$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: nHYxNUkPTmS4SurO7VxNqHa2yN7mZ0iORvI0uC5XCjo= Subject key identifier: AF:D1:A3:62:18:1A:3A:89:89:8D:8D:7D:4C:BE:6C:56:54:7B:A6:9B Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 04E58415F48F436DC5746E9301310FD8441EE37E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 04EB Signing time: Sat 14 Jun 2025 22:42:01 +0000 Manifest this update: Sat 14 Jun 2025 22:37:01 +0000 Manifest next update: Wed 18 Jun 2025 00:57:01 +0000 Files and hashes: 1: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: 9pt7JLtOWMCBsJXp8H1J28V9N/OUvx5VflNai/uQZgc=) 2: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: LMlg0YtMMAZTGP6EzKXImD6a6ZjUtLMQ+VabkB5A5lc=) 3: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: HyMWadhCrBlbrvw7eV4dA67xhQ9znG8zfhfFTeZs2rs=) 4: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: H3VCA+1NakVUR0XCY14HB8PcIt81hk43WKblJd8SP8E=) 5: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: 1cZaLW2bYSVuCFR3p6/QnCg+KIF2tEt9ZDlyjUYN2tI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:e5:84:15:f4:8f:43:6d:c5:74:6e:93:01:31:0f:d8:44:1e:e3:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Jun 14 22:37:01 2025 GMT Not After : Jun 18 00:57:01 2025 GMT Subject: CN=AFD1A362181A3A89898D8D7D4CBE6C56547BA69B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:77:58:36:1f:46:92:70:6e:cb:6a:a0:95:dc: a8:29:46:ad:e0:ff:8f:52:56:96:04:eb:a1:5c:11: 42:ba:4e:e1:d1:24:8d:aa:a2:cd:f1:da:87:48:96: 5a:45:4e:8d:c7:ce:90:ed:24:b6:b7:d4:45:2c:5e: f8:02:09:de:e1:df:15:91:8e:2a:f6:b4:fe:59:bc: cb:43:0b:72:e7:db:b5:68:65:1b:3c:cd:9a:a8:10: 8e:b3:bf:0a:c7:6b:ef:ed:e4:1b:7c:79:52:72:91: 2b:97:a4:c4:a4:07:11:6f:81:59:94:46:fb:2b:d2: 95:16:01:9b:05:24:e1:f1:f1:7e:5c:d8:5a:34:4b: 50:55:87:81:89:02:84:0e:0d:5e:ac:83:5e:08:45: 4f:6a:00:27:f1:3d:2c:0d:ec:1b:17:ce:28:0c:c0: ce:1b:df:63:33:32:86:9f:f7:93:97:94:0b:8f:84: 90:32:46:0f:2c:e4:41:67:f2:81:a4:51:2b:87:d7: 5e:8a:19:d8:52:47:14:08:55:8b:2d:2d:16:32:2f: 36:ee:46:ab:10:03:aa:26:48:f6:94:ac:ad:d5:be: 74:be:3d:f1:9c:ce:5c:ca:f7:24:06:80:9a:80:5d: c2:b3:de:46:3d:13:6b:fd:93:60:4c:2d:e4:8c:96: 2b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:D1:A3:62:18:1A:3A:89:89:8D:8D:7D:4C:BE:6C:56:54:7B:A6:9B X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:0e:a7:2e:db:78:f8:13:c4:90:77:c1:22:8c:2a:3e:f0:2a: 87:c0:8c:52:ec:8a:48:9f:89:fe:4b:d3:14:5b:83:d5:75:da: 8b:a9:c5:8d:67:f3:48:19:30:f6:0a:e0:19:90:af:26:e0:23: ac:00:22:64:8c:cc:70:62:30:f0:f4:de:b1:e8:16:50:19:30: 71:74:d3:6b:6e:f7:36:f7:58:ac:b8:0d:27:5e:8a:b1:29:ce: 06:3f:88:ba:12:57:b6:e5:cb:f8:ba:a3:48:c9:cf:50:36:d3: 3d:c1:d9:af:7e:5f:7e:b5:93:b0:df:73:1b:6b:ac:93:35:cd: cf:93:8d:71:31:38:14:b5:3c:f4:f1:a2:36:67:8c:14:90:6d: d8:89:82:14:99:a4:0a:fb:74:23:14:83:15:9f:c2:ef:aa:38: 5a:f9:cb:b7:b1:c7:80:9a:ca:0f:42:59:3c:09:4e:60:77:b4: a3:59:dc:5a:f3:c9:a5:e5:12:24:76:97:d9:75:2c:d7:35:59: 3f:ff:6a:81:2f:74:09:69:45:fc:5c:e0:b0:ce:68:ab:01:82: 62:33:06:62:d1:92:5d:ad:58:3a:93:80:e2:9a:00:07:c8:1c: 18:09:69:79:d5:52:19:e7:18:ac:1b:8e:aa:49:32:72:95:18: 21:10:46:36 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBOWEFfSPQ23FdG6TATEP2EQe434wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNTA2MTQyMjM3MDFaFw0yNTA2MTgwMDU3MDFaMDMxMTAvBgNV BAMTKEFGRDFBMzYyMTgxQTNBODk4OThEOEQ3RDRDQkU2QzU2NTQ3QkE2OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/d1g2H0aScG7LaqCV3KgpRq3g /49SVpYE66FcEUK6TuHRJI2qos3x2odIllpFTo3HzpDtJLa31EUsXvgCCd7h3xWR jir2tP5ZvMtDC3Ln27VoZRs8zZqoEI6zvwrHa+/t5Bt8eVJykSuXpMSkBxFvgVmU Rvsr0pUWAZsFJOHx8X5c2Fo0S1BVh4GJAoQODV6sg14IRU9qACfxPSwN7BsXzigM wM4b32MzMoaf95OXlAuPhJAyRg8s5EFn8oGkUSuH116KGdhSRxQIVYstLRYyLzbu RqsQA6omSPaUrK3VvnS+PfGczlzK9yQGgJqAXcKz3kY9E2v9k2BMLeSMliv3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUr9GjYhgaOomJjY19TL5sVlR7ppswHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFsOpy7bePgTxJB3wSKMKj7wKofAjFLsikif if5L0xRbg9V12oupxY1n80gZMPYK4BmQrybgI6wAImSMzHBiMPD03rHoFlAZMHF0 02tu9zb3WKy4DSdeirEpzgY/iLoSV7bly/i6o0jJz1A20z3B2a9+X361k7Dfcxtr rJM1zc+TjXExOBS1PPTxojZnjBSQbdiJghSZpAr7dCMUgxWfwu+qOFr5y7exx4Ca yg9CWTwJTmB3tKNZ3FrzyaXlEiR2l9l1LNc1WT//aoEvdAlpRfxc4LDOaKsBgmIz BmLRkl2tWDqTgOKaAAfIHBgJaXnVUhnnGKwbjqpJMnKVGCEQRjY= -----END CERTIFICATE-----Generated at Mon Jun 16 15:38:46 2025 by rpki-client