$ rpki-client -vvf repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft File: D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft (raw, json) Hash identifier: pPUYhv5L+A29V//+IIEsdebyycAgx4FnjiBCriKN7f8= Subject key identifier: 33:73:20:1E:71:AC:3C:9F:3F:A2:F4:50:62:D7:40:D1:AD:57:A4:27 Authority key identifier: D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 Certificate issuer: /CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Certificate serial: 69C901C00E57CA899FCA21173FC0CE0BC7B86D82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft Manifest number: 021F Signing time: Sun 15 Jun 2025 21:11:25 +0000 Manifest this update: Sun 15 Jun 2025 21:06:25 +0000 Manifest next update: Thu 19 Jun 2025 01:14:25 +0000 Files and hashes: 1: D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl (hash: DN+lFs+PQeivpLqYslhpA4m26KBvR3UXT/03Qoz+o8s=) 2: 3130332e3136392e302e302f32332d3234203d3e20313432333235.roa (hash: kS5BqB0fQsybN4YzA6LLybAUUgYhEkwegd5mZxZdL2I=) 3: 3130332e3136392e312e302f32342d3234203d3e20313432333235.roa (hash: QVwXZiEUDkzJTFJTP2kak0B1PFcbgFpWZtYiCacvLzc=) 4: 3130332e3136392e302e302f32342d3234203d3e20313432333235.roa (hash: BHsnMPpdFZL0d9XOfOmW0tnCHE686u/F/UGOnWHulsY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 11:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:c9:01:c0:0e:57:ca:89:9f:ca:21:17:3f:c0:ce:0b:c7:b8:6d:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Validity Not Before: Jun 15 21:06:25 2025 GMT Not After : Jun 19 01:14:25 2025 GMT Subject: CN=3373201E71AC3C9F3FA2F45062D740D1AD57A427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ae:b6:04:a1:fe:0a:05:17:51:9c:fd:e8:14: d4:0e:ef:81:1d:c4:15:5f:5b:ec:21:63:26:60:da: 8c:b0:1a:18:c0:f1:d9:e4:9b:60:ea:ae:c9:dc:28: e3:27:f2:3a:71:ae:50:a5:68:a4:38:2e:d7:86:8d: f4:31:c3:d5:7e:4f:0a:e4:f2:66:ef:72:5f:f6:2b: 4f:a3:78:09:43:3e:b2:9b:5e:4f:e4:05:02:e0:72: 64:8f:92:09:84:f5:e4:56:4f:44:19:41:ab:f7:59: e7:77:50:73:78:4f:83:ea:d2:d9:6e:87:c8:00:ef: b5:e1:82:72:36:25:a3:29:fa:01:e7:e3:97:08:31: c5:21:1d:05:c0:7c:8b:8c:c2:6a:b5:37:da:b7:74: 2b:b1:b2:7e:59:25:fc:a9:60:64:06:71:05:df:37: 59:3b:26:e8:ce:f0:5d:2b:bd:a9:e1:d1:20:50:f0: 03:50:38:d4:b9:2a:b0:e7:e4:5e:cb:ff:ab:72:55: 17:9e:e9:32:ad:55:5e:55:d0:a0:96:28:fa:57:99: ab:5d:fc:d2:46:54:ba:25:d5:6f:7e:ee:3c:b0:c6: 12:8f:4a:e0:6d:b7:2e:7d:e5:6a:59:63:69:0c:f7: 37:7a:6d:20:29:83:a7:b0:bb:9e:aa:53:df:c8:05: 03:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:73:20:1E:71:AC:3C:9F:3F:A2:F4:50:62:D7:40:D1:AD:57:A4:27 X509v3 Authority Key Identifier: keyid:D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c7:e8:1e:ae:33:78:27:6a:17:22:71:38:e7:6a:02:44:69:fb: 88:17:1a:f7:1e:59:ff:62:02:be:d9:ed:9c:1a:9b:90:05:56: 8d:75:71:1d:da:50:1f:76:09:df:43:c7:89:03:19:94:f8:06: d1:fe:d5:51:17:6e:12:30:8a:63:0b:eb:14:5e:a7:5d:f7:b2: 83:e5:84:4a:32:7e:68:53:02:ef:42:e5:6b:e1:18:65:44:37: 7b:4c:85:a2:e6:fb:22:f8:c1:d7:84:5c:73:24:6e:7c:78:f9: 93:6f:d7:c3:a8:76:aa:69:e1:f6:1c:7c:ae:ea:f9:92:62:3f: f6:99:7c:60:4d:56:fb:6c:d0:03:c6:d0:a2:6e:75:30:4d:71: 3f:5c:5a:c6:60:81:b5:c5:54:c2:ef:36:07:02:d3:2c:43:e4: 1b:40:69:cd:d8:fa:ea:76:f3:24:61:1b:21:55:08:b1:d0:12: 41:85:3d:5c:43:02:38:66:e9:0b:70:00:cd:a0:be:02:14:bb: 81:78:7b:81:36:c9:09:a4:e5:c6:b0:dd:c9:35:11:07:aa:fa: cf:56:ff:dc:3c:e9:cb:68:50:8d:5e:ba:49:ca:9b:d2:41:5b: 65:42:2f:91:0c:3b:da:17:1d:d8:c2:c2:b4:aa:59:bc:2a:4e: 98:02:5e:69 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUackBwA5XyomfyiEXP8DOC8e4bYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlG N0NCMkZFNzAeFw0yNTA2MTUyMTA2MjVaFw0yNTA2MTkwMTE0MjVaMDMxMTAvBgNV BAMTKDMzNzMyMDFFNzFBQzNDOUYzRkEyRjQ1MDYyRDc0MEQxQUQ1N0E0MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxrrYEof4KBRdRnP3oFNQO74Ed xBVfW+whYyZg2oywGhjA8dnkm2DqrsncKOMn8jpxrlClaKQ4LteGjfQxw9V+Twrk 8mbvcl/2K0+jeAlDPrKbXk/kBQLgcmSPkgmE9eRWT0QZQav3Wed3UHN4T4Pq0tlu h8gA77XhgnI2JaMp+gHn45cIMcUhHQXAfIuMwmq1N9q3dCuxsn5ZJfypYGQGcQXf N1k7JujO8F0rvanh0SBQ8ANQONS5KrDn5F7L/6tyVRee6TKtVV5V0KCWKPpXmatd /NJGVLol1W9+7jywxhKPSuBtty595WpZY2kM9zd6bSApg6ewu56qU9/IBQPvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUM3MgHnGsPJ8/ovRQYtdA0a1XpCcwHwYDVR0j BBgwFoAU0iSKBNmUolaaj/ZF1LAlqffLL+cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTNjYzJjMS0xNDZjLTQ4YTktYjAwMy03YmQ4MzgyMjA4NGQvMC9EMjI0OEEwNEQ5 OTRBMjU2OUE4RkY2NDVENEIwMjVBOUY3Q0IyRkU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlGN0NC MkZFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWEzY2MyYzEtMTQ2Yy00OGE5LWIw MDMtN2JkODM4MjIwODRkLzAvRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1 QTlGN0NCMkZFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMfoHq4zeCdqFyJxOOdqAkRp+4gXGvceWf9i Ar7Z7Zwam5AFVo11cR3aUB92Cd9Dx4kDGZT4BtH+1VEXbhIwimML6xRep133soPl hEoyfmhTAu9C5WvhGGVEN3tMhaLm+yL4wdeEXHMkbnx4+ZNv18Oodqpp4fYcfK7q +ZJiP/aZfGBNVvts0APG0KJudTBNcT9cWsZggbXFVMLvNgcC0yxD5BtAac3Y+up2 8yRhGyFVCLHQEkGFPVxDAjhm6QtwAM2gvgIUu4F4e4E2yQmk5caw3ck1EQeq+s9W /9w86ctoUI1euknKm9JBW2VCL5EMO9oXHdjCwrSqWbwqTpgCXmk= -----END CERTIFICATE-----Generated at Mon Jun 16 00:01:40 2025 by rpki-client