$ rpki-client -vvf repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft File: FA86E23853549D2EF1D9F9C9222147A550E36A38.mft (raw, json) Hash identifier: gUcRg/swhNAWhPiTNRBKs9U43mvlNGyBe+XcjidMg/M= Subject key identifier: 5C:13:5B:88:DB:B7:AE:5A:4E:48:4C:C6:D5:1C:78:44:65:AA:26:A6 Authority key identifier: FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 Certificate issuer: /CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Certificate serial: 09F39DCFFC3339F4FC7604821492F745E372375A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft Manifest number: 0194 Signing time: Thu 08 May 2025 18:00:43 +0000 Manifest this update: Thu 08 May 2025 17:55:43 +0000 Manifest next update: Mon 12 May 2025 04:39:43 +0000 Files and hashes: 1: 3130332e35352e32392e302f32342d3234203d3e20313439333134.roa (hash: sRa1nQRwMq2SdKXmWPoNTC7jHzNAd1RDfN7lVB2hLEY=) 2: FA86E23853549D2EF1D9F9C9222147A550E36A38.crl (hash: MIhrgzCNh8x5lO/NlL8lqn5fAKCcVdmYqpSzrL2U2jQ=) 3: 3130332e35352e32382e302f32342d3234203d3e20313530343837.roa (hash: RjVxvxxbyDiQSv718+JovDu9zNSEKhSMEBDdXzJXwvE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 04:39:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:f3:9d:cf:fc:33:39:f4:fc:76:04:82:14:92:f7:45:e3:72:37:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Validity Not Before: May 8 17:55:43 2025 GMT Not After : May 12 04:39:43 2025 GMT Subject: CN=5C135B88DBB7AE5A4E484CC6D51C784465AA26A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:2f:6a:e9:34:fd:dd:e0:ca:97:25:27:43:8b: 96:1e:df:c5:dd:8a:95:85:48:0b:e1:e0:85:47:b9: 43:f4:07:28:58:a3:05:ba:2a:62:15:26:30:f4:f2: d8:06:d2:7a:ed:f6:52:b8:ff:e1:a7:d5:f9:a8:ca: ef:c4:48:9f:88:01:76:37:05:b7:ec:bf:d3:27:76: 15:06:b8:f2:08:7f:25:cc:1e:96:73:38:0d:42:93: c1:78:fd:53:2e:96:0a:d7:ef:cf:ba:d4:e9:94:74: 8e:50:ec:fd:dd:40:40:97:d7:63:ca:68:a6:7e:fe: f9:d8:cb:51:a5:98:f4:d8:19:64:42:f0:f7:12:60: 94:93:ae:68:64:9d:a3:8f:f4:8d:f4:85:3b:d7:5a: a2:21:b8:be:17:3d:3d:e2:23:19:84:8b:1a:6f:a3: 83:ba:51:64:b2:fe:3a:e2:d5:40:8e:ae:79:bc:c2: c5:4f:64:9f:5b:4a:62:3f:f5:f0:a0:2e:03:63:4b: 07:5d:6f:cb:d0:8d:da:bf:1f:10:ff:2e:b7:4c:92: 10:72:72:f6:fc:6f:21:01:41:90:7b:5b:6b:17:31: 22:8f:72:d2:07:db:95:1f:e0:3e:e4:f1:42:c6:c4: ca:7e:ce:e4:99:4b:64:56:6d:0b:ea:83:9e:6d:a8: 94:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:13:5B:88:DB:B7:AE:5A:4E:48:4C:C6:D5:1C:78:44:65:AA:26:A6 X509v3 Authority Key Identifier: keyid:FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:63:6c:13:45:d5:f5:76:62:4d:06:12:79:89:da:6d:51:9e: e9:4b:d2:1a:f9:70:11:5a:03:f4:ce:8c:d3:9f:4c:8b:95:c2: 58:5c:89:e6:61:13:b8:74:f0:2c:3c:a8:b8:a4:21:26:98:7a: 3f:d7:38:c8:bb:63:fe:67:fd:a6:fb:84:b3:10:c4:00:a2:7f: 3b:df:24:e8:8a:ae:a6:8c:f3:b6:79:2f:a9:65:4b:56:fe:39: 1c:b2:2c:09:f7:e9:74:70:d6:e7:ee:db:0f:d3:9c:aa:84:b5: ae:d9:c6:1e:f2:b5:93:b1:56:6c:83:dd:73:c2:d3:a4:70:92: 73:b6:3e:01:b0:c4:f0:e3:f4:a0:cf:1d:1d:a8:a2:fd:bc:60: ac:ef:95:6c:bc:59:60:1b:71:a0:8b:ed:20:57:9b:01:4e:05: e7:9b:21:4e:48:9e:02:0a:fc:9a:e5:b6:1a:67:1e:06:d3:65: f8:7d:8c:f0:b4:ed:94:22:92:f3:78:b5:61:bd:66:82:85:1d: 93:cd:46:07:32:82:b7:40:ce:ff:26:f2:82:b3:f2:ed:df:b9: b3:4d:84:0f:bc:7d:ad:cc:bd:e4:b4:91:19:20:b8:14:ed:21: f4:bc:dc:6a:f8:49:19:04:72:05:55:39:48:24:88:8a:c7:5e: 2b:21:78:96 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCfOdz/wzOfT8dgSCFJL3ReNyN1owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1 MEUzNkEzODAeFw0yNTA1MDgxNzU1NDNaFw0yNTA1MTIwNDM5NDNaMDMxMTAvBgNV BAMTKDVDMTM1Qjg4REJCN0FFNUE0RTQ4NENDNkQ1MUM3ODQ0NjVBQTI2QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4L2rpNP3d4MqXJSdDi5Ye38Xd ipWFSAvh4IVHuUP0ByhYowW6KmIVJjD08tgG0nrt9lK4/+Gn1fmoyu/ESJ+IAXY3 Bbfsv9MndhUGuPIIfyXMHpZzOA1Ck8F4/VMulgrX78+61OmUdI5Q7P3dQECX12PK aKZ+/vnYy1GlmPTYGWRC8PcSYJSTrmhknaOP9I30hTvXWqIhuL4XPT3iIxmEixpv o4O6UWSy/jri1UCOrnm8wsVPZJ9bSmI/9fCgLgNjSwddb8vQjdq/HxD/LrdMkhBy cvb8byEBQZB7W2sXMSKPctIH25Uf4D7k8ULGxMp+zuSZS2RWbQvqg55tqJTjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXBNbiNu3rlpOSEzG1Rx4RGWqJqYwHwYDVR0j BBgwFoAU+obiOFNUnS7x2fnJIiFHpVDjajgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTA0NzkzYy1jMjA5LTQ2OWEtOGUzYy1lYjNmNWE4Mzg2M2YvMC9GQTg2RTIzODUz NTQ5RDJFRjFEOUY5QzkyMjIxNDdBNTUwRTM2QTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1MEUz NkEzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTUwNDc5M2MtYzIwOS00NjlhLThl M2MtZWIzZjVhODM4NjNmLzAvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3 QTU1MEUzNkEzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJZjbBNF1fV2Yk0GEnmJ2m1RnulL0hr5cBFa A/TOjNOfTIuVwlhcieZhE7h08Cw8qLikISaYej/XOMi7Y/5n/ab7hLMQxACifzvf JOiKrqaM87Z5L6llS1b+ORyyLAn36XRw1ufu2w/TnKqEta7Zxh7ytZOxVmyD3XPC 06RwknO2PgGwxPDj9KDPHR2oov28YKzvlWy8WWAbcaCL7SBXmwFOBeebIU5IngIK /JrlthpnHgbTZfh9jPC07ZQikvN4tWG9ZoKFHZPNRgcygrdAzv8m8oKz8u3fubNN hA+8fa3MveS0kRkguBTtIfS83Gr4SRkEcgVVOUgkiIrHXisheJY= -----END CERTIFICATE-----Generated at Sun May 11 05:25:43 2025 by rpki-client