$ rpki-client -vvf repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft File: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft (raw, json) Hash identifier: twyh8gQum5nvl7lryoisbb5wD+5zHlJopSOJvPy3d0s= Subject key identifier: 84:72:69:EB:90:C7:C2:9C:0B:78:B7:E3:98:94:93:B3:38:9E:B5:82 Authority key identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 Certificate issuer: /CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Certificate serial: 044299912C46ECFD5E72D4124266CD35B44851C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft Manifest number: 04C5 Signing time: Fri 25 Apr 2025 21:30:56 +0000 Manifest this update: Fri 25 Apr 2025 21:25:56 +0000 Manifest next update: Tue 29 Apr 2025 01:22:56 +0000 Files and hashes: 1: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl (hash: fLqWxrd+tXWJ2+LcOzA+WH3mOqCQ8Te8fztQYizC+jQ=) 2: 3130332e33312e3235302e302f32342d3234203d3e203538343737.roa (hash: ljwF6ITVZZqVtcMOWEgbQb3tCP2RBo+I4AZDViUqEJs=) 3: 3130332e32382e3134382e302f32342d3234203d3e203538343737.roa (hash: FXD9Xl9HQjE5rhTpZsmUh0+M9Gq4Zq3tqVQkODiT8rI=) 4: 34352e36342e39372e302f32342d3234203d3e20313335333630.roa (hash: 9WCeU5uurKdIma/RjBrGY6SbYw575daktwtbDsB0hn4=) 5: 34352e36342e39362e302f32342d3234203d3e203538343737.roa (hash: Gk747J2jBNpEXtir02tl58RV5f1YzhrWN3iKgxbQ7KE=) 6: 34352e36342e39392e302f32342d3234203d3e203538343737.roa (hash: H7qdxG0CJs/yYiQYilPVBOjCY0BNB2JobVkWTO7DC7g=) 7: 323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa (hash: eL7Y1izm4AtK8cu6bXuRjAi2YgKXj79o6hvPdbF1OWQ=) 8: 3130332e32382e3134392e302f32342d3234203d3e203538343737.roa (hash: hPcgJjVDE9m3tBKtqfCMvkuvUEnp8UYizUZsK3IRz8k=) 9: 3130332e33312e3235312e302f32342d3234203d3e203538343737.roa (hash: pBwebMpuYYJXTb5pShB2CNNWZl6DNw4TGc/uma6DMgE=) 10: 34352e36342e39382e302f32342d3234203d3e203538343737.roa (hash: U+Nn2r5Sn/4yz+Dw8s2J+Cn+SRVePHMvbt6ShZoiqDk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 01:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:42:99:91:2c:46:ec:fd:5e:72:d4:12:42:66:cd:35:b4:48:51:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Validity Not Before: Apr 25 21:25:56 2025 GMT Not After : Apr 29 01:22:56 2025 GMT Subject: CN=847269EB90C7C29C0B78B7E3989493B3389EB582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a9:b6:c3:81:24:68:5a:b3:1b:15:55:61:4d: 6b:1b:36:13:d0:ba:88:f8:ee:83:90:a1:ab:81:0d: dc:f8:8b:d3:30:0e:38:7e:6e:cf:db:8b:99:8a:f8: 73:ec:fc:78:f3:3c:e9:b7:6d:7b:a8:9e:e6:85:14: 36:21:fd:96:71:47:ab:77:d0:b3:a7:b1:b3:13:17: 0a:1f:9d:7d:ef:91:2d:e6:54:53:da:13:92:c4:49: 02:b7:a3:16:6a:b7:ce:de:af:7b:ae:37:cd:73:d7: 88:f7:d6:24:66:40:b2:42:0b:b9:39:51:28:aa:05: d3:37:9a:c0:fa:6d:ca:ec:12:8a:32:29:fd:e6:76: 70:b8:65:2e:d3:6e:e4:e8:e8:b7:58:28:71:ef:28: 4f:63:ff:64:4f:47:66:42:94:8f:78:6f:eb:3d:b0: 0a:2f:24:14:5c:ae:3c:7e:3c:8e:3c:c1:c0:c4:72: 55:db:18:c9:12:d4:80:e8:d7:16:55:a3:88:f9:07: 8d:3b:91:5a:53:6e:ac:a0:5a:5c:9a:cf:60:59:10: dc:8d:4b:3f:97:74:da:02:50:8f:a8:02:29:d0:38: d9:f5:0a:4f:3d:9a:96:c7:fb:36:e5:26:38:df:c2: ef:be:70:67:2b:3a:8e:e5:2a:29:20:6e:3c:8f:18: a2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:72:69:EB:90:C7:C2:9C:0B:78:B7:E3:98:94:93:B3:38:9E:B5:82 X509v3 Authority Key Identifier: keyid:10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:16:e7:56:54:e8:95:e3:71:dc:d5:c9:07:80:31:b7:d8:bb: 94:ea:c2:c2:85:ca:8c:3c:eb:50:1c:95:4c:8f:8d:5e:2c:6f: cb:09:15:19:db:08:09:87:6f:18:dd:aa:59:33:52:63:16:52: 76:cf:ed:ce:c0:2c:94:31:73:04:3d:38:16:cc:08:e2:bc:cf: 87:11:da:22:b2:2e:66:b6:4c:67:6f:eb:17:93:e0:10:05:26: 1a:99:9c:23:c5:8d:63:95:36:03:ba:49:da:69:f8:66:52:8c: 99:4b:37:60:6a:9c:d2:8f:a8:dd:af:ae:c2:66:30:16:7b:89: 59:8e:c6:02:3d:99:21:dc:7b:c4:3a:69:d3:65:cb:94:2e:cb: d2:21:12:6b:5a:d7:32:a1:ca:99:3d:79:37:f7:46:5e:dc:7b: 93:2d:63:24:fc:a4:7e:80:20:92:4b:6d:24:39:71:c2:e2:14: 1a:9d:9d:4c:9e:12:c0:4b:8c:09:c9:4d:8a:4e:aa:24:c3:4c: f4:59:08:88:7c:46:6c:ba:18:b0:fc:31:ff:73:a5:12:5b:da: 82:56:91:b9:23:1a:a8:50:28:fa:77:fb:0b:28:46:70:d1:a3: aa:88:a3:22:76:eb:02:12:80:cb:19:65:9d:e2:0b:4a:c0:75: cb:a8:8b:c3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBEKZkSxG7P1ectQSQmbNNbRIUccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQy N0MxOTFBNjAeFw0yNTA0MjUyMTI1NTZaFw0yNTA0MjkwMTIyNTZaMDMxMTAvBgNV BAMTKDg0NzI2OUVCOTBDN0MyOUMwQjc4QjdFMzk4OTQ5M0IzMzg5RUI1ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNqbbDgSRoWrMbFVVhTWsbNhPQ uoj47oOQoauBDdz4i9MwDjh+bs/bi5mK+HPs/HjzPOm3bXuonuaFFDYh/ZZxR6t3 0LOnsbMTFwofnX3vkS3mVFPaE5LESQK3oxZqt87er3uuN81z14j31iRmQLJCC7k5 USiqBdM3msD6bcrsEooyKf3mdnC4ZS7TbuTo6LdYKHHvKE9j/2RPR2ZClI94b+s9 sAovJBRcrjx+PI48wcDEclXbGMkS1IDo1xZVo4j5B407kVpTbqygWlyaz2BZENyN Sz+XdNoCUI+oAinQONn1Ck89mpbH+zblJjjfwu++cGcrOo7lKikgbjyPGKLHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhHJp65DHwpwLeLfjmJSTszietYIwHwYDVR0j BBgwFoAUEMoXdu+orzUpLnauKwnCNCfBkaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmM2YWEwMy0xYjRkLTQzOGUtYTlmMy1lZmVhYWU2YjA5MjEvMC8xMENBMTc3NkVG QThBRjM1MjkyRTc2QUUyQjA5QzIzNDI3QzE5MUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQyN0Mx OTFBNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMy MzQyN0MxOTFBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIwW51ZU6JXjcdzVyQeAMbfYu5TqwsKFyow8 61AclUyPjV4sb8sJFRnbCAmHbxjdqlkzUmMWUnbP7c7ALJQxcwQ9OBbMCOK8z4cR 2iKyLma2TGdv6xeT4BAFJhqZnCPFjWOVNgO6Sdpp+GZSjJlLN2BqnNKPqN2vrsJm MBZ7iVmOxgI9mSHce8Q6adNly5Quy9IhEmta1zKhypk9eTf3Rl7ce5MtYyT8pH6A IJJLbSQ5ccLiFBqdnUyeEsBLjAnJTYpOqiTDTPRZCIh8Rmy6GLD8Mf9zpRJb2oJW kbkjGqhQKPp3+wsoRnDRo6qIoyJ26wISgMsZZZ3iC0rAdcuoi8M= -----END CERTIFICATE-----Generated at Sun Apr 27 22:20:17 2025 by rpki-client