$ rpki-client -vvf repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft File: D4DD8244BC2EB2B187B4181226714505DF8F4452.mft (raw, json) Hash identifier: BzRrOwmuLcSlZIegZ7Wk5xg6gEPYIzVoEjXL1RRMxQ8= Subject key identifier: 51:75:3B:20:78:1F:C6:DA:2F:23:18:D5:D9:C7:C0:C4:4A:04:38:BF Authority key identifier: D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 Certificate issuer: /CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Certificate serial: 2CED9A8AB12D2CD3532834BB04237254AD17218B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft Manifest number: 01C3 Signing time: Fri 09 May 2025 18:31:08 +0000 Manifest this update: Fri 09 May 2025 18:26:08 +0000 Manifest next update: Tue 13 May 2025 03:54:08 +0000 Files and hashes: 1: 3130332e3137302e3138362e302f32342d3234203d3e20313432333635.roa (hash: OXRZ526Vg7TmkLT93n/Qe4MisAG7vaUJuVBZqKmzdzU=) 2: D4DD8244BC2EB2B187B4181226714505DF8F4452.crl (hash: nCRxBFeFottfjkvNmT9gGhUVnQ4K1rNTI215DSlhgKQ=) 3: 3130332e3137302e3138362e302f32332d3234203d3e20313432333635.roa (hash: wbDj2qVwWojdiwUQq1leoVbmSXtniu4/S6z44a48QLw=) 4: 3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa (hash: WbsQ68Cu40oqUa2yh2wFEKvkhfxO2KVKndxoFM4DO5k=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 03:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:ed:9a:8a:b1:2d:2c:d3:53:28:34:bb:04:23:72:54:ad:17:21:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Validity Not Before: May 9 18:26:08 2025 GMT Not After : May 13 03:54:08 2025 GMT Subject: CN=51753B20781FC6DA2F2318D5D9C7C0C44A0438BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2f:1c:dd:c2:06:23:74:66:39:e1:3e:86:cc: 0b:49:b8:46:07:1e:a8:e6:f6:71:f6:b6:ab:10:e5: 60:01:78:81:68:ad:c8:67:d1:46:49:18:eb:eb:1d: 69:aa:31:c2:79:35:98:02:7b:d0:a6:aa:98:66:9d: 05:70:0d:79:c0:5c:5a:51:cd:44:2a:7c:dd:b0:d6: 92:74:58:3c:5b:1f:28:cb:28:89:99:4f:cc:fa:70: ae:61:04:51:76:3f:3b:bf:6e:51:25:50:da:d2:c4: 33:e6:30:d1:1b:58:e9:75:dc:4f:a6:35:62:3d:29: 8b:d7:80:79:8e:3e:90:63:6d:11:bb:92:fc:75:02: 6a:00:19:ce:f7:6f:a5:9f:60:fa:41:ec:47:38:81: bd:68:26:fa:a2:2f:dc:bc:27:7f:49:50:83:b1:85: ac:8c:93:3a:49:c4:3a:3b:e6:f1:fc:ec:93:3e:a7: ac:f1:62:98:6d:df:65:7e:e7:a7:cb:3f:45:d5:40: e0:b7:cb:d1:e9:6f:f3:14:bd:0d:b2:c1:75:e4:88: c3:93:44:dc:e9:cf:92:f3:10:60:be:6c:c3:ad:7a: 92:b6:27:75:3e:0c:f3:c3:7b:0e:2f:59:22:1e:6d: a9:e8:18:51:ac:4d:1a:c2:df:1e:be:a5:35:0b:52: e7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:75:3B:20:78:1F:C6:DA:2F:23:18:D5:D9:C7:C0:C4:4A:04:38:BF X509v3 Authority Key Identifier: keyid:D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:b6:3d:20:a2:9b:49:56:4e:9c:21:97:43:6d:08:63:2e:c7: 93:eb:a9:bd:22:b5:f0:c8:d9:13:9e:db:5e:03:1a:5c:0e:be: b0:a1:86:5c:9e:1b:f4:59:27:cf:68:10:dc:7d:5f:14:54:d9: 9c:bd:e0:84:45:5b:1f:df:79:28:a4:03:e9:79:09:1a:e7:75: 27:31:7a:06:24:ce:de:82:2a:1e:26:99:fc:9a:73:09:9b:e0: 6e:5b:a2:43:c3:09:d5:3e:34:0f:dd:b5:71:db:f8:8f:64:1c: a3:9e:59:cb:c4:b8:3e:23:76:9f:72:4d:71:5e:eb:db:89:7d: 5c:31:25:62:8b:c2:4b:7a:d3:fb:27:59:82:00:9a:5e:e0:94: 15:04:5f:57:6a:28:21:a9:6a:b9:f7:60:79:83:e5:71:22:d5: d4:53:04:ce:ed:25:cb:7f:d2:9d:0c:0b:39:b1:21:83:eb:af: a2:75:80:30:f9:1f:bb:48:ab:38:31:d7:b3:6f:8a:60:09:8e: af:49:13:c8:9d:7e:63:1b:10:1e:24:1f:16:c5:15:9f:12:4e: ce:1b:a2:df:5f:5d:48:d8:1f:1c:0a:b4:7b:9c:de:42:5f:6b: f9:f2:69:cd:d0:a4:86:71:49:98:c3:cc:84:2a:17:46:d2:6c: b0:95:5c:bf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULO2airEtLNNTKDS7BCNyVK0XIYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVE RjhGNDQ1MjAeFw0yNTA1MDkxODI2MDhaFw0yNTA1MTMwMzU0MDhaMDMxMTAvBgNV BAMTKDUxNzUzQjIwNzgxRkM2REEyRjIzMThENUQ5QzdDMEM0NEEwNDM4QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPLxzdwgYjdGY54T6GzAtJuEYH Hqjm9nH2tqsQ5WABeIForchn0UZJGOvrHWmqMcJ5NZgCe9CmqphmnQVwDXnAXFpR zUQqfN2w1pJ0WDxbHyjLKImZT8z6cK5hBFF2Pzu/blElUNrSxDPmMNEbWOl13E+m NWI9KYvXgHmOPpBjbRG7kvx1AmoAGc73b6WfYPpB7Ec4gb1oJvqiL9y8J39JUIOx hayMkzpJxDo75vH87JM+p6zxYpht32V+56fLP0XVQOC3y9Hpb/MUvQ2ywXXkiMOT RNzpz5LzEGC+bMOtepK2J3U+DPPDew4vWSIebanoGFGsTRrC3x6+pTULUueDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUXU7IHgfxtovIxjV2cfAxEoEOL8wHwYDVR0j BBgwFoAU1N2CRLwusrGHtBgSJnFFBd+PRFIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWYwZjQyMy0zYmVkLTQ5MzgtOWY4OS0xNWU2MjY5YmRkY2EvMC9ENEREODI0NEJD MkVCMkIxODdCNDE4MTIyNjcxNDUwNURGOEY0NDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVERjhG NDQ1Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWFmMGY0MjMtM2JlZC00OTM4LTlm ODktMTVlNjI2OWJkZGNhLzAvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1 MDVERjhGNDQ1Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAS2PSCim0lWTpwhl0NtCGMux5Prqb0itfDI 2ROe214DGlwOvrChhlyeG/RZJ89oENx9XxRU2Zy94IRFWx/feSikA+l5CRrndScx egYkzt6CKh4mmfyacwmb4G5bokPDCdU+NA/dtXHb+I9kHKOeWcvEuD4jdp9yTXFe 69uJfVwxJWKLwkt60/snWYIAml7glBUEX1dqKCGparn3YHmD5XEi1dRTBM7tJct/ 0p0MCzmxIYPrr6J1gDD5H7tIqzgx17NvimAJjq9JE8idfmMbEB4kHxbFFZ8STs4b ot9fXUjYHxwKtHuc3kJfa/nyac3QpIZxSZjDzIQqF0bSbLCVXL8= -----END CERTIFICATE-----Generated at Sun May 11 13:26:35 2025 by rpki-client