$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: 0UhrpuKYRCV6fQ3mnmEfIoryC/Y8BHO2eTqDBGAtlhg= Subject key identifier: F9:5D:B8:51:00:1F:40:DD:A8:B1:77:30:78:BE:88:AD:58:00:DC:74 Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 23074228C327916AD1D60E1367227B567D70874E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: DB Signing time: Sat 10 May 2025 13:31:50 +0000 Manifest this update: Sat 10 May 2025 13:26:50 +0000 Manifest next update: Tue 13 May 2025 22:52:50 +0000 Files and hashes: 1: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: fZoVAmymRPNgPBzrgKSdR4d76GFEphEtZMQjqmpyZe4=) 2: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xeW9Q+jrWgb1kNw9Ck6owBJ7nXg3E26nbn0fhXlo6qI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 11:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:07:42:28:c3:27:91:6a:d1:d6:0e:13:67:22:7b:56:7d:70:87:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: May 10 13:26:50 2025 GMT Not After : May 13 22:52:50 2025 GMT Subject: CN=F95DB851001F40DDA8B1773078BE88AD5800DC74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3d:da:2a:17:a3:59:91:c3:a7:91:c5:2c:70: a6:8e:14:ba:1e:83:0f:c0:f4:c5:0e:0e:85:50:6b: ba:44:90:92:ae:fb:38:e9:99:d8:5f:3a:fc:2b:1d: 94:68:cb:7b:25:88:9f:da:f7:06:5a:c5:f6:99:ec: 0e:f5:9a:09:66:b0:53:1b:79:70:54:1d:65:d0:89: 4c:a2:cf:71:ac:24:5b:21:48:19:41:3a:7a:92:b9: 27:c6:aa:e3:82:ef:37:38:58:6f:ee:51:cf:ba:42: d4:c4:64:18:99:05:42:55:24:a4:de:89:8f:d9:94: 54:e7:6e:30:0f:12:e4:f4:93:a1:97:da:7b:b0:36: ac:ef:79:05:60:64:a7:93:ea:6e:8e:4c:50:77:50: 39:a6:e6:f3:68:aa:eb:ae:92:e9:a7:de:6c:5b:7c: 85:d7:6a:c5:d5:75:2d:f2:06:6b:0a:4e:f4:64:4d: 6f:c5:26:64:73:ab:cf:91:57:9d:63:b4:19:93:dc: 4b:b6:e3:3e:25:84:73:b0:54:6a:b2:c0:94:a8:3d: 5c:a7:39:5f:2c:c9:d8:18:42:bd:07:a8:87:f5:c9: 40:7f:43:a0:ee:8e:fc:06:8e:51:9c:43:d8:12:95: a6:87:ff:74:07:24:74:dc:6a:ad:00:9a:13:a1:56: d1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:5D:B8:51:00:1F:40:DD:A8:B1:77:30:78:BE:88:AD:58:00:DC:74 X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:f6:c3:78:b1:6b:6a:f9:74:70:56:a0:34:78:fb:4e:40:09: 38:0b:62:9e:5c:d7:30:7f:9f:0e:aa:61:da:2d:0e:f6:02:c8: 1b:04:23:71:b3:b6:1d:e4:25:26:d0:ae:b0:af:94:aa:8e:90: d3:6d:93:86:47:01:a6:76:da:40:58:42:b5:9e:67:b1:f0:63: 50:fb:d7:cf:c1:0a:40:b3:a3:d7:4c:93:e4:86:ae:f0:89:69: 17:60:e1:8a:86:7a:36:84:43:b2:85:d5:c0:e7:e1:af:53:0f: f5:07:d1:64:7c:5e:27:a1:2b:8f:44:db:16:e4:8f:a6:10:82: b5:4c:ec:1e:e8:14:73:10:97:f2:3f:ee:a9:de:4b:d0:46:3a: d5:c5:aa:f8:f4:bc:8c:02:c8:ac:74:92:03:c8:21:69:93:c8: bc:0c:77:0a:76:0b:ee:f9:88:fd:4a:be:c0:ff:4b:86:03:f5: 44:e9:65:d8:14:a5:a5:83:18:f3:30:f6:1a:76:a9:29:f6:61: dd:ef:f0:aa:ca:82:10:44:0b:d4:13:25:54:40:9f:3e:71:c7: c7:93:93:50:5d:0c:ea:d4:a8:4d:54:be:24:07:ce:4f:a1:af: b3:cd:70:54:ec:ab:0c:53:1b:ad:b8:1b:f3:38:50:bf:2d:b2: cf:c8:b7:fb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIwdCKMMnkWrR1g4TZyJ7Vn1wh04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNTA1MTAxMzI2NTBaFw0yNTA1MTMyMjUyNTBaMDMxMTAvBgNV BAMTKEY5NURCODUxMDAxRjQwRERBOEIxNzczMDc4QkU4OEFENTgwMERDNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVPdoqF6NZkcOnkcUscKaOFLoe gw/A9MUODoVQa7pEkJKu+zjpmdhfOvwrHZRoy3sliJ/a9wZaxfaZ7A71mglmsFMb eXBUHWXQiUyiz3GsJFshSBlBOnqSuSfGquOC7zc4WG/uUc+6QtTEZBiZBUJVJKTe iY/ZlFTnbjAPEuT0k6GX2nuwNqzveQVgZKeT6m6OTFB3UDmm5vNoquuukumn3mxb fIXXasXVdS3yBmsKTvRkTW/FJmRzq8+RV51jtBmT3Eu24z4lhHOwVGqywJSoPVyn OV8sydgYQr0HqIf1yUB/Q6DujvwGjlGcQ9gSlaaH/3QHJHTcaq0AmhOhVtFrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+V24UQAfQN2osXcweL6IrVgA3HQwHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAP2w3ixa2r5dHBWoDR4+05ACTgLYp5c1zB/ nw6qYdotDvYCyBsEI3Gzth3kJSbQrrCvlKqOkNNtk4ZHAaZ22kBYQrWeZ7HwY1D7 18/BCkCzo9dMk+SGrvCJaRdg4YqGejaEQ7KF1cDn4a9TD/UH0WR8XiehK49E2xbk j6YQgrVM7B7oFHMQl/I/7qneS9BGOtXFqvj0vIwCyKx0kgPIIWmTyLwMdwp2C+75 iP1KvsD/S4YD9UTpZdgUpaWDGPMw9hp2qSn2Yd3v8KrKghBEC9QTJVRAnz5xx8eT k1BdDOrUqE1UviQHzk+hr7PNcFTsqwxTG624G/M4UL8tss/It/s= -----END CERTIFICATE-----Generated at Sun May 11 01:45:55 2025 by rpki-client