$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft File: 4C44F6F543BDBB858D3656D41A36660407672BDE.mft (raw, json) Hash identifier: vJDeRs8HrAbcqhin+uw/fY7bVgKIDerAM5AdCGyOmzE= Subject key identifier: A1:B0:BA:9D:9D:17:77:BA:72:92:67:77:FC:49:40:E6:9F:92:1F:39 Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 27E31EF2258B60F6FFAECB02312E92668428A9D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft Manifest number: 021D Signing time: Wed 30 Apr 2025 13:50:57 +0000 Manifest this update: Wed 30 Apr 2025 13:45:57 +0000 Manifest next update: Sun 04 May 2025 00:55:57 +0000 Files and hashes: 1: 4C44F6F543BDBB858D3656D41A36660407672BDE.crl (hash: gWvuFxkZH9njxV9K9fZNFYQZVkXrbTlKhAmlC0zMLXI=) 2: 3130332e31312e3130362e302f32342d3234203d3e203536323630.roa (hash: /oNKkVvACpGRwEaHQtz+NrUuOBWsbNWp6QRHeV0MPMU=) 3: 3130332e32392e3138352e302f32342d3234203d3e203536323630.roa (hash: rlZNRe9QwPDxRgCp5O054ihVTvOafRmbaG0Hj+9kO5Q=) 4: 3130332e32392e3138342e302f32342d3234203d3e203536323630.roa (hash: PxQIpqbQq2jLhpu3Xowhx5fys0b4IY/JPo7Tka0HdFo=) 5: 3130332e31312e3130372e302f32342d3234203d3e203538343832.roa (hash: 4O8b726/lpcYZIzCbq+BOqW7rrh6L+bwyN5I34NP9Oc=) 6: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (hash: 8Rg4KVnY/32fl4fG4uMRblRtiju0uviBp14XLoqECcw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:e3:1e:f2:25:8b:60:f6:ff:ae:cb:02:31:2e:92:66:84:28:a9:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Apr 30 13:45:57 2025 GMT Not After : May 4 00:55:57 2025 GMT Subject: CN=A1B0BA9D9D1777BA72926777FC4940E69F921F39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:29:00:d0:c4:e4:67:ed:b7:26:32:6c:21:53: a6:9d:56:1c:77:e9:de:3f:e2:b5:ef:3c:a5:62:c8: 9a:38:20:a3:71:dd:2e:8f:ec:3b:08:bb:c2:25:e9: 62:1a:dc:39:54:42:00:c9:48:30:04:77:fe:b5:ab: 4e:e2:85:04:42:34:66:e4:e6:fb:95:bb:a9:21:d7: b4:8f:9e:b7:e2:10:71:1b:63:ea:0b:8f:fb:03:5d: a8:b6:55:4b:0d:c5:93:23:95:f1:bc:4e:08:91:6e: e1:f9:92:49:d7:88:60:ec:ca:d5:44:4b:b2:ac:58: 80:98:41:d3:f0:07:2a:db:03:4e:66:46:d6:ea:ee: 77:ed:31:b3:63:7b:b8:eb:cf:1b:00:ad:87:ff:b0: 5e:7e:a0:b4:06:8b:b5:05:38:ac:cf:71:16:13:f0: 38:95:de:54:88:8d:e4:7b:9d:00:ad:08:e5:2a:03: 9f:e3:8d:4c:94:26:60:fc:ac:c3:c8:27:c8:36:92: 00:ed:c7:a4:26:f7:48:4a:0e:54:b6:02:03:c1:c1: 1c:7c:8f:59:c0:76:99:f0:85:9a:ed:30:91:cb:e3: 19:5d:4a:7c:e1:25:ee:64:af:a1:c7:93:45:a3:90: 16:03:54:f9:07:0f:6d:e4:52:c5:2a:24:1b:30:47: 20:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B0:BA:9D:9D:17:77:BA:72:92:67:77:FC:49:40:E6:9F:92:1F:39 X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:c2:dc:55:08:ae:b6:ac:17:ec:04:17:ea:b2:ad:62:19:05: f5:03:6d:d0:5e:87:54:d5:c7:39:5b:89:40:8e:ee:66:4f:bf: 17:ff:f2:8b:40:42:b1:fa:49:89:c3:5c:f2:b0:3b:01:53:d2: ec:fa:35:41:c7:83:31:e8:b6:75:e7:d5:c8:e1:76:7b:31:06: 64:36:a3:0b:74:25:88:16:1a:8c:d5:f9:b5:7f:7b:56:88:1b: 69:69:cb:ee:dd:65:60:7e:42:3b:19:b7:1e:37:34:79:4c:35: 67:ea:0b:4f:b7:01:70:7c:e2:ab:e5:ea:6f:39:1f:5a:26:5b: 45:32:02:8d:e9:79:fe:d9:78:9a:20:08:69:d7:6a:28:f6:64: 72:11:20:e1:cf:11:7d:58:08:4a:2e:77:ec:aa:12:a7:e1:ef: c7:a2:e3:92:0f:f5:15:b1:a9:83:e3:44:db:62:0d:67:f7:fb: 37:b0:4a:1d:be:c2:0e:24:ea:27:33:30:44:57:ad:94:3f:c2: df:a4:8e:9c:60:f6:fe:60:4a:22:ea:69:da:0b:20:a2:40:9e: b4:15:c4:65:58:76:db:74:4d:cb:ae:b6:19:0f:af:cd:de:53: 7c:91:e1:44:11:f7:74:dc:28:04:9b:54:a9:c8:1d:80:13:fb: 63:2f:1d:16 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ+Me8iWLYPb/rssCMS6SZoQoqdUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNTA0MzAxMzQ1NTdaFw0yNTA1MDQwMDU1NTdaMDMxMTAvBgNV BAMTKEExQjBCQTlEOUQxNzc3QkE3MjkyNjc3N0ZDNDk0MEU2OUY5MjFGMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsKQDQxORn7bcmMmwhU6adVhx3 6d4/4rXvPKViyJo4IKNx3S6P7DsIu8Il6WIa3DlUQgDJSDAEd/61q07ihQRCNGbk 5vuVu6kh17SPnrfiEHEbY+oLj/sDXai2VUsNxZMjlfG8TgiRbuH5kknXiGDsytVE S7KsWICYQdPwByrbA05mRtbq7nftMbNje7jrzxsArYf/sF5+oLQGi7UFOKzPcRYT 8DiV3lSIjeR7nQCtCOUqA5/jjUyUJmD8rMPIJ8g2kgDtx6Qm90hKDlS2AgPBwRx8 j1nAdpnwhZrtMJHL4xldSnzhJe5kr6HHk0WjkBYDVPkHD23kUsUqJBswRyC5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUobC6nZ0Xd7pykmd3/ElA5p+SHzkwHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODVmMmM2NmMtMWY4Ny00ZDk4LWE0 NjctMzIxOGI2NDViM2FjLzAvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2 MDQwNzY3MkJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHDC3FUIrrasF+wEF+qyrWIZBfUDbdBeh1TV xzlbiUCO7mZPvxf/8otAQrH6SYnDXPKwOwFT0uz6NUHHgzHotnXn1cjhdnsxBmQ2 owt0JYgWGozV+bV/e1aIG2lpy+7dZWB+QjsZtx43NHlMNWfqC0+3AXB84qvl6m85 H1omW0UyAo3pef7ZeJogCGnXaij2ZHIRIOHPEX1YCEoud+yqEqfh78ei45IP9RWx qYPjRNtiDWf3+zewSh2+wg4k6iczMERXrZQ/wt+kjpxg9v5gSiLqadoLIKJAnrQV xGVYdtt0TcuuthkPr83eU3yR4UQR93TcKASbVKnIHYAT+2MvHRY= -----END CERTIFICATE-----Generated at Wed Apr 30 17:30:34 2025 by rpki-client