$ rpki-client -vvf repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft File: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft (raw, json) Hash identifier: COkyA/IPBPi9uPDmL/Gz8bavxGJ3Q/HQTMPP5njlSWg= Subject key identifier: 50:F6:D9:A1:4F:B7:DA:44:28:52:5F:0F:CF:19:1F:66:C0:8D:2B:FD Authority key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 Certificate issuer: /CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Certificate serial: 3703119BA578E034D74F354EF5BEEAC3B7CE93CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft Manifest number: 049B Signing time: Mon 28 Apr 2025 02:51:46 +0000 Manifest this update: Mon 28 Apr 2025 02:46:46 +0000 Manifest next update: Thu 01 May 2025 04:54:46 +0000 Files and hashes: 1: 3130332e3135362e31342e302f32332d3234203d3e203538383231.roa (hash: uhbTS40xOE2iorcFCGhU6uKqyXCDewHO7yiFkBSc5gw=) 2: 323430363a376234303a3a2f33322d3438203d3e203538383231.roa (hash: UaGmn4kTfe+1TDn5eCuN9O53yKjU57F4Hz3jxRXHWWY=) 3: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl (hash: E4z91nVm/5EVwgmJiP4p+0HOm6WCyvyONykDkTlWOkY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 04:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:03:11:9b:a5:78:e0:34:d7:4f:35:4e:f5:be:ea:c3:b7:ce:93:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Validity Not Before: Apr 28 02:46:46 2025 GMT Not After : May 1 04:54:46 2025 GMT Subject: CN=50F6D9A14FB7DA4428525F0FCF191F66C08D2BFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:39:65:1c:38:1d:81:7a:40:de:b0:aa:d9:17: ae:33:6d:ee:c5:2c:f8:99:94:33:b3:e4:8b:8e:9b: fe:37:62:6c:bd:6a:b4:d7:57:82:41:09:ed:7f:dc: a3:a3:95:5c:6b:d1:c2:88:c2:1a:64:c5:39:02:de: e8:0a:1c:77:27:2b:85:d9:ab:b0:a3:6a:4e:38:23: 12:ac:45:32:ad:42:d9:dc:0c:96:ee:6b:5a:ed:5e: 04:da:d7:ee:40:f2:ae:f5:08:75:9a:d3:54:dd:46: cf:c4:3f:75:b3:3b:24:70:6a:f9:c9:bd:76:65:00: 41:b5:99:1d:e4:25:0b:b3:5f:86:bb:d3:23:b5:41: e2:54:77:8b:f1:75:51:50:b0:24:de:fa:f6:c6:ae: 6c:7d:40:63:03:60:ef:55:43:c7:96:80:ca:40:aa: 8d:10:0a:ca:3e:11:94:ca:03:20:40:72:1b:c1:71: 74:b2:da:2d:f5:0a:9b:c0:7c:1d:48:bf:47:ae:e3: 56:9b:18:3c:fa:e4:18:b3:ca:8b:b1:44:ac:76:a1: 02:b5:e4:06:61:5f:45:11:20:21:74:26:5c:2a:9f: 02:9e:83:76:1d:53:cc:1e:d4:c4:8b:31:6b:0c:65: 25:e8:6b:88:82:56:e9:26:a9:42:28:f0:a8:ca:39: 4d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:F6:D9:A1:4F:B7:DA:44:28:52:5F:0F:CF:19:1F:66:C0:8D:2B:FD X509v3 Authority Key Identifier: keyid:1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:8d:1f:36:32:e4:b3:51:1f:e9:97:1f:e8:13:a3:3d:ea:db: 02:9a:ec:92:66:93:67:39:b1:4f:d0:3a:93:b5:85:78:cd:e7: af:7f:ae:94:a4:7e:d0:ce:ca:8b:69:3e:fb:42:a6:80:3c:ff: 68:86:24:73:e3:fd:c1:be:6c:07:a3:d4:0b:04:db:06:6e:c0: 41:d7:aa:70:50:33:bb:fa:8f:23:75:01:a8:8d:6c:d3:4c:21: 50:07:a9:3c:af:4e:52:4d:7e:36:45:75:ce:b1:fa:5e:20:42: 57:74:27:cd:fd:42:71:f4:2f:9b:9a:2f:a2:f1:69:24:4d:e7: 70:67:be:a2:df:91:8b:bf:81:9c:ed:3d:0a:d0:d7:e0:0d:cc: c9:63:a4:f9:9b:e1:8c:de:42:d4:6a:b9:00:5e:78:e8:2a:86: e4:d4:de:9c:92:3f:4b:a2:80:88:5d:0c:a8:6a:51:2e:b5:06: d2:b6:e8:6f:1d:b1:52:3c:bd:a6:d1:e1:08:b4:c4:6a:25:3a: fb:45:bd:60:27:9e:f1:f5:ba:76:84:3f:6d:35:d0:f3:20:4f: 2c:34:6b:40:b2:2b:f7:c9:c7:3b:ba:fd:56:e6:81:05:28:23: b5:b3:7e:f7:64:5c:29:e2:26:88:57:a6:e7:6b:e1:c7:73:25: a5:0d:67:37 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNwMRm6V44DTXTzVO9b7qw7fOk88wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2 OEY4MDQxOTAeFw0yNTA0MjgwMjQ2NDZaFw0yNTA1MDEwNDU0NDZaMDMxMTAvBgNV BAMTKDUwRjZEOUExNEZCN0RBNDQyODUyNUYwRkNGMTkxRjY2QzA4RDJCRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlOWUcOB2BekDesKrZF64zbe7F LPiZlDOz5IuOm/43Ymy9arTXV4JBCe1/3KOjlVxr0cKIwhpkxTkC3ugKHHcnK4XZ q7Cjak44IxKsRTKtQtncDJbua1rtXgTa1+5A8q71CHWa01TdRs/EP3WzOyRwavnJ vXZlAEG1mR3kJQuzX4a70yO1QeJUd4vxdVFQsCTe+vbGrmx9QGMDYO9VQ8eWgMpA qo0QCso+EZTKAyBAchvBcXSy2i31CpvAfB1Iv0eu41abGDz65BizyouxRKx2oQK1 5AZhX0URICF0JlwqnwKeg3YdU8we1MSLMWsMZSXoa4iCVukmqUIo8KjKOU03AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUPbZoU+32kQoUl8PzxkfZsCNK/0wHwYDVR0j BBgwFoAUHY2cvFKTTvArzR1Hiuumo2j4BBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTFlYTUxMy1hYzZlLTRhNWYtYjNlYi1kNTM1MmNhZjQ4NmIvMC8xRDhEOUNCQzUy OTM0RUYwMkJDRDFENDc4QUVCQTZBMzY4RjgwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2OEY4 MDQxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2UxZWE1MTMtYWM2ZS00YTVmLWIz ZWItZDUzNTJjYWY0ODZiLzAvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2 QTM2OEY4MDQxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE6NHzYy5LNRH+mXH+gToz3q2wKa7JJmk2c5 sU/QOpO1hXjN569/rpSkftDOyotpPvtCpoA8/2iGJHPj/cG+bAej1AsE2wZuwEHX qnBQM7v6jyN1AaiNbNNMIVAHqTyvTlJNfjZFdc6x+l4gQld0J839QnH0L5uaL6Lx aSRN53BnvqLfkYu/gZztPQrQ1+ANzMljpPmb4YzeQtRquQBeeOgqhuTU3pySP0ui gIhdDKhqUS61BtK26G8dsVI8vabR4Qi0xGolOvtFvWAnnvH1unaEP2010PMgTyw0 a0CyK/fJxzu6/VbmgQUoI7WzfvdkXCniJohXpudr4cdzJaUNZzc= -----END CERTIFICATE-----Generated at Tue Apr 29 12:50:08 2025 by rpki-client