$ rpki-client -vvf repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft File: 7433AB64571BE1827F0BC97ED291976B6E3429FA.mft (raw, json) Hash identifier: JBr/VMgxq1J7AlJZW67W8wOxVwIMsWRisenf04KSaqo= Subject key identifier: D5:5E:22:50:16:7D:B2:12:36:76:45:6F:D9:8A:7E:C6:47:F2:7D:A7 Authority key identifier: 74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA Certificate issuer: /CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Certificate serial: 208F479D122C87F56788B5BD9DA2E0BF6E647CB8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft Manifest number: 0168 Signing time: Tue 29 Apr 2025 21:22:13 +0000 Manifest this update: Tue 29 Apr 2025 21:17:13 +0000 Manifest next update: Sat 03 May 2025 08:46:13 +0000 Files and hashes: 1: 7433AB64571BE1827F0BC97ED291976B6E3429FA.crl (hash: 5Kd3puWsjYTO06Vy4apUAyVg6ivh3JSo6h4ZgzJfv7Q=) 2: 3130332e37352e36322e302f32342d3234203d3e20313530353339.roa (hash: Foo7ECvYM8eC5QdFLfci515Pz4pdcUotJYsrxOmUjnQ=) 3: 3130332e37352e36332e302f32342d3234203d3e20313530353339.roa (hash: dt0M2E6hMVGXyd6wchuCJpbqgL7DjAEk9eGkYZfJTqo=) 4: 3130332e37352e36322e302f32332d3234203d3e20313530353339.roa (hash: LDOqOfl8+d8Lz+/c+0knmLxGK2Kr8P4Ti1sIU0L3/wo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 08:46:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:8f:47:9d:12:2c:87:f5:67:88:b5:bd:9d:a2:e0:bf:6e:64:7c:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Validity Not Before: Apr 29 21:17:13 2025 GMT Not After : May 3 08:46:13 2025 GMT Subject: CN=D55E2250167DB2123676456FD98A7EC647F27DA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8c:03:f3:ca:3b:a7:94:78:b3:70:f3:b9:79: 14:1a:6f:ec:6d:91:6a:90:35:fb:ca:a4:53:cc:a4: ef:65:90:ba:77:3e:b9:8a:3a:43:d7:1b:ad:93:ae: f7:1b:cf:fa:22:44:8a:51:1c:be:8b:9c:a3:36:b9: 16:d8:4e:a9:3b:8d:6a:e1:17:3b:38:a0:38:de:c7: 4b:7d:28:d4:1a:e6:5b:0c:3d:ac:12:3a:cc:2a:3b: 3a:ac:53:c8:70:0a:f2:6f:ff:02:ae:32:c9:69:c0: 70:83:29:1d:7a:e0:cb:f9:5b:3d:7e:d9:45:50:44: 93:5a:d2:d3:49:12:10:4a:0f:87:c0:51:99:6d:ab: 73:99:98:6c:b8:a6:7b:ee:b6:32:65:66:f3:35:89: d4:59:af:ff:8e:84:b8:54:31:f5:8a:bc:1b:a4:e5: 6f:cc:91:e0:7d:af:e8:47:4d:d9:27:2b:42:c2:0d: 8e:bc:29:ba:0c:6e:62:d0:fa:b5:6b:03:9a:a4:66: cf:0f:83:a4:54:b9:a4:f4:68:0e:9c:92:75:5e:a6: 40:a6:0c:af:88:3b:ea:26:e9:ad:a6:d7:b7:cc:75: 82:c4:47:dc:5a:cd:11:f6:d2:f5:db:9e:1e:0a:3d: 3e:74:76:54:a1:8d:15:a4:38:ac:df:ef:a0:3e:3f: 3b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:5E:22:50:16:7D:B2:12:36:76:45:6F:D9:8A:7E:C6:47:F2:7D:A7 X509v3 Authority Key Identifier: keyid:74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:80:b7:f6:cf:af:9f:c4:4e:39:75:16:bb:96:5b:10:de:ba: b3:e2:26:20:99:9e:23:d1:ab:91:cf:d9:2e:c0:d1:07:d8:ac: 30:18:0a:c8:fb:d7:13:9d:70:b1:dd:db:4c:61:e7:f0:4a:35: fd:d0:41:31:78:69:65:cb:fb:a6:14:90:76:16:aa:0d:2d:59: b2:17:ce:d5:06:4d:df:d1:04:e7:9d:f4:6e:0b:8d:67:b9:e7: da:62:bd:77:e5:31:0f:0d:ce:3c:6e:14:43:f0:9a:0f:79:a3: 7c:35:76:ab:b3:13:d4:5a:02:52:6f:17:0e:24:47:cf:d7:bc: ab:73:8a:a8:14:e0:b0:01:2c:ff:c7:2e:48:7c:f3:0f:cc:f0: 65:bf:e5:31:d1:62:8c:73:4b:2d:b7:81:46:e4:48:45:b3:3a: b7:89:67:3c:92:98:22:ef:fa:79:c6:e7:e4:56:27:45:68:5c: db:8a:a4:e2:42:73:b3:0a:05:0d:cf:9d:55:7b:77:4f:bc:58: 8e:78:14:6a:e6:a7:a9:06:a5:5d:25:33:c9:0d:90:9c:22:59: 62:b5:ac:f3:85:48:4f:8e:46:2a:c6:f4:dd:cd:11:22:14:c1: 33:45:50:f4:1a:07:42:24:d7:e9:52:1f:1b:00:58:27:93:01: a6:ef:10:e3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUII9HnRIsh/VniLW9naLgv25kfLgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2 RTM0MjlGQTAeFw0yNTA0MjkyMTE3MTNaFw0yNTA1MDMwODQ2MTNaMDMxMTAvBgNV BAMTKEQ1NUUyMjUwMTY3REIyMTIzNjc2NDU2RkQ5OEE3RUM2NDdGMjdEQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDajAPzyjunlHizcPO5eRQab+xt kWqQNfvKpFPMpO9lkLp3PrmKOkPXG62Trvcbz/oiRIpRHL6LnKM2uRbYTqk7jWrh Fzs4oDjex0t9KNQa5lsMPawSOswqOzqsU8hwCvJv/wKuMslpwHCDKR164Mv5Wz1+ 2UVQRJNa0tNJEhBKD4fAUZltq3OZmGy4pnvutjJlZvM1idRZr/+OhLhUMfWKvBuk 5W/MkeB9r+hHTdknK0LCDY68KboMbmLQ+rVrA5qkZs8Pg6RUuaT0aA6cknVepkCm DK+IO+om6a2m17fMdYLER9xazRH20vXbnh4KPT50dlShjRWkOKzf76A+PzuzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1V4iUBZ9shI2dkVv2Yp+xkfyfacwHwYDVR0j BBgwFoAUdDOrZFcb4YJ/C8l+0pGXa240KfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2M4YTBjMy0zN2Y1LTQ2NjctYTQzMC02ZmExMTFkMzQzYWEvMC83NDMzQUI2NDU3 MUJFMTgyN0YwQkM5N0VEMjkxOTc2QjZFMzQyOUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2RTM0 MjlGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDdjOGEwYzMtMzdmNS00NjY3LWE0 MzAtNmZhMTExZDM0M2FhLzAvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3 NkI2RTM0MjlGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFeAt/bPr5/ETjl1FruWWxDeurPiJiCZniPR q5HP2S7A0QfYrDAYCsj71xOdcLHd20xh5/BKNf3QQTF4aWXL+6YUkHYWqg0tWbIX ztUGTd/RBOed9G4LjWe559pivXflMQ8NzjxuFEPwmg95o3w1dquzE9RaAlJvFw4k R8/XvKtziqgU4LABLP/HLkh88w/M8GW/5THRYoxzSy23gUbkSEWzOreJZzySmCLv +nnG5+RWJ0VoXNuKpOJCc7MKBQ3PnVV7d0+8WI54FGrmp6kGpV0lM8kNkJwiWWK1 rPOFSE+ORirG9N3NESIUwTNFUPQaB0Ik1+lSHxsAWCeTAabvEOM= -----END CERTIFICATE-----Generated at Wed Apr 30 05:34:18 2025 by rpki-client