$ rpki-client -vvf repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft File: D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft (raw, json) Hash identifier: mIdXvaNpZW5D2Fvndb8V1xgPyZ8tnyyyXUIAWecO/4c= Subject key identifier: D1:AA:16:DC:91:C7:1D:03:C5:37:EA:9F:C3:F6:58:6D:8C:8A:59:34 Authority key identifier: D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 Certificate issuer: /CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Certificate serial: 1920BF953BCEABC8131549C0BB714BC55E363AD7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft Manifest number: 01B9 Signing time: Sun 27 Apr 2025 00:41:05 +0000 Manifest this update: Sun 27 Apr 2025 00:36:05 +0000 Manifest next update: Wed 30 Apr 2025 03:23:05 +0000 Files and hashes: 1: D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl (hash: 0xVdzsGtjDn5XebQ66H5UUeNt8a5EwTP/+e2AHUqbhk=) 2: 3130332e3138362e3230342e302f32342d3234203d3e20313439373233.roa (hash: GzHdOP0n6DVBzJ4SZfGJJdADWGWv7JzIn766DJue4gw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 03:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:20:bf:95:3b:ce:ab:c8:13:15:49:c0:bb:71:4b:c5:5e:36:3a:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Validity Not Before: Apr 27 00:36:05 2025 GMT Not After : Apr 30 03:23:05 2025 GMT Subject: CN=D1AA16DC91C71D03C537EA9FC3F6586D8C8A5934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:19:9c:53:e2:f3:e4:61:b6:f9:8a:3b:3b:02: d4:e8:82:8f:b9:5d:d2:30:60:05:60:ec:fe:66:2d: d8:c2:d3:e9:98:85:be:91:23:94:c3:05:04:a7:fa: a4:5a:52:70:a1:21:92:bd:79:d3:ab:37:c6:ff:2a: 5f:1f:30:8e:1e:0f:16:79:d0:b3:5d:26:4c:15:52: 81:e5:8e:9d:d2:5c:a7:ed:bb:ea:a2:ca:2e:f0:0c: d9:0c:c5:cb:25:bc:ac:e9:98:64:b7:6a:1c:2b:8b: cd:98:66:ef:6e:75:c0:01:41:b7:ab:38:7a:a1:8c: 3b:13:3a:5c:7d:af:11:22:46:cb:bb:11:d1:f4:13: 7f:99:cf:15:03:6b:9a:f2:a3:df:42:e0:ed:f4:36: b0:fd:1f:73:12:72:5b:89:46:6c:2c:a8:8a:9e:0e: 5f:11:ba:5b:ea:76:0d:83:ca:bd:55:e0:ea:61:e7: bd:6e:f2:1b:b3:14:a1:1c:74:74:3a:74:1c:7f:61: bb:c0:42:e1:0b:f7:ec:9b:a6:39:65:9c:f9:12:36: 0b:8f:24:32:21:19:74:bf:43:08:6e:2b:4e:d2:c1: 54:92:a1:3c:ba:6b:5c:a0:c1:a4:67:4d:71:7c:ef: 3a:35:14:93:37:98:e6:5b:db:86:b1:76:49:64:ce: b8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:AA:16:DC:91:C7:1D:03:C5:37:EA:9F:C3:F6:58:6D:8C:8A:59:34 X509v3 Authority Key Identifier: keyid:D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:05:d6:ae:a2:78:3c:26:ea:10:2c:1f:a0:21:c2:71:5a:ac: 39:1c:11:4a:9e:5d:fe:ab:1c:8a:84:e5:bd:aa:57:13:93:8f: d6:be:7b:11:7b:59:8c:36:cd:92:09:26:33:36:5c:d1:24:32: d2:1f:b2:f0:e9:9f:6b:7b:35:e7:16:96:29:0d:5f:77:21:11: c6:be:f1:8e:e5:36:bc:a4:99:60:b2:a1:13:46:87:a1:c1:80: 3a:82:3a:30:eb:1b:5b:01:ba:29:81:e4:a4:a8:e8:1d:e8:62: 19:41:4c:7f:a3:30:5d:44:ec:68:55:c4:9b:22:94:e1:9e:b1: 6c:ae:74:4a:f2:81:72:13:8b:8b:ad:7b:fe:c8:9a:28:d4:8c: ed:ec:3d:2a:d4:9e:6b:76:c1:d6:d3:30:db:79:51:8f:ee:71: cb:48:05:80:7d:d1:6f:2c:b5:8f:d9:ed:72:78:5d:bd:ad:63: 95:6e:b8:80:1b:6c:bf:1e:9f:99:48:ed:0b:d1:8e:22:82:78: c0:72:e5:56:c5:c7:33:bd:35:fe:2d:cb:58:45:78:c0:b0:4a: f0:2d:6c:3d:e3:61:dd:27:dd:07:41:86:15:48:40:d6:89:7e: fc:9b:1d:89:d5:92:68:f8:1e:85:0a:74:ca:c7:0a:62:61:ae: c0:46:d3:8a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGSC/lTvOq8gTFUnAu3FLxV42OtcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAx RUMyNkREMTAeFw0yNTA0MjcwMDM2MDVaFw0yNTA0MzAwMzIzMDVaMDMxMTAvBgNV BAMTKEQxQUExNkRDOTFDNzFEMDNDNTM3RUE5RkMzRjY1ODZEOEM4QTU5MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClGZxT4vPkYbb5ijs7AtTogo+5 XdIwYAVg7P5mLdjC0+mYhb6RI5TDBQSn+qRaUnChIZK9edOrN8b/Kl8fMI4eDxZ5 0LNdJkwVUoHljp3SXKftu+qiyi7wDNkMxcslvKzpmGS3ahwri82YZu9udcABQber OHqhjDsTOlx9rxEiRsu7EdH0E3+ZzxUDa5ryo99C4O30NrD9H3MScluJRmwsqIqe Dl8Rulvqdg2Dyr1V4Oph571u8huzFKEcdHQ6dBx/YbvAQuEL9+ybpjllnPkSNguP JDIhGXS/QwhuK07SwVSSoTy6a1ygwaRnTXF87zo1FJM3mOZb24axdklkzrhzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0aoW3JHHHQPFN+qfw/ZYbYyKWTQwHwYDVR0j BBgwFoAU1BccTAaXWkMJ/Fny00DWgB7CbdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzY4MGQwZC1lMjQwLTRhYWYtYmMyMy0yODIzNTkzNzMyODkvMC9ENDE3MUM0QzA2 OTc1QTQzMDlGQzU5RjJEMzQwRDY4MDFFQzI2REQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAxRUMy NkREMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDc2ODBkMGQtZTI0MC00YWFmLWJj MjMtMjgyMzU5MzczMjg5LzAvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2 ODAxRUMyNkREMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB4F1q6ieDwm6hAsH6AhwnFarDkcEUqeXf6r HIqE5b2qVxOTj9a+exF7WYw2zZIJJjM2XNEkMtIfsvDpn2t7NecWlikNX3chEca+ 8Y7lNrykmWCyoRNGh6HBgDqCOjDrG1sBuimB5KSo6B3oYhlBTH+jMF1E7GhVxJsi lOGesWyudErygXITi4ute/7ImijUjO3sPSrUnmt2wdbTMNt5UY/ucctIBYB90W8s tY/Z7XJ4Xb2tY5VuuIAbbL8en5lI7QvRjiKCeMBy5VbFxzO9Nf4ty1hFeMCwSvAt bD3jYd0n3QdBhhVIQNaJfvybHYnVkmj4HoUKdMrHCmJhrsBG04o= -----END CERTIFICATE-----Generated at Sun Apr 27 11:33:30 2025 by rpki-client