$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft File: 2985976A4B3081770748882703E16497964D05A6.mft (raw, json) Hash identifier: jrGBMXPe/BXneyuy/CAiQYnRPyFM/QGGOV1EkJRqXTo= Subject key identifier: 8C:AC:60:A1:BB:25:B9:10:E4:7B:1B:A7:BC:80:2C:B5:04:03:5B:AF Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6 Certificate serial: 6D0AD14DD46367EE1C40DF64DC7A7065D7B0E9F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft Manifest number: 01B9 Signing time: Tue 29 Apr 2025 03:00:36 +0000 Manifest this update: Tue 29 Apr 2025 02:55:36 +0000 Manifest next update: Fri 02 May 2025 14:15:36 +0000 Files and hashes: 1: 323430333a38303a3a2f33322d3332203d3e20313334363233.roa (hash: To2RtUGQFhlqilx+fqPMxzWWGUOkUvTK0ofRYTXx5FY=) 2: 3130332e3139372e39322e302f32342d3234203d3e20313334363233.roa (hash: FPt98Jlb07JrGQGNjE2/vKY/2MGs525PrXsgLkmv66M=) 3: 2985976A4B3081770748882703E16497964D05A6.crl (hash: j654JrQinTQABMZMdwqL73svpbnAkKrbCsSups8rY6w=) 4: 3130332e3139372e39342e302f32342d3234203d3e20313334363233.roa (hash: ERxIPVPynr8Zqyd/erBxd/JSZglWN0mqL6sn5XfEVLc=) 5: 3130332e3139372e39332e302f32342d3234203d3e20313334363233.roa (hash: BerVZ23TVRI4dwt9lyBc2AUhwZ05yfxMPrju4y+LAeE=) 6: 3130332e3139372e39352e302f32342d3234203d3e20313334363233.roa (hash: rqdaT3dhU4vRh0lUQmFU0b1pAjqoq7sorljrl78YDwk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 14:15:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:0a:d1:4d:d4:63:67:ee:1c:40:df:64:dc:7a:70:65:d7:b0:e9:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985976A4B3081770748882703E16497964D05A6 Validity Not Before: Apr 29 02:55:36 2025 GMT Not After : May 2 14:15:36 2025 GMT Subject: CN=8CAC60A1BB25B910E47B1BA7BC802CB504035BAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f3:33:77:32:64:d1:74:63:7f:31:12:3b:cd: 32:5d:11:8c:af:94:90:da:71:2c:e8:71:e4:83:68: 6a:67:1c:29:90:4a:6a:a1:4e:8b:67:e1:53:b1:3e: 96:66:e6:c3:bb:1a:37:23:8f:18:f6:a1:fe:d3:4c: 44:00:0e:ef:53:68:f5:13:03:f0:c9:6f:06:22:51: 44:25:13:09:3d:ce:f5:c3:53:f8:14:ae:82:f3:cf: 99:71:78:6b:30:91:68:a6:4c:86:bf:cf:6a:68:fa: 15:3f:ae:6b:7e:53:06:12:7c:4a:5a:bd:96:c6:b3: 21:76:87:ea:24:e8:e4:c4:c7:16:b2:40:31:e0:54: 0f:1a:88:1c:d6:d3:8e:62:ff:25:d8:f8:fd:49:2e: 06:4a:81:00:b2:84:a7:71:1b:24:ea:f7:cf:c7:c1: 26:c3:14:81:8b:75:d8:f9:57:a6:3d:b4:22:ce:a8: c8:f0:9d:b0:c5:9c:5f:a8:89:be:20:a0:d3:29:06: a5:8f:eb:8b:e4:dd:d3:e8:34:55:df:e8:56:56:22: d6:34:9d:9d:dc:61:98:34:8b:1e:9f:a3:84:6d:8e: 84:02:3e:eb:23:d5:d5:bd:8b:5d:84:33:54:5f:3e: b0:9d:7f:f6:8b:70:37:c3:ba:ef:0b:37:eb:3c:27: 80:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:AC:60:A1:BB:25:B9:10:E4:7B:1B:A7:BC:80:2C:B5:04:03:5B:AF X509v3 Authority Key Identifier: keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:b1:b8:c5:30:fa:f6:8e:ae:71:c5:12:b2:7f:5a:ed:63:af: 3e:fc:0a:33:2e:b7:54:d9:b6:e7:19:c0:cf:30:a5:5d:9c:4a: ff:dd:80:6c:35:36:4c:b7:98:b5:3f:d7:12:46:7d:37:8a:26: ce:86:f3:ec:91:b2:bc:c4:2c:31:70:b6:2c:45:1e:ce:b3:8f: 75:79:ec:7a:36:46:74:e5:dd:fc:e1:d6:90:8b:e5:d2:dd:c5: d7:e1:bd:45:fd:0a:df:3d:21:1a:4d:ed:4d:07:9c:3d:17:cc: c9:2f:26:e2:c7:c8:63:7f:9b:1f:90:89:3f:a0:e5:c3:b6:91: b3:09:02:9e:67:1b:77:8c:64:d5:e4:51:20:5d:da:cc:6f:f5: 4a:50:49:f2:2a:32:d7:21:f9:7d:fc:1d:0f:03:86:1f:b3:fd: 24:e3:09:18:86:bf:28:01:df:36:50:ae:57:40:16:33:7a:14: 75:b4:79:05:bf:20:25:08:65:4e:34:8e:47:5c:3f:b1:a6:23: 54:6f:ce:59:77:97:d4:64:2c:b4:c4:78:50:05:f1:4c:93:2a: 24:b2:d3:f3:9a:51:59:54:b3:75:c5:8a:bd:93:3d:01:77:03: 3f:db:cf:1c:8b:93:bc:8e:03:8e:b9:66:26:ea:df:6b:0e:67: 9a:db:08:01 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbQrRTdRjZ+4cQN9k3HpwZdew6fMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5 NjREMDVBNjAeFw0yNTA0MjkwMjU1MzZaFw0yNTA1MDIxNDE1MzZaMDMxMTAvBgNV BAMTKDhDQUM2MEExQkIyNUI5MTBFNDdCMUJBN0JDODAyQ0I1MDQwMzVCQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE8zN3MmTRdGN/MRI7zTJdEYyv lJDacSzoceSDaGpnHCmQSmqhTotn4VOxPpZm5sO7Gjcjjxj2of7TTEQADu9TaPUT A/DJbwYiUUQlEwk9zvXDU/gUroLzz5lxeGswkWimTIa/z2po+hU/rmt+UwYSfEpa vZbGsyF2h+ok6OTExxayQDHgVA8aiBzW045i/yXY+P1JLgZKgQCyhKdxGyTq98/H wSbDFIGLddj5V6Y9tCLOqMjwnbDFnF+oib4goNMpBqWP64vk3dPoNFXf6FZWItY0 nZ3cYZg0ix6fo4RtjoQCPusj1dW9i12EM1RfPrCdf/aLcDfDuu8LN+s8J4DnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjKxgobsluRDkexunvIAstQQDW68wHwYDVR0j BBgwFoAUKYWXakswgXcHSIgnA+Fkl5ZNBaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZWQxMDBkZi0wNDQxLTQzODEtYTNmYS01ODdkYjllOWMyZjAvMC8yOTg1OTc2QTRC MzA4MTc3MDc0ODg4MjcwM0UxNjQ5Nzk2NEQwNUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5NjRE MDVBNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2VkMTAwZGYtMDQ0MS00MzgxLWEz ZmEtNTg3ZGI5ZTljMmYwLzAvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0 OTc5NjREMDVBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFOxuMUw+vaOrnHFErJ/Wu1jrz78CjMut1TZ tucZwM8wpV2cSv/dgGw1Nky3mLU/1xJGfTeKJs6G8+yRsrzELDFwtixFHs6zj3V5 7Ho2RnTl3fzh1pCL5dLdxdfhvUX9Ct89IRpN7U0HnD0XzMkvJuLHyGN/mx+QiT+g 5cO2kbMJAp5nG3eMZNXkUSBd2sxv9UpQSfIqMtch+X38HQ8Dhh+z/STjCRiGvygB 3zZQrldAFjN6FHW0eQW/ICUIZU40jkdcP7GmI1Rvzll3l9RkLLTEeFAF8UyTKiSy 0/OaUVlUs3XFir2TPQF3Az/bzxyLk7yOA465Zibq32sOZ5rbCAE= -----END CERTIFICATE-----Generated at Wed Apr 30 12:58:40 2025 by rpki-client