$ rpki-client -vvf repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft File: 3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft (raw, json) Hash identifier: p6iAZSbWYYxEb+RZOZDkKrdAJDkpouaHwPnLkGpQoZo= Subject key identifier: F3:2A:14:E3:33:58:D2:13:8C:58:8F:7C:4A:61:5C:75:86:FB:2D:36 Authority key identifier: 3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA Certificate issuer: /CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Certificate serial: 263E82D9B928F40035599B42A1220F4685296EF8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft Manifest number: 0316 Signing time: Mon 28 Apr 2025 05:11:52 +0000 Manifest this update: Mon 28 Apr 2025 05:06:52 +0000 Manifest next update: Thu 01 May 2025 10:51:52 +0000 Files and hashes: 1: 3130332e3137312e3138332e302f32342d3234203d3e20313432333735.roa (hash: KwtUaoClH3kiNpvEIWalSEf5bxo2cymUbkAJRaf/ygM=) 2: 3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl (hash: DzXBTIY3it9AUhxI2RguH8uY1Ztji4VSFwJnJitok8s=) 3: 3130332e3137312e3138322e302f32332d3233203d3e20313432333735.roa (hash: aihSJuIZjlYbfPjvBLdvafMIwZ5NASIBmOuqn4SEmM0=) 4: 3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa (hash: 7VSc9Gcvnpfn7ZPPafV+FSx6VsyDCdcR7tm8J+oVFFo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 10:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:3e:82:d9:b9:28:f4:00:35:59:9b:42:a1:22:0f:46:85:29:6e:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Validity Not Before: Apr 28 05:06:52 2025 GMT Not After : May 1 10:51:52 2025 GMT Subject: CN=F32A14E33358D2138C588F7C4A615C7586FB2D36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d0:d5:2e:1e:fc:5c:ff:46:f8:fe:bd:ed:39: 63:09:f8:a6:15:89:0e:04:e4:db:4c:26:72:53:74: 6a:b8:3d:15:b9:8a:bf:c5:18:64:1a:21:da:52:ed: 62:9e:13:d3:b4:8f:39:c2:4b:a6:0a:25:b5:df:d9: 24:4a:87:eb:ac:74:ef:85:f2:31:7f:b6:3e:ff:55: 92:48:04:29:64:d2:45:09:5e:3b:49:0e:ba:df:29: b6:c7:f3:85:25:8d:f2:83:58:da:ae:ba:34:95:f6: bb:1f:37:89:ec:d4:97:52:3b:82:71:2f:a3:9c:68: 35:bc:85:e6:65:ad:1c:77:85:e0:d8:a5:c8:a7:ba: d7:1b:34:7a:29:e1:e1:fd:67:7a:31:95:7f:ba:eb: 1f:24:40:f9:22:35:8d:10:27:55:80:09:59:4a:96: e4:79:8b:f6:c6:a7:52:52:b8:fa:fb:0c:65:ba:84: 8c:17:b7:c5:5d:f2:c4:b4:e2:b0:36:25:9a:0c:8d: 60:10:67:20:d3:a1:5d:79:d3:4f:f4:90:f2:30:88: 67:8d:11:b5:2a:c0:95:40:bd:6a:56:62:a1:c0:03: f4:07:51:cf:8b:01:25:56:4c:38:ae:7c:88:52:4a: 49:71:32:2c:7b:70:f5:34:2c:eb:30:56:10:ea:3b: ab:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:2A:14:E3:33:58:D2:13:8C:58:8F:7C:4A:61:5C:75:86:FB:2D:36 X509v3 Authority Key Identifier: keyid:3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:d2:86:0e:8e:d0:f2:5d:0d:7a:ff:3a:12:99:22:59:e6:d6: 05:0b:4a:d4:e5:18:bf:5c:5f:c2:54:1f:60:83:bc:08:47:24: 1c:2e:7f:80:e0:fc:f2:fd:f6:9a:9f:d3:65:bc:ba:8b:89:51: 1a:18:92:73:fa:b9:6c:6d:07:f7:86:8d:99:15:a8:89:68:98: 73:89:38:db:10:05:01:69:c5:a0:40:b6:df:2c:e7:eb:cb:80: a0:68:60:34:c7:d7:3f:ef:c7:e4:d4:ce:c2:5e:2d:ea:12:97: 95:83:15:4d:86:cb:b6:6a:a0:52:ef:d3:62:69:a3:4b:1d:b0: 8c:6c:22:0a:42:3c:6e:82:87:c9:7a:28:df:4b:2a:6c:e0:90: 92:87:0c:6c:e1:de:42:8f:64:69:04:2d:43:89:93:e9:da:e6: aa:7a:7a:7a:ec:bf:8e:95:b9:0e:00:65:99:f5:00:98:56:cd: c1:ad:ae:68:1e:65:b1:3b:6f:70:5d:a8:bc:fa:93:0c:0b:eb: bb:bf:11:0b:f7:a8:a6:84:db:0f:98:18:91:bb:07:12:a9:cb: 10:32:e1:ec:04:7a:5b:a6:5c:03:37:73:21:00:e3:70:03:11: 31:87:d9:c2:23:cc:f9:74:98:39:98:74:d4:64:f6:28:b3:10: c0:4c:3e:ac -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJj6C2bko9AA1WZtCoSIPRoUpbvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVG NjUxQkFBQTAeFw0yNTA0MjgwNTA2NTJaFw0yNTA1MDExMDUxNTJaMDMxMTAvBgNV BAMTKEYzMkExNEUzMzM1OEQyMTM4QzU4OEY3QzRBNjE1Qzc1ODZGQjJEMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC00NUuHvxc/0b4/r3tOWMJ+KYV iQ4E5NtMJnJTdGq4PRW5ir/FGGQaIdpS7WKeE9O0jznCS6YKJbXf2SRKh+usdO+F 8jF/tj7/VZJIBClk0kUJXjtJDrrfKbbH84UljfKDWNquujSV9rsfN4ns1JdSO4Jx L6OcaDW8heZlrRx3heDYpcinutcbNHop4eH9Z3oxlX+66x8kQPkiNY0QJ1WACVlK luR5i/bGp1JSuPr7DGW6hIwXt8Vd8sS04rA2JZoMjWAQZyDToV1500/0kPIwiGeN EbUqwJVAvWpWYqHAA/QHUc+LASVWTDiufIhSSklxMix7cPU0LOswVhDqO6u9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8yoU4zNY0hOMWI98SmFcdYb7LTYwHwYDVR0j BBgwFoAUPs59Lpwv89XTDSlNdJLD/vZRuqowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzUwNWNiMy1iNTVlLTQwZTQtYWM3OS02MzY1NjA2ZjRlZjkvMC8zRUNFN0QyRTlD MkZGM0Q1RDMwRDI5NEQ3NDkyQzNGRUY2NTFCQUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVGNjUx QkFBQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTM1MDVjYjMtYjU1ZS00MGU0LWFj NzktNjM2NTYwNmY0ZWY5LzAvM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMz RkVGNjUxQkFBQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADTShg6O0PJdDXr/OhKZIlnm1gULStTlGL9c X8JUH2CDvAhHJBwuf4Dg/PL99pqf02W8uouJURoYknP6uWxtB/eGjZkVqIlomHOJ ONsQBQFpxaBAtt8s5+vLgKBoYDTH1z/vx+TUzsJeLeoSl5WDFU2Gy7ZqoFLv02Jp o0sdsIxsIgpCPG6Ch8l6KN9LKmzgkJKHDGzh3kKPZGkELUOJk+na5qp6enrsv46V uQ4AZZn1AJhWzcGtrmgeZbE7b3BdqLz6kwwL67u/EQv3qKaE2w+YGJG7BxKpyxAy 4ewEelumXAM3cyEA43ADETGH2cIjzPl0mDmYdNRk9iizEMBMPqw= -----END CERTIFICATE-----Generated at Wed Apr 30 05:25:46 2025 by rpki-client