$ rpki-client -vvf repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft File: D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft (raw, json) Hash identifier: 0rRN+TB5jqvmUeumTsgZl2BdIM845wFcPC8kLGVXVR4= Subject key identifier: 6E:92:00:0F:9A:97:F0:7F:3C:97:65:92:1F:8E:6F:C8:ED:89:EB:76 Authority key identifier: D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 Certificate issuer: /CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Certificate serial: 417DFC439B4825FB9E0AF90E97D6BE1DB56F37B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft Manifest number: 01CF Signing time: Sun 15 Jun 2025 10:51:06 +0000 Manifest this update: Sun 15 Jun 2025 10:46:06 +0000 Manifest next update: Wed 18 Jun 2025 19:12:06 +0000 Files and hashes: 1: D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl (hash: QhqZPKvx/NIcDZ5/67jsFRjO0ZMku18NxGFzR12ncds=) 2: 3130332e3138362e3230342e302f32342d3234203d3e20313439373233.roa (hash: 6UhOGV8DI7PfyTejWhCSmpLpe0trLgn56lREPd3WDVA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 19:12:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:7d:fc:43:9b:48:25:fb:9e:0a:f9:0e:97:d6:be:1d:b5:6f:37:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Validity Not Before: Jun 15 10:46:06 2025 GMT Not After : Jun 18 19:12:06 2025 GMT Subject: CN=6E92000F9A97F07F3C9765921F8E6FC8ED89EB76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d6:ab:85:95:16:0d:d2:b0:f7:72:80:7f:4f: aa:03:89:d6:fc:d8:c5:32:e2:28:63:af:a2:4c:45: f5:00:b2:9d:02:af:18:93:5b:25:0f:95:5b:dc:81: 9a:ad:4f:ad:2b:f4:ec:63:99:d5:87:1a:12:91:37: a9:ba:96:d9:fa:af:ca:21:13:a0:6f:4d:e0:9a:2d: 4f:52:7f:00:08:48:11:19:02:59:1d:8e:e2:16:2d: 10:b0:b9:86:5c:10:cb:1f:ff:95:6e:97:8d:23:f7: 2f:fe:34:c0:05:1f:9a:93:16:a4:21:af:ba:44:1e: 63:63:3f:4c:dc:54:30:49:83:ad:08:38:60:a1:0b: 16:1f:56:1a:5e:28:8f:5e:cc:b4:ad:2e:6c:72:2e: 8f:b5:b2:da:c5:e9:08:c2:85:d5:52:6d:f7:e6:2c: 06:9a:ad:9c:19:7d:70:87:f7:1d:1a:a4:51:a4:52: 66:cd:ad:dc:65:a5:1b:72:db:d6:e3:a9:c5:e7:0a: 5f:eb:ad:f3:d4:d1:9a:58:1d:94:e4:c6:79:ea:b1: 9b:b1:a7:43:98:8c:a5:a8:35:6c:8d:b7:45:2d:8d: bd:2f:8e:e6:76:16:3f:73:18:3c:2d:95:1c:b4:51: b7:87:0b:2f:9a:aa:92:bb:7c:da:eb:37:c0:2c:43: 78:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:92:00:0F:9A:97:F0:7F:3C:97:65:92:1F:8E:6F:C8:ED:89:EB:76 X509v3 Authority Key Identifier: keyid:D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:6b:15:4a:15:01:a9:af:d5:94:ba:94:4c:d8:d3:3f:fd:f4: 44:d2:67:45:91:10:9d:3b:65:74:2b:72:7c:d8:63:15:c5:06: d1:79:30:39:15:ed:df:09:22:55:31:27:0e:d8:f2:73:46:b6: ef:eb:0c:af:f1:03:bb:46:d2:32:a9:10:27:8c:79:7a:d1:25: 9f:59:39:8b:d0:db:aa:6e:92:96:d5:55:05:85:1d:b4:ab:b7: 00:c7:5c:aa:de:86:f3:c0:df:1c:8c:fa:8e:1f:ea:1d:63:5a: 8c:c4:53:f2:9d:24:f2:8c:96:63:bc:4b:ba:74:89:e2:fe:17: e9:37:da:1c:5c:41:84:7a:56:40:0d:e5:29:3b:29:5c:85:f1: 4d:75:56:64:30:e4:bf:bd:9c:0d:68:6c:7e:b5:5e:3d:db:e6: 37:b7:b0:0a:b0:80:e3:e5:59:45:1f:44:8a:fe:80:32:66:75: 63:1d:6d:13:80:f1:1d:c8:5e:b9:5e:9f:74:dc:fa:55:c9:dd: af:02:03:7a:c9:48:fe:90:95:87:7c:31:8d:b9:0f:f2:29:32: 77:92:db:7f:13:18:15:82:25:b0:24:76:4f:7b:b9:9a:aa:89: bc:ef:7c:df:ea:ef:ce:09:11:af:55:26:41:5c:76:6a:c8:91: 6b:2d:81:b7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQX38Q5tIJfueCvkOl9a+HbVvN7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAx RUMyNkREMTAeFw0yNTA2MTUxMDQ2MDZaFw0yNTA2MTgxOTEyMDZaMDMxMTAvBgNV BAMTKDZFOTIwMDBGOUE5N0YwN0YzQzk3NjU5MjFGOEU2RkM4RUQ4OUVCNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK1quFlRYN0rD3coB/T6oDidb8 2MUy4ihjr6JMRfUAsp0CrxiTWyUPlVvcgZqtT60r9OxjmdWHGhKRN6m6ltn6r8oh E6BvTeCaLU9SfwAISBEZAlkdjuIWLRCwuYZcEMsf/5Vul40j9y/+NMAFH5qTFqQh r7pEHmNjP0zcVDBJg60IOGChCxYfVhpeKI9ezLStLmxyLo+1strF6QjChdVSbffm LAaarZwZfXCH9x0apFGkUmbNrdxlpRty29bjqcXnCl/rrfPU0ZpYHZTkxnnqsZux p0OYjKWoNWyNt0Utjb0vjuZ2Fj9zGDwtlRy0UbeHCy+aqpK7fNrrN8AsQ3jtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbpIAD5qX8H88l2WSH45vyO2J63YwHwYDVR0j BBgwFoAU1BccTAaXWkMJ/Fny00DWgB7CbdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzY4MGQwZC1lMjQwLTRhYWYtYmMyMy0yODIzNTkzNzMyODkvMC9ENDE3MUM0QzA2 OTc1QTQzMDlGQzU5RjJEMzQwRDY4MDFFQzI2REQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAxRUMy NkREMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDc2ODBkMGQtZTI0MC00YWFmLWJj MjMtMjgyMzU5MzczMjg5LzAvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2 ODAxRUMyNkREMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ5rFUoVAamv1ZS6lEzY0z/99ETSZ0WREJ07 ZXQrcnzYYxXFBtF5MDkV7d8JIlUxJw7Y8nNGtu/rDK/xA7tG0jKpECeMeXrRJZ9Z OYvQ26pukpbVVQWFHbSrtwDHXKrehvPA3xyM+o4f6h1jWozEU/KdJPKMlmO8S7p0 ieL+F+k32hxcQYR6VkAN5Sk7KVyF8U11VmQw5L+9nA1obH61Xj3b5je3sAqwgOPl WUUfRIr+gDJmdWMdbROA8R3IXrlen3Tc+lXJ3a8CA3rJSP6QlYd8MY25D/IpMneS 238TGBWCJbAkdk97uZqqibzvfN/q784JEa9VJkFcdmrIkWstgbc= -----END CERTIFICATE-----Generated at Mon Jun 16 02:44:43 2025 by rpki-client