$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft File: AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft (raw, json) Hash identifier: Q2wSImxs2yHjKS7FG5/13NKGIKUAo1o6AXRl4QuvGgw= Subject key identifier: C0:74:59:7A:C0:D8:10:9F:A5:00:06:13:22:37:14:43:4F:59:F8:07 Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 2C7F273BD59D7DA3E4A08BF0E23938FB30E7D861 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft Manifest number: 04CC Signing time: Mon 28 Apr 2025 18:01:05 +0000 Manifest this update: Mon 28 Apr 2025 17:56:05 +0000 Manifest next update: Thu 01 May 2025 23:18:05 +0000 Files and hashes: 1: AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl (hash: DuVrnZK9EhnCyhoY6FVwvuEg081hqsSVeyv37ddxoMY=) 2: 323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa (hash: Y4jHaeY4QidDK/340ECCQ/4I5FQ55qG4YZL2AdrbzPk=) 3: 3130332e31352e3232362e302f32342d3234203d3e20313336303532.roa (hash: sJLiD+0ejmoupyMGVx6CirdLJG++4SFUftxtfOcobHI=) 4: 3130332e35352e33362e302f32322d3234203d3e20313336303532.roa (hash: cI0UbQGK9a5poG2NKDvPV81pHS2ve8ooKRdlBJ4PSfs=) 5: 3130332e32382e35322e302f32332d3234203d3e20313336303532.roa (hash: u8Au9LMYXcHGihCwMXA0rXB8fgKyjCiixCQrB4ejbv0=) 6: 3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa (hash: gdiZ+9B8KYHztol8GGjqhlAvnuN313/tNDfyNie4eG4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:18:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:7f:27:3b:d5:9d:7d:a3:e4:a0:8b:f0:e2:39:38:fb:30:e7:d8:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Apr 28 17:56:05 2025 GMT Not After : May 1 23:18:05 2025 GMT Subject: CN=C074597AC0D8109FA5000613223714434F59F807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:80:05:c5:cb:fe:29:ed:a3:5b:da:c2:ed:7b: 38:6c:4e:de:58:b8:75:7f:55:db:b6:c0:1d:b3:22: 5b:57:86:2f:9d:1c:1a:f1:66:58:af:81:32:e8:ba: 92:e3:aa:b9:d6:cd:e8:43:5a:80:2a:2b:9a:ec:15: aa:7c:1e:29:9d:97:84:54:4f:58:12:a2:50:11:5b: 12:99:54:52:1d:57:7c:cf:a9:29:01:cd:82:fc:69: ee:97:8c:22:a3:c3:32:ca:01:61:cf:c5:aa:d0:3a: 79:3b:47:3f:3b:70:bf:18:e5:30:bd:70:32:42:9a: 0d:a0:f6:ac:30:f9:58:47:47:ee:8f:91:1b:c8:d8: 1e:a8:59:f2:67:84:a7:75:9e:9f:dd:d8:20:99:56: 0c:76:91:bc:0a:e7:66:c0:b1:de:78:75:bc:02:8c: d9:6c:98:e8:00:92:10:75:28:a4:54:6a:d9:ad:93: 85:76:fb:69:d0:77:d1:01:d8:52:bc:dc:5c:ba:31: 16:32:de:3c:cc:f7:97:2b:cc:99:2e:76:ec:a8:b1: a4:a9:70:1f:26:fa:8d:b0:e3:ca:27:f9:8e:57:07: 41:a0:af:05:7b:eb:93:76:49:c1:7c:09:42:09:e6: 19:cb:e7:fb:7d:d4:b2:2b:16:2a:68:b5:62:4e:12: 7f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:74:59:7A:C0:D8:10:9F:A5:00:06:13:22:37:14:43:4F:59:F8:07 X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:3e:52:c6:41:82:ec:06:8e:cc:02:a9:5b:2b:2d:68:c2:e9: 29:a5:ec:af:5b:8c:95:2b:69:a4:b6:90:e5:8a:15:d9:1b:66: 7c:88:1f:d0:40:30:9c:bd:1f:74:6c:8d:3b:b9:17:23:3b:8e: 6c:84:01:1c:82:1e:a1:30:bc:aa:73:24:ef:4f:a5:30:a6:78: 50:0b:90:61:a8:5b:82:51:55:56:2e:cb:ff:d3:24:c9:94:3c: 40:bf:ee:1b:14:b2:aa:f6:4e:49:08:5f:d2:20:79:f0:bc:fe: fd:36:27:51:a3:79:fd:59:c2:27:da:97:5d:79:a9:a5:cf:c7: 01:22:03:be:45:c5:8a:5b:ad:67:bb:b6:ce:83:59:78:5e:81: ef:82:cd:f9:79:89:28:83:55:bd:fd:c0:96:cb:39:48:6e:6a: 2d:eb:f7:8d:80:d7:93:b0:97:7d:3c:ce:04:fe:a9:ce:4b:2c: 0e:75:ed:6d:d3:dc:87:ea:58:c0:84:83:41:12:b5:aa:fd:23: 37:f4:fd:cf:aa:99:7e:4e:2c:46:bd:aa:da:1e:0a:87:dc:7b: 80:b1:cb:a7:a2:43:e8:b3:bb:31:21:51:15:e0:e5:79:81:55: 2b:3e:b9:3b:f1:2e:84:6d:4a:6c:48:18:84:07:36:bd:2f:eb: 3e:fb:b3:d7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULH8nO9WdfaPkoIvw4jk4+zDn2GEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yNTA0MjgxNzU2MDVaFw0yNTA1MDEyMzE4MDVaMDMxMTAvBgNV BAMTKEMwNzQ1OTdBQzBEODEwOUZBNTAwMDYxMzIyMzcxNDQzNEY1OUY4MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDgAXFy/4p7aNb2sLtezhsTt5Y uHV/Vdu2wB2zIltXhi+dHBrxZlivgTLoupLjqrnWzehDWoAqK5rsFap8Himdl4RU T1gSolARWxKZVFIdV3zPqSkBzYL8ae6XjCKjwzLKAWHPxarQOnk7Rz87cL8Y5TC9 cDJCmg2g9qww+VhHR+6PkRvI2B6oWfJnhKd1np/d2CCZVgx2kbwK52bAsd54dbwC jNlsmOgAkhB1KKRUatmtk4V2+2nQd9EB2FK83Fy6MRYy3jzM95crzJkuduyosaSp cB8m+o2w48on+Y5XB0GgrwV765N2ScF8CUIJ5hnL5/t91LIrFipotWJOEn8bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwHRZesDYEJ+lAAYTIjcUQ09Z+AcwHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTJhYzBjYTUtNWNlNy00ZTZlLTlm ZmYtNzIxM2VmMWVmMzY0LzAvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJE QTIxMDZBNTk0Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMI+UsZBguwGjswCqVsrLWjC6Sml7K9bjJUr aaS2kOWKFdkbZnyIH9BAMJy9H3RsjTu5FyM7jmyEARyCHqEwvKpzJO9PpTCmeFAL kGGoW4JRVVYuy//TJMmUPEC/7hsUsqr2TkkIX9IgefC8/v02J1Gjef1Zwifal115 qaXPxwEiA75FxYpbrWe7ts6DWXhege+Czfl5iSiDVb39wJbLOUhuai3r942A15Ow l308zgT+qc5LLA517W3T3IfqWMCEg0EStar9Izf0/c+qmX5OLEa9qtoeCofce4Cx y6eiQ+izuzEhURXg5XmBVSs+uTvxLoRtSmxIGIQHNr0v6z77s9c= -----END CERTIFICATE-----Generated at Tue Apr 29 12:11:17 2025 by rpki-client