$ rpki-client -vvf repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft File: 3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft (raw, json) Hash identifier: TUX85u38KlH0bHpGZ9ZsJpfymU5l1moNhGpkMMcHwCY= Subject key identifier: A2:1F:1D:2C:12:26:14:A7:18:3F:78:03:67:D4:3C:B5:95:69:6F:D2 Authority key identifier: 3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F Certificate issuer: /CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Certificate serial: 33CA7DD0D3D15F330F80B34E8549351BDC0553CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft Manifest number: 01A8 Signing time: Sun 27 Apr 2025 00:50:53 +0000 Manifest this update: Sun 27 Apr 2025 00:45:53 +0000 Manifest next update: Wed 30 Apr 2025 04:38:53 +0000 Files and hashes: 1: 3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl (hash: jtbe7JFbQbIWAhkqZttI4hAOnDE2mwtyOhQJTiw1wtY=) 2: 3130332e36352e39362e302f32332d3234203d3e203536323539.roa (hash: CZ4K7GFD9Go5aD48WSkhSXI8wxpmYnTQCrXJMjgAzo4=) 3: 3130332e32382e3136332e302f32342d3234203d3e203536323539.roa (hash: wNXvnBOlqkuZ+mDM8d8H+wRf148WwJ/aSIjk47cajS4=) 4: 3130332e31302e3235332e302f32342d3234203d3e203536323539.roa (hash: Y9UwdeMAqthoV4BdpHdzHHfHrHSy2NpCx4uk4sbXYrk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 04:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:ca:7d:d0:d3:d1:5f:33:0f:80:b3:4e:85:49:35:1b:dc:05:53:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Validity Not Before: Apr 27 00:45:53 2025 GMT Not After : Apr 30 04:38:53 2025 GMT Subject: CN=A21F1D2C122614A7183F780367D43CB595696FD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3b:80:aa:1e:97:f4:c8:05:02:89:09:51:83: e9:28:e7:03:32:5c:38:00:d5:75:7f:6c:b6:3d:0b: de:d7:8c:c7:80:40:7c:b9:03:6e:11:8d:7c:05:4a: 0b:6e:3e:62:ae:e0:70:4b:ed:b3:a3:70:13:30:17: 4b:16:0e:7c:11:95:fb:62:af:5e:1a:58:14:fe:ec: 9f:82:8c:38:b6:42:13:59:ad:6e:4b:82:c5:68:b3: bd:66:58:93:a3:d6:49:dd:dc:10:9b:88:ef:e0:11: 30:7a:63:34:f7:71:b0:47:ef:93:f2:be:b7:f7:f1: 2c:96:fc:46:32:b0:1d:b3:75:4b:4b:27:f7:de:21: 9d:0f:42:c7:d6:6c:35:62:37:b4:d8:b0:a7:9a:12: bc:90:1f:3c:68:78:05:1a:64:a7:2e:71:00:26:c1: 84:b3:97:3e:2b:74:ed:bc:76:45:cf:01:2d:5f:69: 0a:39:d6:3b:2c:e4:bb:d1:78:87:83:45:22:7b:1d: 8a:c6:80:4c:50:90:58:56:de:14:34:db:5b:ad:0e: f5:b7:fa:1b:68:ca:20:7c:32:47:37:0d:71:da:c4: 2d:33:34:44:ed:fc:f2:1f:3b:e0:84:9e:b2:af:8b: b3:70:9c:c7:ed:07:b7:08:c4:73:56:e9:95:ad:dc: fd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:1F:1D:2C:12:26:14:A7:18:3F:78:03:67:D4:3C:B5:95:69:6F:D2 X509v3 Authority Key Identifier: keyid:3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:8b:bb:62:b7:aa:a6:84:4d:4a:a4:23:f8:b0:c1:9c:23:b2: c1:3e:68:3e:a0:a6:56:62:d9:f7:c5:3b:e0:cb:c9:15:f2:69: fa:ba:8c:fe:9e:7a:d9:3c:01:fa:65:6f:8b:f1:1e:49:11:28: 22:f6:57:7f:cb:43:85:bf:29:cb:55:84:f6:6f:66:f9:5d:23: 8e:be:78:81:e9:04:10:9f:60:57:20:5c:1d:31:b6:86:7d:b1: ea:47:5f:7a:ad:03:da:04:3f:cf:76:36:8d:76:1e:f2:ab:b1: 4b:0c:c9:d5:5b:d3:e1:c0:17:0f:ea:48:36:82:f3:6d:67:e6: 1a:64:3c:97:a9:51:50:58:ac:1a:ef:54:a0:84:31:34:e4:f5: 40:7a:06:e2:e9:87:81:d1:8e:98:a9:bc:da:05:99:27:39:22: 01:9f:98:8d:cb:43:a9:71:e9:0c:e5:ba:97:71:e9:76:f7:a9: 02:27:f2:34:5c:06:1f:f1:47:57:2e:31:98:4e:d9:bf:0a:aa: 90:a7:86:da:e9:8a:44:c7:75:52:ae:d0:ec:60:3a:68:85:b6: df:4e:d3:f0:bd:ae:ba:f9:ad:2e:6c:d5:95:1f:34:6d:99:1b: 7c:1b:de:a8:ab:8b:b9:a4:b6:32:ce:80:1b:44:a4:39:67:ff: b7:10:02:3f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUM8p90NPRXzMPgLNOhUk1G9wFU80wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4 NUMzNUU0RjAeFw0yNTA0MjcwMDQ1NTNaFw0yNTA0MzAwNDM4NTNaMDMxMTAvBgNV BAMTKEEyMUYxRDJDMTIyNjE0QTcxODNGNzgwMzY3RDQzQ0I1OTU2OTZGRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVO4CqHpf0yAUCiQlRg+ko5wMy XDgA1XV/bLY9C97XjMeAQHy5A24RjXwFSgtuPmKu4HBL7bOjcBMwF0sWDnwRlfti r14aWBT+7J+CjDi2QhNZrW5LgsVos71mWJOj1knd3BCbiO/gETB6YzT3cbBH75Py vrf38SyW/EYysB2zdUtLJ/feIZ0PQsfWbDViN7TYsKeaEryQHzxoeAUaZKcucQAm wYSzlz4rdO28dkXPAS1faQo51jss5LvReIeDRSJ7HYrGgExQkFhW3hQ021utDvW3 +htoyiB8Mkc3DXHaxC0zNETt/PIfO+CEnrKvi7NwnMftB7cIxHNW6ZWt3P2nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoh8dLBImFKcYP3gDZ9Q8tZVpb9IwHwYDVR0j BBgwFoAUPXifr19+vmk4xMcj3NLu14XDXk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDk3MDAzMi0wOGVhLTQ4OTAtYmRiYS02MzA5YTQ5NzkxN2QvMC8zRDc4OUZBRjVG N0VCRTY5MzhDNEM3MjNEQ0QyRUVENzg1QzM1RTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4NUMz NUU0Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGQ5NzAwMzItMDhlYS00ODkwLWJk YmEtNjMwOWE0OTc5MTdkLzAvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVF RDc4NUMzNUU0Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG6Lu2K3qqaETUqkI/iwwZwjssE+aD6gplZi 2ffFO+DLyRXyafq6jP6eetk8Afplb4vxHkkRKCL2V3/LQ4W/KctVhPZvZvldI46+ eIHpBBCfYFcgXB0xtoZ9sepHX3qtA9oEP892No12HvKrsUsMydVb0+HAFw/qSDaC 821n5hpkPJepUVBYrBrvVKCEMTTk9UB6BuLph4HRjpipvNoFmSc5IgGfmI3LQ6lx 6Qzlupdx6Xb3qQIn8jRcBh/xR1cuMZhO2b8KqpCnhtrpikTHdVKu0OxgOmiFtt9O 0/C9rrr5rS5s1ZUfNG2ZG3wb3qiri7mktjLOgBtEpDln/7cQAj8= -----END CERTIFICATE-----Generated at Tue Apr 29 01:47:49 2025 by rpki-client