$ rpki-client -vvf repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft File: C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft (raw, json) Hash identifier: XFuhzk1WJuIaR92Gtr2T+vVu/3ragKWaRTg5KBT689Y= Subject key identifier: 4A:3E:0A:5B:DF:D7:EC:84:23:CF:93:DB:95:19:74:2B:F9:81:3E:8D Authority key identifier: C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 Certificate issuer: /CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Certificate serial: 16E9BFC38A1D07A747537B1A8DC5545451AB76E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject info access: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft Manifest number: D6 Signing time: Sun 15 Jun 2025 17:20:50 +0000 Manifest this update: Sun 15 Jun 2025 17:15:50 +0000 Manifest next update: Thu 19 Jun 2025 05:13:50 +0000 Files and hashes: 1: 3230332e3134352e35382e302f32342d3234203d3e20313432333735.roa (hash: bBnfqhprKZxO7GNHi6JFSi7ubIWOVMTy7/ydlUAr+qE=) 2: 3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa (hash: lPAaUMCnmORN0lcIkL1SdTQ//TRobbXWIgBrv9ai9Yc=) 3: 3230332e3134352e35392e302f32342d3234203d3e20313432333735.roa (hash: XQ5YOO3QMAmUiXXyDyAvfXAeHqliwoa7oF/Rg8qefuw=) 4: C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl (hash: rCBBb92bVh8y2VjLijELBlvZvpaSGk2yY8ei9EXyWho=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 05:13:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:e9:bf:c3:8a:1d:07:a7:47:53:7b:1a:8d:c5:54:54:51:ab:76:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Validity Not Before: Jun 15 17:15:50 2025 GMT Not After : Jun 19 05:13:50 2025 GMT Subject: CN=4A3E0A5BDFD7EC8423CF93DB9519742BF9813E8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6a:41:18:e6:c1:a5:f2:34:44:10:4d:0f:db: c0:99:0a:ce:47:cc:a4:24:c9:2a:ab:2e:6d:88:7b: 99:82:19:88:32:6e:52:af:1e:37:17:82:c0:b5:dc: 6b:4e:b3:42:f3:9f:84:f0:43:98:59:85:f7:e0:6d: f9:02:b2:d4:97:90:a8:cf:f1:84:19:62:cd:81:ec: 6e:ba:9a:0f:49:08:55:4a:3c:06:de:4a:41:77:ea: 84:6b:ec:c1:e3:19:30:50:0e:a4:b8:e7:ec:df:5f: 8f:bd:1d:e2:b3:ef:03:2f:6f:17:11:d3:de:ae:0a: 23:4a:5e:7d:1c:17:f2:b0:e0:3a:34:f6:2d:b8:14: 0b:b9:f9:18:c4:5b:b7:8f:8c:2c:27:2e:ac:de:69: 83:7e:e4:d0:ef:9a:92:16:87:e5:b2:08:24:be:0d: bf:04:08:24:dc:4e:b9:92:08:e0:52:10:4e:d1:b4: 17:1f:e8:b3:b6:97:6b:33:c4:fe:35:eb:4d:ff:49: 94:22:b0:44:6f:15:7c:45:16:53:22:b6:69:44:ea: 77:2a:78:e1:80:17:98:03:ad:4d:f7:13:a3:4c:4c: ac:88:54:63:74:b6:2c:5a:a6:ce:87:05:7d:20:69: 2f:f0:5d:7c:1e:c9:80:b4:90:6a:dc:49:e6:80:cb: 64:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3E:0A:5B:DF:D7:EC:84:23:CF:93:DB:95:19:74:2B:F9:81:3E:8D X509v3 Authority Key Identifier: keyid:C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:0e:7f:4b:19:c6:94:8c:e0:9f:fc:cc:37:94:f6:6a:ec:be: d2:91:f2:91:e2:06:36:49:5d:75:6e:9d:6b:63:a9:5d:03:66: ac:2f:37:71:1b:de:ae:2f:22:64:d6:20:23:2f:57:5d:bf:dc: 65:a8:d4:b5:87:fc:fe:db:c8:73:a6:96:c9:46:50:c8:71:4c: 24:7f:4c:7f:bc:2a:9f:4d:3a:d7:29:f7:f0:85:f3:39:db:91: b0:b6:5e:20:af:39:f9:6c:10:94:d1:0d:4e:01:d5:60:0f:0c: c7:b4:5e:f2:58:f4:44:4d:6d:a7:3e:d0:1c:90:47:a7:df:64: e1:54:a1:49:b9:f5:87:7b:83:76:bc:04:86:2e:6b:91:43:6d: 35:58:cd:89:03:36:d2:fa:f4:83:e7:3b:89:13:b5:f8:2a:36: 30:b9:70:50:ac:07:72:eb:fc:b8:e0:7d:7f:a9:af:13:e5:56: ea:20:35:8b:a8:ab:e5:84:f2:4b:5e:6c:7a:0f:a0:85:ff:38: 08:08:7a:e9:b1:8d:c4:21:de:e2:65:0a:f8:14:87:54:b6:97: e2:d6:3d:06:d4:bb:d6:94:1b:65:94:8e:5c:6a:51:c6:6b:77: dc:be:e0:f3:fa:19:07:0a:49:a0:1f:53:f6:37:ae:ed:04:c1: ac:a5:69:57 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFum/w4odB6dHU3sajcVUVFGrducwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFC NTMwNjMzNjAeFw0yNTA2MTUxNzE1NTBaFw0yNTA2MTkwNTEzNTBaMDMxMTAvBgNV BAMTKDRBM0UwQTVCREZEN0VDODQyM0NGOTNEQjk1MTk3NDJCRjk4MTNFOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoakEY5sGl8jREEE0P28CZCs5H zKQkySqrLm2Ie5mCGYgyblKvHjcXgsC13GtOs0Lzn4TwQ5hZhffgbfkCstSXkKjP 8YQZYs2B7G66mg9JCFVKPAbeSkF36oRr7MHjGTBQDqS45+zfX4+9HeKz7wMvbxcR 096uCiNKXn0cF/Kw4Do09i24FAu5+RjEW7ePjCwnLqzeaYN+5NDvmpIWh+WyCCS+ Db8ECCTcTrmSCOBSEE7RtBcf6LO2l2szxP41603/SZQisERvFXxFFlMitmlE6ncq eOGAF5gDrU33E6NMTKyIVGN0tixaps6HBX0gaS/wXXweyYC0kGrcSeaAy2RJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSj4KW9/X7IQjz5PblRl0K/mBPo0wHwYDVR0j BBgwFoAUwvlWsSaIS179jdrc6w4z4bUwYzYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NmFhM2JlYi01NzYxLTRjMzQtODhkMy0wMTVjY2M2NDAwMmYvMC9DMkY5NTZCMTI2 ODg0QjVFRkQ4RERBRENFQjBFMzNFMUI1MzA2MzM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFCNTMw NjMzNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzZhYTNiZWItNTc2MS00YzM0LTg4 ZDMtMDE1Y2NjNjQwMDJmLzAvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMz RTFCNTMwNjMzNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKoOf0sZxpSM4J/8zDeU9mrsvtKR8pHiBjZJ XXVunWtjqV0DZqwvN3Eb3q4vImTWICMvV12/3GWo1LWH/P7byHOmlslGUMhxTCR/ TH+8Kp9NOtcp9/CF8znbkbC2XiCvOflsEJTRDU4B1WAPDMe0XvJY9ERNbac+0ByQ R6ffZOFUoUm59Yd7g3a8BIYua5FDbTVYzYkDNtL69IPnO4kTtfgqNjC5cFCsB3Lr /LjgfX+prxPlVuogNYuoq+WE8ktebHoPoIX/OAgIeumxjcQh3uJlCvgUh1S2l+LW PQbUu9aUG2WUjlxqUcZrd9y+4PP6GQcKSaAfU/Y3ru0EwaylaVc= -----END CERTIFICATE-----Generated at Mon Jun 16 22:51:08 2025 by rpki-client