$ rpki-client -vvf repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft File: 2CCC85BF6CCD365701EFA75EE416D234F861385B.mft (raw, json) Hash identifier: nH1aL4hEzebiU01ztVxy2JQ3hv1W8/8e7kUgKjGykn8= Subject key identifier: 81:AA:D9:F1:C6:2E:9C:76:1E:9F:CD:F1:C4:00:F8:58:29:00:9B:90 Authority key identifier: 2C:CC:85:BF:6C:CD:36:57:01:EF:A7:5E:E4:16:D2:34:F8:61:38:5B Certificate issuer: /CN=2CCC85BF6CCD365701EFA75EE416D234F861385B Certificate serial: 7F3E5C9E7C1E56445A5800F1052B38FD9B44C618 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft Manifest number: 7C Signing time: Sat 26 Apr 2025 16:22:09 +0000 Manifest this update: Sat 26 Apr 2025 16:17:09 +0000 Manifest next update: Tue 29 Apr 2025 16:45:09 +0000 Files and hashes: 1: 2CCC85BF6CCD365701EFA75EE416D234F861385B.crl (hash: c80BiNPZDwbIQAqnJtJVj8NOu9m027ecNzR/RqU8WmA=) 2: 3136302e32352e3231382e302f32342d3234203d3e20313533303836.roa (hash: Mr9+qsjEnJb2cnSB3AyArFy2+SWtmXNIU1+g9FxOCh0=) 3: 3136302e32352e3231392e302f32342d3234203d3e20313533303836.roa (hash: JTPBl2xXnGWTl8ZrptZDVbUzFDyRS3/D40BYMh+0i4U=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.crl rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 16:45:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:3e:5c:9e:7c:1e:56:44:5a:58:00:f1:05:2b:38:fd:9b:44:c6:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CCC85BF6CCD365701EFA75EE416D234F861385B Validity Not Before: Apr 26 16:17:09 2025 GMT Not After : Apr 29 16:45:09 2025 GMT Subject: CN=81AAD9F1C62E9C761E9FCDF1C400F85829009B90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:86:04:cd:1b:15:9a:db:10:84:ed:49:21:58: e8:85:4a:0a:d8:2c:28:d8:2a:98:3a:ad:b9:68:c0: 97:34:05:0c:11:fe:18:02:83:0c:e3:04:8e:52:c9: bc:df:a8:3b:88:dc:82:70:fe:a3:22:f4:34:a6:75: 55:3a:ab:e8:d3:ce:9f:e8:8e:a7:fe:66:88:58:90: 4f:e9:3d:fe:ec:8b:cd:83:e6:44:95:6b:c3:98:b0: 3e:0f:cc:a1:af:09:9a:4d:98:31:37:34:2e:c7:41: 1c:01:bd:a2:68:24:3e:cc:30:f7:7d:66:5a:ad:a9: 46:2b:d7:ec:67:a6:f7:c7:95:4e:03:a0:eb:d4:00: a9:a5:90:4f:1e:0d:2c:79:50:3b:40:94:a8:04:65: df:c6:d3:6c:50:2a:97:dc:9d:89:b0:ec:ec:7b:2f: 8d:64:5d:3d:94:db:e7:c5:12:71:a6:a9:33:f0:db: b1:6d:2c:bc:be:03:19:5b:43:b1:69:4e:44:b6:0a: ef:a9:ea:cf:dc:48:67:e2:94:f4:74:3c:eb:17:74: 8d:df:ae:30:dd:08:4f:d6:ea:37:bb:61:5b:b5:9f: 03:b3:f2:cf:15:cf:96:2e:f5:98:3b:d2:a5:9a:2d: 7e:95:d8:61:d0:0d:81:49:03:d6:0b:1b:0c:af:95: 40:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:AA:D9:F1:C6:2E:9C:76:1E:9F:CD:F1:C4:00:F8:58:29:00:9B:90 X509v3 Authority Key Identifier: keyid:2C:CC:85:BF:6C:CD:36:57:01:EF:A7:5E:E4:16:D2:34:F8:61:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:59:9a:03:48:6e:4e:e2:a7:49:f8:78:99:8e:1b:12:19:48: bc:e8:9e:05:3f:38:04:ba:5a:01:23:07:4f:4f:48:17:a6:1e: 0e:8a:b4:f7:b0:c0:8e:d2:85:fa:9b:9c:de:ce:6c:b4:fa:c7: e8:d3:d1:37:97:cf:26:68:ca:61:a3:df:de:9b:d2:1c:d5:c7: e0:d0:ec:46:73:25:47:24:16:af:75:51:6b:16:fc:9a:fc:57: 1e:3d:99:89:8e:e5:d3:a8:a1:73:2a:78:08:18:d2:4f:52:d8: 1c:a8:c5:b3:db:04:71:eb:d3:c0:00:5c:86:56:60:3c:4f:0e: 0f:29:6d:ab:db:b8:2e:02:07:a4:06:26:27:7b:51:b5:86:57: 7c:7b:37:af:1c:d5:2c:6b:8d:17:3f:c1:b8:bc:7b:30:bf:10: 31:34:6b:e7:b0:de:a0:4d:61:bc:1c:60:1a:b7:bd:5c:40:fa: 14:96:05:fa:31:b3:ae:58:99:61:3b:1e:2d:fb:00:70:5e:fc: ac:b1:4c:63:1c:1f:ca:0f:e6:e4:25:28:95:3a:65:48:9b:bf: 06:b2:38:47:2f:af:40:1f:44:89:d2:a5:3f:7c:fc:1f:e7:7a: 1e:e4:32:1b:f7:63:c7:c6:ce:e1:08:37:1d:46:ff:d2:60:22: a6:a1:bb:20 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfz5cnnweVkRaWADxBSs4/ZtExhgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQyMzRG ODYxMzg1QjAeFw0yNTA0MjYxNjE3MDlaFw0yNTA0MjkxNjQ1MDlaMDMxMTAvBgNV BAMTKDgxQUFEOUYxQzYyRTlDNzYxRTlGQ0RGMUM0MDBGODU4MjkwMDlCOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxhgTNGxWa2xCE7UkhWOiFSgrY LCjYKpg6rblowJc0BQwR/hgCgwzjBI5SybzfqDuI3IJw/qMi9DSmdVU6q+jTzp/o jqf+ZohYkE/pPf7si82D5kSVa8OYsD4PzKGvCZpNmDE3NC7HQRwBvaJoJD7MMPd9 ZlqtqUYr1+xnpvfHlU4DoOvUAKmlkE8eDSx5UDtAlKgEZd/G02xQKpfcnYmw7Ox7 L41kXT2U2+fFEnGmqTPw27FtLLy+AxlbQ7FpTkS2Cu+p6s/cSGfilPR0POsXdI3f rjDdCE/W6je7YVu1nwOz8s8Vz5Yu9Zg70qWaLX6V2GHQDYFJA9YLGwyvlUCVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgarZ8cYunHYen83xxAD4WCkAm5AwHwYDVR0j BBgwFoAULMyFv2zNNlcB76de5BbSNPhhOFswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWYwN2YxOC01YzQ5LTQxMjktYWE1My03MDg1Y2NkNTdiNjMvMC8yQ0NDODVCRjZD Q0QzNjU3MDFFRkE3NUVFNDE2RDIzNEY4NjEzODVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQyMzRGODYx Mzg1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FmMDdmMTgtNWM0OS00MTI5LWFh NTMtNzA4NWNjZDU3YjYzLzAvMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQy MzRGODYxMzg1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK5ZmgNIbk7ip0n4eJmOGxIZSLzongU/OAS6 WgEjB09PSBemHg6KtPewwI7ShfqbnN7ObLT6x+jT0TeXzyZoymGj396b0hzVx+DQ 7EZzJUckFq91UWsW/Jr8Vx49mYmO5dOooXMqeAgY0k9S2ByoxbPbBHHr08AAXIZW YDxPDg8pbavbuC4CB6QGJid7UbWGV3x7N68c1SxrjRc/wbi8ezC/EDE0a+ew3qBN YbwcYBq3vVxA+hSWBfoxs65YmWE7Hi37AHBe/KyxTGMcH8oP5uQlKJU6ZUibvway OEcvr0AfRInSpT98/B/neh7kMhv3Y8fGzuEINx1G/9JgIqahuyA= -----END CERTIFICATE-----Generated at Mon Apr 28 01:09:34 2025 by rpki-client