$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft File: CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft (raw, json) Hash identifier: VAA6xNm9h7OF8XbsnjuxCwiPra79w8bF3joFOrx/d18= Subject key identifier: 80:61:43:89:16:E5:E0:A3:07:43:5D:91:A8:81:72:33:80:CC:CD:0B Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C Certificate issuer: /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Certificate serial: 6E133BF640CAB3BE3C93B130BF028BF2EE89A561 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft Manifest number: 04E0 Signing time: Sun 15 Jun 2025 13:01:24 +0000 Manifest this update: Sun 15 Jun 2025 12:56:24 +0000 Manifest next update: Wed 18 Jun 2025 23:15:24 +0000 Files and hashes: 1: 323430333a626163303a3a2f33322d3438203d3e20313333383135.roa (hash: bj03wSoaB1PZHhqBBV4Wr4Sjs0onXCgWYauPl2mcWtw=) 2: CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl (hash: n0hV2ZvsARPBBOzA0FzWU9M+G1hNOhMT+oaxABhUIds=) 3: 3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa (hash: gDwS3CZNot9PKNbXfgVaxRg3XKEAojqRRjZmWUnIieM=) 4: 323430333a353763303a3a2f33322d3438203d3e20313333383135.roa (hash: qJMxf0aJqdHPfbLPNvUiMxKhq3U6DmyX3ZCQXdLa44w=) 5: 3130332e35322e34342e302f32322d3234203d3e20313333383135.roa (hash: +hHtMHqrRgOxnxPgQ1JDtVaqmRcnzLdlLvloLKvOcZA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 11:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:13:3b:f6:40:ca:b3:be:3c:93:b1:30:bf:02:8b:f2:ee:89:a5:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Validity Not Before: Jun 15 12:56:24 2025 GMT Not After : Jun 18 23:15:24 2025 GMT Subject: CN=8061438916E5E0A307435D91A881723380CCCD0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:83:a6:81:38:82:54:de:35:1c:36:ef:2e:34: d9:91:74:7c:89:80:7e:3b:c0:e1:68:c0:fa:0c:fa: 3b:0b:f1:dc:4c:3c:c1:6b:10:e2:12:b9:24:9f:1b: cb:4b:b3:c6:4f:8d:be:75:cb:bf:f9:5a:ba:1c:f5: b5:d4:6a:45:cd:9d:b9:0f:50:3e:09:e1:db:c8:b5: b1:f0:9b:a3:e6:59:6e:dc:43:2f:01:8d:68:44:4d: b6:fc:d4:3d:de:74:cf:fd:2d:a5:65:ec:cb:64:3b: 75:15:48:52:05:42:c3:9a:f0:43:ad:03:1f:28:eb: 66:22:d8:65:a4:a2:ad:3c:15:34:47:f7:0c:68:15: 4e:76:03:2f:41:ee:a8:36:01:89:56:09:2f:fb:14: e1:4b:79:f3:5e:79:99:55:7f:62:4d:e4:38:b6:d0: b0:51:1e:76:4c:66:1f:d5:3e:c3:8d:fa:d0:2e:7e: 82:45:11:1b:11:0e:31:8d:07:5c:cd:ee:17:35:0e: a6:9b:5d:49:81:25:55:e5:03:3d:2d:4b:a3:1b:63: e1:ab:c0:35:b7:1f:86:90:6d:a8:9a:ed:a3:1c:24: 51:31:42:41:5f:b3:87:ba:db:1b:f4:18:0a:29:fc: 5a:1b:07:0c:35:81:65:ba:70:a0:9f:83:a4:0a:3d: 80:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:61:43:89:16:E5:E0:A3:07:43:5D:91:A8:81:72:33:80:CC:CD:0B X509v3 Authority Key Identifier: keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:8c:8e:b6:0c:5e:87:5f:a5:47:db:32:e4:18:10:36:4a:27: bd:d0:18:f9:10:26:d1:a9:0c:d4:72:01:3f:94:a6:cf:1b:05: d4:d0:50:00:c6:9f:df:39:a0:ab:6b:a2:66:6e:7e:26:12:8c: ad:01:c0:ec:72:2f:2d:0c:5f:a6:e3:bd:55:9e:17:80:c4:ea: 31:8a:e1:9c:0a:f2:57:b7:1c:75:e4:ca:ea:e2:bf:31:db:6d: a8:9d:ee:15:3d:c2:0b:bb:32:e1:c3:40:95:7d:45:df:37:ea: 7e:dd:c5:fd:16:0e:20:08:60:7f:f9:5a:eb:18:d8:b9:85:99: 35:3a:8b:7a:f5:3c:84:7e:aa:e8:45:84:ad:e3:32:9e:c0:39: f9:d7:9e:a9:d3:db:ce:44:d8:d1:0e:3f:5c:1f:8c:1f:a2:1f: f4:97:b0:1d:91:a4:80:67:5a:73:f3:1d:3e:c9:8e:d8:21:a9: bb:15:62:7e:65:63:e2:72:09:e1:2c:bb:a3:ea:59:93:06:6c: e9:06:72:ae:bc:e7:d0:d1:92:51:52:f1:22:43:ef:21:8b:a2: 68:fa:96:eb:bc:57:43:37:d7:06:db:18:55:22:e0:4d:c8:bd: 93:f1:98:4d:30:b7:b5:8f:cf:29:22:7a:bd:c3:55:bb:23:77: 01:1b:1d:23 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbhM79kDKs748k7EwvwKL8u6JpWEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcw MzEyQUQ1QzAeFw0yNTA2MTUxMjU2MjRaFw0yNTA2MTgyMzE1MjRaMDMxMTAvBgNV BAMTKDgwNjE0Mzg5MTZFNUUwQTMwNzQzNUQ5MUE4ODE3MjMzODBDQ0NEMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIg6aBOIJU3jUcNu8uNNmRdHyJ gH47wOFowPoM+jsL8dxMPMFrEOISuSSfG8tLs8ZPjb51y7/5Wroc9bXUakXNnbkP UD4J4dvItbHwm6PmWW7cQy8BjWhETbb81D3edM/9LaVl7MtkO3UVSFIFQsOa8EOt Ax8o62Yi2GWkoq08FTRH9wxoFU52Ay9B7qg2AYlWCS/7FOFLefNeeZlVf2JN5Di2 0LBRHnZMZh/VPsON+tAufoJFERsRDjGNB1zN7hc1DqabXUmBJVXlAz0tS6MbY+Gr wDW3H4aQbaia7aMcJFExQkFfs4e62xv0GAop/FobBww1gWW6cKCfg6QKPYCVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgGFDiRbl4KMHQ12RqIFyM4DMzQswHwYDVR0j BBgwFoAUzqA6B5iRB/VHorKrqmrU5wMSrVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTNhZTQ4NS1hNjU4LTRjNWMtYWJlMi0xZTdmZDhiMDM4YTAvMC9DRUEwM0EwNzk4 OTEwN0Y1NDdBMkIyQUJBQTZBRDRFNzAzMTJBRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcwMzEy QUQ1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmEzYWU0ODUtYTY1OC00YzVjLWFi ZTItMWU3ZmQ4YjAzOGEwLzAvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0 RTcwMzEyQUQ1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKKMjrYMXodfpUfbMuQYEDZKJ73QGPkQJtGp DNRyAT+Ups8bBdTQUADGn985oKtromZufiYSjK0BwOxyLy0MX6bjvVWeF4DE6jGK 4ZwK8le3HHXkyurivzHbbaid7hU9wgu7MuHDQJV9Rd836n7dxf0WDiAIYH/5WusY 2LmFmTU6i3r1PIR+quhFhK3jMp7AOfnXnqnT285E2NEOP1wfjB+iH/SXsB2RpIBn WnPzHT7JjtghqbsVYn5lY+JyCeEsu6PqWZMGbOkGcq6859DRklFS8SJD7yGLomj6 luu8V0M31wbbGFUi4E3IvZPxmE0wt7WPzykier3DVbsjdwEbHSM= -----END CERTIFICATE-----Generated at Sun Jun 15 15:19:22 2025 by rpki-client