$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft File: 3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft (raw, json) Hash identifier: wonqhg9OUOY5L9j/3atPfc0FRwZ/VvMmyuxbI/suil4= Subject key identifier: 3E:F5:28:A1:B1:F5:C2:C3:FC:82:63:D8:D2:E3:5E:BC:0B:2E:A4:1F Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Certificate serial: 36E751CBDF5F3C01F6FCDC192A8C0F431FACD476 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft Manifest number: 01B3 Signing time: Tue 29 Apr 2025 05:32:14 +0000 Manifest this update: Tue 29 Apr 2025 05:27:14 +0000 Manifest next update: Fri 02 May 2025 05:54:14 +0000 Files and hashes: 1: 3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl (hash: iAHdExaGntyc8nnNyRLTLraUdBbZXeVjP2vEPk2aT1g=) 2: 3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa (hash: 1QFmqqnDt9FD4CT5iXH8IaTJeZQAgHohWAPwCtiQfbk=) 3: 3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa (hash: pj91Qs2tURvKQAKL6L3l5bFtaBP3SPbqgRHlO/yRwo8=) 4: 3130332e3235342e3137312e302f32342d3234203d3e203539313439.roa (hash: jWIeEj8fX0qqStZK4DC//9sEKdVwxbP2pcQ0ebAsVP8=) 5: 3130332e3235342e3136392e302f32342d3234203d3e203539313439.roa (hash: NK7ClTvv4/NDBbf89x9B3VnTnm5k2ddyF3YW/vuXpLs=) 6: 3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa (hash: i1T+k/Fj5jmrloNHibD0LTah+LErHR2m6DpQ2W7p/XI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:e7:51:cb:df:5f:3c:01:f6:fc:dc:19:2a:8c:0f:43:1f:ac:d4:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Validity Not Before: Apr 29 05:27:14 2025 GMT Not After : May 2 05:54:14 2025 GMT Subject: CN=3EF528A1B1F5C2C3FC8263D8D2E35EBC0B2EA41F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5f:44:94:b8:37:84:ba:e8:69:a4:06:30:e0: 1e:28:bf:a9:d0:18:fb:45:98:59:d7:f3:61:d6:d1: 7d:1d:4b:72:da:50:12:a6:4b:cc:45:91:00:f8:2e: 56:4a:46:2d:03:cc:3e:88:de:50:fb:82:bf:93:48: 0f:75:92:b0:23:3b:64:81:20:eb:74:03:15:6b:6c: 21:31:c8:0e:dd:e3:52:49:f5:e9:83:ec:33:5c:0d: e9:0b:85:0f:47:f2:63:e1:c8:f3:24:27:89:74:48: 30:c4:4b:b0:51:e9:07:98:96:1b:55:c8:30:cd:c8: 8d:f1:b4:c7:a0:c3:d4:dd:4b:8c:f6:ab:3b:96:6c: 42:1b:bb:0f:63:e3:f3:6b:4f:6f:b2:70:16:5d:3a: 25:32:74:11:5c:ad:b6:32:db:bb:c1:de:2d:a7:65: e1:df:a2:cc:c5:56:50:e5:c6:68:06:fa:38:9d:ba: 31:2c:ee:29:c9:0e:cf:6b:4c:72:2c:61:69:0c:cc: 09:47:13:09:05:93:48:5b:a5:f1:bb:52:18:c6:6d: b3:ca:3b:52:51:87:07:67:76:f8:ec:24:a3:27:ca: 37:e1:e9:b1:27:0a:3c:69:43:43:b9:5b:8a:3a:8e: d4:23:4f:40:0e:92:0a:9a:86:c9:d4:e4:71:c6:a5: 77:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:F5:28:A1:B1:F5:C2:C3:FC:82:63:D8:D2:E3:5E:BC:0B:2E:A4:1F X509v3 Authority Key Identifier: keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d4:f4:6b:d7:7e:ce:bb:2c:93:c2:5e:9f:7d:cc:5e:98:c0:19: 5c:3e:ba:76:09:e7:c8:43:05:c6:e5:8c:51:7c:36:0a:83:87: f4:a7:d4:66:6c:55:8c:89:b1:f1:14:4e:6f:ca:94:a8:c0:9f: ad:79:d3:1b:a2:5d:dc:b4:7a:d4:62:31:e2:8e:7a:0c:4b:35: 63:87:ad:89:b4:39:d5:73:a7:d2:ad:14:df:1f:fb:9f:a4:c8: 19:ac:2a:dd:6f:b6:06:40:56:4a:20:8e:89:2f:7d:59:10:0c: 14:be:c7:a2:f4:0b:04:5d:a7:59:e1:2b:19:3d:c3:2b:fa:79: 96:f8:3c:e6:b2:f0:b3:aa:9e:b4:1b:83:d7:cd:c2:af:59:50: 93:e7:c3:86:04:f8:7b:70:c3:4a:41:76:d4:85:9c:46:88:33: 41:22:14:ee:dd:31:3a:86:36:b0:e6:72:35:ca:d9:80:86:be: 3e:50:f1:c7:32:f7:c1:4c:bd:ee:f3:99:30:7a:c5:b8:76:dc: 94:53:87:78:82:c8:4f:44:26:60:10:0c:fe:18:a4:89:20:c2: e0:66:7d:14:73:a9:41:4b:5d:ad:8c:33:84:72:71:2c:46:b6: 23:f4:38:6f:a6:06:ec:c1:46:69:e2:b3:84:03:f2:de:d8:4e: 19:7d:d5:3b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNudRy99fPAH2/NwZKowPQx+s1HYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5 RTE4MjA3NDAeFw0yNTA0MjkwNTI3MTRaFw0yNTA1MDIwNTU0MTRaMDMxMTAvBgNV BAMTKDNFRjUyOEExQjFGNUMyQzNGQzgyNjNEOEQyRTM1RUJDMEIyRUE0MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6X0SUuDeEuuhppAYw4B4ov6nQ GPtFmFnX82HW0X0dS3LaUBKmS8xFkQD4LlZKRi0DzD6I3lD7gr+TSA91krAjO2SB IOt0AxVrbCExyA7d41JJ9emD7DNcDekLhQ9H8mPhyPMkJ4l0SDDES7BR6QeYlhtV yDDNyI3xtMegw9TdS4z2qzuWbEIbuw9j4/NrT2+ycBZdOiUydBFcrbYy27vB3i2n ZeHfoszFVlDlxmgG+jidujEs7inJDs9rTHIsYWkMzAlHEwkFk0hbpfG7UhjGbbPK O1JRhwdndvjsJKMnyjfh6bEnCjxpQ0O5W4o6jtQjT0AOkgqahsnU5HHGpXfDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPvUoobH1wsP8gmPY0uNevAsupB8wHwYDVR0j BBgwFoAUOyup6NU1er13a27EyvfBxZ4YIHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMC8zQjJCQTlFOEQ1 MzU3QUJENzc2QjZFQzRDQUY3QzFDNTlFMTgyMDc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5RTE4 MjA3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmFlN2Q0NjEtMGUzMi00ZTY1LWJi ODgtZDcyNDA1YjI0NDUxLzAvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0Mx QzU5RTE4MjA3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANT0a9d+zrssk8Jen33MXpjAGVw+unYJ58hD BcbljFF8NgqDh/Sn1GZsVYyJsfEUTm/KlKjAn6150xuiXdy0etRiMeKOegxLNWOH rYm0OdVzp9KtFN8f+5+kyBmsKt1vtgZAVkogjokvfVkQDBS+x6L0CwRdp1nhKxk9 wyv6eZb4POay8LOqnrQbg9fNwq9ZUJPnw4YE+Htww0pBdtSFnEaIM0EiFO7dMTqG NrDmcjXK2YCGvj5Q8ccy98FMve7zmTB6xbh23JRTh3iCyE9EJmAQDP4YpIkgwuBm fRRzqUFLXa2MM4RycSxGtiP0OG+mBuzBRmnis4QD8t7YThl91Ts= -----END CERTIFICATE-----Generated at Thu May 1 06:30:43 2025 by rpki-client