$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft File: 024ABFF2959A6144CC4889C70F77F968FA410EF1.mft (raw, json) Hash identifier: 3OscQqemS4Jn/NNEVBTEeVanVjtm3zTv3CUOd1/bq3M= Subject key identifier: EE:25:26:64:C3:D6:B7:6F:3D:BE:51:A6:00:26:60:53:76:4C:B6:B4 Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 2C14349E50E9C79BC97D61DADFE3771C3A4124EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft Manifest number: 029F Signing time: Sun 15 Jun 2025 12:01:10 +0000 Manifest this update: Sun 15 Jun 2025 11:56:10 +0000 Manifest next update: Wed 18 Jun 2025 12:19:10 +0000 Files and hashes: 1: 3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa (hash: G2juGB6eftwsC+fsnzguy++P5zlF0bkzL2c8r+kWKkI=) 2: 024ABFF2959A6144CC4889C70F77F968FA410EF1.crl (hash: vxZsr4R54fPKs16fyyp3YOCFdIJGl/Jr7kXqwfFmJCQ=) 3: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (hash: ZcflU18QHaOG0H5AVVuZs+fe6ZIRvg4OT/QSDZzqWpk=) 4: 3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa (hash: aay9Jvclfs8gBm7idaaHHT8mQr3TT32/vrVHbT4o17k=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 11:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:14:34:9e:50:e9:c7:9b:c9:7d:61:da:df:e3:77:1c:3a:41:24:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Jun 15 11:56:10 2025 GMT Not After : Jun 18 12:19:10 2025 GMT Subject: CN=EE252664C3D6B76F3DBE51A600266053764CB6B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a9:0e:fe:4e:40:4e:01:7d:a6:9a:f5:ad:2f: b6:c7:9f:c0:59:6f:1e:1e:65:b8:76:12:38:da:83: 2f:97:b6:be:b9:39:2d:30:5c:a0:3a:d6:b6:a3:e2: e3:a9:56:5d:73:26:5d:b5:92:31:d1:21:39:83:2b: 42:3d:9e:d6:7c:95:b9:6a:e5:bf:1a:d2:a2:8a:bd: c8:2f:8f:00:72:b7:54:c0:27:66:3d:5a:7c:db:23: 44:5b:ac:3d:44:c1:79:8c:95:68:5b:ee:c4:fb:ca: c9:0b:19:9e:64:dc:67:ad:12:48:ee:5b:3e:ee:b9: d4:d2:b6:12:b0:29:8d:f1:f9:fe:4d:b5:d5:ea:6b: 8c:5c:ec:94:f3:d4:3a:6c:70:98:e5:c7:dc:39:a8: 57:c3:68:2b:c2:93:b1:50:a3:e7:ba:32:50:2b:d3: ad:c5:17:f6:c1:52:7d:34:37:63:9d:15:64:b1:d4: fb:be:dc:59:2e:93:91:cd:94:df:0f:ad:7e:d2:47: dd:cd:ab:95:8d:a2:fc:79:9b:87:cc:8b:93:c5:11: fd:54:52:44:ef:ad:4e:8e:3d:cf:d0:e0:02:ae:45: 7d:3f:a5:79:3d:2f:43:4c:ad:9c:a5:80:05:81:00: 4e:a7:1e:9c:b9:23:82:eb:f8:bf:03:26:17:62:a5: 45:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:25:26:64:C3:D6:B7:6F:3D:BE:51:A6:00:26:60:53:76:4C:B6:B4 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:32:71:51:b2:34:f8:04:8a:9c:54:60:3c:7b:86:c6:13:10: c5:72:31:e3:ac:d3:0a:ca:ed:69:26:5f:2d:a7:10:0a:20:f4: 71:c1:f0:2d:f0:79:54:df:a6:ec:43:04:9d:88:7a:43:88:86: a3:1f:22:ec:1c:22:38:3e:f2:46:7d:eb:cd:a2:89:53:94:4b: 28:7b:28:6a:b5:b8:e9:7b:f3:38:66:54:74:a6:85:ff:cf:c0: fd:00:d1:72:d1:b7:1d:d3:b0:bc:d7:c9:05:21:c9:d9:69:85: 53:bc:76:f0:94:6c:f4:18:cc:ae:ba:0b:89:94:21:98:c4:47: 86:0c:d8:56:41:77:c2:09:b4:46:cb:4d:60:42:54:58:9d:3b: 54:bd:6e:67:22:0c:da:bd:23:e0:3c:5a:88:8a:8e:9e:e9:53: b2:0c:82:f5:a3:0c:77:eb:fc:72:50:24:19:4a:6a:d6:f5:9c: 7b:5b:f6:1e:2b:5b:9f:55:d5:d3:11:c6:b4:69:e0:a8:be:0b: f6:5f:06:37:c6:f4:80:9c:44:bf:c5:24:b7:9d:3d:c6:eb:0b: e2:44:8b:06:32:f3:57:5d:b5:b0:e7:48:ab:c7:8b:12:8f:5f: f2:b6:4e:49:bf:e4:53:dc:99:ff:03:f2:fd:f2:04:0b:5e:bb: b7:bc:15:90 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULBQ0nlDpx5vJfWHa3+N3HDpBJO4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNTA2MTUxMTU2MTBaFw0yNTA2MTgxMjE5MTBaMDMxMTAvBgNV BAMTKEVFMjUyNjY0QzNENkI3NkYzREJFNTFBNjAwMjY2MDUzNzY0Q0I2QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjqQ7+TkBOAX2mmvWtL7bHn8BZ bx4eZbh2Ejjagy+Xtr65OS0wXKA61raj4uOpVl1zJl21kjHRITmDK0I9ntZ8lblq 5b8a0qKKvcgvjwByt1TAJ2Y9WnzbI0RbrD1EwXmMlWhb7sT7yskLGZ5k3GetEkju Wz7uudTSthKwKY3x+f5NtdXqa4xc7JTz1DpscJjlx9w5qFfDaCvCk7FQo+e6MlAr 063FF/bBUn00N2OdFWSx1Pu+3Fkuk5HNlN8PrX7SR93Nq5WNovx5m4fMi5PFEf1U UkTvrU6OPc/Q4AKuRX0/pXk9L0NMrZylgAWBAE6nHpy5I4Lr+L8DJhdipUXDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7iUmZMPWt289vlGmACZgU3ZMtrQwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDMxYTk0MjYtM2MzNS00NzBlLWJm MzQtMzBlN2U0MTYwMmNiLzAvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5 NjhGQTQxMEVGMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHUycVGyNPgEipxUYDx7hsYTEMVyMeOs0wrK 7WkmXy2nEAog9HHB8C3weVTfpuxDBJ2IekOIhqMfIuwcIjg+8kZ9682iiVOUSyh7 KGq1uOl78zhmVHSmhf/PwP0A0XLRtx3TsLzXyQUhydlphVO8dvCUbPQYzK66C4mU IZjER4YM2FZBd8IJtEbLTWBCVFidO1S9bmciDNq9I+A8WoiKjp7pU7IMgvWjDHfr /HJQJBlKatb1nHtb9h4rW59V1dMRxrRp4Ki+C/ZfBjfG9ICcRL/FJLedPcbrC+JE iwYy81ddtbDnSKvHixKPX/K2Tkm/5FPcmf8D8v3yBAteu7e8FZA= -----END CERTIFICATE-----Generated at Sun Jun 15 22:41:42 2025 by rpki-client