$ rpki-client -vvf repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft File: 0FA41B65D1881666013C9683E40575E68E5DC0A5.mft (raw, json) Hash identifier: J62WXGW7CUC/y1amQRaYCmRsXKV/mCqMKIvNu4z3NLk= Subject key identifier: 57:F7:B9:A8:64:94:E0:1A:B6:A0:3D:D0:1A:53:BB:94:4B:54:7F:9D Authority key identifier: 0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 Certificate issuer: /CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Certificate serial: 1EDDF2B57E72292E2D0799E1920240E33F5CB1E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft Manifest number: 04DB Signing time: Mon 28 Apr 2025 11:01:01 +0000 Manifest this update: Mon 28 Apr 2025 10:56:01 +0000 Manifest next update: Thu 01 May 2025 15:00:01 +0000 Files and hashes: 1: 3130332e3231362e3138382e302f32342d3234203d3e20313431313037.roa (hash: VyhY07ev3HZs4lJdDII/xjr5IV8edk9Khb+3ZQ71QT4=) 2: 3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa (hash: E/D2Cv8nys+Xw52/1AbUQ7ljKhbTpvG2KMsVr5WOMsA=) 3: 323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa (hash: 96iMJoj+cFMvtnyIVwYET8bE27HKdbaW3rJ7KX7hPqQ=) 4: 0FA41B65D1881666013C9683E40575E68E5DC0A5.crl (hash: nghSqMvLsKqPXJOPEXU0+/sDme2M7gJz9/U7U7gIsq4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:dd:f2:b5:7e:72:29:2e:2d:07:99:e1:92:02:40:e3:3f:5c:b1:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Validity Not Before: Apr 28 10:56:01 2025 GMT Not After : May 1 15:00:01 2025 GMT Subject: CN=57F7B9A86494E01AB6A03DD01A53BB944B547F9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:18:8f:5a:a5:b8:e1:20:31:5a:a6:8c:4a:2b: e7:cb:9a:a6:92:17:48:12:1d:a0:2f:d8:d7:69:75: 63:9c:1a:6c:de:a3:d9:b6:b3:87:ca:e2:49:c8:fa: 40:52:13:1b:30:fc:a0:59:6f:6d:de:40:bb:6b:1f: d9:f8:98:e2:b8:25:e9:58:f4:1d:72:da:ca:58:3e: 58:93:30:26:c5:9d:9d:34:a6:2c:9a:31:37:58:2b: 41:7e:57:0a:da:da:40:35:2e:9c:35:d1:12:e1:64: e9:55:59:0a:64:9e:8a:52:b9:6a:7c:ab:c3:23:87: 92:1f:1c:59:bb:51:ac:d5:13:bb:58:de:0b:4b:22: 9c:04:e5:d6:7f:1f:25:dd:91:2a:97:e6:3c:f5:7f: 14:27:d0:b5:ed:3f:71:00:e8:00:15:16:fc:ab:b8: 48:4a:61:a2:0b:e2:df:f2:57:a6:88:ad:e0:4b:5e: 71:cd:a4:49:e7:64:e4:91:0a:75:f4:91:2a:2a:42: 93:76:ae:a2:bc:eb:08:42:49:86:e0:dd:fa:82:a8: 12:ba:5f:d3:25:54:0d:f6:56:d6:78:cb:3f:dd:ca: ca:c6:87:b8:84:76:96:40:2e:b8:a2:10:37:1c:fa: e7:7c:9f:18:cc:a4:8f:a9:df:78:fe:b7:b6:27:4b: 9d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:F7:B9:A8:64:94:E0:1A:B6:A0:3D:D0:1A:53:BB:94:4B:54:7F:9D X509v3 Authority Key Identifier: keyid:0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:f0:4a:e5:5e:7b:8d:9e:0b:2d:24:0b:d4:96:f1:d8:0d:5d: ad:bc:df:9d:e2:de:6e:7b:54:b8:01:38:f3:03:8d:95:72:98: fc:23:8e:5a:d5:24:e4:67:74:d8:15:a3:39:40:18:cf:c3:bf: 18:d7:6e:32:d0:e4:6f:6e:92:14:58:e8:80:ed:15:fb:97:8f: 02:e6:dd:92:f4:0d:63:f9:17:45:d2:e1:fc:fd:57:f2:92:9f: ce:2a:8f:db:be:69:ee:41:46:f3:cd:36:86:23:46:8f:6c:43: 11:4d:db:d9:3b:c3:02:b2:a4:d2:4a:8a:04:0f:90:77:35:d0: af:15:e5:a3:74:36:12:d6:90:dd:9e:63:4f:40:3c:9a:81:3d: 69:36:65:55:44:02:74:e1:81:aa:24:ff:e7:3c:4b:78:6c:d6: b9:d0:94:d4:c1:3a:9f:1b:21:a5:ed:cd:75:b1:e9:1f:65:b1: cd:2b:fa:8c:a1:68:2d:0b:81:b9:82:f6:f3:9d:1a:95:0d:13: 11:68:5d:3f:ab:d3:9b:20:90:61:80:62:b1:5d:cb:d3:5d:77: dc:2c:ba:1d:76:a2:55:5c:ea:29:1b:8e:d3:d9:d0:d8:a0:c4: 21:c7:7f:2b:de:d7:98:ff:37:2d:06:80:96:38:f4:9c:df:0f: 2b:88:12:97 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHt3ytX5yKS4tB5nhkgJA4z9csecwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4 RTVEQzBBNTAeFw0yNTA0MjgxMDU2MDFaFw0yNTA1MDExNTAwMDFaMDMxMTAvBgNV BAMTKDU3RjdCOUE4NjQ5NEUwMUFCNkEwM0REMDFBNTNCQjk0NEI1NDdGOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSGI9apbjhIDFapoxKK+fLmqaS F0gSHaAv2NdpdWOcGmzeo9m2s4fK4knI+kBSExsw/KBZb23eQLtrH9n4mOK4JelY 9B1y2spYPliTMCbFnZ00piyaMTdYK0F+Vwra2kA1Lpw10RLhZOlVWQpknopSuWp8 q8Mjh5IfHFm7UazVE7tY3gtLIpwE5dZ/HyXdkSqX5jz1fxQn0LXtP3EA6AAVFvyr uEhKYaIL4t/yV6aIreBLXnHNpEnnZOSRCnX0kSoqQpN2rqK86whCSYbg3fqCqBK6 X9MlVA32VtZ4yz/dysrGh7iEdpZALriiEDcc+ud8nxjMpI+p33j+t7YnS51NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUV/e5qGSU4Bq2oD3QGlO7lEtUf50wHwYDVR0j BBgwFoAUD6QbZdGIFmYBPJaD5AV15o5dwKUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk0ZDM3NS1mYzdkLTRkYzctYTFmMS1lMGIzYTU5ZmRmNzgvMC8wRkE0MUI2NUQx ODgxNjY2MDEzQzk2ODNFNDA1NzVFNjhFNURDMEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4RTVE QzBBNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzk5NGQzNzUtZmM3ZC00ZGM3LWEx ZjEtZTBiM2E1OWZkZjc4LzAvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1 RTY4RTVEQzBBNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJXwSuVee42eCy0kC9SW8dgNXa28353i3m57 VLgBOPMDjZVymPwjjlrVJORndNgVozlAGM/DvxjXbjLQ5G9ukhRY6IDtFfuXjwLm 3ZL0DWP5F0XS4fz9V/KSn84qj9u+ae5BRvPNNoYjRo9sQxFN29k7wwKypNJKigQP kHc10K8V5aN0NhLWkN2eY09APJqBPWk2ZVVEAnThgaok/+c8S3hs1rnQlNTBOp8b IaXtzXWx6R9lsc0r+oyhaC0LgbmC9vOdGpUNExFoXT+r05sgkGGAYrFdy9Ndd9ws uh12olVc6ikbjtPZ0NigxCHHfyve15j/Ny0GgJY49JzfDyuIEpc= -----END CERTIFICATE-----Generated at Wed Apr 30 08:24:41 2025 by rpki-client