$ rpki-client -vvf repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft File: 71054E3C02E22D607A90FACC4DE7369B65367EBD.mft (raw, json) Hash identifier: y1dVHqKHLg7L1qKRgwVKwK7MiRxpH63S/GmCeyuR2EE= Subject key identifier: 8F:EA:46:65:5D:4B:3F:30:83:9A:BF:CB:A6:39:55:7F:3A:92:9E:D5 Authority key identifier: 71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD Certificate issuer: /CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Certificate serial: 162374EC4FFB9DA64E6E810630F7CFACD66064BC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft Manifest number: 0120 Signing time: Sun 27 Apr 2025 20:40:44 +0000 Manifest this update: Sun 27 Apr 2025 20:35:44 +0000 Manifest next update: Thu 01 May 2025 02:31:44 +0000 Files and hashes: 1: 3130332e32392e31302e302f32332d3234203d3e20313530323530.roa (hash: WJMrEDY6+yYCu4Iz5tUshsi6eLGdRGAnm2hsfXk5iwc=) 2: 71054E3C02E22D607A90FACC4DE7369B65367EBD.crl (hash: zRAd57Uf26Lg3pBOM2LcjcGXsmL9ClKFDDigpsr2nOA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 02:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:23:74:ec:4f:fb:9d:a6:4e:6e:81:06:30:f7:cf:ac:d6:60:64:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Validity Not Before: Apr 27 20:35:44 2025 GMT Not After : May 1 02:31:44 2025 GMT Subject: CN=8FEA46655D4B3F30839ABFCBA639557F3A929ED5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f3:8d:94:2b:ea:12:08:cf:5b:1b:b6:0e:13: 5a:90:1d:82:88:79:dd:9f:f5:4f:2c:9c:58:67:3d: 7e:a2:7b:a4:e4:bf:6d:aa:5f:29:6e:71:39:be:94: 30:d2:6f:92:ef:2e:07:43:30:fd:99:08:66:b5:0d: 8a:5c:ab:26:9a:80:d5:1a:22:54:fa:95:85:93:3c: 07:e0:fb:5e:db:2c:01:34:a6:8f:c5:64:39:42:76: 5e:ec:19:82:bd:7e:16:91:e9:14:82:1f:c3:ca:f7: 81:41:33:fd:76:e3:96:f4:36:1c:72:91:66:70:53: 5d:ce:aa:8b:94:34:f2:fa:af:d5:1a:b4:42:d7:93: 64:28:68:5b:3c:fa:11:74:7a:36:fd:a9:c0:fe:ec: da:86:a6:dc:ec:0d:af:23:09:67:35:84:d1:df:62: 6b:e6:7e:83:79:49:77:d8:d1:76:ab:59:26:9b:43: 36:fc:83:07:cb:f3:41:da:f7:b2:e8:ea:53:6d:45: b2:a8:96:33:08:cd:70:6d:01:43:9f:50:32:ad:72: fe:78:9f:80:d9:65:92:d6:56:21:3b:38:3e:dc:38: 97:6d:d6:73:25:c2:8d:32:88:d8:47:a2:87:43:2b: 7b:54:8b:1a:b9:cd:8e:97:a8:ba:bc:cf:b1:7f:b8: ff:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:EA:46:65:5D:4B:3F:30:83:9A:BF:CB:A6:39:55:7F:3A:92:9E:D5 X509v3 Authority Key Identifier: keyid:71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d0:d9:30:4e:d1:a8:7e:73:c3:21:e9:11:98:0f:66:26:eb:0a: ef:a6:5b:63:90:53:9b:ef:a7:19:f1:30:d9:bf:12:69:c5:04: 1e:a2:e2:95:c7:77:48:96:aa:38:aa:02:9d:83:f7:e2:82:bf: a4:48:6d:3b:2e:c3:00:8c:09:dd:02:34:a2:94:c6:9b:cc:18: 94:2c:d6:d0:45:78:7a:cd:eb:be:a6:fd:6d:4b:cb:ce:dd:b3: e3:c9:3d:df:4a:76:ab:b7:4f:cd:fc:87:0c:80:dd:ed:3a:22: 4b:8a:6c:37:21:f9:f7:b3:74:1d:47:d3:61:14:a2:16:28:b1: 52:ed:86:3a:c7:d7:03:75:99:7b:a6:2b:ec:bc:73:e4:03:33: f7:ae:19:4d:fb:33:85:fb:31:1b:aa:41:1a:05:fa:3b:84:a4: d1:39:0b:d6:64:49:93:09:77:76:b5:36:e8:1f:28:4d:8b:39: c4:c8:93:8d:7b:65:e0:cb:e6:88:49:22:3f:79:cc:7b:ca:64: b6:42:eb:10:b8:3b:f8:f0:b6:f1:6f:bd:af:41:3c:4f:e6:f6: 61:ea:eb:1a:a9:7b:76:8e:21:37:bb:12:b9:62:a4:d9:52:c8: b7:4a:8f:38:f2:e2:9c:4d:fe:ee:f6:10:1d:e1:3e:92:84:42: 85:80:35:51 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFiN07E/7naZOboEGMPfPrNZgZLwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2 NTM2N0VCRDAeFw0yNTA0MjcyMDM1NDRaFw0yNTA1MDEwMjMxNDRaMDMxMTAvBgNV BAMTKDhGRUE0NjY1NUQ0QjNGMzA4MzlBQkZDQkE2Mzk1NTdGM0E5MjlFRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy842UK+oSCM9bG7YOE1qQHYKI ed2f9U8snFhnPX6ie6Tkv22qXylucTm+lDDSb5LvLgdDMP2ZCGa1DYpcqyaagNUa IlT6lYWTPAfg+17bLAE0po/FZDlCdl7sGYK9fhaR6RSCH8PK94FBM/1245b0Nhxy kWZwU13OqouUNPL6r9UatELXk2QoaFs8+hF0ejb9qcD+7NqGptzsDa8jCWc1hNHf YmvmfoN5SXfY0XarWSabQzb8gwfL80Ha97Lo6lNtRbKoljMIzXBtAUOfUDKtcv54 n4DZZZLWViE7OD7cOJdt1nMlwo0yiNhHoodDK3tUixq5zY6XqLq8z7F/uP+fAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUj+pGZV1LPzCDmr/LpjlVfzqSntUwHwYDVR0j BBgwFoAUcQVOPALiLWB6kPrMTec2m2U2fr0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUzMmM2NS04MGJlLTRmZGUtODdkMC0zNmM1YmQyODhjZDgvMC83MTA1NEUzQzAy RTIyRDYwN0E5MEZBQ0M0REU3MzY5QjY1MzY3RUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2NTM2 N0VCRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWE1MzJjNjUtODBiZS00ZmRlLTg3 ZDAtMzZjNWJkMjg4Y2Q4LzAvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2 OUI2NTM2N0VCRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANDZME7RqH5zwyHpEZgPZibrCu+mW2OQU5vv pxnxMNm/EmnFBB6i4pXHd0iWqjiqAp2D9+KCv6RIbTsuwwCMCd0CNKKUxpvMGJQs 1tBFeHrN676m/W1Ly87ds+PJPd9Kdqu3T838hwyA3e06IkuKbDch+fezdB1H02EU ohYosVLthjrH1wN1mXumK+y8c+QDM/euGU37M4X7MRuqQRoF+juEpNE5C9ZkSZMJ d3a1NugfKE2LOcTIk417ZeDL5ohJIj95zHvKZLZC6xC4O/jwtvFvva9BPE/m9mHq 6xqpe3aOITe7ErlipNlSyLdKjzjy4pxN/u72EB3hPpKEQoWANVE= -----END CERTIFICATE-----Generated at Wed Apr 30 03:47:44 2025 by rpki-client