$ rpki-client -vvf repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft File: 651790FFFC1688AFA384D136FC4792AD18879019.mft (raw, json) Hash identifier: Mq++4UF38H9+ZkjlXjooZUqo64Ykjo8tbTXugJ0/e2Q= Subject key identifier: 42:46:31:10:20:54:20:55:9C:47:9A:01:98:EE:64:52:0A:C6:72:A1 Authority key identifier: 65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 Certificate issuer: /CN=651790FFFC1688AFA384D136FC4792AD18879019 Certificate serial: 168F46ADB6283E96B867E1D0E45058A9D93A4732 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft Manifest number: 04C8 Signing time: Tue 29 Apr 2025 07:42:12 +0000 Manifest this update: Tue 29 Apr 2025 07:37:12 +0000 Manifest next update: Fri 02 May 2025 19:02:12 +0000 Files and hashes: 1: 3130332e35332e37362e302f32322d3234203d3e20313333383137.roa (hash: VG/ACRZPp2r0hedLnYSdIksDAv+Mc1H+dIKcuSQ562M=) 2: 323430323a353538303a3a2f33322d3438203d3e20313333383137.roa (hash: O3Y+5RJi4o9TrR1ZmK3//jjnrYZ80KLbj1eFOI6ijfM=) 3: 651790FFFC1688AFA384D136FC4792AD18879019.crl (hash: tsuWORd7XOt5SxLE5aE0zFuyf9aHt+rehYimjnhtWiM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 18:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:8f:46:ad:b6:28:3e:96:b8:67:e1:d0:e4:50:58:a9:d9:3a:47:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=651790FFFC1688AFA384D136FC4792AD18879019 Validity Not Before: Apr 29 07:37:12 2025 GMT Not After : May 2 19:02:12 2025 GMT Subject: CN=42463110205420559C479A0198EE64520AC672A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:44:b0:a6:fd:1f:6a:38:6c:d8:4e:55:cd:df: 48:92:46:8b:ba:0d:7e:e3:5e:ed:cf:b0:e1:3a:11: 5f:e7:67:ab:b8:c2:39:07:8d:09:4c:07:02:3a:20: b7:aa:74:04:31:ea:cc:c7:d1:5b:60:7d:77:d1:39: 06:7f:24:5e:d3:54:64:d0:0f:a4:a7:0c:75:00:d8: 8a:68:0f:be:9a:78:05:c0:eb:67:b9:6b:48:2a:b0: 79:62:2e:aa:5b:4d:33:64:d8:a4:21:2c:16:e2:51: 0d:9f:21:cb:f4:e1:98:fb:7b:00:c0:9b:86:48:11: b1:e9:98:ea:b6:b3:e9:81:87:2a:b8:fd:b7:10:0a: f9:f9:28:88:d2:43:c1:54:c0:f5:d0:03:49:32:d7: 52:a0:b6:7d:76:8f:a2:47:5b:f1:5b:0b:88:ec:bf: 52:71:b4:84:80:b4:f9:d3:9f:07:af:0e:9a:3d:16: 06:99:2f:b6:2c:ce:3e:d8:07:2b:89:e3:ac:f2:9d: 23:19:62:af:81:6b:f4:45:b3:77:81:11:df:db:cf: a9:ca:c4:b1:1a:cd:d4:e1:20:9c:a4:14:05:45:36: 61:f0:f4:42:02:a1:0f:86:d1:e9:79:9d:42:07:6d: de:8b:8b:ae:76:1c:ad:71:e2:c8:3d:ef:69:74:9e: 03:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:46:31:10:20:54:20:55:9C:47:9A:01:98:EE:64:52:0A:C6:72:A1 X509v3 Authority Key Identifier: keyid:65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:f3:88:f0:c5:42:6b:fd:ee:35:71:71:bb:10:ca:fe:b4:95: 55:ec:31:1d:e5:cc:a8:fa:95:38:83:a5:c9:19:07:47:bf:a2: a7:c5:81:2c:ae:72:c4:20:d2:48:dd:bb:c6:9e:c1:d9:b2:8a: 02:f5:31:29:c0:87:11:d1:05:a2:29:bc:13:fd:76:b7:52:fd: 92:c1:e3:3a:64:4e:36:3a:66:81:b0:68:cc:40:b8:86:55:9b: a5:63:e7:c3:83:8d:11:3e:87:08:ba:c4:f3:03:a2:09:26:1d: 31:5f:6f:db:47:28:66:74:c1:e3:74:58:56:1d:33:3f:37:fa: 8b:f4:e8:ec:bf:fb:6f:65:3c:5e:52:da:1e:c0:71:b2:f4:bf: 0e:c3:28:80:1f:41:37:4c:57:69:66:1d:d7:8e:55:48:9b:61: fd:4f:19:90:c0:99:8d:53:71:0d:ef:08:08:18:d1:85:00:1a: d3:c5:9b:73:07:eb:ab:9f:8b:ae:cf:de:88:a5:50:0c:e7:a4: 43:bb:06:a3:2d:b3:c4:0b:7c:e7:cd:dd:aa:5d:25:ec:0e:49: 75:77:d1:b1:5f:52:13:54:98:71:a4:88:83:2f:de:8f:24:b1: e5:a6:8d:9e:a1:b3:f7:56:26:0c:06:10:cc:3e:e0:fe:76:89: 68:38:ea:51 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFo9GrbYoPpa4Z+HQ5FBYqdk6RzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQx ODg3OTAxOTAeFw0yNTA0MjkwNzM3MTJaFw0yNTA1MDIxOTAyMTJaMDMxMTAvBgNV BAMTKDQyNDYzMTEwMjA1NDIwNTU5QzQ3OUEwMTk4RUU2NDUyMEFDNjcyQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsRLCm/R9qOGzYTlXN30iSRou6 DX7jXu3PsOE6EV/nZ6u4wjkHjQlMBwI6ILeqdAQx6szH0VtgfXfROQZ/JF7TVGTQ D6SnDHUA2IpoD76aeAXA62e5a0gqsHliLqpbTTNk2KQhLBbiUQ2fIcv04Zj7ewDA m4ZIEbHpmOq2s+mBhyq4/bcQCvn5KIjSQ8FUwPXQA0ky11Kgtn12j6JHW/FbC4js v1JxtISAtPnTnwevDpo9FgaZL7Yszj7YByuJ46zynSMZYq+Ba/RFs3eBEd/bz6nK xLEazdThIJykFAVFNmHw9EICoQ+G0el5nUIHbd6Li652HK1x4sg972l0ngMFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQkYxECBUIFWcR5oBmO5kUgrGcqEwHwYDVR0j BBgwFoAUZReQ//wWiK+jhNE2/EeSrRiHkBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmY3ZWYzNC00OTkxLTRiYjEtOTZiNC1iZTQzZjFlY2FiYjQvMC82NTE3OTBGRkZD MTY4OEFGQTM4NEQxMzZGQzQ3OTJBRDE4ODc5MDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQxODg3 OTAxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZmN2VmMzQtNDk5MS00YmIxLTk2 YjQtYmU0M2YxZWNhYmI0LzAvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0Nzky QUQxODg3OTAxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAELziPDFQmv97jVxcbsQyv60lVXsMR3lzKj6 lTiDpckZB0e/oqfFgSyucsQg0kjdu8aewdmyigL1MSnAhxHRBaIpvBP9drdS/ZLB 4zpkTjY6ZoGwaMxAuIZVm6Vj58ODjRE+hwi6xPMDogkmHTFfb9tHKGZ0weN0WFYd Mz83+ov06Oy/+29lPF5S2h7AcbL0vw7DKIAfQTdMV2lmHdeOVUibYf1PGZDAmY1T cQ3vCAgY0YUAGtPFm3MH66ufi67P3oilUAznpEO7BqMts8QLfOfN3apdJewOSXV3 0bFfUhNUmHGkiIMv3o8kseWmjZ6hs/dWJgwGEMw+4P52iWg46lE= -----END CERTIFICATE-----Generated at Wed Apr 30 00:15:42 2025 by rpki-client