$ rpki-client -vvf repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft File: D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft (raw, json) Hash identifier: mhjECZJ8GxZv2BLVL5xaRBoquiSW7QWu9FlXUdxMXMU= Subject key identifier: E5:C4:96:19:F5:7C:BE:23:98:5E:EA:41:3B:CC:67:A2:25:9A:2D:A7 Authority key identifier: D2:1A:35:97:D7:B5:EB:D9:A5:47:68:0F:1C:2E:D7:A4:64:DD:9F:26 Certificate issuer: /CN=D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26 Certificate serial: 2666B8B90AB99BFDE35C1AC39A45BC8423BC9115 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft Manifest number: 01F7 Signing time: Mon 16 Jun 2025 05:21:46 +0000 Manifest this update: Mon 16 Jun 2025 05:16:46 +0000 Manifest next update: Thu 19 Jun 2025 11:03:46 +0000 Files and hashes: 1: 3130332e3138332e362e302f32332d3234203d3e20313439343037.roa (hash: bu4LtbxxfvYhSmPVYXsHJnQ8u6QDASxNerDLPSby9+A=) 2: D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.crl (hash: 0sWTWnZeDb0zeZd5ECVEvamEltRg38HRhI7dzVPbslw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.crl rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 11:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:66:b8:b9:0a:b9:9b:fd:e3:5c:1a:c3:9a:45:bc:84:23:bc:91:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26 Validity Not Before: Jun 16 05:16:46 2025 GMT Not After : Jun 19 11:03:46 2025 GMT Subject: CN=E5C49619F57CBE23985EEA413BCC67A2259A2DA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b1:26:e0:1f:d7:ae:1c:52:00:27:eb:0a:53: 36:4a:29:8c:49:24:6e:5d:d0:9c:3d:79:cf:d1:3a: c0:7b:4f:46:8c:c4:58:24:63:b3:51:67:bd:d1:2a: fc:7c:2a:0d:ab:89:ad:e4:cb:74:cb:58:a5:25:69: cf:23:6a:83:fd:2a:80:01:72:c9:4d:13:ad:cf:79: 20:42:40:b3:d9:72:de:ac:ac:dd:d1:90:d5:20:7e: ea:86:b6:fc:0f:52:a1:ad:34:00:db:34:c4:1e:72: b2:73:dc:6e:2d:28:e0:69:4a:b7:40:11:5f:3c:10: 96:12:83:9c:5b:1f:8f:75:c1:71:76:66:61:b7:5e: 22:b6:95:cd:5e:f2:96:29:80:54:c1:8d:cd:11:9b: 1c:98:88:1e:c3:51:17:26:e4:ed:c8:cc:98:08:62: c7:25:c3:ce:75:49:40:c4:15:51:06:de:81:e6:41: d3:09:76:82:35:4c:53:c8:ef:ff:52:74:35:c4:cb: 79:8e:c1:49:ed:ec:9a:f3:a7:e8:19:bd:5e:5a:1d: fe:1a:c9:94:cf:ea:12:d9:48:0f:46:6e:4d:a1:46: f6:ec:11:3f:5b:80:37:38:2c:fc:ac:ce:2c:cd:f7: 03:7c:ec:93:f9:2f:6a:2c:9c:52:ba:74:fd:0c:95: 12:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:C4:96:19:F5:7C:BE:23:98:5E:EA:41:3B:CC:67:A2:25:9A:2D:A7 X509v3 Authority Key Identifier: keyid:D2:1A:35:97:D7:B5:EB:D9:A5:47:68:0F:1C:2E:D7:A4:64:DD:9F:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:13:ae:af:16:e8:1c:98:fd:a7:a4:4e:a8:cc:e5:76:37:61: 53:55:e7:6f:7b:93:ec:30:8f:d2:94:1c:77:8a:d6:88:1d:a3: e5:cd:00:fc:0f:d0:e2:35:42:d0:2f:7b:17:e5:bc:15:0d:34: bf:1e:19:c5:6a:e5:70:34:08:23:f1:e8:e3:0a:46:f6:b8:b8: 6d:40:87:77:47:ed:a0:63:e3:75:f5:f3:d6:5c:da:ba:87:5b: 6c:62:f4:95:77:ca:17:1d:ba:44:a0:57:bb:c9:2c:4d:a0:eb: 41:79:8e:fe:f1:37:48:a1:28:7d:e7:34:ad:0e:bd:f6:98:d4: c7:41:cd:da:8d:51:e9:b6:07:b1:68:f0:cd:06:bd:30:69:b1: 75:4f:bb:38:18:30:60:7f:74:39:d6:c7:c7:97:19:46:ff:a0: 2b:8a:d4:34:92:60:37:6f:07:df:3f:00:b9:35:4f:6c:64:c3: e6:ff:9d:08:38:63:3b:38:33:b6:3b:d2:f7:83:a4:e6:70:66: 2d:38:f0:3a:30:c8:79:39:3e:8b:b3:43:95:73:7c:50:a6:e6: 57:52:50:9e:23:6b:f7:63:0e:7e:be:e4:d0:77:3f:fa:a8:85: 33:92:3e:4b:c9:3a:db:0c:3e:74:2f:fe:3a:96:28:0c:bc:34: fc:ad:26:36 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJma4uQq5m/3jXBrDmkW8hCO8kRUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIxQTM1OTdEN0I1RUJEOUE1NDc2ODBGMUMyRUQ3QTQ2 NEREOUYyNjAeFw0yNTA2MTYwNTE2NDZaFw0yNTA2MTkxMTAzNDZaMDMxMTAvBgNV BAMTKEU1QzQ5NjE5RjU3Q0JFMjM5ODVFRUE0MTNCQ0M2N0EyMjU5QTJEQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxsSbgH9euHFIAJ+sKUzZKKYxJ JG5d0Jw9ec/ROsB7T0aMxFgkY7NRZ73RKvx8Kg2ria3ky3TLWKUlac8jaoP9KoAB cslNE63PeSBCQLPZct6srN3RkNUgfuqGtvwPUqGtNADbNMQecrJz3G4tKOBpSrdA EV88EJYSg5xbH491wXF2ZmG3XiK2lc1e8pYpgFTBjc0RmxyYiB7DURcm5O3IzJgI Ysclw851SUDEFVEG3oHmQdMJdoI1TFPI7/9SdDXEy3mOwUnt7Jrzp+gZvV5aHf4a yZTP6hLZSA9Gbk2hRvbsET9bgDc4LPyszizN9wN87JP5L2osnFK6dP0MlRITAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5cSWGfV8viOYXupBO8xnoiWaLacwHwYDVR0j BBgwFoAU0ho1l9e169mlR2gPHC7XpGTdnyYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2M1NjA1ZC1mMTdhLTQwMTAtOTI1My0yMTBjNjRmMTQ4YmQvMC9EMjFBMzU5N0Q3 QjVFQkQ5QTU0NzY4MEYxQzJFRDdBNDY0REQ5RjI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDIxQTM1OTdEN0I1RUJEOUE1NDc2ODBGMUMyRUQ3QTQ2NERE OUYyNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2NjNTYwNWQtZjE3YS00MDEwLTky NTMtMjEwYzY0ZjE0OGJkLzAvRDIxQTM1OTdEN0I1RUJEOUE1NDc2ODBGMUMyRUQ3 QTQ2NEREOUYyNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK8Trq8W6ByY/aekTqjM5XY3YVNV5297k+ww j9KUHHeK1ogdo+XNAPwP0OI1QtAvexflvBUNNL8eGcVq5XA0CCPx6OMKRva4uG1A h3dH7aBj43X189Zc2rqHW2xi9JV3yhcdukSgV7vJLE2g60F5jv7xN0ihKH3nNK0O vfaY1MdBzdqNUem2B7Fo8M0GvTBpsXVPuzgYMGB/dDnWx8eXGUb/oCuK1DSSYDdv B98/ALk1T2xkw+b/nQg4Yzs4M7Y70veDpOZwZi048DowyHk5PouzQ5VzfFCm5ldS UJ4ja/djDn6+5NB3P/qohTOSPkvJOtsMPnQv/jqWKAy8NPytJjY= -----END CERTIFICATE-----Generated at Wed Jun 18 00:17:46 2025 by rpki-client