$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft File: CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft (raw, json) Hash identifier: FKbBL0ncicygPY42SMyvQfql+rPyrEf1SdAEAsCKVFY= Subject key identifier: BD:A6:DD:16:B3:92:4F:47:26:A7:E0:93:1E:68:D9:A6:83:B2:81:50 Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 72A3E48D29EC0E6A35CCD6217268252551664E27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft Manifest number: 0296 Signing time: Sun 15 Jun 2025 22:30:56 +0000 Manifest this update: Sun 15 Jun 2025 22:25:56 +0000 Manifest next update: Wed 18 Jun 2025 23:26:56 +0000 Files and hashes: 1: 3130332e362e3230362e302f32332d3233203d3e203538353033.roa (hash: 7LF1a7D5EDLG17ihfLxfwJXRWol/1ek+UfoMR7jTEuA=) 2: 3130332e362e3230342e302f32332d3233203d3e203538353033.roa (hash: yBaA0+xOkr+iculo5l4/62QXBhceh7/LNqxDxugk/Cg=) 3: 3130332e362e3230362e302f32342d3234203d3e203538353033.roa (hash: Cu2RdLHzB+A2EJBsuRCMa0mxP5/Kmd4TOJ7qAO2a+Js=) 4: CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl (hash: IHIbfwvfTdLUzxh9kJaFr77VTApzqYVEW16X4TYuyjE=) 5: 3130332e362e3230342e302f32322d3232203d3e203538353033.roa (hash: 4hTYB6oeBmhzrslyPSwrX3Ek6Lkwqv8RzR59ex14KTA=) 6: 3130332e362e3230372e302f32342d3234203d3e203538353033.roa (hash: NhbEnUbS1RFVhQFgb/k13Oo2qyTOB30jh0qFTUkaAik=) 7: 3130332e362e3230352e302f32342d3234203d3e203538353033.roa (hash: ptSpa0yORFDFTGktJ23ziYaQuqfcwcD6+X4WfU20Bt4=) 8: 3130332e362e3230342e302f32342d3234203d3e203538353033.roa (hash: vJN17h6zHlw8lhqv4ICIcSweY39vapLLmQqw71/RhS0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 23:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a3:e4:8d:29:ec:0e:6a:35:cc:d6:21:72:68:25:25:51:66:4e:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Jun 15 22:25:56 2025 GMT Not After : Jun 18 23:26:56 2025 GMT Subject: CN=BDA6DD16B3924F4726A7E0931E68D9A683B28150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:d2:52:7d:cb:db:22:0f:09:48:dc:df:85:a3: 29:19:8d:5d:2e:8c:48:92:2f:71:0a:7f:4a:8c:57: 4a:87:31:33:3e:b3:c8:23:cb:e3:ae:55:83:6b:b1: 7d:e1:85:21:f4:f8:2d:eb:e2:9d:c3:9d:9e:e1:b6: 03:ec:4a:f0:8e:0d:db:b2:f2:80:32:89:e4:b8:ed: 5f:3c:78:23:c0:bf:90:85:dd:e8:75:d0:ed:88:c5: fc:ed:a7:63:bb:77:0a:6c:ff:4e:ee:f2:10:9b:18: ce:11:0c:3b:e1:d6:9d:c1:5a:1a:a2:94:ab:dc:60: cf:52:a0:a2:84:43:f3:d5:30:42:66:55:62:a6:c0: 84:61:11:ac:da:bb:be:f6:5f:83:d2:cb:02:b5:a8: e4:bd:31:f8:8c:b0:8b:d2:b5:bf:17:66:01:b0:2f: 78:6b:41:52:91:ca:63:98:a8:1d:67:02:c0:1c:eb: e3:f1:05:3f:e4:8a:02:d5:dd:d5:c8:f4:ca:03:dc: b6:36:2d:46:4e:a2:47:e9:b4:dd:79:ee:47:1a:d8: d6:da:8d:e4:5e:ba:a9:46:f9:90:97:e0:10:94:a6: 3c:12:ba:21:51:fb:54:c6:e5:04:02:b1:f5:c1:0c: 6b:57:4a:13:79:24:e4:ad:26:b8:ef:83:54:11:43: 95:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A6:DD:16:B3:92:4F:47:26:A7:E0:93:1E:68:D9:A6:83:B2:81:50 X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:82:6a:01:1f:3a:db:5c:f3:c8:f7:8d:ae:09:58:7b:63:5e: fe:5a:32:b1:d1:01:22:d1:0c:54:15:71:ca:4f:4c:45:02:28: 78:08:b3:21:3c:0d:59:3a:1c:1d:59:7d:0c:c9:22:d9:bb:e8: e3:3d:71:ce:04:c3:f5:86:04:4b:42:95:7f:e1:8a:e4:dd:2c: a5:f3:8a:9d:cc:b8:4c:65:f7:32:46:ff:8d:b8:9c:62:bb:d6: 8c:16:3c:49:d9:ca:90:fc:b9:60:84:4d:5d:25:7d:40:cb:78: 72:ea:92:3c:8b:08:8f:f7:0d:b4:35:89:02:b1:c7:51:bc:92: db:fb:4e:56:84:de:51:89:12:28:ba:51:53:24:42:9a:75:d5: 16:0f:ea:50:9f:bb:20:d0:e6:87:8b:05:0a:41:d6:9d:fc:15: eb:c4:87:d3:59:f4:73:0f:6c:65:70:52:71:76:e7:f8:6b:8f: 15:43:6c:82:6f:dc:13:a1:3a:db:4b:61:a3:9a:5d:ef:47:1c: 94:e1:a1:ff:c3:a8:57:eb:bd:9a:d6:6c:39:18:fc:fa:51:4f: cd:e3:fe:6c:62:21:84:c5:c3:22:03:0c:31:25:17:30:a4:57: 2c:82:54:71:5b:e5:d5:b5:80:28:8b:b6:06:4f:51:1f:6f:36: e8:3e:01:90 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcqPkjSnsDmo1zNYhcmglJVFmTicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNTA2MTUyMjI1NTZaFw0yNTA2MTgyMzI2NTZaMDMxMTAvBgNV BAMTKEJEQTZERDE2QjM5MjRGNDcyNkE3RTA5MzFFNjhEOUE2ODNCMjgxNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDz0lJ9y9siDwlI3N+FoykZjV0u jEiSL3EKf0qMV0qHMTM+s8gjy+OuVYNrsX3hhSH0+C3r4p3DnZ7htgPsSvCODduy 8oAyieS47V88eCPAv5CF3eh10O2Ixfztp2O7dwps/07u8hCbGM4RDDvh1p3BWhqi lKvcYM9SoKKEQ/PVMEJmVWKmwIRhEazau772X4PSywK1qOS9MfiMsIvStb8XZgGw L3hrQVKRymOYqB1nAsAc6+PxBT/kigLV3dXI9MoD3LY2LUZOokfptN157kca2Nba jeReuqlG+ZCX4BCUpjwSuiFR+1TG5QQCsfXBDGtXShN5JOStJrjvg1QRQ5XXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvabdFrOST0cmp+CTHmjZpoOygVAwHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTgyZjJiMzgtYWRkZi00YmQzLTky NDktZTViYTU2Y2QwNTJlLzAvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3 N0IyMzRDQTQ0Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAISCagEfOttc88j3ja4JWHtjXv5aMrHRASLR DFQVccpPTEUCKHgIsyE8DVk6HB1ZfQzJItm76OM9cc4Ew/WGBEtClX/hiuTdLKXz ip3MuExl9zJG/424nGK71owWPEnZypD8uWCETV0lfUDLeHLqkjyLCI/3DbQ1iQKx x1G8ktv7TlaE3lGJEii6UVMkQpp11RYP6lCfuyDQ5oeLBQpB1p38FevEh9NZ9HMP bGVwUnF25/hrjxVDbIJv3BOhOttLYaOaXe9HHJThof/DqFfrvZrWbDkY/PpRT83j /mxiIYTFwyIDDDElFzCkVyyCVHFb5dW1gCiLtgZPUR9vNug+AZA= -----END CERTIFICATE-----Generated at Wed Jun 18 00:11:40 2025 by rpki-client