$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft File: 4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft (raw, json) Hash identifier: t0t3DdW4hgb9duIKn44FGJcH123kxJlrocrKvwttZSM= Subject key identifier: 5D:B0:81:B1:85:60:F5:8A:5C:F8:56:01:47:F7:5C:28:8D:82:26:23 Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 66A3AE72FC68A75350D8957280FBAFD15015019B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft Manifest number: 04D5 Signing time: Sun 27 Apr 2025 10:30:01 +0000 Manifest this update: Sun 27 Apr 2025 10:25:01 +0000 Manifest next update: Wed 30 Apr 2025 17:13:01 +0000 Files and hashes: 1: 4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl (hash: Hggh5lZBeGPY2OcL2wiuwl4Ykq7sYXiTuBwuvwVyV4k=) 2: 3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa (hash: y8ADkM9INdo4B5YpCY3N+ofggmxgoMYRUDnTX9TJFJg=) 3: 3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa (hash: ZMeuRsHtVSwXmTeOlP2EBAn6yOUfUCueHpz1hHvcg+E=) 4: 3130332e3132352e3131382e302f32342d3234203d3e20313338313032.roa (hash: KvTsgODxSTYXSwM09nr1mlGXAPY3uRhzMZlaVsc+OC4=) 5: 3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa (hash: 8llNfwrUTFXUaOZxOG2FdVdGooONQqY0triO7boP8ZE=) 6: 3130332e3132352e3131362e302f32342d3234203d3e20313338313032.roa (hash: RbezRzshmathyV4EoiQ/5deOypXsD7H6MYLkfw1/pRw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 17:13:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:a3:ae:72:fc:68:a7:53:50:d8:95:72:80:fb:af:d1:50:15:01:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Apr 27 10:25:01 2025 GMT Not After : Apr 30 17:13:01 2025 GMT Subject: CN=5DB081B18560F58A5CF8560147F75C288D822623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ed:27:4c:89:dc:22:e5:f9:d7:e9:85:c1:48: 53:49:1f:2b:75:c9:44:95:97:fc:a5:ef:14:25:ba: 6b:0c:fa:37:7c:92:e1:39:b2:8f:cc:93:21:cd:de: 4d:aa:64:26:00:a1:80:0c:d1:2e:c3:0c:8b:39:a6: 93:e5:59:fa:49:82:30:0d:0e:85:64:1d:8d:76:f2: 33:89:99:fe:90:c2:70:0e:84:15:66:2e:61:e0:cd: 98:0a:d5:ef:82:70:00:bd:36:ee:4a:e9:0f:df:d4: eb:4a:96:01:c0:6b:3f:67:58:ec:30:3a:86:6c:46: 01:22:9b:89:05:24:c7:45:49:0e:cd:2f:93:91:38: 43:f2:3e:70:8a:c6:b3:5e:ef:63:b3:b1:fc:10:f4: 94:c4:e9:c9:84:59:83:b5:71:5e:5d:dc:67:6d:0d: c1:ef:6b:6c:7a:bf:03:ff:a7:d8:ad:b7:51:b5:0c: 22:8b:c7:ec:86:90:cb:8f:5b:ff:ff:87:0e:c1:42: cd:20:8f:6c:46:d3:d3:e7:42:a6:67:69:68:88:70: b8:90:9e:6d:ba:a5:f1:6a:ab:ee:d4:5b:80:a8:98: 99:6c:9d:6c:5d:d2:43:cf:98:cf:1e:5b:cb:36:56: 90:46:80:da:b4:25:15:d2:26:47:05:11:97:ed:92: 4e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B0:81:B1:85:60:F5:8A:5C:F8:56:01:47:F7:5C:28:8D:82:26:23 X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:aa:fe:91:c8:95:0e:6f:b5:54:2c:f5:60:f6:b2:4d:c3:5f: 79:7a:bd:6a:a6:c6:01:44:c7:15:dc:83:f4:22:ac:af:a4:d1: 8b:6f:06:47:5c:83:17:e4:cb:59:a7:c4:56:b7:37:d0:0f:9c: 3c:8e:66:a7:ab:a7:7f:cb:c1:cc:ae:4a:49:d7:56:c8:72:c3: 0b:6c:d1:e4:36:cc:5b:28:7f:0d:7a:a6:6d:98:4b:73:87:7c: e2:f7:10:9a:d2:6e:63:e7:fe:87:f6:28:37:0d:6e:08:01:de: cb:65:8a:be:01:7c:4b:fb:e9:5d:d5:11:c6:fc:bb:e8:1f:71: 14:3e:4d:f9:a4:1d:79:a8:23:02:2a:fb:6e:71:88:16:f0:73: 8c:52:f1:3f:2f:11:0c:3c:09:9b:cd:90:3e:a5:16:95:f6:c0: 9a:e4:4e:5f:e2:43:28:68:30:02:8b:94:11:18:38:b8:58:54: e7:b3:07:21:fc:ea:a7:03:37:f5:f1:cd:db:85:a9:b0:8f:c9: a3:71:46:e6:2f:ac:ad:b4:9a:d0:0d:ce:f0:e9:de:c3:16:69: 2b:c3:4b:8e:95:d2:33:f2:1a:b8:33:45:e4:13:0c:b4:49:02: 49:3c:c5:43:c7:5a:5e:14:80:bb:a2:08:77:51:8c:26:1f:6d: b0:c9:6e:bf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZqOucvxop1NQ2JVygPuv0VAVAZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNTA0MjcxMDI1MDFaFw0yNTA0MzAxNzEzMDFaMDMxMTAvBgNV BAMTKDVEQjA4MUIxODU2MEY1OEE1Q0Y4NTYwMTQ3Rjc1QzI4OEQ4MjI2MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj7SdMidwi5fnX6YXBSFNJHyt1 yUSVl/yl7xQlumsM+jd8kuE5so/MkyHN3k2qZCYAoYAM0S7DDIs5ppPlWfpJgjAN DoVkHY128jOJmf6QwnAOhBVmLmHgzZgK1e+CcAC9Nu5K6Q/f1OtKlgHAaz9nWOww OoZsRgEim4kFJMdFSQ7NL5OROEPyPnCKxrNe72OzsfwQ9JTE6cmEWYO1cV5d3Gdt DcHva2x6vwP/p9itt1G1DCKLx+yGkMuPW///hw7BQs0gj2xG09PnQqZnaWiIcLiQ nm26pfFqq+7UW4ComJlsnWxd0kPPmM8eW8s2VpBGgNq0JRXSJkcFEZftkk4nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXbCBsYVg9Ypc+FYBR/dcKI2CJiMwHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTBkZTIzMWYtZmI4YS00MjdhLWFh MzYtMGEzZmM5NzIzMjhkLzAvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAy QzNFRTZBRDFGOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACuq/pHIlQ5vtVQs9WD2sk3DX3l6vWqmxgFE xxXcg/QirK+k0YtvBkdcgxfky1mnxFa3N9APnDyOZqerp3/LwcyuSknXVshywwts 0eQ2zFsofw16pm2YS3OHfOL3EJrSbmPn/of2KDcNbggB3stlir4BfEv76V3VEcb8 u+gfcRQ+TfmkHXmoIwIq+25xiBbwc4xS8T8vEQw8CZvNkD6lFpX2wJrkTl/iQyho MAKLlBEYOLhYVOezByH86qcDN/XxzduFqbCPyaNxRuYvrK20mtANzvDp3sMWaSvD S46V0jPyGrgzReQTDLRJAkk8xUPHWl4UgLuiCHdRjCYfbbDJbr8= -----END CERTIFICATE-----Generated at Tue Apr 29 09:36:44 2025 by rpki-client