$ rpki-client -vvf repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft File: 3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft (raw, json) Hash identifier: cn/KDJEYPBb4u07CGZlMH1VpSGZ7YTUxSJ2porny1z8= Subject key identifier: 33:93:65:9D:3F:E9:5C:43:B4:D4:48:A4:78:7A:1F:65:2F:1E:BA:66 Authority key identifier: 3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 Certificate issuer: /CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Certificate serial: 4FA9C4AEF32A91C8F32E2EAF55887D850C4A1C9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft Manifest number: 0140 Signing time: Fri 13 Jun 2025 22:40:58 +0000 Manifest this update: Fri 13 Jun 2025 22:35:58 +0000 Manifest next update: Tue 17 Jun 2025 00:41:58 +0000 Files and hashes: 1: 3130332e3232372e3138372e302f32342d3234203d3e20313432333730.roa (hash: vmw9bcS7HYiEIqjVICRaVcatSeJQ8ZNuTTgtgTfawew=) 2: 3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl (hash: LgaDjbhdGyKr6ZnCv8ACiYjcIApL5OLHthrV0lVCcg8=) 3: 3130332e3232372e3138362e302f32342d3234203d3e20313432333730.roa (hash: Ew2OSWEohUTuvmIQMM4jLPYBjKqzXCpLNwLiyPu5TfM=) 4: 3130332e3232372e3138362e302f32332d3233203d3e20313432333730.roa (hash: D5hukbaY+N3AjWmkuBGFFTwqc+CzamYmFL0amMEyMMM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 00:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:a9:c4:ae:f3:2a:91:c8:f3:2e:2e:af:55:88:7d:85:0c:4a:1c:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Validity Not Before: Jun 13 22:35:58 2025 GMT Not After : Jun 17 00:41:58 2025 GMT Subject: CN=3393659D3FE95C43B4D448A4787A1F652F1EBA66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d6:91:61:f3:4d:63:50:bc:e8:4e:67:49:c4: b6:d7:1f:fc:54:16:12:06:8e:93:99:47:59:58:ae: d2:af:70:de:7d:d2:b3:c7:88:27:0a:24:eb:8b:05: 42:20:80:6b:f1:21:1d:e1:70:76:58:ce:30:fc:0d: d1:42:16:9f:31:f9:b1:ea:8d:1b:15:99:e7:cc:8f: db:06:7b:2b:c9:84:6a:58:04:df:f8:40:f4:6d:4c: 75:46:93:1b:df:bb:c6:74:0e:15:e5:bf:8e:19:84: dd:3e:ce:91:01:1d:f0:b8:5e:21:73:16:5e:68:18: 03:9d:a0:0a:b5:7b:a5:9d:1a:51:e3:f0:95:88:98: 96:7d:62:2f:c3:a2:ba:d1:0b:aa:4e:e3:36:8d:23: e7:d5:ca:da:4e:d2:7a:1f:43:ce:43:32:0b:46:6d: c5:fe:08:27:70:f2:89:19:55:62:63:f9:08:2d:bc: fc:dc:39:d2:1b:c9:21:13:51:ed:3f:bc:01:95:54: e6:cb:6c:c4:31:d5:82:a0:86:f6:35:bb:f1:31:66: 35:1d:b1:96:de:55:2b:c8:cd:9b:55:2e:01:4e:23: ba:94:b2:30:e9:27:fa:23:e5:e6:c1:30:3c:ce:87: 2f:02:82:a6:44:f2:f7:0c:0a:e6:bc:b8:57:8d:29: 82:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:93:65:9D:3F:E9:5C:43:B4:D4:48:A4:78:7A:1F:65:2F:1E:BA:66 X509v3 Authority Key Identifier: keyid:3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:8b:ac:fd:3a:a8:70:6b:1e:eb:78:59:8d:50:6c:00:59:7b: cc:3a:86:5a:78:02:ba:37:59:17:0a:b9:1c:fd:df:b6:17:ca: e6:07:66:8e:c5:b2:92:27:22:5e:0a:7f:42:0e:02:d8:55:9f: 4a:5a:a0:cf:c7:78:c8:46:25:7a:08:cc:97:7e:7c:37:06:9c: a3:2b:18:18:2f:04:c9:4b:a6:33:00:6e:b9:68:2a:1d:15:4c: eb:31:e5:39:73:de:a8:80:f7:ec:98:03:e1:79:11:29:b8:f9: e2:7c:0f:ea:48:3b:14:f5:40:ac:8a:30:76:33:94:96:6f:21: 8d:f6:3d:f9:c7:b0:51:a9:de:fe:0f:5a:8a:9b:e7:bf:43:31: 95:a0:57:a1:68:1d:f6:54:84:0b:37:5b:8d:a4:8d:85:eb:c2: f5:6f:96:a9:f3:dd:96:31:04:9e:b8:e3:27:a2:1e:31:7a:a1: f6:01:c5:71:d0:51:0e:07:e7:a1:d3:cc:63:57:0e:1a:7d:47: 35:2a:aa:e0:ba:1a:f0:2f:d7:58:3b:91:0c:ab:41:55:27:1f: d9:38:aa:4e:63:14:5e:13:8f:f5:74:ff:45:85:fc:dd:ea:95: 3a:6b:09:cc:52:29:fd:dd:be:91:b1:d7:d9:96:cb:47:db:4e: a9:0e:9e:11 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUT6nErvMqkcjzLi6vVYh9hQxKHJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1 MDg1MkE2NzAeFw0yNTA2MTMyMjM1NThaFw0yNTA2MTcwMDQxNThaMDMxMTAvBgNV BAMTKDMzOTM2NTlEM0ZFOTVDNDNCNEQ0NDhBNDc4N0ExRjY1MkYxRUJBNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf1pFh801jULzoTmdJxLbXH/xU FhIGjpOZR1lYrtKvcN590rPHiCcKJOuLBUIggGvxIR3hcHZYzjD8DdFCFp8x+bHq jRsVmefMj9sGeyvJhGpYBN/4QPRtTHVGkxvfu8Z0DhXlv44ZhN0+zpEBHfC4XiFz Fl5oGAOdoAq1e6WdGlHj8JWImJZ9Yi/DorrRC6pO4zaNI+fVytpO0nofQ85DMgtG bcX+CCdw8okZVWJj+QgtvPzcOdIbySETUe0/vAGVVObLbMQx1YKghvY1u/ExZjUd sZbeVSvIzZtVLgFOI7qUsjDpJ/oj5ebBMDzOhy8CgqZE8vcMCua8uFeNKYJLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUM5NlnT/pXEO01EikeHofZS8eumYwHwYDVR0j BBgwFoAUOl7azGG9fQXr1CS72/UdTFCFKmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjM4OGY2ZS05OTc0LTQ0NTctYWY0Yi01YzljODJmNTBlOTcvMC8zQTVFREFDQzYx QkQ3RDA1RUJENDI0QkJEQkY1MUQ0QzUwODUyQTY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1MDg1 MkE2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGIzODhmNmUtOTk3NC00NDU3LWFm NGItNWM5YzgyZjUwZTk3LzAvM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFE NEM1MDg1MkE2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALGLrP06qHBrHut4WY1QbABZe8w6hlp4Aro3 WRcKuRz937YXyuYHZo7FspInIl4Kf0IOAthVn0paoM/HeMhGJXoIzJd+fDcGnKMr GBgvBMlLpjMAbrloKh0VTOsx5Tlz3qiA9+yYA+F5ESm4+eJ8D+pIOxT1QKyKMHYz lJZvIY32PfnHsFGp3v4PWoqb579DMZWgV6FoHfZUhAs3W42kjYXrwvVvlqnz3ZYx BJ644yeiHjF6ofYBxXHQUQ4H56HTzGNXDhp9RzUqquC6GvAv11g7kQyrQVUnH9k4 qk5jFF4Tj/V0/0WF/N3qlTprCcxSKf3dvpGx19mWy0fbTqkOnhE= -----END CERTIFICATE-----Generated at Sun Jun 15 22:08:34 2025 by rpki-client