$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft File: 821049BBD22C335A50850F16AB159C0C6BCC28E5.mft (raw, json) Hash identifier: Qwf4le6PdRA/G7k+D6DFbfYme+Tfzn8s8jBlQeYICIk= Subject key identifier: 93:EB:8E:B9:F8:6A:E4:2E:4D:FD:94:1A:57:B3:DE:51:44:FF:34:7F Authority key identifier: 82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 Certificate issuer: /CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Certificate serial: 12D05EF2C2613EE7E4E4A94619A1CA337B2A01B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft Manifest number: 0205 Signing time: Sun 11 May 2025 22:41:38 +0000 Manifest this update: Sun 11 May 2025 22:36:38 +0000 Manifest next update: Thu 15 May 2025 09:07:38 +0000 Files and hashes: 1: 3130332e32312e39342e302f32342d3234203d3e20313331373338.roa (hash: YF6vJXMVtUVK6CmNTZeLfmthP1D0nB1ofgHbuXDKxvI=) 2: 3130332e32312e39322e302f32342d3234203d3e20313331373338.roa (hash: ncuNmuDMRCz7XEGjG+8p/qjKUpvp2YtlNc4JXvP3iGg=) 3: 3130332e32312e39352e302f32342d3234203d3e203435323935.roa (hash: O6mcNqFGUKoXPAXAaTNGJf2XpVfyBv0t3Gtn3V+6lKE=) 4: 821049BBD22C335A50850F16AB159C0C6BCC28E5.crl (hash: 0tLqKqJ9pEsm/m8zMGP1Fi8NNq6lcRByckEBy3KTF4A=) 5: 3130332e32312e39332e302f32342d3234203d3e20313331373338.roa (hash: gJZ1sW5BxaKi4OlH0Ko1+AD9dXMVkojyx6OKsnKZ2JU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 21:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:d0:5e:f2:c2:61:3e:e7:e4:e4:a9:46:19:a1:ca:33:7b:2a:01:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Validity Not Before: May 11 22:36:38 2025 GMT Not After : May 15 09:07:38 2025 GMT Subject: CN=93EB8EB9F86AE42E4DFD941A57B3DE5144FF347F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b2:1e:33:e0:9a:18:f7:a2:db:93:3b:bc:01: 10:21:32:22:c2:94:5d:30:6d:8f:6e:74:27:4b:e1: 8f:75:98:d7:d0:ba:9d:ec:bc:4b:05:4e:12:24:57: 14:0b:69:34:da:a7:fa:08:0d:73:be:5e:6d:ab:28: 09:ab:38:2c:b4:e7:80:5f:86:eb:d8:a1:0f:e2:d0: 80:85:95:bb:28:e5:84:3b:df:8b:20:f8:3f:2f:e6: 1f:0f:67:bf:4f:4e:b2:bc:0b:0b:75:89:42:ca:a9: 23:d4:30:a1:3d:5d:fb:d6:8c:2c:9d:a6:a3:26:bc: ae:b1:2a:1e:61:9f:63:15:04:49:94:38:2a:13:18: e8:4d:19:70:bc:8e:fc:6d:2a:99:82:a6:24:a1:dd: 0a:35:75:95:7b:c6:6d:6f:ea:b1:98:ed:0c:71:df: 09:ca:29:d5:4c:02:ba:c7:c6:7d:5b:7f:ec:c6:e1: 43:07:78:26:42:05:60:97:12:3e:3d:63:31:86:a1: 02:8c:35:48:0e:a8:d4:e4:1c:ac:35:60:0a:f6:c2: 2c:37:35:0c:fb:87:e2:ae:b1:55:ca:f7:5d:1a:3b: c4:b2:71:4f:67:eb:40:a4:42:77:63:13:7f:35:4d: f2:9d:62:7b:17:74:80:43:b4:98:fe:a3:f3:67:9b: 67:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:EB:8E:B9:F8:6A:E4:2E:4D:FD:94:1A:57:B3:DE:51:44:FF:34:7F X509v3 Authority Key Identifier: keyid:82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:ec:84:f2:ac:23:d3:b9:fa:1f:8b:86:7f:b8:7f:72:79:e5: d8:d8:b2:b4:52:cf:13:11:a6:79:0b:27:9a:ce:ce:c3:36:92: 58:a8:49:eb:27:d6:67:f9:f9:14:a0:46:68:3d:72:8b:c3:ae: 09:60:66:29:98:9a:74:68:2b:2d:6b:f6:1b:d8:b7:52:e3:d9: ef:94:91:d1:31:cb:e6:36:b2:a9:de:5f:0d:26:86:a2:d8:c0: 78:3f:c2:b0:a3:16:c3:b7:56:69:60:3d:1e:b7:61:cb:80:a2: 55:77:a8:63:77:7f:7b:61:aa:22:46:4f:93:de:0f:9d:e0:e2: 34:22:43:4e:d0:39:5e:f5:ec:f8:e8:51:4c:a4:cf:4a:ea:88: ac:67:a2:53:57:3a:6c:23:f5:bc:44:dc:ac:09:d7:42:12:12: 85:d5:61:3d:b7:00:12:cb:f8:9c:cc:a2:3b:43:7a:6f:90:81: 52:e2:9a:4e:2d:57:98:0e:89:e1:8c:b4:22:53:27:f6:63:f8: 4b:48:09:d2:2e:c0:23:37:98:c7:60:6e:89:30:23:51:ce:d1: f2:1a:aa:9f:89:44:5a:29:be:1d:bd:68:44:be:ed:01:ee:88: 93:70:c9:9c:63:47:b8:f3:1a:c0:82:ba:8c:ab:c2:ff:96:98: e6:aa:01:71 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEtBe8sJhPufk5KlGGaHKM3sqAbUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2 QkNDMjhFNTAeFw0yNTA1MTEyMjM2MzhaFw0yNTA1MTUwOTA3MzhaMDMxMTAvBgNV BAMTKDkzRUI4RUI5Rjg2QUU0MkU0REZEOTQxQTU3QjNERTUxNDRGRjM0N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGsh4z4JoY96Lbkzu8ARAhMiLC lF0wbY9udCdL4Y91mNfQup3svEsFThIkVxQLaTTap/oIDXO+Xm2rKAmrOCy054Bf huvYoQ/i0ICFlbso5YQ734sg+D8v5h8PZ79PTrK8Cwt1iULKqSPUMKE9XfvWjCyd pqMmvK6xKh5hn2MVBEmUOCoTGOhNGXC8jvxtKpmCpiSh3Qo1dZV7xm1v6rGY7Qxx 3wnKKdVMArrHxn1bf+zG4UMHeCZCBWCXEj49YzGGoQKMNUgOqNTkHKw1YAr2wiw3 NQz7h+KusVXK910aO8SycU9n60CkQndjE381TfKdYnsXdIBDtJj+o/Nnm2enAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUk+uOufhq5C5N/ZQaV7PeUUT/NH8wHwYDVR0j BBgwFoAUghBJu9IsM1pQhQ8WqxWcDGvMKOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4ZTE4ZC1hMDQ3LTQ1OTAtOWU1Ni00NjRhNzNlMjNjNmMvMC84MjEwNDlCQkQy MkMzMzVBNTA4NTBGMTZBQjE1OUMwQzZCQ0MyOEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2QkND MjhFNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWRlOGUxOGQtYTA0Ny00NTkwLTll NTYtNDY0YTczZTIzYzZjLzAvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlD MEM2QkNDMjhFNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIfshPKsI9O5+h+Lhn+4f3J55djYsrRSzxMR pnkLJ5rOzsM2klioSesn1mf5+RSgRmg9covDrglgZimYmnRoKy1r9hvYt1Lj2e+U kdExy+Y2sqneXw0mhqLYwHg/wrCjFsO3VmlgPR63YcuAolV3qGN3f3thqiJGT5Pe D53g4jQiQ07QOV717PjoUUykz0rqiKxnolNXOmwj9bxE3KwJ10ISEoXVYT23ABLL +JzMojtDem+QgVLimk4tV5gOieGMtCJTJ/Zj+EtICdIuwCM3mMdgbokwI1HO0fIa qp+JRFopvh29aES+7QHuiJNwyZxjR7jzGsCCuoyrwv+WmOaqAXE= -----END CERTIFICATE-----Generated at Mon May 12 02:27:03 2025 by rpki-client