$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: pS52I55drItF2SzYAKmLaaJZXyuSiRV1MJ0trI7siDM= Subject key identifier: EE:FD:8F:7F:06:0D:97:5E:1D:D0:52:B8:1E:59:51:CA:93:46:97:E6 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 181431E481EC1D6608CFE60B589C3B90A713CEA3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 04D5 Signing time: Sun 27 Apr 2025 11:51:59 +0000 Manifest this update: Sun 27 Apr 2025 11:46:59 +0000 Manifest next update: Wed 30 Apr 2025 14:38:59 +0000 Files and hashes: 1: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: 9pt7JLtOWMCBsJXp8H1J28V9N/OUvx5VflNai/uQZgc=) 2: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: LMlg0YtMMAZTGP6EzKXImD6a6ZjUtLMQ+VabkB5A5lc=) 3: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: 0qE21Kt6IpnYZZlg7hQr47LxrRU64uDpWYckj+dqLjI=) 4: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: 1cZaLW2bYSVuCFR3p6/QnCg+KIF2tEt9ZDlyjUYN2tI=) 5: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: HyMWadhCrBlbrvw7eV4dA67xhQ9znG8zfhfFTeZs2rs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 14:38:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:14:31:e4:81:ec:1d:66:08:cf:e6:0b:58:9c:3b:90:a7:13:ce:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Apr 27 11:46:59 2025 GMT Not After : Apr 30 14:38:59 2025 GMT Subject: CN=EEFD8F7F060D975E1DD052B81E5951CA934697E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:31:6b:b2:08:3f:94:5e:d8:84:f1:7d:42:07: 2d:28:92:b8:75:78:50:90:bf:97:ae:25:aa:88:0c: 9a:35:2f:07:6b:03:7f:e7:66:1d:bb:d7:b4:fa:38: 5b:8c:f5:56:d9:29:af:e0:af:02:00:ed:8f:07:ca: 63:d1:91:96:4e:78:74:a4:51:4f:ac:de:99:99:ee: 73:8d:f0:4e:8f:27:75:a9:8e:5d:01:a3:70:0b:4f: 57:dc:f6:47:11:9c:64:8d:46:c1:5e:71:73:19:9c: 04:fd:10:63:ea:48:20:3c:72:14:01:05:ac:7f:2b: 54:35:b3:dc:b5:a4:c1:7c:ac:a1:ec:02:84:d8:4f: 22:a2:8e:b2:57:e7:55:f7:d4:52:1e:80:a4:f0:57: 3d:77:d9:d9:7e:f1:c1:7f:d7:ac:61:22:24:44:4a: cb:69:3f:4f:62:f0:08:21:8b:78:4a:29:db:26:83: 2f:96:64:e4:ef:c5:d4:df:40:eb:d1:dd:d6:cb:c0: 75:97:29:8f:9e:b8:74:0f:a1:f3:51:6c:9d:39:4a: 19:50:01:a5:2a:99:e6:a6:82:f0:65:3b:25:59:ae: 9c:68:4d:85:d2:46:01:b4:0a:8e:c3:6e:b6:15:54: 13:87:09:c7:37:af:df:93:9e:0d:d9:14:df:9b:29: 96:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:FD:8F:7F:06:0D:97:5E:1D:D0:52:B8:1E:59:51:CA:93:46:97:E6 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:c2:d8:ba:b6:0e:09:6c:1f:f2:23:fe:4d:bd:a7:b9:86:96: e9:9f:0c:65:65:cf:5e:18:79:81:92:fa:6a:a0:c4:b2:8d:43: 04:50:63:00:bc:43:61:0b:dd:25:ca:a6:b8:6d:fe:ac:fc:f2: 43:19:c3:37:26:03:ed:33:13:bf:0d:2a:bd:54:42:f8:79:a6: cd:85:1f:a9:47:17:2a:fc:9a:94:2d:5a:d7:08:48:0f:23:41: c2:bc:79:60:ba:17:f1:b6:fe:2d:a4:7f:1f:b1:b1:99:63:44: 40:39:07:24:ce:3e:fc:de:5c:05:33:1a:2a:07:73:45:a5:9c: bc:e7:91:78:e4:2e:10:64:61:16:7c:4a:ed:33:1e:3a:4c:8f: 2b:8c:6f:40:6e:a4:e9:63:b5:c6:6d:e6:5e:cc:e3:12:0e:d5: a7:f3:1a:36:ac:c0:f4:d2:f8:2f:22:87:c9:d9:56:da:38:bb: 95:ce:6d:45:c3:b1:d0:03:4c:e6:59:1e:43:93:30:ff:83:98: 4a:35:45:79:8a:43:e1:73:b6:99:9a:69:b7:ee:d4:18:e9:8e: a0:a4:f1:5a:48:e8:a7:e0:74:51:d0:8c:c5:a9:b5:eb:50:09: e8:a5:fd:0d:17:92:1e:b5:97:d8:4f:04:7b:ac:79:42:aa:58: 47:d3:31:b7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGBQx5IHsHWYIz+YLWJw7kKcTzqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNTA0MjcxMTQ2NTlaFw0yNTA0MzAxNDM4NTlaMDMxMTAvBgNV BAMTKEVFRkQ4RjdGMDYwRDk3NUUxREQwNTJCODFFNTk1MUNBOTM0Njk3RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1MWuyCD+UXtiE8X1CBy0okrh1 eFCQv5euJaqIDJo1LwdrA3/nZh2717T6OFuM9VbZKa/grwIA7Y8HymPRkZZOeHSk UU+s3pmZ7nON8E6PJ3Wpjl0Bo3ALT1fc9kcRnGSNRsFecXMZnAT9EGPqSCA8chQB Bax/K1Q1s9y1pMF8rKHsAoTYTyKijrJX51X31FIegKTwVz132dl+8cF/16xhIiRE SstpP09i8Aghi3hKKdsmgy+WZOTvxdTfQOvR3dbLwHWXKY+euHQPofNRbJ05ShlQ AaUqmeamgvBlOyVZrpxoTYXSRgG0Co7DbrYVVBOHCcc3r9+Tng3ZFN+bKZZBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7v2PfwYNl14d0FK4HllRypNGl+YwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABfC2Lq2DglsH/Ij/k29p7mGlumfDGVlz14Y eYGS+mqgxLKNQwRQYwC8Q2EL3SXKprht/qz88kMZwzcmA+0zE78NKr1UQvh5ps2F H6lHFyr8mpQtWtcISA8jQcK8eWC6F/G2/i2kfx+xsZljREA5ByTOPvzeXAUzGioH c0WlnLznkXjkLhBkYRZ8Su0zHjpMjyuMb0BupOljtcZt5l7M4xIO1afzGjaswPTS +C8ih8nZVto4u5XObUXDsdADTOZZHkOTMP+DmEo1RXmKQ+Fztpmaabfu1BjpjqCk 8VpI6KfgdFHQjMWptetQCeil/Q0Xkh61l9hPBHuseUKqWEfTMbc= -----END CERTIFICATE-----Generated at Tue Apr 29 09:18:42 2025 by rpki-client