$ rpki-client -vvf repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft File: 2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft (raw, json) Hash identifier: huuRGKX0h0B7SMhxoFGx4dx56Y86QqL/4Pa+x0mLlcQ= Subject key identifier: 92:9F:CB:8E:9D:3D:A8:8A:C8:83:7F:00:68:D4:3D:8C:50:5C:D5:EE Authority key identifier: 2D:51:7D:C0:24:CE:FC:FA:F8:0C:F7:FD:39:22:46:89:4E:94:F1:2F Certificate issuer: /CN=2D517DC024CEFCFAF80CF7FD392246894E94F12F Certificate serial: 39F29F0C500915740978691660E535B24AC3D53B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft Manifest number: CD Signing time: Sun 15 Jun 2025 22:50:50 +0000 Manifest this update: Sun 15 Jun 2025 22:45:50 +0000 Manifest next update: Thu 19 Jun 2025 05:51:50 +0000 Files and hashes: 1: 3130332e3135362e3131302e302f32342d3234203d3e20313431303839.roa (hash: oX2rRL4yj7u4AFId0yrPwmCzP4drZZYO3pu9upGhNCY=) 2: 2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl (hash: aMSkuh5voIFIGoUA19x9kGMs7d1qIpVG+MdClu0D0II=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 05:51:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:f2:9f:0c:50:09:15:74:09:78:69:16:60:e5:35:b2:4a:c3:d5:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D517DC024CEFCFAF80CF7FD392246894E94F12F Validity Not Before: Jun 15 22:45:50 2025 GMT Not After : Jun 19 05:51:50 2025 GMT Subject: CN=929FCB8E9D3DA88AC8837F0068D43D8C505CD5EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:37:ac:87:87:ec:0d:4c:a6:48:c5:5c:45:1b: d8:50:cd:99:1e:24:e9:3f:b0:c4:23:3d:a4:5b:01: 8c:41:76:3f:93:53:bb:3a:9e:99:db:a0:52:21:92: 2f:38:71:e3:a7:10:23:61:7d:c6:c3:65:44:6e:cd: fa:09:35:06:4e:42:05:c6:59:f6:41:b8:42:cc:f3: 90:14:99:27:7e:27:46:6f:4a:81:54:fc:88:92:e5: 50:79:be:97:64:a9:21:a2:69:d7:c1:60:ec:82:82: 1e:d8:68:b1:9f:b0:6d:76:e3:70:17:9c:76:2a:90: 64:11:65:fe:32:f8:2d:93:18:a0:fc:cc:ec:84:98: 2f:69:60:f2:2e:5b:97:59:39:fb:77:62:84:f3:58: db:c8:1f:c3:92:42:10:e7:88:57:d5:b5:2b:ed:e2: a4:04:d4:7b:3e:c1:5a:c4:c1:e7:c8:14:0d:6f:18: ba:0a:1f:da:80:7d:44:ce:6c:c3:33:a1:37:f0:04: 05:c5:d6:8f:dc:1e:8e:6d:42:d8:f8:01:89:0a:56: d4:e4:cc:39:8a:2d:e2:42:79:c2:bf:dc:cf:e2:63: a3:9e:1d:6a:31:e2:9a:86:f8:dd:b9:77:ac:7f:6e: 4f:49:d4:6b:c6:c3:2a:b9:e5:63:f8:4b:81:05:64: 7e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:9F:CB:8E:9D:3D:A8:8A:C8:83:7F:00:68:D4:3D:8C:50:5C:D5:EE X509v3 Authority Key Identifier: keyid:2D:51:7D:C0:24:CE:FC:FA:F8:0C:F7:FD:39:22:46:89:4E:94:F1:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:8c:4d:b1:ac:18:c0:a8:37:06:24:70:ac:f9:b7:75:e6:08: 5c:26:e8:52:bc:f1:2a:f9:d8:a4:f4:f0:d9:c3:09:fd:d9:51: cd:74:d0:3b:c6:10:dc:c2:10:81:9f:6c:4f:f1:38:69:67:07: 51:85:cb:e7:ac:30:8e:a0:ec:ed:d7:f1:f1:03:28:ce:6c:d7: 04:3f:dd:26:fb:db:4a:e4:f7:d4:f3:ae:7f:65:c2:c3:8e:7c: 0a:b4:16:c4:bf:88:53:7f:6a:05:43:bd:87:1a:94:1f:da:cd: 95:4e:49:46:04:50:af:49:14:48:4e:f3:6e:cc:52:1c:0c:94: fb:59:da:3e:b2:a2:6b:19:ff:d0:f5:1f:f5:06:6f:8d:ba:8b: 14:65:01:00:9f:66:60:73:25:0e:58:06:14:ff:ea:a6:dc:84: 3b:64:4d:dd:c7:87:8d:36:80:8a:a1:b2:4a:08:5c:e7:1b:4f: cd:c1:b7:4a:ee:19:c6:ed:dc:dc:74:35:7a:a9:e4:ad:ed:cb: 57:cc:10:26:3e:8b:94:ad:4d:53:e5:4b:82:a4:87:18:9a:6a: 9d:6f:2a:7e:85:13:ce:97:37:24:05:b5:fd:ec:6f:15:99:e9: 8c:1a:22:36:84:3a:be:37:17:3e:71:d5:61:0b:39:a3:f6:a8: 76:1a:e2:32 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOfKfDFAJFXQJeGkWYOU1skrD1TswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2ODk0 RTk0RjEyRjAeFw0yNTA2MTUyMjQ1NTBaFw0yNTA2MTkwNTUxNTBaMDMxMTAvBgNV BAMTKDkyOUZDQjhFOUQzREE4OEFDODgzN0YwMDY4RDQzRDhDNTA1Q0Q1RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoN6yHh+wNTKZIxVxFG9hQzZke JOk/sMQjPaRbAYxBdj+TU7s6npnboFIhki84ceOnECNhfcbDZURuzfoJNQZOQgXG WfZBuELM85AUmSd+J0ZvSoFU/IiS5VB5vpdkqSGiadfBYOyCgh7YaLGfsG1243AX nHYqkGQRZf4y+C2TGKD8zOyEmC9pYPIuW5dZOft3YoTzWNvIH8OSQhDniFfVtSvt 4qQE1Hs+wVrEwefIFA1vGLoKH9qAfUTObMMzoTfwBAXF1o/cHo5tQtj4AYkKVtTk zDmKLeJCecK/3M/iY6OeHWox4pqG+N25d6x/bk9J1GvGwyq55WP4S4EFZH4hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkp/Ljp09qIrIg38AaNQ9jFBc1e4wHwYDVR0j BBgwFoAULVF9wCTO/Pr4DPf9OSJGiU6U8S8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDMzYTFjNi0wZjcwLTRjOTgtOTZiMC1jYWI1ODEyNmFiOTQvMC8yRDUxN0RDMDI0 Q0VGQ0ZBRjgwQ0Y3RkQzOTIyNDY4OTRFOTRGMTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2ODk0RTk0 RjEyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQzM2ExYzYtMGY3MC00Yzk4LTk2 YjAtY2FiNTgxMjZhYjk0LzAvMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2 ODk0RTk0RjEyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIKMTbGsGMCoNwYkcKz5t3XmCFwm6FK88Sr5 2KT08NnDCf3ZUc100DvGENzCEIGfbE/xOGlnB1GFy+esMI6g7O3X8fEDKM5s1wQ/ 3Sb720rk99Tzrn9lwsOOfAq0FsS/iFN/agVDvYcalB/azZVOSUYEUK9JFEhO827M UhwMlPtZ2j6yomsZ/9D1H/UGb426ixRlAQCfZmBzJQ5YBhT/6qbchDtkTd3Hh402 gIqhskoIXOcbT83Bt0ruGcbt3Nx0NXqp5K3ty1fMECY+i5StTVPlS4Kkhxiaap1v Kn6FE86XNyQFtf3sbxWZ6YwaIjaEOr43Fz5x1WELOaP2qHYa4jI= -----END CERTIFICATE-----Generated at Mon Jun 16 02:07:01 2025 by rpki-client