$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft File: 2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft (raw, json) Hash identifier: f7WmBtJ2n2kCvX+AWawU3rxf7UVupMGWqPzKkjUiTgY= Subject key identifier: D9:B8:EB:FB:14:62:80:85:4B:D6:A4:E1:B8:9F:E2:6E:E8:76:B4:D1 Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Certificate serial: 5242BB8C789F056679F0D69CDA033871CF58F98B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft Manifest number: 049C Signing time: Wed 18 Jun 2025 01:51:43 +0000 Manifest this update: Wed 18 Jun 2025 01:46:43 +0000 Manifest next update: Sat 21 Jun 2025 12:31:43 +0000 Files and hashes: 1: 3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa (hash: alDRN92tlwgNSOsmGcO4bYs5k2yVLt0hg1F97xm610Y=) 2: 3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa (hash: sGuZ949AervQFXJY8lGdE9UQu3pLwaxX5H+2ASfBYqU=) 3: 2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl (hash: 2SbXEVas47aT+Pn1fD1R78afqwWVn/Hi4FnP0JjqOtc=) 4: 3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa (hash: igZUGj9WZ1hy1WLn/uUmoBiqqH+6kXF5u53eZj34KGg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 12:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:42:bb:8c:78:9f:05:66:79:f0:d6:9c:da:03:38:71:cf:58:f9:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Validity Not Before: Jun 18 01:46:43 2025 GMT Not After : Jun 21 12:31:43 2025 GMT Subject: CN=D9B8EBFB146280854BD6A4E1B89FE26EE876B4D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cd:a4:bb:0e:3c:6b:e3:81:8e:f2:47:86:75: c1:d9:ec:28:04:2e:cd:75:ac:a1:29:fc:31:29:45: f2:ba:84:1b:12:c8:23:69:7a:32:7c:3d:ad:f6:2b: 48:d6:3f:29:c7:8a:67:88:78:0e:1c:b3:81:e3:d1: 86:6c:9b:e5:2b:b6:c5:28:26:aa:b4:61:6a:c2:14: ac:36:b9:82:c2:0b:8b:08:08:f0:da:20:1e:39:20: dc:59:86:1c:cf:a3:88:3e:a6:18:6d:bf:21:0b:cd: be:fa:3c:e3:12:e3:37:fd:b3:b3:a9:ea:7a:32:71: 00:9e:b4:49:9e:85:22:fb:99:9f:92:9a:47:a5:43: 66:f5:9a:0e:62:70:13:5e:b7:d9:71:43:74:e2:93: 21:a5:25:89:4b:b5:67:40:67:d9:79:9f:40:91:85: a6:4c:05:7b:b3:26:94:84:2d:33:8b:28:f0:55:77: 92:c9:e7:03:a4:13:38:12:4b:31:4d:54:5a:8b:bd: d4:76:df:fa:e2:bd:f7:4e:1e:aa:7b:db:9f:a3:87: df:ad:52:16:b9:20:b1:1e:7c:13:50:de:ed:b2:de: 6d:f5:b0:ee:de:9d:68:b5:0d:18:b9:49:9b:72:4e: 60:d6:f7:62:ce:ca:4a:c5:8d:fe:0d:87:1a:50:5f: 1b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B8:EB:FB:14:62:80:85:4B:D6:A4:E1:B8:9F:E2:6E:E8:76:B4:D1 X509v3 Authority Key Identifier: keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:26:7f:48:b0:d5:41:95:aa:6c:aa:03:87:04:5a:d7:d6:b6: 35:6c:0c:b7:94:91:4a:ac:e1:27:2c:88:45:20:c9:2f:19:2c: d1:8b:e2:ed:ea:80:86:ea:11:7c:db:69:13:fd:17:e8:da:ea: cf:64:0f:32:c4:e1:2c:2e:1d:68:49:57:e2:a2:c6:87:f1:6a: 52:ff:f8:a9:1c:e4:58:a1:a7:ff:8c:c2:b3:34:62:c7:53:61: 57:d6:92:30:fc:2c:84:80:aa:f7:2f:41:b2:30:9a:03:21:8c: bd:8e:d1:b2:94:31:2f:2b:1e:65:8b:dc:fd:0c:17:29:45:43: ca:60:cf:84:ce:30:87:96:ac:5e:78:1e:d6:2c:4d:b5:2c:16: 9a:a9:f6:fb:5f:80:6c:ff:34:fd:d5:82:4d:aa:10:43:2c:2a: 81:f6:49:cf:88:44:86:8d:09:83:bf:61:d6:32:4a:6b:8b:43: 14:17:d8:df:8d:19:71:e9:ee:10:e7:14:a8:35:35:f6:c3:c1: 7f:86:cd:6d:e7:a0:cf:f2:2c:e8:53:6e:07:ed:4f:2f:60:a7: a9:bd:2d:00:9c:e6:05:e9:36:bb:d4:d8:5b:64:50:53:46:68: 0b:ed:1c:d3:bd:49:cf:55:05:e5:42:cd:72:23:eb:f3:77:37: 8d:bc:1a:5f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUkK7jHifBWZ58Nac2gM4cc9Y+YswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5Mzcy RUJEMkExNzAeFw0yNTA2MTgwMTQ2NDNaFw0yNTA2MjExMjMxNDNaMDMxMTAvBgNV BAMTKEQ5QjhFQkZCMTQ2MjgwODU0QkQ2QTRFMUI4OUZFMjZFRTg3NkI0RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7zaS7Djxr44GO8keGdcHZ7CgE Ls11rKEp/DEpRfK6hBsSyCNpejJ8Pa32K0jWPynHimeIeA4cs4Hj0YZsm+UrtsUo Jqq0YWrCFKw2uYLCC4sICPDaIB45INxZhhzPo4g+phhtvyELzb76POMS4zf9s7Op 6noycQCetEmehSL7mZ+SmkelQ2b1mg5icBNet9lxQ3TikyGlJYlLtWdAZ9l5n0CR haZMBXuzJpSELTOLKPBVd5LJ5wOkEzgSSzFNVFqLvdR23/rivfdOHqp725+jh9+t Uha5ILEefBNQ3u2y3m31sO7enWi1DRi5SZtyTmDW92LOykrFjf4NhxpQXxsRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2bjr+xRigIVL1qThuJ/ibuh2tNEwHwYDVR0j BBgwFoAUJVIkDv/uL2D1aE3QPt5JNy69KhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDA0MjMzZi1iYjJjLTQ3ZDctOTAxYy1lM2M4MmY4ZDQyM2MvMC8yNTUyMjQwRUZG RUUyRjYwRjU2ODRERDAzRURFNDkzNzJFQkQyQTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5MzcyRUJE MkExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjAwNDIzM2YtYmIyYy00N2Q3LTkw MWMtZTNjODJmOGQ0MjNjLzAvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5 MzcyRUJEMkExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB8mf0iw1UGVqmyqA4cEWtfWtjVsDLeUkUqs 4ScsiEUgyS8ZLNGL4u3qgIbqEXzbaRP9F+ja6s9kDzLE4SwuHWhJV+KixofxalL/ +Kkc5Fihp/+MwrM0YsdTYVfWkjD8LISAqvcvQbIwmgMhjL2O0bKUMS8rHmWL3P0M FylFQ8pgz4TOMIeWrF54HtYsTbUsFpqp9vtfgGz/NP3Vgk2qEEMsKoH2Sc+IRIaN CYO/YdYySmuLQxQX2N+NGXHp7hDnFKg1NfbDwX+GzW3noM/yLOhTbgftTy9gp6m9 LQCc5gXpNrvU2FtkUFNGaAvtHNO9Sc9VBeVCzXIj6/N3N428Gl8= -----END CERTIFICATE-----Generated at Thu Jun 19 17:32:08 2025 by rpki-client