$ rpki-client -vvf repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft File: D00472C77B42BC0E23D929360AA568BBAE2AA668.mft (raw, json) Hash identifier: X24o8wtokwSEsUGWQN80/UzgVPdZiy1RMlRbzREvRF4= Subject key identifier: 97:19:7B:4E:48:46:70:3D:D6:3C:3B:38:B9:2A:45:20:2F:2A:FF:70 Authority key identifier: D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 Certificate issuer: /CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Certificate serial: 2527592584017046C20FB4B2B8B1567288328A2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft Manifest number: 0204 Signing time: Fri 13 Jun 2025 21:50:04 +0000 Manifest this update: Fri 13 Jun 2025 21:45:04 +0000 Manifest next update: Tue 17 Jun 2025 01:51:04 +0000 Files and hashes: 1: D00472C77B42BC0E23D929360AA568BBAE2AA668.crl (hash: PMt3nHPhU/0s6C3FS6+5KJozZ50DRfgNN1WTCz8XntY=) 2: 3130332e3138352e3235342e302f32332d3234203d3e20313439363838.roa (hash: 6gEpief7n0b1o5LDXUhCiEL/rkB2mrhMUs19uxqg/vs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 01:51:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:27:59:25:84:01:70:46:c2:0f:b4:b2:b8:b1:56:72:88:32:8a:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Validity Not Before: Jun 13 21:45:04 2025 GMT Not After : Jun 17 01:51:04 2025 GMT Subject: CN=97197B4E4846703DD63C3B38B92A45202F2AFF70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a1:36:43:09:d3:48:02:6f:61:89:a7:f6:71: 29:3e:2d:89:b2:6a:36:8a:b4:00:c7:3e:27:54:a6: 39:ae:6a:3d:2e:33:87:56:bc:38:ef:1a:bd:f5:c5: b4:ed:76:00:73:ff:ed:fc:b0:ca:63:d6:2b:9d:b5: ca:0c:9e:c3:c6:11:59:7c:d7:28:4f:fe:34:af:7a: 4c:23:88:85:7b:ce:65:8f:a9:30:b2:6b:48:c2:81: 9b:41:83:8d:9b:d5:bb:05:9b:08:6b:aa:a3:08:c5: fe:f0:bd:17:db:59:d8:8f:b8:18:d6:53:2b:78:e2: 75:5a:d6:59:f0:62:55:4b:91:e9:e4:30:54:60:d5: b8:be:60:a8:37:6d:df:2d:39:d6:d2:30:84:54:7f: ff:45:1c:ea:97:8a:98:90:17:d1:38:27:7f:89:d2: 0c:65:aa:5b:a3:a8:45:f9:d5:66:b2:d9:c0:1a:3a: 1c:37:cf:18:8e:e0:bc:db:76:62:8f:46:6e:6e:4f: ad:4f:6e:c0:a6:a4:1c:ec:9c:3f:11:b4:f0:6c:61: 87:9d:12:17:d7:09:bb:be:20:c5:3d:3d:d9:9b:c7: 12:84:9e:5c:10:a7:f6:b9:7c:5a:26:1b:f8:f6:83: 97:26:69:55:63:fc:af:1f:1e:60:3a:2c:76:8b:e3: e3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:19:7B:4E:48:46:70:3D:D6:3C:3B:38:B9:2A:45:20:2F:2A:FF:70 X509v3 Authority Key Identifier: keyid:D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption dd:69:ce:5b:fb:ec:4a:e4:b9:6c:a0:25:08:4d:4d:88:61:86: f1:61:6a:6a:3c:f4:f3:7c:41:bc:1a:07:f6:09:29:85:27:35: ec:1e:d7:2c:29:56:11:5c:98:ce:a6:cf:41:c4:2d:01:ec:51: 2d:f8:76:0e:6c:ed:89:05:a6:c7:6e:dc:14:23:b2:d6:52:c1: 6c:9e:c7:16:e2:61:12:c2:fc:dc:21:12:ac:d0:1f:0e:1a:4e: b6:31:e8:85:c8:d2:4e:08:27:e9:03:28:23:06:91:f2:ca:d6: f5:d7:f3:33:0c:a7:88:2c:0f:27:3d:89:47:d0:6a:d2:6a:62: a5:5e:bd:34:8c:de:be:38:58:10:fe:7e:b1:4c:a7:94:65:ae: 88:c1:32:81:25:25:ef:be:d3:a3:55:cd:b0:81:c7:ff:d9:04: 96:4e:e4:16:9c:1e:ad:2f:91:19:7a:58:65:e2:03:09:92:a4: be:50:93:70:1a:d4:cc:9e:5f:83:64:f3:6d:8a:06:71:e7:6f: 46:f4:f6:3e:47:4f:96:dd:a6:39:a9:98:4e:c5:34:0e:c3:30: 63:0d:10:27:3f:db:b3:36:8c:16:57:79:17:cf:f6:d4:2d:48: e2:29:b4:9c:84:5c:f0:64:4f:00:0d:3b:64:51:76:43:8c:20: e8:42:72:19 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJSdZJYQBcEbCD7SyuLFWcogyiiswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJB RTJBQTY2ODAeFw0yNTA2MTMyMTQ1MDRaFw0yNTA2MTcwMTUxMDRaMDMxMTAvBgNV BAMTKDk3MTk3QjRFNDg0NjcwM0RENjNDM0IzOEI5MkE0NTIwMkYyQUZGNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyoTZDCdNIAm9hiaf2cSk+LYmy ajaKtADHPidUpjmuaj0uM4dWvDjvGr31xbTtdgBz/+38sMpj1iudtcoMnsPGEVl8 1yhP/jSvekwjiIV7zmWPqTCya0jCgZtBg42b1bsFmwhrqqMIxf7wvRfbWdiPuBjW Uyt44nVa1lnwYlVLkenkMFRg1bi+YKg3bd8tOdbSMIRUf/9FHOqXipiQF9E4J3+J 0gxlqlujqEX51Way2cAaOhw3zxiO4LzbdmKPRm5uT61PbsCmpBzsnD8RtPBsYYed EhfXCbu+IMU9PdmbxxKEnlwQp/a5fFomG/j2g5cmaVVj/K8fHmA6LHaL4+ObAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlxl7TkhGcD3WPDs4uSpFIC8q/3AwHwYDVR0j BBgwFoAU0ARyx3tCvA4j2Sk2CqVou64qpmgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzE3MzY5YS1iY2MxLTQyYmMtYjhiMi1mOTZkNTBkMzc0OWQvMC9EMDA0NzJDNzdC NDJCQzBFMjNEOTI5MzYwQUE1NjhCQkFFMkFBNjY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJBRTJB QTY2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMxNzM2OWEtYmNjMS00MmJjLWI4 YjItZjk2ZDUwZDM3NDlkLzAvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4 QkJBRTJBQTY2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAN1pzlv77ErkuWygJQhNTYhhhvFhamo89PN8 QbwaB/YJKYUnNewe1ywpVhFcmM6mz0HELQHsUS34dg5s7YkFpsdu3BQjstZSwWye xxbiYRLC/NwhEqzQHw4aTrYx6IXI0k4IJ+kDKCMGkfLK1vXX8zMMp4gsDyc9iUfQ atJqYqVevTSM3r44WBD+frFMp5RlrojBMoElJe++06NVzbCBx//ZBJZO5BacHq0v kRl6WGXiAwmSpL5Qk3Aa1MyeX4Nk822KBnHnb0b09j5HT5bdpjmpmE7FNA7DMGMN ECc/27M2jBZXeRfP9tQtSOIptJyEXPBkTwANO2RRdkOMIOhCchk= -----END CERTIFICATE-----Generated at Sun Jun 15 17:06:29 2025 by rpki-client