$ rpki-client -vvf repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft (raw, json) Hash identifier: +v+NBdGWREK9+cwVm2jQR7MDZgAi+gzpt8JZS2UWkMw= Subject key identifier: 46:67:0E:CA:71:4D:11:F0:79:B6:45:1A:E8:DB:50:FA:93:49:C6:CC Authority key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Certificate issuer: /CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Certificate serial: 0C096218AEA3CF997420CF58E62CC81CCE302E4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft Manifest number: 0203 Signing time: Wed 30 Apr 2025 23:51:06 +0000 Manifest this update: Wed 30 Apr 2025 23:46:06 +0000 Manifest next update: Sun 04 May 2025 11:30:06 +0000 Files and hashes: 1: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl (hash: 7ISh7EBMr7j0pEU22jyWcemWWCY8ebHpQCbtAyM9Kjo=) 2: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: yCac+KeTfH0lkjTAK49G4zxY27cUgoZJXWm+CK7QM48=) 3: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: pGfLfqeQeD8uU2thnQryvAF3YiN767pDKu8zHBjIsCs=) 4: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: qonOSoihdyEOGXKEjx0ElQczxx60RKjDCLheufBA0qE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:50:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:09:62:18:ae:a3:cf:99:74:20:cf:58:e6:2c:c8:1c:ce:30:2e:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Validity Not Before: Apr 30 23:46:06 2025 GMT Not After : May 4 11:30:06 2025 GMT Subject: CN=46670ECA714D11F079B6451AE8DB50FA9349C6CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:25:1c:c9:62:bc:37:d9:b1:79:29:63:3a:04: bc:22:a4:88:1b:92:e9:6a:5b:30:e9:ed:36:10:60: d3:c3:d4:05:06:06:c5:0b:9b:db:00:f9:ee:31:db: 93:ed:29:c3:b6:12:f8:1c:ea:4d:72:88:69:66:de: 4b:16:b6:48:a2:b1:92:ed:29:96:18:7b:59:54:3f: 65:11:d8:c0:ea:26:42:7e:c0:ac:71:1b:2c:f7:6c: 20:04:e8:9a:0f:fd:e4:32:1e:71:b3:96:5c:f8:1d: 7a:65:9d:44:e9:43:21:f2:c9:e8:94:37:06:39:44: 9f:3a:49:2a:f6:7a:52:a4:19:50:1e:6b:9c:92:04: 7c:6d:14:7d:b7:27:44:df:6f:66:bb:8d:a6:35:e0: 8e:69:89:72:02:b8:2b:b5:77:78:a7:bf:de:fe:78: 1d:64:f0:cf:d4:0b:51:0f:af:7b:7e:23:46:94:be: 17:de:51:8d:43:2c:e0:20:93:a7:89:a3:6f:59:3f: 1d:9b:d4:c9:a2:d2:c6:40:e2:86:31:14:e4:1e:f7: 54:52:10:3c:b2:27:a0:25:f6:ce:d6:7e:74:cc:a3: 1a:21:d9:31:51:b6:8b:ee:35:83:7c:58:2d:c7:d7: 93:5c:14:81:05:60:77:77:19:63:2a:28:39:11:df: dd:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:67:0E:CA:71:4D:11:F0:79:B6:45:1A:E8:DB:50:FA:93:49:C6:CC X509v3 Authority Key Identifier: keyid:AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:64:30:d6:57:67:a4:0a:b8:f6:07:4f:d3:94:68:72:d3:1d: 2c:33:b7:d5:ad:94:d6:4f:54:91:d6:32:18:8f:e2:e3:bb:02: be:55:16:b6:b0:22:3e:98:dc:e7:46:d5:81:c4:41:64:cb:05: 6c:9b:79:e4:e3:34:31:1c:21:d2:ff:18:9d:82:20:cf:70:ee: 0c:8b:aa:35:ef:31:c3:aa:5f:92:b4:bf:15:6f:0e:85:87:26: 04:c0:e1:d3:02:0e:81:43:08:d8:26:81:19:79:8a:dc:90:ab: 12:ac:41:10:4b:aa:01:e3:01:44:ec:66:90:d3:26:21:86:77: 95:8a:4a:c9:82:e1:8d:37:9c:5f:f6:42:0e:b6:91:7f:db:a8: e0:4b:cc:82:c8:2d:23:0a:ef:80:08:b4:6b:30:f0:99:46:0e: fb:54:f9:79:40:3b:db:34:5a:88:37:cd:93:e2:dc:e2:38:4f: 08:02:3a:49:e6:a2:b2:7f:eb:71:c1:73:a8:0c:78:4b:73:cd: 4f:f6:a2:ed:2b:ab:83:77:21:51:1d:cc:b2:35:12:ce:da:1b: 89:3a:e2:69:f3:90:8e:d4:20:a6:a8:a5:6d:89:4d:53:85:5b: 44:80:ba:57:03:aa:65:27:a2:10:ae:03:e4:65:44:12:95:da: 08:2e:4c:83 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDAliGK6jz5l0IM9Y5izIHM4wLkwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3 NDg2N0Y1MzAeFw0yNTA0MzAyMzQ2MDZaFw0yNTA1MDQxMTMwMDZaMDMxMTAvBgNV BAMTKDQ2NjcwRUNBNzE0RDExRjA3OUI2NDUxQUU4REI1MEZBOTM0OUM2Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrJRzJYrw32bF5KWM6BLwipIgb kulqWzDp7TYQYNPD1AUGBsULm9sA+e4x25PtKcO2Evgc6k1yiGlm3ksWtkiisZLt KZYYe1lUP2UR2MDqJkJ+wKxxGyz3bCAE6JoP/eQyHnGzllz4HXplnUTpQyHyyeiU NwY5RJ86SSr2elKkGVAea5ySBHxtFH23J0Tfb2a7jaY14I5piXICuCu1d3inv97+ eB1k8M/UC1EPr3t+I0aUvhfeUY1DLOAgk6eJo29ZPx2b1Mmi0sZA4oYxFOQe91RS EDyyJ6Al9s7WfnTMoxoh2TFRtovuNYN8WC3H15NcFIEFYHd3GWMqKDkR390tAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURmcOynFNEfB5tkUa6NtQ+pNJxswwHwYDVR0j BBgwFoAUrSoPazAkv/EUWNcsjlYj+3SGf1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC9BRDJBMEY2QjMw MjRCRkYxMTQ1OEQ3MkM4RTU2MjNGQjc0ODY3RjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3NDg2 N0Y1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZhZjRkZTUtNTAzNy00OTE3LTlh OTMtMDE5MmM2OTU5YmZiLzAvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIz RkI3NDg2N0Y1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKFkMNZXZ6QKuPYHT9OUaHLTHSwzt9WtlNZP VJHWMhiP4uO7Ar5VFrawIj6Y3OdG1YHEQWTLBWybeeTjNDEcIdL/GJ2CIM9w7gyL qjXvMcOqX5K0vxVvDoWHJgTA4dMCDoFDCNgmgRl5ityQqxKsQRBLqgHjAUTsZpDT JiGGd5WKSsmC4Y03nF/2Qg62kX/bqOBLzILILSMK74AItGsw8JlGDvtU+XlAO9s0 Wog3zZPi3OI4TwgCOknmorJ/63HBc6gMeEtzzU/2ou0rq4N3IVEdzLI1Es7aG4k6 4mnzkI7UIKaopW2JTVOFW0SAulcDqmUnohCuA+RlRBKV2gguTIM= -----END CERTIFICATE-----Generated at Thu May 1 05:00:22 2025 by rpki-client