$ rpki-client -vvf repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft File: 20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft (raw, json) Hash identifier: Vxu/sPHe5EDsQy3adiILnHmJSFQv0cV4mdVlCBZT348= Subject key identifier: 37:38:0F:B5:25:2B:2B:46:9E:2A:9C:A9:07:90:A6:74:A9:02:3E:8C Authority key identifier: 20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE Certificate issuer: /CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Certificate serial: 102BD664960824159D14AF077E5921FF60734808 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft Manifest number: 01BD Signing time: Mon 28 Apr 2025 11:00:45 +0000 Manifest this update: Mon 28 Apr 2025 10:55:45 +0000 Manifest next update: Thu 01 May 2025 20:14:45 +0000 Files and hashes: 1: 3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa (hash: IgfjgKMY3XCpPST6kax6ANVIRUFC9yDuOzV+TPxNu+4=) 2: 20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl (hash: Yr/ITAgf1I7J3P0X9zBZGR9DoNcE5dJ1X2iY8M8Pr80=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:14:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:2b:d6:64:96:08:24:15:9d:14:af:07:7e:59:21:ff:60:73:48:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Validity Not Before: Apr 28 10:55:45 2025 GMT Not After : May 1 20:14:45 2025 GMT Subject: CN=37380FB5252B2B469E2A9CA90790A674A9023E8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4b:92:4c:44:de:40:57:d2:a7:37:ca:09:e5: 74:73:26:c7:10:05:29:66:f8:75:c1:9e:7e:87:f9: 2b:5c:bf:89:42:d1:d9:10:b3:3c:28:c9:3c:5c:2c: a6:19:6f:1d:9b:2d:4f:17:3c:8f:10:48:17:c9:04: ea:cd:c2:41:32:b2:25:00:05:a2:48:db:80:60:6b: 0d:ef:15:a6:28:02:f8:8a:21:9d:7f:80:af:6f:3b: 50:91:9b:d1:e2:c9:d0:23:ea:95:a0:aa:0a:48:32: 8b:5f:27:be:13:b0:90:11:19:40:2c:69:cd:69:17: c0:6d:36:c7:ab:b5:7c:14:aa:c3:b1:b7:5e:c5:f7: 22:85:a7:43:d0:2f:e3:3e:4c:e5:1c:3a:9b:e9:a4: 5e:a7:9f:72:cd:62:a8:19:e9:c1:0c:cc:cb:e6:3a: 46:64:88:84:40:df:ca:f4:62:72:91:c0:b8:cd:65: 1e:61:4d:f2:d8:04:92:e5:c4:9f:b9:d6:5b:21:4b: b6:9f:bc:43:4b:64:8d:cf:b3:6a:d1:20:70:7e:02: 34:84:56:a8:04:6a:c9:ff:63:96:4b:4e:4d:64:a5: 0c:ed:64:36:87:6f:ff:65:cf:61:15:2a:1e:cc:a6: c6:a4:e5:b3:14:83:ff:2e:0e:00:30:da:bf:2b:6d: 6d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:38:0F:B5:25:2B:2B:46:9E:2A:9C:A9:07:90:A6:74:A9:02:3E:8C X509v3 Authority Key Identifier: keyid:20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:78:5c:fa:9e:08:6e:00:48:1c:93:53:00:10:3e:13:b7:0d: ae:2a:8c:5c:9e:c6:3d:a7:fc:ea:54:28:7a:62:6a:10:8e:e2: be:14:9f:29:8a:25:8b:39:ad:c6:ce:a3:29:b7:83:e5:85:cb: 2a:d2:d3:ab:3d:5d:4a:bc:f7:12:f5:6d:99:e2:9d:fa:d9:3f: e7:5b:d7:58:0f:9f:ef:e2:d2:b6:51:ca:ae:ec:d5:82:9b:97: 16:73:d6:d1:2d:1a:12:d7:70:25:cb:81:ec:a2:ac:8e:59:2b: f8:46:5d:1f:d1:ba:4e:fa:79:8c:e3:15:f3:8b:5a:ea:9b:0b: 07:86:aa:79:10:f8:f5:1a:4f:ae:48:ff:ea:cb:a1:d4:57:40: a6:c5:68:b2:49:be:71:8a:ce:d2:fe:02:5a:c6:16:a7:bf:ac: 6e:5f:fe:05:5a:69:ab:d9:e1:04:fb:8a:d5:87:99:30:51:33: f9:06:0c:d6:9d:a3:b6:0c:9b:5c:2f:27:39:6c:7e:33:e2:9e: da:38:6d:b9:fc:af:7c:28:30:80:ec:0c:5b:72:30:0d:03:e2: 38:82:01:ee:19:59:c3:68:36:02:96:af:29:cc:d8:3e:11:21: 69:03:35:3c:99:7f:48:6a:9c:d8:5f:2a:e6:b0:27:ac:7f:a8: c8:50:c0:e3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUECvWZJYIJBWdFK8Hflkh/2BzSAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDND NUQ5QUJFRTAeFw0yNTA0MjgxMDU1NDVaFw0yNTA1MDEyMDE0NDVaMDMxMTAvBgNV BAMTKDM3MzgwRkI1MjUyQjJCNDY5RTJBOUNBOTA3OTBBNjc0QTkwMjNFOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbS5JMRN5AV9KnN8oJ5XRzJscQ BSlm+HXBnn6H+Stcv4lC0dkQszwoyTxcLKYZbx2bLU8XPI8QSBfJBOrNwkEysiUA BaJI24Bgaw3vFaYoAviKIZ1/gK9vO1CRm9HiydAj6pWgqgpIMotfJ74TsJARGUAs ac1pF8BtNsertXwUqsOxt17F9yKFp0PQL+M+TOUcOpvppF6nn3LNYqgZ6cEMzMvm OkZkiIRA38r0YnKRwLjNZR5hTfLYBJLlxJ+51lshS7afvENLZI3Ps2rRIHB+AjSE VqgEasn/Y5ZLTk1kpQztZDaHb/9lz2EVKh7Mpsak5bMUg/8uDgAw2r8rbW3LAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNzgPtSUrK0aeKpypB5CmdKkCPowwHwYDVR0j BBgwFoAUIP0WZVA2k1LWxMirjp5CA8XZq+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODk5YTE1Yi1kNWFlLTQ1ZWMtODAxMi1hNmNhYWIzZGQ4OGIvMC8yMEZEMTY2NTUw MzY5MzUyRDZDNEM4QUI4RTlFNDIwM0M1RDlBQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDNDNUQ5 QUJFRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjg5OWExNWItZDVhZS00NWVjLTgw MTItYTZjYWFiM2RkODhiLzAvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQy MDNDNUQ5QUJFRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG14XPqeCG4ASByTUwAQPhO3Da4qjFyexj2n /OpUKHpiahCO4r4UnymKJYs5rcbOoym3g+WFyyrS06s9XUq89xL1bZninfrZP+db 11gPn+/i0rZRyq7s1YKblxZz1tEtGhLXcCXLgeyirI5ZK/hGXR/Ruk76eYzjFfOL WuqbCweGqnkQ+PUaT65I/+rLodRXQKbFaLJJvnGKztL+AlrGFqe/rG5f/gVaaavZ 4QT7itWHmTBRM/kGDNado7YMm1wvJzlsfjPinto4bbn8r3woMIDsDFtyMA0D4jiC Ae4ZWcNoNgKWrynM2D4RIWkDNTyZf0hqnNhfKuawJ6x/qMhQwOM= -----END CERTIFICATE-----Generated at Wed Apr 30 02:50:41 2025 by rpki-client