$ rpki-client -vvf repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft File: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft (raw, json) Hash identifier: ZUQjYXgLEoVAT5GUOr3EOOF8jkjmZapy8oPhz90Y9ig= Subject key identifier: DE:2C:82:1B:B4:9F:0A:60:10:70:30:B7:29:4D:E5:87:A0:C9:66:3D Authority key identifier: 3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 Certificate issuer: /CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Certificate serial: 2FED3A65131A04E1D77DC21304E4F81184753385 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft Manifest number: 0199 Signing time: Sat 10 May 2025 10:11:43 +0000 Manifest this update: Sat 10 May 2025 10:06:43 +0000 Manifest next update: Tue 13 May 2025 21:42:43 +0000 Files and hashes: 1: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl (hash: RdOUxc4OXxoixNFQvQ9AxXC+sVHnPJFbxg0Cr2A37gY=) 2: 3130332e33302e3139322e302f32332d3233203d3e20313530323537.roa (hash: c6BbZqskhId1bW3l6aSuRQLjcbQNOmGBaOGbC28FTXg=) 3: 3130332e33302e3139332e302f32342d3234203d3e20313530323537.roa (hash: FkjuZkviekb7VaMyMmuCMchrVU1yZ527lgE1cprIhiU=) 4: 3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa (hash: ZsYKQLKtHkVTslRdGYlW0kXwJ9gapNRm2k1uNrTnTX0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 08:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:ed:3a:65:13:1a:04:e1:d7:7d:c2:13:04:e4:f8:11:84:75:33:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Validity Not Before: May 10 10:06:43 2025 GMT Not After : May 13 21:42:43 2025 GMT Subject: CN=DE2C821BB49F0A60107030B7294DE587A0C9663D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c4:62:7c:18:81:25:b5:72:f0:a6:e9:78:29: 2b:63:70:4a:9f:60:11:ce:ef:50:52:4c:07:95:50: af:e5:75:02:01:54:af:dc:04:df:20:6a:16:7a:50: 4d:e7:03:47:66:d5:c3:d9:17:d4:e2:17:38:ff:e9: 39:d4:e6:c3:32:10:ef:ea:83:29:4d:27:50:da:65: 70:92:f9:1b:85:e6:39:56:d3:15:63:30:91:2c:c5: ff:40:f9:b1:e2:5c:35:7f:57:ec:3d:7e:71:9e:53: f2:67:e6:d7:63:03:f8:a7:c7:6e:a7:1f:04:eb:27: dc:75:72:17:31:52:be:e1:d8:d3:40:b2:af:80:b9: 84:6d:e9:df:30:44:ac:f0:46:56:0b:3f:c1:9d:00: 3b:13:c8:74:d8:0b:70:9e:25:fe:cb:6f:d1:dc:cd: 49:c6:1b:04:fc:b6:cf:c7:91:7e:52:18:2f:91:ca: b4:55:de:13:a7:f9:83:45:d6:ae:dc:a5:76:88:e8: 55:b8:6c:8c:a4:c4:47:72:d7:8d:51:48:c3:93:49: fc:14:a4:73:89:47:ec:ce:2e:b8:0f:e9:92:44:ca: 07:0c:1b:11:8c:84:bc:42:e8:69:ba:2e:2e:c4:66: 3d:9f:d5:59:2d:f8:65:7a:82:45:76:8b:57:63:6f: f5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:2C:82:1B:B4:9F:0A:60:10:70:30:B7:29:4D:E5:87:A0:C9:66:3D X509v3 Authority Key Identifier: keyid:3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:fe:d6:b2:54:da:39:91:53:81:da:ca:36:ed:04:03:00:1c: f9:6d:16:ba:09:df:15:ff:86:39:d3:56:19:9c:82:07:41:74: d3:2c:45:12:d8:b6:de:fa:e4:19:86:e1:bf:e0:94:c6:66:8e: d3:ab:ea:0d:28:24:5e:4f:d1:b3:92:e9:e8:20:db:16:5f:da: 0b:e8:7a:25:27:53:e0:d5:13:74:ff:f9:8e:ca:d3:c9:d1:1c: 9e:a4:ec:d9:85:a3:3c:24:28:f3:f0:79:b7:81:5c:79:90:1f: 34:8f:42:f6:de:f3:92:b5:84:37:f7:33:3d:c1:b6:61:e5:81: 18:b9:41:67:a0:8a:7a:f4:8e:7c:9d:e7:bf:63:ee:df:40:a9: c1:24:86:cb:b5:26:79:03:44:58:02:6d:4e:98:fb:5f:4c:4a: 1e:10:d8:f1:6b:dc:ae:ec:e7:c3:e0:51:6b:47:91:a7:62:3f: db:a1:fc:dd:a0:da:3d:f7:05:b7:15:ee:58:56:39:98:68:23: 5d:48:5f:c1:36:22:d9:87:f8:11:87:cb:dd:a0:79:b5:e4:11: 5a:ad:b5:ae:a7:1c:27:2c:7b:97:be:67:07:0c:6e:6e:2f:a5: 22:54:97:22:a9:2d:c3:42:25:fa:69:83:ad:38:f7:2a:7f:25: 58:45:d9:f7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUL+06ZRMaBOHXfcITBOT4EYR1M4UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVC NkMyMUM3NzAeFw0yNTA1MTAxMDA2NDNaFw0yNTA1MTMyMTQyNDNaMDMxMTAvBgNV BAMTKERFMkM4MjFCQjQ5RjBBNjAxMDcwMzBCNzI5NERFNTg3QTBDOTY2M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXxGJ8GIEltXLwpul4KStjcEqf YBHO71BSTAeVUK/ldQIBVK/cBN8gahZ6UE3nA0dm1cPZF9TiFzj/6TnU5sMyEO/q gylNJ1DaZXCS+RuF5jlW0xVjMJEsxf9A+bHiXDV/V+w9fnGeU/Jn5tdjA/inx26n HwTrJ9x1chcxUr7h2NNAsq+AuYRt6d8wRKzwRlYLP8GdADsTyHTYC3CeJf7Lb9Hc zUnGGwT8ts/HkX5SGC+RyrRV3hOn+YNF1q7cpXaI6FW4bIykxEdy141RSMOTSfwU pHOJR+zOLrgP6ZJEygcMGxGMhLxC6Gm6Li7EZj2f1Vkt+GV6gkV2i1djb/VvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3iyCG7SfCmAQcDC3KU3lh6DJZj0wHwYDVR0j BBgwFoAUPSBSK1GuqkH1lJDi1Vw23rbCHHcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZTYxZTVhZS1lNDVmLTRlZTMtOGY2Yi03Y2I1OWQ2MTc4M2IvMC8zRDIwNTIyQjUx QUVBQTQxRjU5NDkwRTJENTVDMzZERUI2QzIxQzc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVCNkMy MUM3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWU2MWU1YWUtZTQ1Zi00ZWUzLThm NmItN2NiNTlkNjE3ODNiLzAvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2 REVCNkMyMUM3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHj+1rJU2jmRU4HayjbtBAMAHPltFroJ3xX/ hjnTVhmcggdBdNMsRRLYtt765BmG4b/glMZmjtOr6g0oJF5P0bOS6egg2xZf2gvo eiUnU+DVE3T/+Y7K08nRHJ6k7NmFozwkKPPwebeBXHmQHzSPQvbe85K1hDf3Mz3B tmHlgRi5QWeginr0jnyd579j7t9AqcEkhsu1JnkDRFgCbU6Y+19MSh4Q2PFr3K7s 58PgUWtHkadiP9uh/N2g2j33BbcV7lhWOZhoI11IX8E2ItmH+BGHy92gebXkEVqt ta6nHCcse5e+ZwcMbm4vpSJUlyKpLcNCJfppg6049yp/JVhF2fc= -----END CERTIFICATE-----Generated at Sat May 10 14:35:57 2025 by rpki-client