$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: l+hWaTl3kGaB6jm+aSsiJvK/CQufI2NHfq6fVdvtuTo= Subject key identifier: 19:63:BC:AE:A5:28:BF:B4:5D:A1:77:69:98:2B:8D:54:9F:54:EB:3E Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 4A724CC8E1CCFA6BF1ADBFEEF81750292489AB39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: D4 Signing time: Thu 24 Apr 2025 16:21:50 +0000 Manifest this update: Thu 24 Apr 2025 16:16:50 +0000 Manifest next update: Sun 27 Apr 2025 21:56:50 +0000 Files and hashes: 1: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: ISvkc7TdKqqJ/n6UEXEjk7tovMFVCO5ARsMJ9hO6dPM=) 2: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xeW9Q+jrWgb1kNw9Ck6owBJ7nXg3E26nbn0fhXlo6qI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:72:4c:c8:e1:cc:fa:6b:f1:ad:bf:ee:f8:17:50:29:24:89:ab:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Apr 24 16:16:50 2025 GMT Not After : Apr 27 21:56:50 2025 GMT Subject: CN=1963BCAEA528BFB45DA17769982B8D549F54EB3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b7:13:9f:14:03:68:99:9c:74:00:47:c5:82: f6:a1:2e:82:82:b3:2a:63:8e:0f:81:be:1c:48:91: b6:71:6d:1c:b0:39:c9:76:e3:60:cf:0b:fa:46:1f: ce:f6:c5:df:05:1e:62:a2:f8:c8:07:fc:c1:b4:9b: d0:36:20:a9:1f:c0:c2:20:7f:9e:df:42:ba:00:de: 1d:20:f4:2c:59:57:1f:07:c3:7f:71:18:c4:9f:50: be:d4:67:7d:b4:3a:8a:a2:6f:e2:6d:62:9e:f3:da: 32:47:42:9c:ee:d1:08:4a:01:09:d1:f8:1e:5e:ea: 5a:84:a5:e0:c4:3e:04:85:73:79:59:2b:b6:33:c4: d2:f4:9b:0b:1f:01:6a:ee:04:14:fc:d8:ed:e1:4a: a5:c6:3e:94:60:62:f9:f9:81:b6:5c:70:ab:34:cd: 72:80:e1:1a:7f:fc:f1:a7:1a:0e:88:e9:89:c1:23: ee:20:02:8f:3a:28:5c:ff:17:9a:73:bd:c0:10:1a: d0:fc:2d:b8:55:2e:5e:8e:ef:cf:55:4d:53:76:46: 9e:31:ad:34:f4:ce:91:74:8e:59:d6:9f:4c:20:27: 88:e8:5e:b1:b6:cf:50:9b:72:96:fe:bd:d9:ec:c8: cb:a4:01:0b:a5:fd:4d:60:ac:68:9b:bd:41:3b:0c: 0d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:63:BC:AE:A5:28:BF:B4:5D:A1:77:69:98:2B:8D:54:9F:54:EB:3E X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:41:8a:74:31:24:57:74:f4:f5:8d:de:2c:60:8b:61:87:c9: 2c:1f:48:4d:2e:9a:b4:1f:a9:e7:2e:ef:ba:b0:20:0e:13:29: 5d:ab:22:33:bd:b1:03:03:5d:5b:20:e6:f9:5e:43:14:5c:f9: a6:94:a0:8b:87:4b:a2:8b:88:57:13:e7:2d:52:4c:12:ef:2f: c8:c0:6b:df:94:6a:b4:56:15:9c:40:ca:cf:4c:bf:73:70:a8: d5:3e:a8:71:1e:77:dc:bd:a8:5b:22:35:c1:4a:56:a9:55:2c: 02:82:86:b1:46:45:4a:13:67:95:00:e6:16:c4:2d:a7:a3:79: ae:04:fc:70:92:2d:5a:9c:75:0a:c6:c7:61:57:cb:d3:f9:1c: 5a:27:92:dc:b2:6d:11:19:a2:4c:45:e6:26:96:11:28:4d:22: 92:0c:56:17:c8:d2:6f:5b:2a:fb:49:cc:77:80:4e:85:b4:fa: 20:ed:84:00:0e:37:92:db:38:48:72:ab:21:c7:b2:8e:ad:b4: 42:3e:6d:98:fc:91:f1:fc:1b:dd:a0:c4:71:f8:f7:d8:cd:3c: b7:3b:94:77:bb:93:09:d5:81:4e:e1:d5:ef:48:6c:a1:d0:15: 0d:d2:02:9c:32:6f:a4:2f:f4:0b:88:12:66:73:8f:01:e0:98: 4f:8e:ba:e6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSnJMyOHM+mvxrb/u+BdQKSSJqzkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNTA0MjQxNjE2NTBaFw0yNTA0MjcyMTU2NTBaMDMxMTAvBgNV BAMTKDE5NjNCQ0FFQTUyOEJGQjQ1REExNzc2OTk4MkI4RDU0OUY1NEVCM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMtxOfFANomZx0AEfFgvahLoKC sypjjg+BvhxIkbZxbRywOcl242DPC/pGH872xd8FHmKi+MgH/MG0m9A2IKkfwMIg f57fQroA3h0g9CxZVx8Hw39xGMSfUL7UZ320Ooqib+JtYp7z2jJHQpzu0QhKAQnR +B5e6lqEpeDEPgSFc3lZK7YzxNL0mwsfAWruBBT82O3hSqXGPpRgYvn5gbZccKs0 zXKA4Rp//PGnGg6I6YnBI+4gAo86KFz/F5pzvcAQGtD8LbhVLl6O789VTVN2Rp4x rTT0zpF0jlnWn0wgJ4joXrG2z1Cbcpb+vdnsyMukAQul/U1grGibvUE7DA21AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGWO8rqUov7RdoXdpmCuNVJ9U6z4wHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHhBinQxJFd09PWN3ixgi2GHySwfSE0umrQf qecu77qwIA4TKV2rIjO9sQMDXVsg5vleQxRc+aaUoIuHS6KLiFcT5y1STBLvL8jA a9+UarRWFZxAys9Mv3NwqNU+qHEed9y9qFsiNcFKVqlVLAKChrFGRUoTZ5UA5hbE Laejea4E/HCSLVqcdQrGx2FXy9P5HFonktyybREZokxF5iaWEShNIpIMVhfI0m9b KvtJzHeAToW0+iDthAAON5LbOEhyqyHHso6ttEI+bZj8kfH8G92gxHH499jNPLc7 lHe7kwnVgU7h1e9IbKHQFQ3SApwyb6Qv9AuIEmZzjwHgmE+OuuY= -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:38 2025 by rpki-client on console.sobornost.net