$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft File: 228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft (raw, json) Hash identifier: HxuKaBoyQ2RN8mHwB+p8ClgqVlMrmmCT0Ihkk8FR24w= Subject key identifier: C9:A4:A0:6B:51:36:FA:09:B6:70:BE:96:F7:7E:35:EE:68:3D:99:97 Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Certificate serial: 7DE31F6DA8A0E6AF0B6071D599E43EDA4BBBC767 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft Manifest number: 01A2 Signing time: Mon 28 Apr 2025 19:41:19 +0000 Manifest this update: Mon 28 Apr 2025 19:36:19 +0000 Manifest next update: Thu 01 May 2025 21:41:19 +0000 Files and hashes: 1: 3131392e34372e38382e302f32342d3234203d3e203338353237.roa (hash: gaK9TNDkDAX6rLbicLT8NaMu8dPZqEuVmgkAb8uim8M=) 2: 3132342e3130392e32312e302f32342d3234203d3e203338353237.roa (hash: JF25GsZLyzVMqdMpnO1WYlSsjR6hM621Mtm2BRDUvVE=) 3: 3131392e34372e39352e302f32342d3234203d3e20313530323438.roa (hash: nIrbzR22XSry4Jrw3LIPGv150kbPZD6HPRMENEZHMHw=) 4: 3131392e34372e39302e302f32342d3234203d3e203338353237.roa (hash: 2gYjkNpQS7rIhX41LQ5E9ZRuFubPcLm5+1qbHYEWbNU=) 5: 3132342e3130392e32332e302f32342d3234203d3e203338353237.roa (hash: hSmHQriBgEB6G8euGPo5okmMfhhllZ1AqyrcnX9VlJE=) 6: 32372e3132342e38332e302f32342d3234203d3e20313439343039.roa (hash: ArbJjYu5thYVcTZlpxbtFWhvtqqsI4lH8rKC1gB8oNc=) 7: 3131392e34372e38392e302f32342d3234203d3e203338353237.roa (hash: 2N3BwgIjWHFbTQKqljv/UDzpCDNCSry44iBQjllcOAY=) 8: 228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl (hash: sr6HoKcjEpFR3NAoKlYAtAowMxvXT7NRfoVP+5LaMvU=) 9: 3132342e3130392e32322e302f32342d3234203d3e20313339393439.roa (hash: nFcoITtIiJ8OFT6DwBHGCFY6SRcCiphSoQyOwQxbdew=) 10: 3132342e3130392e32302e302f32342d3234203d3e203338353237.roa (hash: ETJz1GlN0xqgrI/TiDRe3oL2wRqZlR8gI6HL/idn2yc=) 11: 3130332e32352e3130382e302f32342d3234203d3e20313339393439.roa (hash: tDryOwBTBVZxPeCJINJ19f1hs1r6uQY2drXPiyvQ7m8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:41:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e3:1f:6d:a8:a0:e6:af:0b:60:71:d5:99:e4:3e:da:4b:bb:c7:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Validity Not Before: Apr 28 19:36:19 2025 GMT Not After : May 1 21:41:19 2025 GMT Subject: CN=C9A4A06B5136FA09B670BE96F77E35EE683D9997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:46:b8:a4:e0:b7:e1:0b:64:86:53:1c:90:6b: 13:ba:71:66:5c:5b:64:87:e8:9f:76:69:ad:7f:73: d6:3f:e0:d4:84:78:7e:36:17:30:2a:0c:7b:65:8e: 25:29:a0:42:78:41:f2:fe:42:fe:15:38:9c:ed:ab: 1b:3e:04:e4:27:71:47:fc:61:f2:50:ab:22:1b:27: a4:c5:cb:79:44:3c:d4:34:79:a7:ab:5a:65:44:fd: bb:ad:03:fb:0a:da:3d:d7:b2:2a:4e:cb:d0:a7:da: eb:78:68:e9:75:0c:02:61:2c:85:78:8a:21:9f:87: cb:56:76:80:3e:02:5f:71:15:f5:ce:3a:ae:3a:9b: 3d:f1:34:01:8a:ca:a8:76:26:4b:b0:21:57:08:a1: aa:d3:b1:20:49:11:f1:26:05:2f:7b:40:e2:2e:0b: 8d:77:d7:6a:1c:28:e3:6b:39:01:de:bc:a6:a2:a6: f4:e7:1c:b1:32:ba:40:7d:e7:1f:96:dc:f8:42:97: 54:5c:21:42:cb:2a:71:54:31:04:dc:c2:32:de:a3: dd:64:17:29:e9:b5:da:55:b4:cc:c9:97:03:ad:8a: f6:07:a2:9a:ac:18:4e:0a:a5:d7:35:2f:7d:3a:7f: 3c:86:62:4c:6c:f7:ff:92:8c:a4:6a:de:22:c4:63: 24:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:A4:A0:6B:51:36:FA:09:B6:70:BE:96:F7:7E:35:EE:68:3D:99:97 X509v3 Authority Key Identifier: keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:f9:30:ea:a7:7e:20:b2:14:8e:42:f5:d1:ee:45:70:d1:7d: ce:7d:d5:dd:55:8a:3e:81:6c:9c:c0:a8:1d:59:02:9f:bb:64: 42:9f:bd:89:b0:4b:df:cf:12:17:3f:3c:b8:cb:71:14:b4:36: c3:3b:48:a9:d0:6c:40:5b:8b:d2:12:79:cd:a1:5c:c6:77:de: d2:51:62:34:e7:27:af:09:aa:03:24:bd:ab:96:8a:32:b6:83: 6f:9b:71:8d:ec:58:5c:68:0f:54:22:e5:ff:1a:d8:16:6c:e2: 3d:56:e6:47:cc:25:4b:18:62:fd:7c:d1:a5:de:90:bf:59:4d: 91:43:f1:81:c7:37:84:cb:25:30:14:e8:43:78:67:87:f5:e1: fc:32:7c:be:c6:bd:cf:cc:03:00:a4:76:86:2b:92:a3:0e:83: 93:42:a4:e6:04:a7:f1:27:c5:34:b1:01:73:5f:ad:14:32:c8: 8d:4a:2f:ee:1e:58:ff:4a:22:c6:59:38:f6:f4:cd:a5:1c:4b: 3d:be:a9:15:6a:8b:c2:d2:2a:10:15:4b:23:f3:57:1d:eb:64: d9:67:98:77:6b:4d:1b:bb:fb:81:ac:b0:13:c8:9f:85:b6:65: 97:f8:47:68:23:b2:12:8a:21:79:c2:0b:75:36:03:66:66:42: 34:5a:e2:30 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfeMfbaig5q8LYHHVmeQ+2ku7x2cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD RjlBNjQ3MzAeFw0yNTA0MjgxOTM2MTlaFw0yNTA1MDEyMTQxMTlaMDMxMTAvBgNV BAMTKEM5QTRBMDZCNTEzNkZBMDlCNjcwQkU5NkY3N0UzNUVFNjgzRDk5OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1Rrik4LfhC2SGUxyQaxO6cWZc W2SH6J92aa1/c9Y/4NSEeH42FzAqDHtljiUpoEJ4QfL+Qv4VOJztqxs+BOQncUf8 YfJQqyIbJ6TFy3lEPNQ0eaerWmVE/butA/sK2j3XsipOy9Cn2ut4aOl1DAJhLIV4 iiGfh8tWdoA+Al9xFfXOOq46mz3xNAGKyqh2JkuwIVcIoarTsSBJEfEmBS97QOIu C41312ocKONrOQHevKaipvTnHLEyukB95x+W3PhCl1RcIULLKnFUMQTcwjLeo91k FynptdpVtMzJlwOtivYHopqsGE4Kpdc1L306fzyGYkxs9/+SjKRq3iLEYyTzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUyaSga1E2+gm2cL6W93417mg9mZcwHwYDVR0j BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB NjQ3My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzE3ZWZkMmEtMDJhYi00MjAyLTk3 MGYtZjY5OWRmZjk3ZGU1LzAvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VE NTBDRjlBNjQ3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHX5MOqnfiCyFI5C9dHuRXDRfc591d1Vij6B bJzAqB1ZAp+7ZEKfvYmwS9/PEhc/PLjLcRS0NsM7SKnQbEBbi9ISec2hXMZ33tJR YjTnJ68JqgMkvauWijK2g2+bcY3sWFxoD1Qi5f8a2BZs4j1W5kfMJUsYYv180aXe kL9ZTZFD8YHHN4TLJTAU6EN4Z4f14fwyfL7Gvc/MAwCkdoYrkqMOg5NCpOYEp/En xTSxAXNfrRQyyI1KL+4eWP9KIsZZOPb0zaUcSz2+qRVqi8LSKhAVSyPzVx3rZNln mHdrTRu7+4GssBPIn4W2ZZf4R2gjshKKIXnCC3U2A2ZmQjRa4jA= -----END CERTIFICATE-----Generated at Tue Apr 29 16:22:23 2025 by rpki-client