$ rpki-client -vvf repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft File: AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft (raw, json) Hash identifier: HB8M1XTsaE8vqTkU+Se05GrSaKvKKbhgvWgz5A8yoLU= Subject key identifier: 91:33:F8:B9:B1:1F:40:67:22:C7:F1:1F:8D:0C:1C:4B:E9:EF:FE:C2 Authority key identifier: AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 Certificate issuer: /CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Certificate serial: 62C8AECF1E1F7721A2AEFD002CFB1AE6278C07CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft Manifest number: 0137 Signing time: Sun 27 Apr 2025 18:01:58 +0000 Manifest this update: Sun 27 Apr 2025 17:56:58 +0000 Manifest next update: Wed 30 Apr 2025 23:55:58 +0000 Files and hashes: 1: 3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa (hash: FuC0X759h2GO+MLLKWRrbDk5a3CiG3LjZLk/US775mk=) 2: 3130332e3135392e36322e302f32342d3234203d3e20313431353931.roa (hash: Ss0eIh55eF1+18NBRc56XTthBY2pyra5MKG9X4X5KfE=) 3: AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl (hash: Trt5xTCBaTidmaW48qsuKPGHClg8KY6/M1zoewnjYVY=) 4: 3130332e3135392e36332e302f32342d3234203d3e20313431353931.roa (hash: jZdzzwUnE5NySNtgaEjKcLOBnZGLd0OeUfLgUNjS8h8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 23:55:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:c8:ae:cf:1e:1f:77:21:a2:ae:fd:00:2c:fb:1a:e6:27:8c:07:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Validity Not Before: Apr 27 17:56:58 2025 GMT Not After : Apr 30 23:55:58 2025 GMT Subject: CN=9133F8B9B11F406722C7F11F8D0C1C4BE9EFFEC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b4:52:f0:a4:cf:8c:5d:31:ab:6a:ec:3e:dd: 97:1d:49:df:61:ac:fc:21:26:d3:0d:18:15:7a:fb: d8:a8:51:eb:a4:e4:93:fa:eb:07:63:83:73:25:03: ad:44:08:b8:d3:9f:c0:cc:85:e9:77:e5:69:71:ef: 92:2a:75:b3:84:99:d8:95:32:ed:22:7f:12:f4:56: 51:b2:a8:7f:df:5c:ee:89:ea:cb:8a:92:4a:66:0a: ab:e3:f6:6a:ac:70:f9:91:45:b2:b2:57:dd:52:c4: 61:b1:36:5b:88:65:94:64:58:7e:9f:9e:83:54:d1: b9:60:67:92:42:66:83:2c:00:b8:e8:2b:f2:33:32: 3f:c9:74:00:1e:ce:6b:07:68:d0:f4:7d:2f:d1:20: 64:2e:5b:67:9b:e5:ef:8c:b9:5e:ad:b4:d1:2f:23: 77:76:c4:0a:05:d5:3a:a8:85:f1:02:e1:56:ec:24: 51:a8:ed:11:b3:f3:8d:f9:aa:36:42:e1:ca:9f:ba: 4f:e2:a2:7b:3b:a5:70:05:e3:bb:2c:1a:a6:4d:59: 82:5c:ca:00:f4:50:02:db:79:93:69:cf:24:a3:85: bc:08:82:7d:6e:0c:41:5c:f1:23:ef:6b:c5:93:26: 87:19:26:91:ed:3b:7e:d6:fd:56:cc:2b:5e:a5:4b: 88:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:33:F8:B9:B1:1F:40:67:22:C7:F1:1F:8D:0C:1C:4B:E9:EF:FE:C2 X509v3 Authority Key Identifier: keyid:AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:ca:d8:d0:52:2d:56:ce:17:11:ba:8c:67:f1:6c:de:44:76: 6a:36:ad:f1:8f:ac:8c:c2:93:ac:5c:de:4e:88:53:70:62:ff: 52:2c:35:7b:5b:a1:16:3d:6e:98:fe:51:72:0b:18:af:04:e0: 0f:d8:3a:33:2c:65:c9:c2:b6:1c:48:b8:c8:07:b4:46:6c:62: 79:e5:57:c2:29:68:7a:f8:c9:9e:a2:1c:81:95:2e:ba:1e:44: ad:5f:5b:87:9e:b8:dc:5c:7d:29:93:0b:5f:43:d2:6e:83:96: ba:e4:b4:f4:b3:c2:c6:c2:72:df:e6:23:f1:0a:f6:87:d1:bf: 9e:cd:01:d2:e6:bc:8f:4e:35:86:b4:ad:5d:24:ce:45:6a:37: 20:01:7d:79:01:76:57:09:09:2c:5f:e2:32:ca:90:a4:df:51: ab:72:9d:a0:e1:10:50:b5:92:ed:7e:81:cf:a6:7e:5c:43:6f: 72:7d:22:41:f7:56:7d:b1:84:2d:d1:e7:0d:53:94:85:1c:b8: a1:5d:02:2f:e7:13:89:34:ac:08:02:df:81:54:2e:8f:74:86: ea:74:e3:ce:23:e0:54:f8:8b:1a:da:d8:6c:b5:eb:5e:0b:f0: 14:42:43:52:dc:68:c9:1b:3a:d4:e3:fe:92:7b:9e:e3:12:93: be:98:47:a3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYsiuzx4fdyGirv0ALPsa5ieMB80wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNG MDU0ODFCMTAeFw0yNTA0MjcxNzU2NThaFw0yNTA0MzAyMzU1NThaMDMxMTAvBgNV BAMTKDkxMzNGOEI5QjExRjQwNjcyMkM3RjExRjhEMEMxQzRCRTlFRkZFQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCytFLwpM+MXTGrauw+3ZcdSd9h rPwhJtMNGBV6+9ioUeuk5JP66wdjg3MlA61ECLjTn8DMhel35Wlx75IqdbOEmdiV Mu0ifxL0VlGyqH/fXO6J6suKkkpmCqvj9mqscPmRRbKyV91SxGGxNluIZZRkWH6f noNU0blgZ5JCZoMsALjoK/IzMj/JdAAezmsHaND0fS/RIGQuW2eb5e+MuV6ttNEv I3d2xAoF1TqohfEC4VbsJFGo7RGz8435qjZC4cqfuk/ions7pXAF47ssGqZNWYJc ygD0UALbeZNpzySjhbwIgn1uDEFc8SPva8WTJocZJpHtO37W/VbMK16lS4ifAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkTP4ubEfQGcix/EfjQwcS+nv/sIwHwYDVR0j BBgwFoAUrkACt+kq9Zx25/i+SzSRk/BUgbEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGMxNzFmNC1iZDExLTQ4ZWQtODdmMC0yN2VhMTIwOTA2NGYvMC9BRTQwMDJCN0U5 MkFGNTlDNzZFN0Y4QkU0QjM0OTE5M0YwNTQ4MUIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNGMDU0 ODFCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjBjMTcxZjQtYmQxMS00OGVkLTg3 ZjAtMjdlYTEyMDkwNjRmLzAvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkx OTNGMDU0ODFCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI3K2NBSLVbOFxG6jGfxbN5Edmo2rfGPrIzC k6xc3k6IU3Bi/1IsNXtboRY9bpj+UXILGK8E4A/YOjMsZcnCthxIuMgHtEZsYnnl V8IpaHr4yZ6iHIGVLroeRK1fW4eeuNxcfSmTC19D0m6DlrrktPSzwsbCct/mI/EK 9ofRv57NAdLmvI9ONYa0rV0kzkVqNyABfXkBdlcJCSxf4jLKkKTfUatynaDhEFC1 ku1+gc+mflxDb3J9IkH3Vn2xhC3R5w1TlIUcuKFdAi/nE4k0rAgC34FULo90hup0 484j4FT4ixra2Gy1614L8BRCQ1LcaMkbOtTj/pJ7nuMSk76YR6M= -----END CERTIFICATE-----Generated at Wed Apr 30 00:01:58 2025 by rpki-client