$ rpki-client -vvf repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft (raw, json) Hash identifier: XX/2Fl6fgeVxnMWZzU/FwrrE9Z11TzeVZFcuQOCCa1s= Subject key identifier: 90:CE:E7:75:6C:8F:B7:42:A8:35:CA:F2:14:03:83:F2:BA:BB:F0:3D Authority key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Certificate issuer: /CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Certificate serial: 0EC0E3A2F0CF8D1EFDDFC455116F5FA5D649D49B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft Manifest number: 0218 Signing time: Tue 17 Jun 2025 07:51:07 +0000 Manifest this update: Tue 17 Jun 2025 07:46:07 +0000 Manifest next update: Fri 20 Jun 2025 18:59:07 +0000 Files and hashes: 1: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: pGfLfqeQeD8uU2thnQryvAF3YiN767pDKu8zHBjIsCs=) 2: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: qonOSoihdyEOGXKEjx0ElQczxx60RKjDCLheufBA0qE=) 3: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: yCac+KeTfH0lkjTAK49G4zxY27cUgoZJXWm+CK7QM48=) 4: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl (hash: OrKJ06neeDJsvddO40cbDYyhvq6huSQnYLnjjqd789c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 18:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:c0:e3:a2:f0:cf:8d:1e:fd:df:c4:55:11:6f:5f:a5:d6:49:d4:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Validity Not Before: Jun 17 07:46:07 2025 GMT Not After : Jun 20 18:59:07 2025 GMT Subject: CN=90CEE7756C8FB742A835CAF2140383F2BABBF03D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0e:35:e0:15:76:dd:36:ce:2c:60:18:b0:3a: 39:d6:8d:7d:92:d7:8d:9f:82:f8:1e:0d:ec:f8:a1: 1a:4c:c9:1f:ae:01:65:42:29:2f:a9:54:c0:a2:b2: bd:01:0f:89:5a:1c:2c:d8:7d:c8:a3:2b:0e:4e:f1: d4:5b:1e:93:85:5f:4d:ef:e2:16:af:1f:78:27:10: 6c:5b:bf:ff:f0:27:ce:94:84:fb:8d:3f:0c:32:2e: 28:d7:7f:90:f0:44:40:7e:c4:ce:ef:06:19:9e:8f: d6:bd:e9:2c:57:37:b4:19:42:ce:a6:9a:82:e5:cf: 6d:46:2c:37:76:13:47:69:d0:0a:7c:aa:29:7f:bd: e2:43:60:b0:5e:bd:5f:03:bf:de:13:f3:18:24:67: ab:82:ce:7b:d9:80:fb:0f:59:25:8c:bd:b5:47:1b: 56:a4:6c:f3:ea:b9:04:9b:47:dc:90:6d:90:1d:19: 64:72:64:5d:74:60:e7:c2:43:65:4a:75:4f:4a:09: a3:41:8e:5c:3a:9d:18:be:d7:d2:5b:b3:3c:5a:5a: 55:0a:66:fb:a5:33:37:56:3a:94:9f:43:66:15:cc: fd:8e:94:29:4b:9a:a4:1b:71:90:03:d2:35:45:58: 65:92:81:88:ee:44:56:1f:b9:e9:33:7b:7b:58:48: bd:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:CE:E7:75:6C:8F:B7:42:A8:35:CA:F2:14:03:83:F2:BA:BB:F0:3D X509v3 Authority Key Identifier: keyid:AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:f5:0f:ea:26:fc:12:f2:f9:02:16:0e:71:6f:74:ec:02:6a: cf:3f:da:ad:58:87:da:9c:b5:15:bd:79:17:2a:da:79:3b:ef: 43:9d:3d:07:a8:4c:33:85:a5:7c:81:02:b4:7d:24:d5:06:ca: 64:3f:10:d3:78:62:2b:00:cf:58:bc:55:64:89:bc:a5:13:de: 44:aa:18:53:8f:a2:f6:5d:d3:c6:d6:5a:b2:a6:c0:96:87:31: 92:51:17:6c:af:c5:58:79:de:26:ee:e4:aa:cd:62:3c:38:53: 3c:a2:5d:2f:6f:ff:d1:76:ea:a1:c1:a4:9d:74:3e:5c:97:a8: 88:51:93:8b:1d:bd:41:c4:0d:c5:90:bb:a4:7b:7c:3f:8b:6a: b6:4c:27:f4:3d:d0:61:d3:2b:d4:79:f6:28:8d:ee:27:01:06: 0d:c8:60:f6:2e:e7:4f:85:ac:de:b5:57:4a:dd:4d:c9:a3:2b: 97:8d:de:2d:1e:07:ef:de:6b:4c:18:2a:15:5a:25:2e:37:6b: 47:e2:b9:7b:4c:bc:2e:59:85:f3:8a:41:3d:31:e7:22:6f:fd: b5:79:9e:72:cb:98:f3:a2:67:ac:68:69:97:20:1a:48:2f:5a: e1:0e:32:d9:45:99:d7:44:0e:76:4d:1f:0a:20:03:c4:b8:cf: c8:bd:0e:cf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDsDjovDPjR7938RVEW9fpdZJ1JswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3 NDg2N0Y1MzAeFw0yNTA2MTcwNzQ2MDdaFw0yNTA2MjAxODU5MDdaMDMxMTAvBgNV BAMTKDkwQ0VFNzc1NkM4RkI3NDJBODM1Q0FGMjE0MDM4M0YyQkFCQkYwM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXDjXgFXbdNs4sYBiwOjnWjX2S 142fgvgeDez4oRpMyR+uAWVCKS+pVMCisr0BD4laHCzYfcijKw5O8dRbHpOFX03v 4havH3gnEGxbv//wJ86UhPuNPwwyLijXf5DwREB+xM7vBhmej9a96SxXN7QZQs6m moLlz21GLDd2E0dp0Ap8qil/veJDYLBevV8Dv94T8xgkZ6uCznvZgPsPWSWMvbVH G1akbPPquQSbR9yQbZAdGWRyZF10YOfCQ2VKdU9KCaNBjlw6nRi+19JbszxaWlUK ZvulMzdWOpSfQ2YVzP2OlClLmqQbcZAD0jVFWGWSgYjuRFYfuekze3tYSL2dAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkM7ndWyPt0KoNcryFAOD8rq78D0wHwYDVR0j BBgwFoAUrSoPazAkv/EUWNcsjlYj+3SGf1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC9BRDJBMEY2QjMw MjRCRkYxMTQ1OEQ3MkM4RTU2MjNGQjc0ODY3RjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3NDg2 N0Y1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZhZjRkZTUtNTAzNy00OTE3LTlh OTMtMDE5MmM2OTU5YmZiLzAvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIz RkI3NDg2N0Y1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABb1D+om/BLy+QIWDnFvdOwCas8/2q1Yh9qc tRW9eRcq2nk770OdPQeoTDOFpXyBArR9JNUGymQ/ENN4YisAz1i8VWSJvKUT3kSq GFOPovZd08bWWrKmwJaHMZJRF2yvxVh53ibu5KrNYjw4UzyiXS9v/9F26qHBpJ10 PlyXqIhRk4sdvUHEDcWQu6R7fD+LarZMJ/Q90GHTK9R59iiN7icBBg3IYPYu50+F rN61V0rdTcmjK5eN3i0eB+/ea0wYKhVaJS43a0fiuXtMvC5ZhfOKQT0x5yJv/bV5 nnLLmPOiZ6xoaZcgGkgvWuEOMtlFmddEDnZNHwogA8S4z8i9Ds8= -----END CERTIFICATE-----Generated at Wed Jun 18 06:41:38 2025 by rpki-client