$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft File: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft (raw, json) Hash identifier: J9UjdPERoDEPpH50F2YqKw71TWlHts82WVHIfAYFDic= Subject key identifier: DA:00:76:70:17:7F:C3:9C:47:1E:4A:A6:A4:7E:CA:ED:BB:7C:E2:50 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 480A670F8EAF3B3255FA9D31C4630F7D0E70D1C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft Manifest number: 0223 Signing time: Thu 24 Apr 2025 05:21:59 +0000 Manifest this update: Thu 24 Apr 2025 05:16:59 +0000 Manifest next update: Sun 27 Apr 2025 17:07:59 +0000 Files and hashes: 1: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (hash: RZP1u67IkDY1VxYw8axwNJaL5jYZcoL8kOhW1c7O+Eg=) 2: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (hash: fr8+FrmlPGl8AfQlow8lySzaZVznKtOBprgMvRW46vw=) 3: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl (hash: yOm+2rbRvnNDvjxNC+PZ31wqx1J5K1ozzpW+SaMxjd0=) 4: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (hash: yOR4ha1iNJToiWgXnk0oG7heqETlfk80W41Jvd2P1xg=) 5: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (hash: Q49EnVockO7Wf1pEkALOtAUiauf7qPnxOjOocdL9Yus=) 6: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (hash: TIp9WHuUqK5QCHJsHK2qMd4Di3b+YgT1J52ydC6PYvs=) 7: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (hash: s6MFeDXqeIkTAot5lzYFNGxoGgi1Yjw/2CsMKFqccxU=) 8: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (hash: B08azy3XQsiTZf5UppG1ngPrOYAEwHH6x3322yJGfrI=) 9: 3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa (hash: 2gVCxg+hDmKkdBfr1IN+Jz7t1loTVbupLhThyLDp4zk=) 10: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (hash: zVGnPMz6FjIWNaiokQGONx21w4m18vhd71uDshC7eyA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 08:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:0a:67:0f:8e:af:3b:32:55:fa:9d:31:c4:63:0f:7d:0e:70:d1:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Apr 24 05:16:59 2025 GMT Not After : Apr 27 17:07:59 2025 GMT Subject: CN=DA007670177FC39C471E4AA6A47ECAEDBB7CE250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7c:d7:9a:48:5e:c5:0e:d2:66:0f:18:e2:52: 61:d6:e1:97:50:4a:74:0b:d7:03:01:d0:4b:f7:64: 58:38:f9:a1:95:23:b8:90:27:39:e6:24:b1:01:b6: e4:40:02:48:cf:c4:f3:bb:64:b2:89:15:6e:93:72: 7d:08:0c:d5:56:59:1b:65:25:38:cb:d0:c4:e7:cf: 67:37:3a:21:95:e3:88:fc:1c:e5:c2:fa:8c:5b:c7: b7:07:17:23:58:40:3c:55:17:2a:dc:3d:c8:a4:f7: 4e:a4:83:17:44:0f:20:ef:1b:eb:44:af:5d:e6:2b: e0:ab:8f:0c:aa:c2:07:fb:41:d8:57:f4:cd:b0:1b: 84:1d:94:8b:87:d8:19:5c:d1:42:31:d0:e7:a6:8f: 8a:97:e5:00:5d:44:8e:3c:86:9a:67:59:5b:a3:98: 37:ff:bb:b6:72:f6:d6:9d:90:83:8a:53:4e:46:9a: aa:c2:e4:bd:0f:e0:b0:0a:89:a1:1f:58:2f:b2:1f: 03:55:37:64:fb:e2:e3:cc:12:ff:cd:46:fa:92:b2: 85:c1:38:80:eb:aa:ca:00:b7:81:ab:ae:a5:30:84: 9f:89:be:e7:e3:8d:e6:10:7e:6d:fc:fa:46:3e:e1: 89:29:9f:69:77:67:09:67:b8:8a:6d:9c:5a:cb:31: 74:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:00:76:70:17:7F:C3:9C:47:1E:4A:A6:A4:7E:CA:ED:BB:7C:E2:50 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:af:0b:75:b8:e5:02:52:29:ec:38:56:7e:76:d8:ca:67:64: f1:1f:31:98:ec:27:9c:cb:db:f6:3f:60:ec:17:c0:ef:5c:25: 15:c0:fb:19:35:36:b4:d0:dc:6a:9c:46:30:78:d7:bd:1c:9a: a4:95:b2:dc:48:f4:85:eb:c6:2f:db:d8:fb:6f:f5:ff:67:b3: a5:b7:e0:26:1f:5a:82:7f:0c:2d:eb:0e:9a:bf:ad:6d:fe:9d: d7:5a:f8:fb:73:15:28:3b:a9:34:1b:d6:18:a3:51:3e:f5:b3: 4b:fd:0b:e7:05:8d:c1:6b:90:9b:db:47:16:9b:c5:99:e9:bf: 4c:78:60:92:de:09:08:c4:40:2d:05:03:6d:42:93:a1:63:84: 09:67:91:c8:79:3f:d7:cc:df:42:7b:c6:3a:1d:4f:1b:5e:16: e3:3f:f4:82:b2:cc:dc:a5:a2:73:2c:60:9f:1f:92:5c:9d:85: 2e:34:47:f4:59:92:ab:e9:04:7b:2e:be:85:8a:ec:14:b4:cd: c3:62:7f:f4:41:79:06:9d:da:1e:3c:b1:ab:88:ad:6c:9a:27: 38:8e:64:06:9f:36:1d:54:92:7d:52:8c:c6:41:ba:f9:dd:ce: 9a:18:17:a3:15:46:a0:c9:28:d3:cb:38:83:7c:8e:09:fd:f7: b9:a3:cc:c3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSApnD46vOzJV+p0xxGMPfQ5w0cMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTA0MjQwNTE2NTlaFw0yNTA0MjcxNzA3NTlaMDMxMTAvBgNV BAMTKERBMDA3NjcwMTc3RkMzOUM0NzFFNEFBNkE0N0VDQUVEQkI3Q0UyNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWfNeaSF7FDtJmDxjiUmHW4ZdQ SnQL1wMB0Ev3ZFg4+aGVI7iQJznmJLEBtuRAAkjPxPO7ZLKJFW6Tcn0IDNVWWRtl JTjL0MTnz2c3OiGV44j8HOXC+oxbx7cHFyNYQDxVFyrcPcik906kgxdEDyDvG+tE r13mK+Crjwyqwgf7QdhX9M2wG4QdlIuH2Blc0UIx0Oemj4qX5QBdRI48hppnWVuj mDf/u7Zy9tadkIOKU05GmqrC5L0P4LAKiaEfWC+yHwNVN2T74uPMEv/NRvqSsoXB OIDrqsoAt4GrrqUwhJ+JvufjjeYQfm38+kY+4Ykpn2l3ZwlnuIptnFrLMXQFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2gB2cBd/w5xHHkqmpH7K7bt84lAwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzhkMGU2NDAtMjJlOS00NDFjLTg2 MzQtZjk1MjUzMDdkYTc2LzAvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYy MzZCNzQwMTY2MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHGvC3W45QJSKew4Vn522MpnZPEfMZjsJ5zL 2/Y/YOwXwO9cJRXA+xk1NrTQ3GqcRjB4170cmqSVstxI9IXrxi/b2Ptv9f9ns6W3 4CYfWoJ/DC3rDpq/rW3+ndda+PtzFSg7qTQb1hijUT71s0v9C+cFjcFrkJvbRxab xZnpv0x4YJLeCQjEQC0FA21Ck6FjhAlnkch5P9fM30J7xjodTxteFuM/9IKyzNyl onMsYJ8fklydhS40R/RZkqvpBHsuvoWK7BS0zcNif/RBeQad2h48sauIrWyaJziO ZAafNh1Ukn1SjMZBuvndzpoYF6MVRqDJKNPLOIN8jgn997mjzMM= -----END CERTIFICATE-----Generated at Thu Apr 24 09:03:03 2025 by rpki-client on console.sobornost.net