$ rpki-client -vvf repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft File: 71054E3C02E22D607A90FACC4DE7369B65367EBD.mft (raw, json) Hash identifier: dcI+Hl/tYg0tEL38zzYoXIXBL7FWx7yB7MIPQAymkvE= Subject key identifier: B0:9B:30:CC:B6:3B:1E:A0:37:B9:1A:B2:67:99:C7:38:DE:2E:61:52 Authority key identifier: 71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD Certificate issuer: /CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Certificate serial: 06508F179C46067DD4F49F2AFB243DB05B17BB1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft Manifest number: 0136 Signing time: Mon 16 Jun 2025 15:30:45 +0000 Manifest this update: Mon 16 Jun 2025 15:25:45 +0000 Manifest next update: Fri 20 Jun 2025 00:09:45 +0000 Files and hashes: 1: 71054E3C02E22D607A90FACC4DE7369B65367EBD.crl (hash: NLB/4RsSIY5DMnMFA3wPizveDQb8Gs+1A4qlB7y/Ems=) 2: 3130332e32392e31302e302f32332d3234203d3e20313530323530.roa (hash: WJMrEDY6+yYCu4Iz5tUshsi6eLGdRGAnm2hsfXk5iwc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:50:8f:17:9c:46:06:7d:d4:f4:9f:2a:fb:24:3d:b0:5b:17:bb:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Validity Not Before: Jun 16 15:25:45 2025 GMT Not After : Jun 20 00:09:45 2025 GMT Subject: CN=B09B30CCB63B1EA037B91AB26799C738DE2E6152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d4:35:5f:c4:b8:5a:3b:ef:96:8f:c2:22:6b: 03:72:07:b2:86:e9:3b:f3:d0:12:4f:4c:56:f4:d8: 41:10:d7:e5:28:0c:37:de:08:38:f8:ab:90:0c:05: 3b:89:db:7f:db:12:d0:4b:22:b6:88:c4:d3:91:de: 1b:3e:e6:94:f7:e9:b6:f7:0f:39:00:ce:4c:54:94: 5d:6e:4b:f7:a3:65:be:d3:8d:01:c3:42:50:b3:d7: 30:3d:cb:9a:98:bf:dc:b3:7c:d7:e0:75:94:8e:a1: ba:10:45:f7:4c:90:c4:95:dc:9f:38:10:68:80:3f: 8f:fd:bb:71:fb:90:33:69:5e:64:6c:60:0e:3b:a3: d4:42:70:a6:d2:f2:3c:30:3e:6f:01:87:af:b6:c3: 7b:f9:ae:9f:f2:3d:0e:5a:50:b6:02:d0:1b:e8:f2: d2:d6:51:0c:c4:26:9e:5d:d3:5e:11:f2:9a:dd:24: fa:c9:78:0c:8e:97:cd:86:34:d4:20:6a:a5:be:46: 95:d7:a2:72:53:28:57:51:ee:38:29:6d:50:81:cb: 19:52:17:e5:a0:e3:01:f6:84:df:4e:ea:bf:60:33: 29:6a:5e:1c:9f:b5:b8:a1:9c:e5:0c:72:6c:07:1b: 46:e3:1a:32:1a:03:d8:bb:84:72:46:c8:ea:df:99: 5a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:9B:30:CC:B6:3B:1E:A0:37:B9:1A:B2:67:99:C7:38:DE:2E:61:52 X509v3 Authority Key Identifier: keyid:71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:00:79:dd:d9:6b:ff:bc:34:a1:41:0a:48:49:70:0a:c8:12: cb:04:2c:b4:23:cb:d0:6a:24:b5:e9:d7:c8:99:71:08:f8:fd: d0:f5:7a:ec:f3:4f:5e:2a:8d:dd:e8:e0:03:e7:b9:0e:c6:59: 44:bc:f9:e4:cd:27:15:13:85:6b:cb:2e:92:71:a7:0b:6d:a0: 8c:e6:ff:64:1d:37:3d:6e:0f:50:36:d5:3f:98:5f:2d:88:69: dc:f5:28:78:2a:92:9d:4f:92:18:85:82:8c:bf:40:5c:2c:63: 35:b8:68:25:b1:28:08:dd:74:e4:4f:dc:b2:98:d1:24:ce:48: 75:6c:ee:76:fb:2c:d7:1d:4c:a4:87:60:5c:79:2c:82:fb:f3: a5:21:9e:dd:9a:38:1e:e2:cc:86:51:7b:73:a1:7b:f9:39:e3: dd:95:09:a7:83:60:c8:ad:2a:e3:e8:e5:54:ea:4a:ae:c4:d4: f7:95:c9:49:52:d1:f3:2c:80:2c:ec:6e:38:58:68:65:83:ed: f7:ef:05:ff:51:49:b9:e0:a4:65:97:27:f1:6f:79:9a:f6:28: 21:93:0c:47:14:62:e4:b9:b7:ab:d2:ec:a6:31:88:bb:96:6d: 05:3c:36:f9:dc:d1:63:b5:c8:b2:76:13:14:03:74:ba:66:92: 7a:b5:3d:cb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBlCPF5xGBn3U9J8q+yQ9sFsXux8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2 NTM2N0VCRDAeFw0yNTA2MTYxNTI1NDVaFw0yNTA2MjAwMDA5NDVaMDMxMTAvBgNV BAMTKEIwOUIzMENDQjYzQjFFQTAzN0I5MUFCMjY3OTlDNzM4REUyRTYxNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb1DVfxLhaO++Wj8IiawNyB7KG 6Tvz0BJPTFb02EEQ1+UoDDfeCDj4q5AMBTuJ23/bEtBLIraIxNOR3hs+5pT36bb3 DzkAzkxUlF1uS/ejZb7TjQHDQlCz1zA9y5qYv9yzfNfgdZSOoboQRfdMkMSV3J84 EGiAP4/9u3H7kDNpXmRsYA47o9RCcKbS8jwwPm8Bh6+2w3v5rp/yPQ5aULYC0Bvo 8tLWUQzEJp5d014R8prdJPrJeAyOl82GNNQgaqW+RpXXonJTKFdR7jgpbVCByxlS F+Wg4wH2hN9O6r9gMylqXhyftbihnOUMcmwHG0bjGjIaA9i7hHJGyOrfmVqJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsJswzLY7HqA3uRqyZ5nHON4uYVIwHwYDVR0j BBgwFoAUcQVOPALiLWB6kPrMTec2m2U2fr0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUzMmM2NS04MGJlLTRmZGUtODdkMC0zNmM1YmQyODhjZDgvMC83MTA1NEUzQzAy RTIyRDYwN0E5MEZBQ0M0REU3MzY5QjY1MzY3RUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2NTM2 N0VCRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWE1MzJjNjUtODBiZS00ZmRlLTg3 ZDAtMzZjNWJkMjg4Y2Q4LzAvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2 OUI2NTM2N0VCRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALMAed3Za/+8NKFBCkhJcArIEssELLQjy9Bq JLXp18iZcQj4/dD1euzzT14qjd3o4APnuQ7GWUS8+eTNJxUThWvLLpJxpwttoIzm /2QdNz1uD1A21T+YXy2Iadz1KHgqkp1PkhiFgoy/QFwsYzW4aCWxKAjddORP3LKY 0STOSHVs7nb7LNcdTKSHYFx5LIL786Uhnt2aOB7izIZRe3Ohe/k5492VCaeDYMit KuPo5VTqSq7E1PeVyUlS0fMsgCzsbjhYaGWD7ffvBf9RSbngpGWXJ/FveZr2KCGT DEcUYuS5t6vS7KYxiLuWbQU8Nvnc0WO1yLJ2ExQDdLpmknq1Pcs= -----END CERTIFICATE-----Generated at Tue Jun 17 09:38:58 2025 by rpki-client