$ rpki-client -vvf repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft File: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft (raw, json) Hash identifier: dFYdWh61/k5OT22DIWKozGkHYBphLAwmrQfNRts0IgQ= Subject key identifier: 71:F9:23:5A:D3:58:FC:92:78:3B:15:67:5A:EC:C5:C2:47:20:16:00 Authority key identifier: D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD Certificate issuer: /CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Certificate serial: 3C004F696C72AC6F3852951E320ED5A852D3B6B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft Manifest number: 0198 Signing time: Sun 15 Jun 2025 23:32:15 +0000 Manifest this update: Sun 15 Jun 2025 23:27:15 +0000 Manifest next update: Thu 19 Jun 2025 07:01:15 +0000 Files and hashes: 1: 3130332e37352e3133362e302f32332d3233203d3e20313530353233.roa (hash: YcSRTKOMF12aOzXL8N5UR6kDF37yCb3W4QZONTd7a9A=) 2: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl (hash: jNe7HBgZe5RlVShKr7wrHi7E0Q4tFRbHzMX529rBBcM=) 3: 323030313a6466313a646663303a3a2f34382d3438203d3e20313530353233.roa (hash: 6/CFAgI9fYm2h+bpsbThjdmYrbI1a+tEsxm7cMbpBNY=) 4: 3130332e37352e3133362e302f32342d3234203d3e20313530353233.roa (hash: q6SY7dMZTZK38tnoR+pXFf7kzoZFDF5ifDK7XqxUw8c=) 5: 3130332e37352e3133372e302f32342d3234203d3e20313530353233.roa (hash: Qa1udsECIRHsg1OUvc+qS4VEGfZjWwfHSm/JuoyHhYg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 07:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:00:4f:69:6c:72:ac:6f:38:52:95:1e:32:0e:d5:a8:52:d3:b6:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Validity Not Before: Jun 15 23:27:15 2025 GMT Not After : Jun 19 07:01:15 2025 GMT Subject: CN=71F9235AD358FC92783B15675AECC5C247201600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4c:e0:8e:60:eb:bd:f2:cc:a3:34:8d:00:2f: 91:be:fc:fb:77:62:a3:9e:14:7c:76:df:f0:97:9d: 1c:f9:5b:89:d7:0c:76:8b:6a:e7:e5:bb:7f:81:55: 53:de:78:16:04:30:36:af:a6:e4:5d:4d:e7:fc:65: 40:95:b0:e9:ff:1b:e6:9d:bd:25:c1:26:ca:72:76: b0:50:5a:52:57:10:66:6c:7b:a7:19:92:28:ea:29: b2:cb:6c:46:1b:7a:cc:22:02:5d:41:a2:70:bd:89: 02:f4:7e:45:ba:28:96:1c:29:be:e2:cf:3d:5e:a2: b5:36:30:f7:04:92:29:b7:d9:b1:e1:3f:09:95:c8: e3:1b:40:d4:b7:a7:e4:83:b7:7e:d9:c5:3f:fd:bc: 88:23:66:96:95:bd:53:5f:b6:57:5a:92:69:b4:81: fe:52:73:f0:6c:52:12:ec:aa:f5:1d:60:24:37:d5: e8:8c:5b:a4:3b:7d:89:80:48:d2:c9:20:d0:68:e8: 3b:e0:48:31:1c:ed:19:18:7b:c3:6a:43:d7:d5:01: 90:98:32:a0:e7:f6:dc:b6:eb:6c:38:b3:bc:0f:87: e7:09:1d:f8:4f:33:06:af:db:bd:19:a5:1c:6b:3b: 28:3a:db:3c:e1:46:fb:54:29:c3:d5:d7:f6:27:ea: 5f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F9:23:5A:D3:58:FC:92:78:3B:15:67:5A:EC:C5:C2:47:20:16:00 X509v3 Authority Key Identifier: keyid:D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:ba:76:99:8b:81:8c:e8:97:4e:48:f7:b1:50:a9:bd:34:d1: 03:19:4d:4c:65:c3:08:0d:48:5f:56:48:c2:8b:7d:1e:de:a5: bd:f0:cb:f7:2c:43:e5:5e:fa:2f:d1:f1:8a:70:a5:c7:f0:fe: 96:f8:a9:ba:47:33:26:2d:b1:8f:36:cb:68:8a:59:af:c4:13: d4:42:04:91:de:a8:a0:62:da:d4:ed:30:04:cb:47:40:cc:72: a5:35:0d:4e:6b:b4:43:17:f2:87:f4:4f:e7:45:8c:52:6d:f3: 94:84:0e:dc:cc:4a:3f:89:f3:44:7f:66:6b:0a:fc:b2:ea:7e: 9c:2a:35:de:8c:ff:76:ff:26:c1:71:5f:c6:d2:b5:6f:0b:a2: 1d:ef:e4:b8:33:45:91:a0:f4:cf:0c:4e:c3:4a:1b:6d:ca:8d: 9d:66:4f:fa:fe:31:f9:1c:35:11:b1:aa:da:57:99:43:fc:e8: 74:e5:a7:e0:e8:54:c8:c7:e3:53:44:e8:ed:86:41:59:60:a0: 1e:6b:46:ef:88:89:35:1d:60:41:ea:ae:bc:ca:8a:6f:09:5f: d8:72:b1:73:d8:78:92:e6:7e:a7:e7:73:18:18:f8:a9:e9:6e: bc:25:6d:da:8d:96:2c:3e:98:a8:2e:98:23:96:7a:56:8d:de: 11:17:b2:89 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPABPaWxyrG84UpUeMg7VqFLTtrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVF QzgyMUZGRDAeFw0yNTA2MTUyMzI3MTVaFw0yNTA2MTkwNzAxMTVaMDMxMTAvBgNV BAMTKDcxRjkyMzVBRDM1OEZDOTI3ODNCMTU2NzVBRUNDNUMyNDcyMDE2MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqTOCOYOu98syjNI0AL5G+/Pt3 YqOeFHx23/CXnRz5W4nXDHaLauflu3+BVVPeeBYEMDavpuRdTef8ZUCVsOn/G+ad vSXBJspydrBQWlJXEGZse6cZkijqKbLLbEYbeswiAl1BonC9iQL0fkW6KJYcKb7i zz1eorU2MPcEkim32bHhPwmVyOMbQNS3p+SDt37ZxT/9vIgjZpaVvVNftldakmm0 gf5Sc/BsUhLsqvUdYCQ31eiMW6Q7fYmASNLJINBo6DvgSDEc7RkYe8NqQ9fVAZCY MqDn9ty262w4s7wPh+cJHfhPMwav270ZpRxrOyg62zzhRvtUKcPV1/Yn6l8RAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcfkjWtNY/JJ4OxVnWuzFwkcgFgAwHwYDVR0j BBgwFoAU0Pedgm5D6rYaeoNOaid3xeyCH/0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODQ2MzI4NS03YzI4LTQzNWEtODJiYi1mY2MzMmQ1ODAyMGUvMC9EMEY3OUQ4MjZF NDNFQUI2MUE3QTgzNEU2QTI3NzdDNUVDODIxRkZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVFQzgy MUZGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg0NjMyODUtN2MyOC00MzVhLTgy YmItZmNjMzJkNTgwMjBlLzAvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3 QzVFQzgyMUZGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADy6dpmLgYzol05I97FQqb000QMZTUxlwwgN SF9WSMKLfR7epb3wy/csQ+Ve+i/R8Ypwpcfw/pb4qbpHMyYtsY82y2iKWa/EE9RC BJHeqKBi2tTtMATLR0DMcqU1DU5rtEMX8of0T+dFjFJt85SEDtzMSj+J80R/ZmsK /LLqfpwqNd6M/3b/JsFxX8bStW8Loh3v5LgzRZGg9M8MTsNKG23KjZ1mT/r+Mfkc NRGxqtpXmUP86HTlp+DoVMjH41NE6O2GQVlgoB5rRu+IiTUdYEHqrrzKim8JX9hy sXPYeJLmfqfncxgY+KnpbrwlbdqNliw+mKgumCOWelaN3hEXsok= -----END CERTIFICATE-----Generated at Tue Jun 17 16:50:44 2025 by rpki-client