$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft File: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft (raw, json) Hash identifier: GrVViXVlk7y1uXyqavLSHD1PyhO9cfK9DeQ399FUX/A= Subject key identifier: 10:F1:B1:AB:01:F6:16:87:CB:F1:8C:E2:47:A8:11:83:97:78:7F:D2 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 25A408567E5420DBEEB4E6097D5353E469271F64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft Manifest number: 04CD Signing time: Tue 29 Apr 2025 19:20:42 +0000 Manifest this update: Tue 29 Apr 2025 19:15:42 +0000 Manifest next update: Fri 02 May 2025 22:36:42 +0000 Files and hashes: 1: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (hash: OT+Mk5WwssGJkg82hSQpE4gvwieaMEJQhhjdSn/cLTY=) 2: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (hash: 71jqN8DhE0JKYB0EqMDkvLldp1gfS+xo4HcST08Qg/k=) 3: 34332e3235322e3130342e302f32322d3234203d3e203435333035.roa (hash: cAMxueznS/nh3h73C9cG6Tq/nGQZqb7kaIFcHdsdkqw=) 4: 3230322e35362e3136342e302f32322d3234203d3e203435333035.roa (hash: dlsqZUGTjCRx+krpGNhgh3Umv+mTDrb/1GV2U8GokZ0=) 5: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (hash: OI9Dbbh3AxBZ/lUfEAmwLldVzXyZ0yA+CnQ3viXQgc8=) 6: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (hash: AhfedWLCTEc5EhocODFri+NBZVGPcnF3DEyLO8J+BrU=) 7: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (hash: sOLICWbkOQCKZGJuOxKOtJraYeaZ/2+UOwySpa2U+Ms=) 8: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl (hash: cgSqNqjNkJtKlKCPqvczhnv5krwNEA6G+StXKqixX9o=) 9: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (hash: gmlwk1E3suVjn/8fiND0vsV46kLjlNiZNpLWBhFFIPo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 18:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:a4:08:56:7e:54:20:db:ee:b4:e6:09:7d:53:53:e4:69:27:1f:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Apr 29 19:15:42 2025 GMT Not After : May 2 22:36:42 2025 GMT Subject: CN=10F1B1AB01F61687CBF18CE247A8118397787FD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6e:89:9a:b8:22:c9:eb:85:4f:6c:1a:d1:b6: a4:6c:ff:32:b0:5c:22:ad:eb:5e:bc:51:68:64:8f: aa:75:35:8d:8a:1d:43:86:08:9d:58:6e:5a:26:eb: c8:36:db:0d:0b:27:8a:05:b4:8c:64:5d:50:47:27: a6:41:17:41:1f:0c:59:b3:81:92:2c:9e:79:9c:63: 85:ab:4c:a7:54:3e:3b:b0:d3:14:2e:70:75:12:52: e1:04:23:a8:35:22:de:b1:c2:a2:72:16:d9:9c:f9: 72:7f:04:a5:7d:e0:4b:79:14:7d:f5:49:a9:f6:37: 01:15:c2:82:b2:d6:c9:e9:78:ef:28:29:fb:d8:ac: 19:8d:fc:17:c8:cd:fe:97:c8:9a:a9:7e:74:c6:fa: f0:ba:3b:ee:e1:80:22:b3:d1:94:ea:32:88:d8:aa: be:04:8a:8e:1b:c4:17:e7:4c:0b:ee:23:36:ca:85: 92:81:fd:6b:92:65:99:9d:5a:23:9f:1e:fe:aa:c0: 8e:e0:7e:c9:4a:f6:05:25:42:3f:4d:ca:6d:3c:31: 7f:ab:64:35:0f:bb:60:82:83:7d:39:cc:a5:cb:4f: 81:43:f0:c1:2d:b9:ed:7f:3a:dd:9d:71:14:60:99: 90:3f:1a:7d:94:e1:c2:95:e2:f3:c0:ce:aa:c9:74: 7a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F1:B1:AB:01:F6:16:87:CB:F1:8C:E2:47:A8:11:83:97:78:7F:D2 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:fe:26:2b:85:2b:df:1d:5d:d4:88:49:a4:0c:8d:45:8f:97: a5:be:4b:fa:10:23:9d:b4:63:17:77:b7:aa:95:37:eb:8b:b8: fa:42:6a:28:0b:3e:62:a0:01:0b:95:f0:e4:d9:c2:88:27:19: 14:30:b3:9d:f1:f2:05:81:7e:45:ba:07:a4:a6:b8:97:5a:f2: cd:8e:4f:82:35:9a:b8:3e:24:c7:6a:6e:2a:10:ce:fe:8c:df: 47:47:2d:76:62:b2:5c:44:10:4a:19:7f:e6:eb:0c:75:57:ee: 15:95:ab:b7:74:25:56:dd:79:1c:26:3b:a8:2b:4d:8e:8b:59: 6f:80:e9:3d:3e:0c:fa:8f:75:66:81:10:a2:d2:73:4e:41:a7: 5c:ea:49:64:15:d1:54:ad:88:0c:db:2b:64:9d:16:55:15:ba: 54:ae:33:9f:5b:50:74:07:17:73:00:a4:ac:01:24:af:05:32: 4f:22:24:76:d6:7e:30:8e:32:82:9d:45:b2:0e:8b:c1:a6:df: d5:71:2d:0c:d2:94:89:a4:45:6d:59:52:3c:30:b0:9f:4f:c9: 62:54:3e:fa:0c:50:4a:1e:62:1a:4f:7b:b8:33:3b:f4:61:2b: 34:c2:dd:d6:0d:dc:b3:76:a5:76:01:0f:37:b6:cf:7a:e4:bd: e5:ea:34:25 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJaQIVn5UINvutOYJfVNT5GknH2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNTA0MjkxOTE1NDJaFw0yNTA1MDIyMjM2NDJaMDMxMTAvBgNV BAMTKDEwRjFCMUFCMDFGNjE2ODdDQkYxOENFMjQ3QTgxMTgzOTc3ODdGRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTbomauCLJ64VPbBrRtqRs/zKw XCKt6168UWhkj6p1NY2KHUOGCJ1Yblom68g22w0LJ4oFtIxkXVBHJ6ZBF0EfDFmz gZIsnnmcY4WrTKdUPjuw0xQucHUSUuEEI6g1It6xwqJyFtmc+XJ/BKV94Et5FH31 San2NwEVwoKy1snpeO8oKfvYrBmN/BfIzf6XyJqpfnTG+vC6O+7hgCKz0ZTqMojY qr4Eio4bxBfnTAvuIzbKhZKB/WuSZZmdWiOfHv6qwI7gfslK9gUlQj9Nym08MX+r ZDUPu2CCg305zKXLT4FD8MEtue1/Ot2dcRRgmZA/Gn2U4cKV4vPAzqrJdHrJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEPGxqwH2FofL8YziR6gRg5d4f9IwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQ5NWMxOWMtMzI2Mi00OGM3LWFm MDItMzdhODM1ZDBhNzc5LzAvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIz REM2MTQyRTVGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH7+JiuFK98dXdSISaQMjUWPl6W+S/oQI520 Yxd3t6qVN+uLuPpCaigLPmKgAQuV8OTZwognGRQws53x8gWBfkW6B6SmuJda8s2O T4I1mrg+JMdqbioQzv6M30dHLXZislxEEEoZf+brDHVX7hWVq7d0JVbdeRwmO6gr TY6LWW+A6T0+DPqPdWaBEKLSc05Bp1zqSWQV0VStiAzbK2SdFlUVulSuM59bUHQH F3MApKwBJK8FMk8iJHbWfjCOMoKdRbIOi8Gm39VxLQzSlImkRW1ZUjwwsJ9PyWJU PvoMUEoeYhpPe7gzO/RhKzTC3dYN3LN2pXYBDze2z3rkveXqNCU= -----END CERTIFICATE-----Generated at Wed Apr 30 03:26:32 2025 by rpki-client