$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft File: 33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft (raw, json) Hash identifier: BncHBA9NRRxCFPCwPb7+kxXPDHjhi7YD6l4HaVIBFRc= Subject key identifier: 87:76:10:CB:FC:4C:B2:2F:A3:01:A7:D1:C9:C7:08:76:26:A9:FD:2C Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 6C38971BA25DB06FEED6B1E66738E7CCB32933E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft Manifest number: 047B Signing time: Sun 15 Jun 2025 09:40:43 +0000 Manifest this update: Sun 15 Jun 2025 09:35:43 +0000 Manifest next update: Wed 18 Jun 2025 13:06:43 +0000 Files and hashes: 1: 33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl (hash: k931AILnIwSRO5M0atT7AlbnCK2o/N1plftpY8AC0YY=) 2: 3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa (hash: OJRRTWPMmrOaPtCLRrFDVFaSiYmj3l4rR9ClzjJa+24=) 3: 323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa (hash: BkyUAjLFhkYTF0Hnp1FC4HAWxyi30SojTHwp3GdzR9c=) 4: 323430363a633634303a3a2f33322d3332203d3e20313431313337.roa (hash: p+rm7vbA5ngIqMZr32PI/RSnvPiqpzUUqSs4LwHOSfI=) 5: 3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa (hash: CnfRbobaPk9MDY310cd2407p48KXM88AEI8ZWvg/uB0=) 6: 323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa (hash: EejqxQaLe95fpqkSYRlHTxb70l60dtmnNQ1/4qfd494=) 7: 3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa (hash: 3Mmpn/Dag2AKulQ+C8mVDMduU1Rnc8mOjy91rhhCe8M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 13:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:38:97:1b:a2:5d:b0:6f:ee:d6:b1:e6:67:38:e7:cc:b3:29:33:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Jun 15 09:35:43 2025 GMT Not After : Jun 18 13:06:43 2025 GMT Subject: CN=877610CBFC4CB22FA301A7D1C9C7087626A9FD2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e8:f6:86:5d:67:35:19:20:58:5a:84:48:e2: f0:19:e8:85:d6:c5:bf:47:b5:42:14:8f:71:77:c2: bc:ca:70:c3:04:e1:3d:79:7a:ce:d2:55:f7:f8:f4: d3:b0:29:a5:f9:1c:7f:1a:2b:af:1a:7e:5b:58:05: 4b:62:4e:3c:e1:79:48:99:1e:f4:2e:bf:fb:36:64: 02:92:a0:8b:f1:a3:82:f3:1c:db:da:af:23:49:56: 64:4e:52:9e:0d:97:5a:5b:9e:63:0a:d6:8e:72:86: ad:25:27:78:0b:46:ff:76:ef:67:0f:8d:04:31:65: 23:7d:9f:aa:4c:46:19:7a:f5:1e:24:26:cd:8f:fe: 89:9c:51:39:53:aa:e8:e3:38:27:c6:19:a0:99:58: 29:9b:0d:b9:e8:a8:d5:f7:b8:47:7c:71:c0:f6:9f: f6:6c:13:e6:eb:a8:30:6d:a5:37:4f:cf:03:52:78: ab:9f:ab:2a:de:3c:a3:22:e1:a7:e6:71:f0:68:5f: ad:b2:e7:14:0b:ae:2c:4f:6c:28:eb:c8:82:b7:d0: 6b:d2:41:0e:01:27:50:c7:87:aa:fc:ff:f0:17:ab: 26:b8:4c:55:a4:0e:d9:cd:4c:d0:be:f1:f5:d7:99: ac:f4:62:0f:40:f4:12:96:e8:f7:8d:8e:fe:66:aa: 79:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:76:10:CB:FC:4C:B2:2F:A3:01:A7:D1:C9:C7:08:76:26:A9:FD:2C X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:1f:ac:51:b6:8f:7e:87:7f:33:42:9d:48:7d:f5:5e:b8:81: 79:c1:50:8a:a7:2d:e3:69:af:1d:a2:66:8f:5d:a4:78:02:ff: 3a:39:a2:ae:21:01:fa:78:ef:8f:98:2b:4c:0e:be:c4:15:bd: 3e:83:b9:40:52:c5:bc:20:fb:3d:45:6a:5b:7e:2f:aa:71:ed: 7f:92:4a:ae:82:bb:3d:a4:7b:19:cf:b0:12:b7:76:3d:3e:71: 93:c7:eb:86:ad:b9:8d:85:19:84:7d:f9:5a:4a:c0:0a:64:22: 39:2b:08:03:8b:4f:7e:00:77:2c:54:a8:db:d8:f1:7d:b4:31: 6d:b0:91:bf:dc:f1:ca:e1:c3:8b:74:bc:d4:99:8c:18:5a:22: d6:a2:6f:91:cb:fb:b8:1f:66:54:40:7c:92:8a:c7:27:63:c9: 49:2a:48:30:90:51:0f:74:90:2e:4f:d9:5f:c9:09:11:81:3f: ec:44:00:80:38:c9:af:8d:3e:54:c8:b8:aa:e1:9c:71:8d:bc: b0:e1:cb:de:80:46:b7:51:a5:08:28:21:d2:61:83:62:b9:b6: fe:86:86:ca:2f:8d:29:c5:72:1f:6d:31:c5:76:1f:fe:d3:03: 4e:30:93:a8:1e:30:7e:dd:b4:f6:46:f8:62:f3:a9:b8:5a:64: f4:07:4e:c0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbDiXG6JdsG/u1rHmZzjnzLMpM+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNTA2MTUwOTM1NDNaFw0yNTA2MTgxMzA2NDNaMDMxMTAvBgNV BAMTKDg3NzYxMENCRkM0Q0IyMkZBMzAxQTdEMUM5QzcwODc2MjZBOUZEMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr6PaGXWc1GSBYWoRI4vAZ6IXW xb9HtUIUj3F3wrzKcMME4T15es7SVff49NOwKaX5HH8aK68afltYBUtiTjzheUiZ HvQuv/s2ZAKSoIvxo4LzHNvaryNJVmROUp4Nl1pbnmMK1o5yhq0lJ3gLRv9272cP jQQxZSN9n6pMRhl69R4kJs2P/omcUTlTqujjOCfGGaCZWCmbDbnoqNX3uEd8ccD2 n/ZsE+brqDBtpTdPzwNSeKufqyrePKMi4afmcfBoX62y5xQLrixPbCjryIK30GvS QQ4BJ1DHh6r8//AXqya4TFWkDtnNTNC+8fXXmaz0Yg9A9BKW6PeNjv5mqnnvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUh3YQy/xMsi+jAafRyccIdiap/SwwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjQ5MDM0NWUtMmQ1Ny00MzQ5LWI3 OGYtYzhiMThhNDQyNDQ1LzAvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5 NUNBNzlDQUFEOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACwfrFG2j36HfzNCnUh99V64gXnBUIqnLeNp rx2iZo9dpHgC/zo5oq4hAfp474+YK0wOvsQVvT6DuUBSxbwg+z1Falt+L6px7X+S Sq6Cuz2kexnPsBK3dj0+cZPH64atuY2FGYR9+VpKwApkIjkrCAOLT34AdyxUqNvY 8X20MW2wkb/c8crhw4t0vNSZjBhaItaib5HL+7gfZlRAfJKKxydjyUkqSDCQUQ90 kC5P2V/JCRGBP+xEAIA4ya+NPlTIuKrhnHGNvLDhy96ARrdRpQgoIdJhg2K5tv6G hsovjSnFch9tMcV2H/7TA04wk6geMH7dtPZG+GLzqbhaZPQHTsA= -----END CERTIFICATE-----Generated at Tue Jun 17 09:32:21 2025 by rpki-client