$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft File: 7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft (raw, json) Hash identifier: 0+u7wpHAOBZaBkzVaDsHjhxgaJjpH4uO9Ro27Tiv2P4= Subject key identifier: 42:8B:18:51:7C:D4:B9:FD:7F:3D:A4:77:86:70:E9:7F:1E:2C:3A:6E Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 755EF46A50DA661100BAF71FD00E9C2B31DA8675 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft Manifest number: 0285 Signing time: Wed 23 Apr 2025 08:42:42 +0000 Manifest this update: Wed 23 Apr 2025 08:37:42 +0000 Manifest next update: Sat 26 Apr 2025 19:02:42 +0000 Files and hashes: 1: 3130332e39372e37392e302f32342d3234203d3e20313336313331.roa (hash: g7TDmW1J5jNMb6eLJToYzt8xdajrekh1Q+uRWpcwKv0=) 2: 7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl (hash: hE+0f69dlR7UIqIPge+pXVxJ85UJtyL7t/U6IGUZm7Q=) 3: 323430313a383434303a3133313a3a2f34382d3438203d3e20313336313331.roa (hash: 7XF+7tNQBQV2Wy0AsX8lBCySJ+ATYXgli7NY4z4VmfM=) 4: 3130332e39372e37372e302f32342d3234203d3e20313336313331.roa (hash: rgwWhpicbIXeIE3pTFSF/nJgGhjsTFXordy0vbByPyc=) 5: 323430313a383434303a3233313a3a2f34382d3438203d3e20313336313331.roa (hash: 9q0QjNfZ8ZidXQKSI35eyNIOpPTa4MZHY+H9XcdTGqQ=) 6: 323430313a383434303a3a2f33322d3332203d3e20313336313331.roa (hash: XjoAHco7m2PHrJkLw+g7kXYYTaQ359BKHQsXeKrypoE=) 7: 3130332e39372e37362e302f32342d3234203d3e20313336313331.roa (hash: sppd+EBGEaepceJfNxlZXMQLq/sqMLGJt/R8ADFWUfE=) 8: 323430313a383434303a33313a3a2f34382d3438203d3e20313336313331.roa (hash: imoDv7fNxiS0ABFe1mnjo4w6QxU9zgowGM6VjXLrifM=) 9: 3130332e39372e37382e302f32342d3234203d3e20313336313331.roa (hash: gTWqsHLXGzmwOn5oUbLdKwsFxUOTG6JntDETCN1uoJg=) 10: 323430313a383434303a3331313a3a2f34382d3438203d3e20313336313331.roa (hash: uNKV4J4iyB42iT7YiJbc/obq8TacFQRWwVPHqjYHdt4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 09:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:5e:f4:6a:50:da:66:11:00:ba:f7:1f:d0:0e:9c:2b:31:da:86:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Apr 23 08:37:42 2025 GMT Not After : Apr 26 19:02:42 2025 GMT Subject: CN=428B18517CD4B9FD7F3DA4778670E97F1E2C3A6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:e8:8c:bc:6b:80:62:ee:07:9d:b6:48:8f:80: dc:4e:b5:56:c5:94:f1:4c:63:50:bd:ae:3a:be:68: 5f:ce:9a:3f:b5:e7:aa:52:77:f8:2d:0e:73:46:99: 8f:69:85:89:f6:de:f4:aa:91:92:98:1f:c1:a0:46: 67:46:5e:44:6a:44:d9:21:b0:05:c8:4c:e5:32:bd: 1b:fd:3b:d8:c4:52:c7:db:bb:a1:b4:e2:e5:60:b7: 75:a7:5c:25:ea:52:e6:60:a1:af:66:bb:ee:de:77: e0:d9:d5:82:31:81:a9:f6:da:5b:5c:84:36:e6:d1: ba:ce:dc:14:34:c0:7c:dc:f6:f8:80:4c:02:0b:0d: 35:e1:cb:87:72:c2:67:2d:bb:b7:b9:57:a2:b6:5e: 0b:b3:14:36:59:94:7e:35:ff:6a:2f:04:f9:8c:c5: 0b:7f:5c:d3:1a:55:b7:3a:ae:52:83:fc:9a:95:75: 6f:10:37:65:93:30:45:59:b4:5c:0f:32:4a:36:a7: 8c:bb:ed:12:a1:10:94:5d:d5:df:e5:0c:9f:e4:a2: 22:94:19:cf:09:2b:4a:d6:2e:ae:48:b7:71:d4:cc: 79:ab:19:2b:8e:3c:0e:36:02:16:24:c8:af:34:d7: df:a6:dc:05:51:36:1b:ca:bb:bf:2c:d3:82:07:69: 57:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:8B:18:51:7C:D4:B9:FD:7F:3D:A4:77:86:70:E9:7F:1E:2C:3A:6E X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:cf:e8:50:04:2e:e4:0e:2f:2d:9a:87:a7:d3:42:ab:c8:78: a6:40:9e:2f:40:63:9d:4c:6f:1a:c3:d7:7f:52:40:55:2d:2e: 3b:50:4d:59:4e:6a:33:9d:f8:99:c8:3a:a2:5b:0d:4c:be:25: 22:36:06:5b:b3:c6:f7:94:d3:ff:c1:ea:06:07:10:03:6e:2f: 8d:86:02:c1:6f:f3:bc:56:37:35:f2:52:8e:c9:1f:e5:77:3d: 4c:ba:d2:5a:d7:40:be:dd:fc:cd:36:af:9e:71:7d:e1:8e:af: 96:7c:92:32:79:15:37:81:f5:1e:fa:4e:f9:4f:49:d0:e4:3e: fe:38:d5:96:53:6b:a8:21:9c:99:38:00:23:2a:5e:85:a7:f5: 6d:fb:9f:06:4d:f4:6b:5f:2d:6c:10:e6:96:92:da:5a:26:24: 40:a4:bc:3e:98:1d:bc:97:68:97:e1:74:51:c4:c8:34:68:37: 6a:b1:5c:0e:22:a8:a6:b6:74:54:fd:bb:c4:24:10:b6:bc:c8: dc:40:4c:61:3f:e8:5f:74:a6:d2:ef:ef:c9:bc:fc:d2:60:cd: a5:ad:d1:1b:15:fa:b9:1b:60:8b:98:71:66:43:af:90:0a:1f: ab:02:94:cc:e7:7b:f3:16:ce:ea:52:13:91:d3:a9:35:7a:2a: be:6d:a5:63 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdV70alDaZhEAuvcf0A6cKzHahnUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNTA0MjMwODM3NDJaFw0yNTA0MjYxOTAyNDJaMDMxMTAvBgNV BAMTKDQyOEIxODUxN0NENEI5RkQ3RjNEQTQ3Nzg2NzBFOTdGMUUyQzNBNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl6Iy8a4Bi7gedtkiPgNxOtVbF lPFMY1C9rjq+aF/Omj+156pSd/gtDnNGmY9phYn23vSqkZKYH8GgRmdGXkRqRNkh sAXITOUyvRv9O9jEUsfbu6G04uVgt3WnXCXqUuZgoa9mu+7ed+DZ1YIxgan22ltc hDbm0brO3BQ0wHzc9viATAILDTXhy4dywmctu7e5V6K2XguzFDZZlH41/2ovBPmM xQt/XNMaVbc6rlKD/JqVdW8QN2WTMEVZtFwPMko2p4y77RKhEJRd1d/lDJ/koiKU Gc8JK0rWLq5It3HUzHmrGSuOPA42AhYkyK8019+m3AVRNhvKu78s04IHaVdZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQosYUXzUuf1/PaR3hnDpfx4sOm4wHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTU3YjBkN2UtZWFkZS00MzE4LWFi MjAtOGM3ZjJkNWJlNjlmLzAvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZG RDBCQUI5M0Y2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALTP6FAELuQOLy2ah6fTQqvIeKZAni9AY51M bxrD139SQFUtLjtQTVlOajOd+JnIOqJbDUy+JSI2BluzxveU0//B6gYHEANuL42G AsFv87xWNzXyUo7JH+V3PUy60lrXQL7d/M02r55xfeGOr5Z8kjJ5FTeB9R76TvlP SdDkPv441ZZTa6ghnJk4ACMqXoWn9W37nwZN9GtfLWwQ5paS2lomJECkvD6YHbyX aJfhdFHEyDRoN2qxXA4iqKa2dFT9u8QkELa8yNxATGE/6F90ptLv78m8/NJgzaWt 0RsV+rkbYIuYcWZDr5AKH6sClMzne/MWzupSE5HTqTV6Kr5tpWM= -----END CERTIFICATE-----Generated at Wed Apr 23 11:12:12 2025 by rpki-client on console.sobornost.net