:9e:e6:1b:b7:ab:9a:e9:0f:95:eb:ed:34:75: 0b:f5:a0:36:d4:ed:32:77:32:4e:4b:4d:ae:46:ac: d0:6f:8a:66:d9:63:f7:2f:69:e0:29:63:bf:c9:16: 47:0e:88:74:74:b1:d8:d1:04:7b:9f:2a:ec:73:60: 34:5f:10:3e:a0:20:b2:91:5d:7c:87:8f:7b:d8:8c: da:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:59:BC:E5:6D:6E:F1:BF:36:97:3D:2B:95:90:97:BA:E8:D1:31:82 X509v3 Authority Key Identifier: keyid:2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:b4:14:7a:1e:b6:11:a7:f8:37:d3:da:96:ce:c6:05:e4:f1: ef:57:77:c9:8a:35:30:8c:e6:5b:a8:eb:cc:8b:c8:07:02:c1: 21:24:6e:6c:b5:32:8c:23:7c:38:59:55:79:13:cc:e9:35:17: 58:ee:8c:75:20:d2:46:ae:de:ac:eb:1e:36:88:3c:f8:cc:bf: da:3e:67:38:3b:46:67:a8:c9:90:30:97:89:c9:39:ca:4d:c2: 5a:fa:62:2c:04:14:ff:75:46:5b:2f:ad:43:02:a2:e9:4e:51: dd:5c:ef:8b:f7:4d:97:4f:7d:63:df:8b:59:61:70:d0:16:1b: 31:5d:86:61:8e:3f:6b:57:4b:00:44:95:76:7a:bd:38:41:91: 23:8f:40:d4:d7:61:be:a6:52:3c:f4:61:95:94:05:8a:d3:71: 9f:3b:ca:d5:a6:ba:c0:79:9a:ac:9c:5c:b3:2d:6e:d9:33:0a: 51:a5:c6:7b:ec:53:a1:41:24:b6:81:65:f3:a6:4b:d9:af:48: d3:81:46:77:91:0f:c9:1f:53:e4:4a:57:05:45:01:40:74:10: ca:5b:43:06:3c:99:e1:a7:7f:a5:eb:a2:e7:66:a5:dc:23:a4: 07:18:f4:a7:60:65:27:f4:d9:b3:8a:c8:a6:00:2b:2d:e9:3c: 94:2a:d1:f5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcXh0hC2dE3COfCvWXw0tE9SE2QIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJE N0UxODI3NzAeFw0yNTA1MTEwMjU1MzZaFw0yNTA1MTQxNDI5MzZaMDMxMTAvBgNV BAMTKDRDNTlCQ0U1NkQ2RUYxQkYzNjk3M0QyQjk1OTA5N0JBRThEMTMxODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGmoNET4vaXDpPOSYIY6F5zv+L mHcrTD82fMcA2LSry2IIti5s6uq9iZo4lTQquJCOebceNed4AgdMPIe1sGb+yTz9 8LYODKASObIl7ArYZq+7YASRUah/BM63J4Vq6A+BC3p4LsyAmXE85MmUiPigvxby 6KRdJeN/Qknz2g2AwaE4QNkXeGOSZ+qvZNOqP4RvEX1hmADttC2guWNIwCxXx/T4 6cHOoa3bFIbnwYhsLYW6Ni8knuYbt6ua6Q+V6+00dQv1oDbU7TJ3Mk5LTa5GrNBv imbZY/cvaeApY7/JFkcOiHR0sdjRBHufKuxzYDRfED6gILKRXXyHj3vYjNpVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTFm85W1u8b82lz0rlZCXuujRMYIwHwYDVR0j BBgwFoAUK5C7F+eLYsFReQKcZYPkK9fhgncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVhNWU2ZC05MWVlLTQ0OTctYjQxNy04ZDMyZjY1M2U0YjAvMC8yQjkwQkIxN0U3 OEI2MkMxNTE3OTAyOUM2NTgzRTQyQkQ3RTE4Mjc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJEN0Ux ODI3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGU1YTVlNmQtOTFlZS00NDk3LWI0 MTctOGQzMmY2NTNlNGIwLzAvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0 MkJEN0UxODI3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEK0FHoethGn+DfT2pbOxgXk8e9Xd8mKNTCM 5luo68yLyAcCwSEkbmy1MowjfDhZVXkTzOk1F1jujHUg0kau3qzrHjaIPPjMv9o+ Zzg7RmeoyZAwl4nJOcpNwlr6YiwEFP91RlsvrUMCoulOUd1c74v3TZdPfWPfi1lh cNAWGzFdhmGOP2tXSwBElXZ6vThBkSOPQNTXYb6mUjz0YZWUBYrTcZ87ytWmusB5 mqycXLMtbtkzClGlxnvsU6FBJLaBZfOmS9mvSNOBRneRD8kfU+RKVwVFAUB0EMpb QwY8meGnf6XroudmpdwjpAcY9KdgZSf02bOKyKYAKy3pPJQq0fU= -----END CERTIFICATE-----Generated at Sun May 11 12:24:57 2025 by rpki-client