$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: xGiqiz0U2PAm9pIERdoUMrIrWAL6vJQJ2akFow6aduM= Subject key identifier: DF:99:AD:92:7F:C6:55:FA:F0:41:92:95:F9:70:91:3B:0F:F1:30:BF Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 70EB031AED0E1FB72CD5F46AE2350B1B1C7F9A3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: 8A Signing time: Thu 08 May 2025 22:41:03 +0000 Manifest this update: Thu 08 May 2025 22:36:03 +0000 Manifest next update: Mon 12 May 2025 05:37:03 +0000 Files and hashes: 1: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: 5TysUWdf//ijZZADQg/kyk1hPl8L9rMcShCWekWYvss=) 2: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: tqotyjAH3hPNKC4KMmbJRyOeRh1hAR0CNyyT9ndAu7k=) 3: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: Jit+uJIEyqjGrv7HRmDwiYsYuySfB8Lk478TOnlXVFM=) 4: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: 0Sp71iByz54iwWQJzMOBCq9Epyr9I27MX7Pf+VWao6M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 05:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:eb:03:1a:ed:0e:1f:b7:2c:d5:f4:6a:e2:35:0b:1b:1c:7f:9a:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: May 8 22:36:03 2025 GMT Not After : May 12 05:37:03 2025 GMT Subject: CN=DF99AD927FC655FAF0419295F970913B0FF130BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ab:ec:69:31:d0:4c:68:c3:b1:59:0e:72:30: 27:58:d1:88:70:09:d1:09:35:ff:df:19:62:06:06: c7:ff:c4:c1:b7:bf:1e:9c:ac:4f:48:2b:c5:9a:2c: e1:0b:54:ff:01:a1:ea:9b:66:b8:cd:da:69:ab:a5: 0f:3e:ed:93:87:0c:aa:c5:95:45:6e:4f:c3:a4:30: fc:67:1b:fc:f2:9c:ea:4a:33:5c:5a:ba:80:10:2f: af:b3:e5:d4:b7:78:3d:48:4f:1b:c1:a2:a2:2e:bd: d5:ff:a6:12:76:71:97:c0:ec:d9:e8:ec:40:ef:16: 36:17:89:c9:5d:07:a0:46:f0:b0:0d:a2:a8:cc:d2: de:f6:0e:2b:d3:36:16:82:b5:cd:e3:69:e1:49:cd: 28:3c:39:fb:2b:d5:cb:0e:68:c3:19:56:d7:85:b1: 0b:76:0b:3f:87:bb:eb:c9:f0:b2:b4:2d:a6:ae:b1: ba:67:52:ee:20:9d:bc:9d:09:67:2c:33:d1:ed:de: 7c:28:ef:5e:65:b5:9d:8f:58:94:0e:e6:c3:93:2d: b4:f3:df:00:af:87:57:c6:d0:9d:bd:f6:ea:90:50: 9b:38:fe:2a:71:2a:cc:cc:d0:64:b1:d5:a1:6a:c2: df:f2:7d:18:d1:bb:34:1f:d8:ff:54:d4:0e:92:73: aa:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:99:AD:92:7F:C6:55:FA:F0:41:92:95:F9:70:91:3B:0F:F1:30:BF X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:49:fe:af:b6:a2:72:ac:2b:36:49:35:bf:af:cf:8e:a7:12: d7:67:82:ad:13:3f:28:24:5c:18:67:7e:0f:55:1e:5e:fe:10: a1:75:2b:07:27:73:19:ff:3d:a6:c1:a5:21:3e:ad:35:18:c6: b4:f3:30:16:e9:e4:6c:3f:50:bf:ae:18:8f:0b:76:8d:28:1a: 95:3a:5a:a2:9f:d8:56:bc:6b:04:02:80:a3:63:9b:bc:b6:f9: f2:28:01:5c:b2:43:83:3a:12:97:90:c9:36:30:81:8c:28:da: 12:c3:de:45:5e:88:c3:61:4e:ba:bd:81:d3:2f:a4:c5:1f:9c: 89:dc:25:d2:54:b5:20:5d:66:54:73:2f:2d:7c:37:22:6b:b7: 97:1e:a3:3e:1d:7b:d9:1c:c6:7e:2e:bc:1c:61:ee:aa:d7:50: b9:c1:56:19:bf:16:e3:04:14:49:12:6a:ce:c2:34:18:12:59: 04:c7:91:37:b5:f1:2f:e2:31:fe:fc:ef:9e:3f:ae:d7:02:b4: ce:e5:fe:f7:29:e9:d3:56:27:63:51:bf:03:43:53:a2:7b:ea: cb:f5:fe:b2:a5:8d:d8:40:28:24:3d:1f:7a:94:9c:e5:12:06: 06:7a:17:f4:50:59:d5:9c:b7:a7:1b:d7:65:e8:8b:70:b7:a3: 3c:7d:22:04 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcOsDGu0OH7cs1fRq4jULGxx/mj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNTA1MDgyMjM2MDNaFw0yNTA1MTIwNTM3MDNaMDMxMTAvBgNV BAMTKERGOTlBRDkyN0ZDNjU1RkFGMDQxOTI5NUY5NzA5MTNCMEZGMTMwQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAq+xpMdBMaMOxWQ5yMCdY0Yhw CdEJNf/fGWIGBsf/xMG3vx6crE9IK8WaLOELVP8BoeqbZrjN2mmrpQ8+7ZOHDKrF lUVuT8OkMPxnG/zynOpKM1xauoAQL6+z5dS3eD1ITxvBoqIuvdX/phJ2cZfA7Nno 7EDvFjYXicldB6BG8LANoqjM0t72DivTNhaCtc3jaeFJzSg8Ofsr1csOaMMZVteF sQt2Cz+Hu+vJ8LK0LaausbpnUu4gnbydCWcsM9Ht3nwo715ltZ2PWJQO5sOTLbTz 3wCvh1fG0J299uqQUJs4/ipxKszM0GSx1aFqwt/yfRjRuzQf2P9U1A6Sc6ofAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU35mtkn/GVfrwQZKV+XCROw/xML8wHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEFJ/q+2onKsKzZJNb+vz46nEtdngq0TPygk XBhnfg9VHl7+EKF1Kwcncxn/PabBpSE+rTUYxrTzMBbp5Gw/UL+uGI8Ldo0oGpU6 WqKf2Fa8awQCgKNjm7y2+fIoAVyyQ4M6EpeQyTYwgYwo2hLD3kVeiMNhTrq9gdMv pMUfnIncJdJUtSBdZlRzLy18NyJrt5ceoz4de9kcxn4uvBxh7qrXULnBVhm/FuME FEkSas7CNBgSWQTHkTe18S/iMf78754/rtcCtM7l/vcp6dNWJ2NRvwNDU6J76sv1 /rKljdhAKCQ9H3qUnOUSBgZ6F/RQWdWct6cb12Xoi3C3ozx9IgQ= -----END CERTIFICATE-----Generated at Sun May 11 05:24:42 2025 by rpki-client