$ rpki-client -vvf repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft File: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft (raw, json) Hash identifier: pwjmISVOgwsBbBjZXLJnAtl2ngJJ8dwLefP9nqnwUxk= Subject key identifier: 37:B8:73:2D:5F:09:9F:93:0C:F1:3D:A4:BB:07:BB:8A:5E:03:51:31 Authority key identifier: 03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 Certificate issuer: /CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Certificate serial: 5FB70C0F8ED5A265127D17A2CEC60FEB401EE92C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft Manifest number: 0161 Signing time: Tue 29 Apr 2025 07:11:23 +0000 Manifest this update: Tue 29 Apr 2025 07:06:23 +0000 Manifest next update: Fri 02 May 2025 11:11:23 +0000 Files and hashes: 1: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl (hash: LLzb3QKCzzVD96btFKVApst54BHW+4Skv5DnO8nqRY8=) 2: 3130332e39362e35322e302f32342d3234203d3e20313530393232.roa (hash: RbJkotiAtcGAz/X/4fMxCRReBEYK6ZI39CQ4Uu7mC8E=) 3: 3130332e39362e35332e302f32342d3234203d3e20313530393232.roa (hash: ZdMkDOnx4hNOB8b2y8v2461HT/U2gmm0V9h3DP50AsM=) 4: 323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa (hash: woqtXJ7tvZtaqT4bT+mvntSsCYpQhJCgghI0AwY59dM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 11:11:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:b7:0c:0f:8e:d5:a2:65:12:7d:17:a2:ce:c6:0f:eb:40:1e:e9:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Validity Not Before: Apr 29 07:06:23 2025 GMT Not After : May 2 11:11:23 2025 GMT Subject: CN=37B8732D5F099F930CF13DA4BB07BB8A5E035131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4f:2b:70:2f:d5:6c:8a:ae:aa:a5:93:f2:d8: 7f:97:cc:65:0a:02:e1:1f:63:d9:78:11:49:35:3a: ad:67:73:1f:50:dc:2c:1d:c4:cb:fe:b8:d9:8a:ca: 17:34:b5:59:70:fb:3b:54:bb:5e:de:3b:4c:7c:cc: aa:a3:c5:84:e9:f6:be:e7:79:14:1c:98:bf:7c:f7: e5:5f:4f:cf:a0:18:1c:2e:14:3c:79:c1:e6:a7:02: 79:81:3f:d9:3c:1e:d0:f6:53:80:df:46:09:c1:ca: 84:6c:aa:c1:68:6b:28:b2:36:cc:a2:87:44:6a:ef: cf:db:4b:65:2d:16:fb:1f:ca:c1:a1:03:ed:86:63: ef:c3:78:50:35:f2:c7:09:5e:be:2a:02:cd:dc:0b: 95:8c:4c:dc:7a:d2:d1:fb:24:73:e5:9d:db:39:81: a4:e1:3d:58:c9:95:66:6a:d8:fe:ce:c3:fc:95:1e: a1:4b:f2:f7:80:7f:57:48:05:69:ca:b4:08:d7:6a: 96:99:fd:0b:77:dd:6a:ba:0a:5a:6f:cb:77:e3:18: e8:2f:30:ef:0b:29:70:b5:af:35:5c:fc:2c:97:21: 8b:87:04:fc:5c:c7:e5:32:c9:a7:aa:a9:6e:c0:f9: 7d:f1:13:fc:74:0a:b1:5e:16:f1:80:78:ce:90:3a: 54:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:B8:73:2D:5F:09:9F:93:0C:F1:3D:A4:BB:07:BB:8A:5E:03:51:31 X509v3 Authority Key Identifier: keyid:03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:69:f4:56:37:45:09:73:bb:ec:c0:75:40:ff:34:98:81:13: 15:8d:f5:77:ec:4b:dc:56:ac:04:cc:03:ad:7a:77:db:1e:57: a3:f4:b4:97:e2:c1:f5:5f:fa:69:80:a8:bb:9e:fd:ab:de:bd: b1:8a:3c:59:41:8f:fc:d1:93:5f:60:cd:9c:1f:de:04:6a:e4: c1:00:8b:42:b4:6a:de:2e:a9:f1:35:e5:34:bf:64:43:71:eb: 45:74:4e:d5:1b:ba:14:91:00:6c:d9:5b:fe:09:b9:ec:d1:d4: 54:68:66:03:ce:23:1b:ef:52:64:d4:89:ca:ee:06:bd:c8:20: 9b:be:14:d0:ff:66:9c:6b:b5:7c:31:99:25:55:db:eb:15:c0: a8:04:d0:13:4a:37:92:10:3b:c8:24:bd:fe:b4:ca:48:3d:ad: 1b:8d:67:d0:c5:91:7f:ee:bc:c7:c7:9b:5f:e0:8f:27:c3:6d: 3b:97:83:05:bd:a3:94:fe:81:7a:86:05:f8:93:02:bc:f4:e4: 74:e7:18:7a:d0:6c:b8:41:a6:e1:28:4f:9e:aa:2d:3c:78:59: 39:d4:54:91:b7:cf:73:99:a5:be:0f:83:4d:ba:9e:97:71:a0: 22:9d:b6:67:74:c1:9f:20:9d:6f:b0:4c:c6:3f:f8:c5:70:42: 5e:14:5e:ff -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUX7cMD47VomUSfReizsYP60Ae6SwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2 ODY3QkY3OTAeFw0yNTA0MjkwNzA2MjNaFw0yNTA1MDIxMTExMjNaMDMxMTAvBgNV BAMTKDM3Qjg3MzJENUYwOTlGOTMwQ0YxM0RBNEJCMDdCQjhBNUUwMzUxMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDITytwL9Vsiq6qpZPy2H+XzGUK AuEfY9l4EUk1Oq1ncx9Q3CwdxMv+uNmKyhc0tVlw+ztUu17eO0x8zKqjxYTp9r7n eRQcmL989+VfT8+gGBwuFDx5weanAnmBP9k8HtD2U4DfRgnByoRsqsFoayiyNsyi h0Rq78/bS2UtFvsfysGhA+2GY+/DeFA18scJXr4qAs3cC5WMTNx60tH7JHPlnds5 gaThPVjJlWZq2P7Ow/yVHqFL8veAf1dIBWnKtAjXapaZ/Qt33Wq6Clpvy3fjGOgv MO8LKXC1rzVc/CyXIYuHBPxcx+UyyaeqqW7A+X3xE/x0CrFeFvGAeM6QOlStAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUN7hzLV8Jn5MM8T2kuwe7il4DUTEwHwYDVR0j BBgwFoAUAyHIkqaqwKbqSjA12IymvGhnv3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTFjNGMxZi03MTQxLTQ3ZDYtYTdmOC1lMzVmZmUxMTc0MDQvMC8wMzIxQzg5MkE2 QUFDMEE2RUE0QTMwMzVEODhDQTZCQzY4NjdCRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2ODY3 QkY3OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ExYzRjMWYtNzE0MS00N2Q2LWE3 ZjgtZTM1ZmZlMTE3NDA0LzAvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2 QkM2ODY3QkY3OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIlp9FY3RQlzu+zAdUD/NJiBExWN9XfsS9xW rATMA616d9seV6P0tJfiwfVf+mmAqLue/avevbGKPFlBj/zRk19gzZwf3gRq5MEA i0K0at4uqfE15TS/ZENx60V0TtUbuhSRAGzZW/4JuezR1FRoZgPOIxvvUmTUicru Br3IIJu+FND/ZpxrtXwxmSVV2+sVwKgE0BNKN5IQO8gkvf60ykg9rRuNZ9DFkX/u vMfHm1/gjyfDbTuXgwW9o5T+gXqGBfiTArz05HTnGHrQbLhBpuEoT56qLTx4WTnU VJG3z3OZpb4Pg026npdxoCKdtmd0wZ8gnW+wTMY/+MVwQl4UXv8= -----END CERTIFICATE-----Generated at Wed Apr 30 07:34:58 2025 by rpki-client