$ rpki-client -vvf repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft File: F389B5570A768F4811B6377427EE5A9710A3078F.mft (raw, json) Hash identifier: mSFOnZ9OAxavGYlsku6mKhAG66iOXF0VMjk0gHe1iBM= Subject key identifier: FE:4C:44:8C:A5:06:E2:E0:CA:8E:1D:02:DE:C4:7E:C6:D0:79:68:5B Authority key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F Certificate issuer: /CN=F389B5570A768F4811B6377427EE5A9710A3078F Certificate serial: 2526F01092634E03F7DBDB105001A014C474DFF3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft Manifest number: 0311 Signing time: Sun 27 Apr 2025 20:50:50 +0000 Manifest this update: Sun 27 Apr 2025 20:45:50 +0000 Manifest next update: Thu 01 May 2025 05:23:50 +0000 Files and hashes: 1: F389B5570A768F4811B6377427EE5A9710A3078F.crl (hash: uUhtvKveODaTiz4pDgBvHB+OhKw6lOTlW/A6OrhY8nY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 05:23:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:26:f0:10:92:63:4e:03:f7:db:db:10:50:01:a0:14:c4:74:df:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F389B5570A768F4811B6377427EE5A9710A3078F Validity Not Before: Apr 27 20:45:50 2025 GMT Not After : May 1 05:23:50 2025 GMT Subject: CN=FE4C448CA506E2E0CA8E1D02DEC47EC6D079685B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:82:b7:a7:cd:4e:9b:ad:4d:9b:c6:1e:54:0c: 99:60:d9:04:7b:0f:d5:a4:4e:1f:70:42:ba:9e:82: 8d:80:ab:d9:b8:ab:70:a1:de:6d:cc:60:57:ad:ea: 43:db:e7:2f:08:7e:42:ee:6e:b5:f1:0c:00:ff:b3: 57:b7:0e:39:85:93:02:19:94:ff:aa:6c:72:28:84: 2c:51:cf:9f:42:79:7b:2b:33:81:96:1a:79:9e:b9: 8e:b7:ef:5e:a6:c0:f8:6d:af:ef:47:40:f0:91:ad: 44:f7:da:3a:1b:11:56:86:03:2c:d0:5d:36:c4:87: d4:c6:a0:cf:db:ea:19:e2:39:26:d9:d9:91:5b:f3: dc:ae:a8:0e:c5:c4:80:16:db:55:1e:ea:5a:c2:ce: ac:da:b9:1f:ca:42:61:32:4f:f8:3b:03:a3:0f:1e: bd:c1:e8:eb:be:6b:1d:c1:df:3a:1e:f9:5f:63:57: 8e:a5:a3:66:2b:8a:18:f0:bc:cd:a3:14:f2:7b:df: 87:04:32:02:c0:1a:32:48:81:92:d5:dd:cc:82:e3: 24:6d:6b:7b:5b:71:fb:4a:92:13:ca:cd:e6:ea:77: 04:33:1c:24:7f:eb:51:5e:ed:ea:43:21:63:09:d8: 24:b2:6a:15:d0:1d:58:8f:ad:14:80:9e:70:40:8b: f3:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:4C:44:8C:A5:06:E2:E0:CA:8E:1D:02:DE:C4:7E:C6:D0:79:68:5B X509v3 Authority Key Identifier: keyid:F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d2:2e:25:9d:9e:71:67:d1:cc:2f:dd:37:51:be:f6:65:08:c6: b8:43:4f:56:72:a4:41:1f:f6:84:5a:e8:a3:2b:c2:25:47:3f: df:2e:63:54:98:3a:19:d2:35:e2:55:02:12:0a:c2:5e:23:9c: aa:93:d1:f3:8a:bd:49:a2:ea:bb:95:1e:32:85:19:f1:02:a4: b7:0b:4d:4a:b1:7a:52:a9:76:72:ad:0a:a1:8a:6c:0a:9e:d8: b2:2e:c1:c8:25:0c:b5:77:a5:13:35:14:b4:72:50:e8:9f:69: de:ed:ee:f0:d0:2b:a5:bd:bb:ae:da:c4:44:8d:05:5f:e9:c5: a6:99:f8:f1:ec:91:13:cd:ed:ba:b9:38:a0:6c:b7:3f:db:b9: af:d0:a5:f9:ca:46:d7:a7:4e:db:b0:7a:10:3d:58:d3:e9:1c: 9c:1a:de:18:66:6b:d6:1b:66:82:ee:f6:95:e7:13:6f:c1:3d: f7:6c:14:0e:3a:f1:67:32:36:8d:fb:2f:b2:2a:c9:16:ac:4d: 62:c0:02:4f:29:1b:37:fd:58:e2:4d:a4:d8:15:4f:4b:d3:42: a0:00:29:18:21:70:71:be:4e:9d:70:99:89:04:9d:5d:20:fe: 9b:ad:60:de:65:35:5f:4f:ea:53:c9:84:c3:13:81:3c:43:ea: b4:09:73:a7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJSbwEJJjTgP329sQUAGgFMR03/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcx MEEzMDc4RjAeFw0yNTA0MjcyMDQ1NTBaFw0yNTA1MDEwNTIzNTBaMDMxMTAvBgNV BAMTKEZFNEM0NDhDQTUwNkUyRTBDQThFMUQwMkRFQzQ3RUM2RDA3OTY4NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCagrenzU6brU2bxh5UDJlg2QR7 D9WkTh9wQrqego2Aq9m4q3Ch3m3MYFet6kPb5y8IfkLubrXxDAD/s1e3DjmFkwIZ lP+qbHIohCxRz59CeXsrM4GWGnmeuY63716mwPhtr+9HQPCRrUT32jobEVaGAyzQ XTbEh9TGoM/b6hniOSbZ2ZFb89yuqA7FxIAW21Ue6lrCzqzauR/KQmEyT/g7A6MP Hr3B6Ou+ax3B3zoe+V9jV46lo2YrihjwvM2jFPJ734cEMgLAGjJIgZLV3cyC4yRt a3tbcftKkhPKzebqdwQzHCR/61Fe7epDIWMJ2CSyahXQHViPrRSAnnBAi/NTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/kxEjKUG4uDKjh0C3sR+xtB5aFswHwYDVR0j BBgwFoAU84m1Vwp2j0gRtjd0J+5alxCjB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMC9GMzg5QjU1NzBB NzY4RjQ4MTFCNjM3NzQyN0VFNUE5NzEwQTMwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcxMEEz MDc4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2M4YWIzZTAtY2E2OC00MmY2LTk4 ZjYtNjU0YTI1MmE4NjQ4LzAvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVB OTcxMEEzMDc4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANIuJZ2ecWfRzC/dN1G+9mUIxrhDT1ZypEEf 9oRa6KMrwiVHP98uY1SYOhnSNeJVAhIKwl4jnKqT0fOKvUmi6ruVHjKFGfECpLcL TUqxelKpdnKtCqGKbAqe2LIuwcglDLV3pRM1FLRyUOifad7t7vDQK6W9u67axESN BV/pxaaZ+PHskRPN7bq5OKBstz/bua/QpfnKRtenTtuwehA9WNPpHJwa3hhma9Yb ZoLu9pXnE2/BPfdsFA468WcyNo37L7IqyRasTWLAAk8pGzf9WOJNpNgVT0vTQqAA KRghcHG+Tp1wmYkEnV0g/putYN5lNV9P6lPJhMMTgTxD6rQJc6c= -----END CERTIFICATE-----Generated at Tue Apr 29 09:29:20 2025 by rpki-client