$ rpki-client -vvf repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft File: 7433AB64571BE1827F0BC97ED291976B6E3429FA.mft (raw, json) Hash identifier: fCZC7A8ktAg3GwObUv40LvaQ4Z8xWeH40uNG6MG52hA= Subject key identifier: 6E:1D:01:F9:BD:A7:C9:95:BC:74:6D:49:8A:C8:16:FA:F4:0D:E8:71 Authority key identifier: 74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA Certificate issuer: /CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Certificate serial: 512BCD90A77256843F8B3CBE78EB450DD4ED1791 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft Manifest number: 017C Signing time: Sun 15 Jun 2025 13:52:12 +0000 Manifest this update: Sun 15 Jun 2025 13:47:12 +0000 Manifest next update: Wed 18 Jun 2025 19:05:12 +0000 Files and hashes: 1: 3130332e37352e36322e302f32342d3234203d3e20313530353339.roa (hash: Foo7ECvYM8eC5QdFLfci515Pz4pdcUotJYsrxOmUjnQ=) 2: 3130332e37352e36332e302f32342d3234203d3e20313530353339.roa (hash: dt0M2E6hMVGXyd6wchuCJpbqgL7DjAEk9eGkYZfJTqo=) 3: 3130332e37352e36322e302f32332d3234203d3e20313530353339.roa (hash: LDOqOfl8+d8Lz+/c+0knmLxGK2Kr8P4Ti1sIU0L3/wo=) 4: 7433AB64571BE1827F0BC97ED291976B6E3429FA.crl (hash: b0RrMjnDRUNCHDejomTgIAT9HMP+k0K6J+LWuQ53pw0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 19:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:2b:cd:90:a7:72:56:84:3f:8b:3c:be:78:eb:45:0d:d4:ed:17:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Validity Not Before: Jun 15 13:47:12 2025 GMT Not After : Jun 18 19:05:12 2025 GMT Subject: CN=6E1D01F9BDA7C995BC746D498AC816FAF40DE871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f6:0f:3a:1c:b3:56:b0:20:50:9a:91:bf:4f: a0:7c:34:cb:66:bb:cf:d3:3c:2d:a8:86:b1:e7:52: 9d:c7:55:b2:77:d8:81:33:b2:ee:c3:50:db:f6:f7: d0:58:36:d7:c7:6e:d0:ce:61:49:c4:ef:25:bb:55: 89:86:dd:24:92:59:d2:7f:b7:ab:b2:f5:0b:77:1f: f7:ed:67:19:56:ea:5d:60:2b:b1:7c:85:4b:e6:1c: aa:78:c6:99:15:bb:d8:f1:84:f6:2e:f3:4f:91:81: 5a:ea:dd:5c:99:fe:fe:6c:99:e5:1e:73:c0:e5:27: b7:18:ce:f9:f0:2a:a9:66:c8:e4:ec:fe:f5:bb:b4: 06:7c:68:4c:ba:1b:f1:2b:73:89:1f:be:53:62:7f: 5e:93:7b:76:2f:4e:93:27:8e:c3:da:81:50:63:45: 4f:97:49:20:47:04:32:85:d9:fe:f8:d1:ca:c9:32: 22:db:2f:d2:4c:70:1b:fe:e6:71:28:78:57:c8:fc: 08:e2:52:b7:1d:e5:d3:f3:c0:6a:57:49:85:30:55: 45:05:79:50:cb:ed:82:2d:f0:2c:41:69:29:86:06: 5e:db:b4:02:5f:71:e1:c5:c3:39:f9:a1:2f:e0:49: f4:0a:f9:f3:a8:46:44:28:25:ec:6d:4a:a7:a5:48: fa:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:1D:01:F9:BD:A7:C9:95:BC:74:6D:49:8A:C8:16:FA:F4:0D:E8:71 X509v3 Authority Key Identifier: keyid:74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:16:5d:54:79:25:a4:39:9c:28:e9:c4:53:74:8e:25:94:e2: 8b:00:b9:01:c2:02:55:d1:38:a9:94:04:ec:ec:87:6f:94:8f: bb:bc:96:1c:f6:74:2a:67:47:31:54:24:ae:b9:2d:30:24:84: d4:00:21:61:c9:26:d0:7e:c3:59:ce:f0:62:28:92:9c:34:eb: 6e:17:2b:fa:e2:c4:19:83:da:83:a9:4f:54:4d:83:35:a7:91: a6:a0:28:d9:c3:81:ab:83:e7:35:9c:69:90:d7:08:f9:2a:52: 19:ad:b9:cd:6d:d2:37:52:b6:d4:04:c5:0e:84:19:06:87:10: da:63:e8:fc:26:75:d7:23:d9:fa:74:04:84:a6:59:66:06:fa: ab:32:5a:a4:6c:a6:52:0e:be:a0:b8:ff:e2:a1:41:12:86:ed: f0:54:c0:5b:a0:5e:12:e3:b4:43:b7:d4:35:3e:e1:ca:d7:96: 50:41:e5:21:6a:42:0e:d4:96:32:31:05:f0:2f:7e:d7:c0:6e: cc:34:f5:88:24:d9:01:ea:42:8e:71:9e:70:0f:47:1b:0b:c9: 08:6a:06:e4:99:01:e0:4f:26:0d:2a:45:2e:d8:63:ff:d7:c6: 3d:19:36:ce:bf:85:f1:3a:18:d2:6d:1c:5e:09:7b:26:d1:62: 57:1b:b9:a5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUSvNkKdyVoQ/izy+eOtFDdTtF5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2 RTM0MjlGQTAeFw0yNTA2MTUxMzQ3MTJaFw0yNTA2MTgxOTA1MTJaMDMxMTAvBgNV BAMTKDZFMUQwMUY5QkRBN0M5OTVCQzc0NkQ0OThBQzgxNkZBRjQwREU4NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx9g86HLNWsCBQmpG/T6B8NMtm u8/TPC2ohrHnUp3HVbJ32IEzsu7DUNv299BYNtfHbtDOYUnE7yW7VYmG3SSSWdJ/ t6uy9Qt3H/ftZxlW6l1gK7F8hUvmHKp4xpkVu9jxhPYu80+RgVrq3VyZ/v5smeUe c8DlJ7cYzvnwKqlmyOTs/vW7tAZ8aEy6G/Erc4kfvlNif16Te3YvTpMnjsPagVBj RU+XSSBHBDKF2f740crJMiLbL9JMcBv+5nEoeFfI/AjiUrcd5dPzwGpXSYUwVUUF eVDL7YIt8CxBaSmGBl7btAJfceHFwzn5oS/gSfQK+fOoRkQoJextSqelSPpRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbh0B+b2nyZW8dG1JisgW+vQN6HEwHwYDVR0j BBgwFoAUdDOrZFcb4YJ/C8l+0pGXa240KfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2M4YTBjMy0zN2Y1LTQ2NjctYTQzMC02ZmExMTFkMzQzYWEvMC83NDMzQUI2NDU3 MUJFMTgyN0YwQkM5N0VEMjkxOTc2QjZFMzQyOUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2RTM0 MjlGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDdjOGEwYzMtMzdmNS00NjY3LWE0 MzAtNmZhMTExZDM0M2FhLzAvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3 NkI2RTM0MjlGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB0WXVR5JaQ5nCjpxFN0jiWU4osAuQHCAlXR OKmUBOzsh2+Uj7u8lhz2dCpnRzFUJK65LTAkhNQAIWHJJtB+w1nO8GIokpw0624X K/rixBmD2oOpT1RNgzWnkaagKNnDgauD5zWcaZDXCPkqUhmtuc1t0jdSttQExQ6E GQaHENpj6Pwmddcj2fp0BISmWWYG+qsyWqRsplIOvqC4/+KhQRKG7fBUwFugXhLj tEO31DU+4crXllBB5SFqQg7UljIxBfAvftfAbsw09Ygk2QHqQo5xnnAPRxsLyQhq BuSZAeBPJg0qRS7YY//Xxj0ZNs6/hfE6GNJtHF4JeybRYlcbuaU= -----END CERTIFICATE-----Generated at Tue Jun 17 05:26:47 2025 by rpki-client