$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft File: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft (raw, json) Hash identifier: TOlADI5pN2PvdQtE4IZciIGF+nW6gAPU8/jKfZVjO1I= Subject key identifier: 4E:1F:11:DF:9D:B8:55:9B:27:7B:FF:B1:B7:E0:A2:4F:2C:F2:EC:CA Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 3FD149496E650D3A12272AC231C27E759F56ABB4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft Manifest number: 045D Signing time: Sat 03 May 2025 16:21:15 +0000 Manifest this update: Sat 03 May 2025 16:16:15 +0000 Manifest next update: Wed 07 May 2025 03:53:15 +0000 Files and hashes: 1: 3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa (hash: XyH2IkcIEuDvVJJGBcIvIdi7tMCNJuIdQc60W8BGrOU=) 2: 3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa (hash: Miiyo70b9UEsqSD6s3MKnk488M/yLQdFrFnluWJWC9w=) 3: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl (hash: buBhiFN76uAKpd/0okMbS2aNTP8K9Q53afDyUFDUPCY=) 4: 3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa (hash: FejRYWwdsuj+4j3TDWSOjALgozWd2vs6Lc0w2q44EY8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 03:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:d1:49:49:6e:65:0d:3a:12:27:2a:c2:31:c2:7e:75:9f:56:ab:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: May 3 16:16:15 2025 GMT Not After : May 7 03:53:15 2025 GMT Subject: CN=4E1F11DF9DB8559B277BFFB1B7E0A24F2CF2ECCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9f:fd:c7:d2:e4:a7:ce:ee:54:9a:dd:5d:e6: 15:ee:10:0a:bc:a2:04:b8:95:5d:5f:ca:8e:ef:c5: 73:5e:a5:a6:fe:5a:34:4c:8b:06:0e:8a:2f:f9:e6: d5:ce:44:57:6d:d0:ff:03:6b:c6:71:70:13:75:92: 99:f0:f1:4c:8f:a4:f1:b7:bd:b1:9c:51:30:2a:59: d7:cd:cb:b9:1f:de:15:8e:1a:4b:10:3a:f2:e0:85: 1f:62:5c:cf:b6:f9:dd:60:bd:5d:c1:d7:3b:3b:24: af:9f:80:c6:45:2b:d6:0e:93:c0:94:7d:de:b5:52: 96:3b:e9:8d:90:ce:93:a5:ac:40:6b:ab:6f:64:d4: 50:78:78:84:ae:f6:00:4c:57:d9:fb:6f:d3:b3:15: 3d:2a:ae:c0:17:0d:63:36:9d:65:d9:4d:e9:52:27: 91:e3:6e:24:62:55:b6:10:7b:26:ba:03:45:41:fb: f9:e5:9d:60:b7:a9:e9:b6:18:a7:65:6f:70:5d:db: 39:e7:09:4f:5c:d1:e2:b2:42:ed:79:5b:a4:b3:f2: c5:ff:29:b2:1e:06:39:62:16:aa:c1:d5:3a:d2:44: 91:d1:23:e4:01:d4:48:ee:43:fa:26:f7:cb:e5:12: 61:3d:fe:04:85:54:0c:52:c2:c2:6f:5e:8f:36:0d: 2f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:1F:11:DF:9D:B8:55:9B:27:7B:FF:B1:B7:E0:A2:4F:2C:F2:EC:CA X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:a0:0e:2c:f7:a6:27:80:90:e3:88:ce:71:81:53:e2:50:0b: 80:74:55:0a:96:5a:3f:2e:06:8b:d3:20:d5:a0:90:15:0b:fa: 20:33:b1:d1:90:7e:39:d8:35:13:84:4a:71:26:c2:23:53:9c: 0d:b1:ad:21:c7:11:19:79:ec:00:4e:08:2f:7a:4a:d5:b1:de: f8:6d:ef:71:82:5e:0d:0b:18:ab:85:56:5c:aa:e3:a4:68:0d: 76:31:f5:d0:40:d7:88:ec:70:d6:c5:20:f3:02:24:e4:bd:62: ef:b5:4a:f4:af:b5:32:ca:65:85:ea:41:d0:62:c4:81:c0:e4: ac:a3:80:d6:56:ad:a0:d5:23:2c:d2:99:39:d6:7d:22:24:52: 48:d8:d6:40:e4:41:10:a5:07:4e:5f:67:e3:20:2b:1d:d6:11: 4e:b1:aa:3c:fc:f1:a4:60:7c:75:6e:d6:0f:91:0e:6c:76:93: c3:9e:fb:06:71:f2:80:75:98:56:43:1f:ee:1c:11:ff:87:ec: 1e:ce:68:ad:be:26:fb:54:f4:a5:f9:97:2d:48:51:f7:d2:c1: 16:aa:f5:0e:2d:1f:15:43:bd:d7:aa:be:3f:53:59:a2:aa:85: a9:56:63:1f:30:36:1d:7f:98:52:d2:53:9d:e9:74:c8:3a:cb: a5:ca:f8:77 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUP9FJSW5lDToSJyrCMcJ+dZ9Wq7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yNTA1MDMxNjE2MTVaFw0yNTA1MDcwMzUzMTVaMDMxMTAvBgNV BAMTKDRFMUYxMURGOURCODU1OUIyNzdCRkZCMUI3RTBBMjRGMkNGMkVDQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgn/3H0uSnzu5Umt1d5hXuEAq8 ogS4lV1fyo7vxXNepab+WjRMiwYOii/55tXORFdt0P8Da8ZxcBN1kpnw8UyPpPG3 vbGcUTAqWdfNy7kf3hWOGksQOvLghR9iXM+2+d1gvV3B1zs7JK+fgMZFK9YOk8CU fd61UpY76Y2QzpOlrEBrq29k1FB4eISu9gBMV9n7b9OzFT0qrsAXDWM2nWXZTelS J5HjbiRiVbYQeya6A0VB+/nlnWC3qem2GKdlb3Bd2znnCU9c0eKyQu15W6Sz8sX/ KbIeBjliFqrB1TrSRJHRI+QB1EjuQ/om98vlEmE9/gSFVAxSwsJvXo82DS/3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTh8R3524VZsne/+xt+CiTyzy7MowHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjNiYWJmMGItMTEwMS00YWE5LWE0 ZGYtNTI3MTQ5MzRkYjdjLzAvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYz M0RBNTVGMjA3Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ2gDiz3pieAkOOIznGBU+JQC4B0VQqWWj8u BovTINWgkBUL+iAzsdGQfjnYNROESnEmwiNTnA2xrSHHERl57ABOCC96StWx3vht 73GCXg0LGKuFVlyq46RoDXYx9dBA14jscNbFIPMCJOS9Yu+1SvSvtTLKZYXqQdBi xIHA5KyjgNZWraDVIyzSmTnWfSIkUkjY1kDkQRClB05fZ+MgKx3WEU6xqjz88aRg fHVu1g+RDmx2k8Oe+wZx8oB1mFZDH+4cEf+H7B7OaK2+JvtU9KX5ly1IUffSwRaq 9Q4tHxVDvdeqvj9TWaKqhalWYx8wNh1/mFLSU53pdMg6y6XK+Hc= -----END CERTIFICATE-----Generated at Tue May 6 00:52:15 2025 by rpki-client