$ rpki-client -vvf repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft File: 2CCC85BF6CCD365701EFA75EE416D234F861385B.mft (raw, json) Hash identifier: GEE7fwOjWmxGbFd9WOcYK3Y9rvFJXxJL7h8TDwmJ6U8= Subject key identifier: 1B:5F:47:89:91:60:92:8A:45:C1:3E:6E:57:AE:5B:9A:4C:02:81:24 Authority key identifier: 2C:CC:85:BF:6C:CD:36:57:01:EF:A7:5E:E4:16:D2:34:F8:61:38:5B Certificate issuer: /CN=2CCC85BF6CCD365701EFA75EE416D234F861385B Certificate serial: 367845028B5706D9272F450D438FAB4B02F51027 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft Manifest number: 92 Signing time: Fri 13 Jun 2025 20:52:08 +0000 Manifest this update: Fri 13 Jun 2025 20:47:08 +0000 Manifest next update: Tue 17 Jun 2025 06:05:08 +0000 Files and hashes: 1: 3136302e32352e3231382e302f32342d3234203d3e20313533303836.roa (hash: Mr9+qsjEnJb2cnSB3AyArFy2+SWtmXNIU1+g9FxOCh0=) 2: 2CCC85BF6CCD365701EFA75EE416D234F861385B.crl (hash: YPYbZassLIJOz0Ad3pHydfRihBfpw4YOj96w+AejD2g=) 3: 3136302e32352e3231392e302f32342d3234203d3e20313533303836.roa (hash: JTPBl2xXnGWTl8ZrptZDVbUzFDyRS3/D40BYMh+0i4U=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.crl rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 06:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:78:45:02:8b:57:06:d9:27:2f:45:0d:43:8f:ab:4b:02:f5:10:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CCC85BF6CCD365701EFA75EE416D234F861385B Validity Not Before: Jun 13 20:47:08 2025 GMT Not After : Jun 17 06:05:08 2025 GMT Subject: CN=1B5F47899160928A45C13E6E57AE5B9A4C028124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:89:d4:fb:5e:fd:02:22:00:36:b2:39:93:7b: 2d:1b:82:31:6b:ab:e1:cb:16:c3:75:48:a0:cb:2b: b1:96:ce:4e:37:fd:bf:b2:00:11:f3:a6:96:11:87: 94:f9:e2:d6:41:d4:27:c1:ee:57:2a:d8:28:7d:2b: 11:06:bd:64:0c:5e:82:88:5d:26:75:7b:f2:39:11: 64:34:ff:2e:8c:fa:7c:e1:1c:43:ec:0b:f4:e1:d9: b0:4b:0a:98:c3:b3:e3:32:36:61:96:46:ac:78:f1: 14:44:49:8a:f4:ef:9b:05:ea:b2:c5:0f:53:c6:db: e2:8e:8b:53:d3:22:46:9d:df:32:27:05:39:af:de: b0:51:04:9d:3c:cd:b8:48:ba:59:fb:be:b4:cc:a3: c9:38:68:d7:fc:f2:e4:aa:99:e0:e2:4e:8d:fa:78: ba:2b:25:54:14:bd:26:98:9a:bb:24:9b:09:a6:1b: d8:07:83:0c:aa:e1:83:97:17:fa:f3:78:8b:54:dd: b9:f3:e0:39:92:95:69:8e:58:d2:30:ab:cc:1b:a6: 33:9b:c8:f0:79:7d:d7:86:99:85:9c:03:2f:88:4e: be:a8:bf:9b:e1:fe:ad:b4:f4:55:be:e4:4d:47:c7: 18:f3:5b:c0:57:91:f5:28:4f:9b:1e:ad:2c:84:9a: 92:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:5F:47:89:91:60:92:8A:45:C1:3E:6E:57:AE:5B:9A:4C:02:81:24 X509v3 Authority Key Identifier: keyid:2C:CC:85:BF:6C:CD:36:57:01:EF:A7:5E:E4:16:D2:34:F8:61:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:ce:53:5f:c6:74:e4:d9:ba:23:1c:61:0b:e7:e3:73:c3:3a: 7a:0b:35:e1:0f:dd:90:29:2d:60:93:83:40:17:df:17:4f:18: 29:07:be:f2:68:02:c5:b5:2c:ca:93:ac:f7:22:b5:9b:9f:89: fa:44:1f:b7:cd:21:9a:93:55:67:26:77:66:d4:ec:a3:88:35: 1e:45:7b:47:6e:aa:06:59:8f:a3:a1:0a:cb:34:d6:30:a0:f1: ba:c9:5a:71:a1:6b:79:d7:af:af:17:9a:e0:b9:a8:6f:73:90: 78:82:3e:46:a5:a4:3c:5f:6c:de:2d:05:41:a9:09:16:3b:97: 41:3c:d3:c5:32:f7:f3:27:cc:d4:8a:84:3a:55:25:1c:49:98: 07:6f:df:3c:6b:e5:bd:5f:54:07:29:9f:7f:ea:40:42:24:cc: 96:42:7d:44:fb:d6:24:84:8b:2c:44:a5:0e:37:5d:8a:93:88: 64:ff:12:88:59:58:86:b5:eb:fc:f8:18:d3:cd:96:9c:7b:b3: 27:5f:a2:f4:e7:39:95:46:ec:da:56:da:a7:98:f2:56:cc:14: 4c:db:3b:ba:2a:a8:c5:07:d2:70:d2:44:de:ad:58:2c:a8:58: 3d:95:eb:bf:3b:19:69:8d:fb:e2:f5:d0:49:69:10:1d:80:26: 7d:5d:af:ea -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNnhFAotXBtknL0UNQ4+rSwL1ECcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQyMzRG ODYxMzg1QjAeFw0yNTA2MTMyMDQ3MDhaFw0yNTA2MTcwNjA1MDhaMDMxMTAvBgNV BAMTKDFCNUY0Nzg5OTE2MDkyOEE0NUMxM0U2RTU3QUU1QjlBNEMwMjgxMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZidT7Xv0CIgA2sjmTey0bgjFr q+HLFsN1SKDLK7GWzk43/b+yABHzppYRh5T54tZB1CfB7lcq2Ch9KxEGvWQMXoKI XSZ1e/I5EWQ0/y6M+nzhHEPsC/Th2bBLCpjDs+MyNmGWRqx48RRESYr075sF6rLF D1PG2+KOi1PTIkad3zInBTmv3rBRBJ08zbhIuln7vrTMo8k4aNf88uSqmeDiTo36 eLorJVQUvSaYmrskmwmmG9gHgwyq4YOXF/rzeItU3bnz4DmSlWmOWNIwq8wbpjOb yPB5fdeGmYWcAy+ITr6ov5vh/q209FW+5E1HxxjzW8BXkfUoT5serSyEmpJVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUG19HiZFgkopFwT5uV65bmkwCgSQwHwYDVR0j BBgwFoAULMyFv2zNNlcB76de5BbSNPhhOFswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWYwN2YxOC01YzQ5LTQxMjktYWE1My03MDg1Y2NkNTdiNjMvMC8yQ0NDODVCRjZD Q0QzNjU3MDFFRkE3NUVFNDE2RDIzNEY4NjEzODVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQyMzRGODYx Mzg1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FmMDdmMTgtNWM0OS00MTI5LWFh NTMtNzA4NWNjZDU3YjYzLzAvMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQy MzRGODYxMzg1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJbOU1/GdOTZuiMcYQvn43PDOnoLNeEP3ZAp LWCTg0AX3xdPGCkHvvJoAsW1LMqTrPcitZufifpEH7fNIZqTVWcmd2bU7KOINR5F e0duqgZZj6OhCss01jCg8brJWnGha3nXr68XmuC5qG9zkHiCPkalpDxfbN4tBUGp CRY7l0E808Uy9/MnzNSKhDpVJRxJmAdv3zxr5b1fVAcpn3/qQEIkzJZCfUT71iSE iyxEpQ43XYqTiGT/EohZWIa16/z4GNPNlpx7sydfovTnOZVG7NpW2qeY8lbMFEzb O7oqqMUH0nDSRN6tWCyoWD2V6787GWmN++L10ElpEB2AJn1dr+o= -----END CERTIFICATE-----Generated at Mon Jun 16 05:26:18 2025 by rpki-client