$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft File: 2D0745D26E59440CB71FAFE996834493DA753248.mft (raw, json) Hash identifier: moB9CYhRO5lkIEwjZ67gwHnvGCPgXVknjWsYI062k8I= Subject key identifier: 4F:FF:88:54:63:82:5E:66:11:D7:83:A0:8A:AC:72:1E:34:EB:34:99 Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 4B674B1C8FD1FBC736C6BB52000591B7DA5CCA2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft Manifest number: 01B3 Signing time: Sun 15 Jun 2025 16:20:48 +0000 Manifest this update: Sun 15 Jun 2025 16:15:48 +0000 Manifest next update: Wed 18 Jun 2025 22:16:48 +0000 Files and hashes: 1: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (hash: 3BxgBY3dX8feRwsm1hvpch2b234JpMx6XR/YBvSI5jE=) 2: 3130332e37332e3135382e302f32342d3234203d3e203234343239.roa (hash: ujITe6uXtdvP5WOayQADk+Rg7asyYqwio86khyT1Nho=) 3: 2D0745D26E59440CB71FAFE996834493DA753248.crl (hash: KwIt+IZwXJZe/Q418Yz/cqDLHzXQ94R1tT9jsI5gfCw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 22:16:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:67:4b:1c:8f:d1:fb:c7:36:c6:bb:52:00:05:91:b7:da:5c:ca:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: Jun 15 16:15:48 2025 GMT Not After : Jun 18 22:16:48 2025 GMT Subject: CN=4FFF885463825E6611D783A08AAC721E34EB3499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ee:95:9f:60:4f:1d:5f:6d:94:8f:70:32:9d: a1:ab:d4:76:4d:9e:8d:94:b2:d7:95:90:67:cc:15: 1b:bc:6f:a2:2b:53:e4:a4:a7:39:fa:af:0b:ec:ce: 85:f8:88:64:6c:e8:99:6e:93:8f:ed:ac:4d:22:a4: 3c:b3:87:c2:e8:e6:2e:4e:03:1e:b4:40:8b:9c:c2: 23:97:a0:60:ce:f1:51:54:61:f5:ea:3e:47:83:17: 13:44:54:25:10:4b:9e:e4:b8:64:db:b0:7d:fe:08: 01:e4:97:2b:31:28:37:e5:8c:23:44:f0:ed:cd:04: 81:d6:8a:7c:c5:54:03:f4:96:42:f5:a7:c2:b5:fc: 22:5a:f9:be:ad:78:d7:40:2f:c7:f0:79:c9:34:48: 20:ae:0a:0b:e6:25:e4:65:49:03:75:a3:5b:8b:1f: 59:e9:6a:cd:b9:99:b4:e3:88:33:fe:e7:a9:0e:8c: 03:68:fd:41:cd:98:8a:11:01:9f:dd:1d:58:83:84: 11:bb:00:ea:e5:26:3b:36:71:2c:f7:28:71:0a:36: 58:9d:a6:93:88:b9:27:69:e6:00:c7:69:28:1b:fa: 3c:31:ac:0d:b6:b2:9e:04:f4:75:cb:7b:e6:c7:cf: 63:6a:55:c7:bc:96:3b:f2:ea:53:b4:96:e8:70:31: 82:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:FF:88:54:63:82:5E:66:11:D7:83:A0:8A:AC:72:1E:34:EB:34:99 X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:24:f3:7d:7e:87:14:95:10:bc:33:d6:b9:fa:4c:53:0e:46: a0:4f:9d:fd:75:ba:8a:b6:e3:0c:eb:9b:70:e8:53:6b:f5:e2: c0:3c:19:d4:e0:78:32:57:d6:4f:c4:90:97:36:a2:4b:f8:34: 15:82:d3:09:2f:c1:9c:a5:00:b3:40:9c:a6:1e:80:d4:ec:ad: 88:02:6b:72:5f:ad:aa:47:98:6a:3f:52:55:4d:01:d6:9d:36: 32:e1:4d:bc:66:d1:fb:bc:0c:56:04:80:44:18:f1:7a:21:bb: 30:3a:9f:db:b4:46:ef:55:48:14:fa:75:81:3c:e3:fa:97:e2: b9:7b:a5:0e:1b:b6:28:b4:60:8c:05:65:3e:50:f5:ac:73:08: c3:72:24:04:4c:28:08:d4:2e:6b:78:62:cb:56:e7:ea:cf:c0: 95:30:4e:05:b3:b2:8b:4d:67:ab:c0:b1:aa:51:1d:05:b3:84: f6:7f:33:63:79:0a:57:d6:13:0b:e2:25:04:6c:9c:d2:d4:36: 5f:aa:1d:f5:b8:09:92:67:9b:72:5f:31:78:22:6c:9a:42:f8: f8:17:e3:ad:12:83:36:fa:da:e2:71:d1:24:e4:68:e2:f8:ca: ef:e8:2a:0a:f8:22:f0:17:0c:a4:44:19:f9:51:5e:78:7c:34: 76:ad:67:4d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUS2dLHI/R+8c2xrtSAAWRt9pcyiwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNTA2MTUxNjE1NDhaFw0yNTA2MTgyMjE2NDhaMDMxMTAvBgNV BAMTKDRGRkY4ODU0NjM4MjVFNjYxMUQ3ODNBMDhBQUM3MjFFMzRFQjM0OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY7pWfYE8dX22Uj3AynaGr1HZN no2UsteVkGfMFRu8b6IrU+Skpzn6rwvszoX4iGRs6Jluk4/trE0ipDyzh8Lo5i5O Ax60QIucwiOXoGDO8VFUYfXqPkeDFxNEVCUQS57kuGTbsH3+CAHklysxKDfljCNE 8O3NBIHWinzFVAP0lkL1p8K1/CJa+b6teNdAL8fweck0SCCuCgvmJeRlSQN1o1uL H1npas25mbTjiDP+56kOjANo/UHNmIoRAZ/dHViDhBG7AOrlJjs2cSz3KHEKNlid ppOIuSdp5gDHaSgb+jwxrA22sp4E9HXLe+bHz2NqVce8ljvy6lO0luhwMYLjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUT/+IVGOCXmYR14OgiqxyHjTrNJkwHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2E0MDZjZGItMTc5MS00NzhkLTlk MjgtOWUzN2E2ZjgwOWNjLzAvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0 OTNEQTc1MzI0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG8k831+hxSVELwz1rn6TFMORqBPnf11uoq2 4wzrm3DoU2v14sA8GdTgeDJX1k/EkJc2okv4NBWC0wkvwZylALNAnKYegNTsrYgC a3JfrapHmGo/UlVNAdadNjLhTbxm0fu8DFYEgEQY8XohuzA6n9u0Ru9VSBT6dYE8 4/qX4rl7pQ4btii0YIwFZT5Q9axzCMNyJARMKAjULmt4YstW5+rPwJUwTgWzsotN Z6vAsapRHQWzhPZ/M2N5ClfWEwviJQRsnNLUNl+qHfW4CZJnm3JfMXgibJpC+PgX 460Sgzb62uJx0STkaOL4yu/oKgr4IvAXDKREGflRXnh8NHatZ00= -----END CERTIFICATE-----Generated at Tue Jun 17 12:46:11 2025 by rpki-client