$ rpki-client -vvf repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft File: 458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft (raw, json) Hash identifier: hxicwsc5ci8EY3mMOPMBZBRbiM5nBZlJsQ6zy6VCj6M= Subject key identifier: 2D:97:D6:48:06:68:A4:90:A9:4C:4B:B3:BE:5A:6E:B3:8E:08:AD:9D Authority key identifier: 45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33 Certificate issuer: /CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33 Certificate serial: 28C57D9B1665801E6752AA9279C8015719B312A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft Manifest number: 01C2 Signing time: Fri 13 Jun 2025 22:21:31 +0000 Manifest this update: Fri 13 Jun 2025 22:16:31 +0000 Manifest next update: Tue 17 Jun 2025 05:09:31 +0000 Files and hashes: 1: 3130332e3139312e35342e302f32342d3234203d3e20313439393133.roa (hash: PlUQuGrph6ozxAfOZbVVs0CGGRj4aYxErmFtS7Skvdg=) 2: 3130332e3139312e35352e302f32342d3234203d3e20313439393133.roa (hash: TPt0MPhRlnRnEy6pwXTYSOfvzf7c+OznSicdCAsldBc=) 3: 323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa (hash: K39jn2y2K6bT6WSylU024emK2v2goVGb5peC7he2S4U=) 4: 458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl (hash: VvSKJcDtdG0v8+DrvIMHkJf6/d/3XWPPd6SFRVBFSL8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 05:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:c5:7d:9b:16:65:80:1e:67:52:aa:92:79:c8:01:57:19:b3:12:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33 Validity Not Before: Jun 13 22:16:31 2025 GMT Not After : Jun 17 05:09:31 2025 GMT Subject: CN=2D97D6480668A490A94C4BB3BE5A6EB38E08AD9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:6f:04:cd:80:56:0f:0a:7f:42:c1:30:59:74: fc:0f:3c:04:ff:0b:ed:27:e0:2d:2f:c4:ff:c5:1a: a2:ff:70:62:ad:ba:21:b3:27:22:c7:3b:c8:1e:ff: 68:5a:e0:6a:ef:83:a4:e3:a6:f8:be:d1:36:f1:8d: af:37:d9:39:84:2c:23:5b:31:2c:92:88:0f:98:37: 81:59:d0:36:4e:b1:2b:bb:23:a2:14:00:8d:da:68: b7:bc:c3:96:7a:fe:90:7b:dd:d8:51:36:b8:75:8e: 78:3f:c6:89:bd:0a:85:b3:90:c3:cb:49:2a:dc:7f: a8:8a:aa:f5:24:86:62:7f:65:2f:50:ce:23:2e:9a: 51:28:52:6e:80:b8:bc:0f:7a:1d:0d:a7:15:27:5e: d6:40:3b:f2:68:45:f1:57:64:d2:a9:2e:32:4e:df: 2f:d5:d1:8f:8e:02:e9:c3:39:ba:7c:05:00:8b:9f: 8c:45:f8:2d:d0:8d:b6:d7:7a:ea:f1:12:1e:da:6a: ee:f7:50:08:5a:48:79:1a:b8:8b:e7:db:a2:ac:d0: 4d:55:76:e3:49:c6:99:15:58:52:1f:72:bf:46:32: 04:ee:1a:50:0f:8b:a4:6a:d0:d1:c5:a1:ce:3f:a6: 3b:02:70:d9:05:b6:de:d8:60:d4:96:bf:97:e6:97: 97:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:97:D6:48:06:68:A4:90:A9:4C:4B:B3:BE:5A:6E:B3:8E:08:AD:9D X509v3 Authority Key Identifier: keyid:45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:e2:dd:fd:91:50:db:6d:74:07:20:f5:d9:1a:f4:db:d7:4c: 4e:20:5f:ac:8d:a7:a5:fa:df:6e:36:51:d5:82:61:3f:c0:40: ed:41:0d:32:60:0b:e5:94:8b:c9:92:a0:b0:0a:b5:46:ce:27: ad:47:bb:b3:7c:20:00:a9:09:e3:29:85:a4:d1:98:0b:f2:c9: 83:cc:ec:fe:87:7e:15:63:f8:5b:7c:ae:20:2c:2b:c5:03:01: bd:3c:98:81:42:49:ea:89:04:d0:af:18:80:b9:6d:45:4d:5a: e9:d2:98:92:86:a4:8b:f0:2b:e2:92:1c:a5:4d:6c:97:4d:b6: f2:81:a3:13:36:ed:cc:b8:74:54:95:b6:a8:98:04:32:3e:89: 64:33:ff:be:2b:09:6b:67:ed:21:bb:b3:9b:93:6a:88:03:fb: e5:a1:17:b5:ee:37:89:be:e2:cb:7b:bc:48:f5:ff:f7:fd:c4: 5e:37:74:90:32:89:e7:4c:cf:95:c3:55:fc:ce:25:90:7a:61: d0:0d:46:86:36:ab:75:54:53:f4:dc:54:48:45:e4:70:79:c1: 75:2a:66:d8:17:b6:55:c3:21:84:e0:9f:08:f0:5e:5c:40:43: cf:08:1f:00:fe:fa:42:cc:01:6a:6d:2f:66:87:0f:22:40:36: 03:b0:64:18 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKMV9mxZlgB5nUqqSecgBVxmzEqYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIzRTJC RTBERkQzMzAeFw0yNTA2MTMyMjE2MzFaFw0yNTA2MTcwNTA5MzFaMDMxMTAvBgNV BAMTKDJEOTdENjQ4MDY2OEE0OTBBOTRDNEJCM0JFNUE2RUIzOEUwOEFEOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDibwTNgFYPCn9CwTBZdPwPPAT/ C+0n4C0vxP/FGqL/cGKtuiGzJyLHO8ge/2ha4Grvg6Tjpvi+0Tbxja832TmELCNb MSySiA+YN4FZ0DZOsSu7I6IUAI3aaLe8w5Z6/pB73dhRNrh1jng/xom9CoWzkMPL SSrcf6iKqvUkhmJ/ZS9QziMumlEoUm6AuLwPeh0NpxUnXtZAO/JoRfFXZNKpLjJO 3y/V0Y+OAunDObp8BQCLn4xF+C3QjbbXeurxEh7aau73UAhaSHkauIvn26Ks0E1V duNJxpkVWFIfcr9GMgTuGlAPi6Rq0NHFoc4/pjsCcNkFtt7YYNSWv5fml5e5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQULZfWSAZopJCpTEuzvlpus44IrZ0wHwYDVR0j BBgwFoAURY2aK0wi/1AWri4kcp0j4r4N/TMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODZkNmJhMS0xZjczLTQ3NzYtOGE2YS00ZjQ1MTIwNzkyYjEvMC80NThEOUEyQjRD MjJGRjUwMTZBRTJFMjQ3MjlEMjNFMkJFMERGRDMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIzRTJCRTBE RkQzMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzg2ZDZiYTEtMWY3My00Nzc2LThh NmEtNGY0NTEyMDc5MmIxLzAvNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIz RTJCRTBERkQzMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADXi3f2RUNttdAcg9dka9NvXTE4gX6yNp6X6 3242UdWCYT/AQO1BDTJgC+WUi8mSoLAKtUbOJ61Hu7N8IACpCeMphaTRmAvyyYPM 7P6HfhVj+Ft8riAsK8UDAb08mIFCSeqJBNCvGIC5bUVNWunSmJKGpIvwK+KSHKVN bJdNtvKBoxM27cy4dFSVtqiYBDI+iWQz/74rCWtn7SG7s5uTaogD++WhF7XuN4m+ 4st7vEj1//f9xF43dJAyiedMz5XDVfzOJZB6YdANRoY2q3VUU/TcVEhF5HB5wXUq ZtgXtlXDIYTgnwjwXlxAQ88IHwD++kLMAWptL2aHDyJANgOwZBg= -----END CERTIFICATE-----Generated at Mon Jun 16 04:37:33 2025 by rpki-client