$ rpki-client -vvf repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft File: 651790FFFC1688AFA384D136FC4792AD18879019.mft (raw, json) Hash identifier: zvysfOhPlhH6GjT0bA4e0ijgRQl/f/KlAZMqpUJiak8= Subject key identifier: 48:68:ED:23:D2:DC:57:DA:A9:9E:0C:84:86:92:98:49:EE:93:2D:43 Authority key identifier: 65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 Certificate issuer: /CN=651790FFFC1688AFA384D136FC4792AD18879019 Certificate serial: 1B1372B941E1CC9ABA7A79B9582BA04DE876D416 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft Manifest number: 04DE Signing time: Sun 15 Jun 2025 18:52:11 +0000 Manifest this update: Sun 15 Jun 2025 18:47:11 +0000 Manifest next update: Thu 19 Jun 2025 06:06:11 +0000 Files and hashes: 1: 3130332e35332e37362e302f32322d3234203d3e20313333383137.roa (hash: +2/fO8INW6MBjsIr2MpsMr5pDS/07SU3AZAKJ801ins=) 2: 651790FFFC1688AFA384D136FC4792AD18879019.crl (hash: JMi9M722qpqHzQAJOEKL0JQ3A8oV4TdARz+0GnV9lXw=) 3: 323430323a353538303a3a2f33322d3438203d3e20313333383137.roa (hash: dttoTx4BQRFnMAvnuJnvYcnCQ5YOgtytig0qE7CIy64=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 06:06:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:13:72:b9:41:e1:cc:9a:ba:7a:79:b9:58:2b:a0:4d:e8:76:d4:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=651790FFFC1688AFA384D136FC4792AD18879019 Validity Not Before: Jun 15 18:47:11 2025 GMT Not After : Jun 19 06:06:11 2025 GMT Subject: CN=4868ED23D2DC57DAA99E0C8486929849EE932D43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:99:fb:37:4e:d6:27:81:c0:ac:a1:4c:ca:c5: b3:49:14:fb:66:7e:37:b6:d1:37:cf:34:40:1f:01: 0f:24:dd:e6:e0:4e:5b:15:24:52:08:9f:c0:31:a8: 4c:db:e3:96:3a:ae:16:9d:46:be:f9:6f:e1:0c:4e: 6f:4f:44:98:b4:28:fe:e9:7b:2d:f5:0b:0f:a8:3e: 20:0a:e3:50:63:e1:73:a5:bb:11:be:8b:a5:f1:ff: cd:1d:f3:68:1e:ba:0f:f8:a3:6a:94:2b:d1:0c:44: 17:b5:cc:53:f9:bb:75:7c:b3:50:55:f6:cf:62:03: f3:f5:70:62:b5:53:8d:8c:75:d8:4d:31:77:c4:b2: eb:4c:9b:14:80:37:95:4d:f4:ca:fb:1c:78:dc:df: c8:5d:7b:e6:10:c5:63:83:f6:0f:4b:a4:c3:6c:88: 1c:c2:f5:12:be:4e:5a:fd:c6:73:63:e9:8e:34:05: d0:fb:0d:48:38:2b:e1:45:c8:32:79:e8:ff:d3:ad: 72:bc:91:12:3f:05:54:6b:0e:3e:4c:95:74:c4:b6: 00:5d:90:e7:cd:4f:91:1f:8b:99:13:9c:2f:84:27: 37:8e:d5:27:c2:0a:a5:b5:b6:3d:91:ef:86:87:be: ff:d6:7a:0b:a5:0e:60:d7:bf:ee:64:86:b6:38:2d: 3d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:68:ED:23:D2:DC:57:DA:A9:9E:0C:84:86:92:98:49:EE:93:2D:43 X509v3 Authority Key Identifier: keyid:65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:f9:f2:32:7a:2e:f8:43:06:51:cd:04:52:ba:b7:37:ec:f4: ee:dd:f8:75:27:4c:3c:16:2c:f3:aa:ae:d0:cc:d1:92:96:f5: d1:33:6f:43:9a:cd:62:da:93:e8:bf:99:23:60:76:e5:31:49: 8d:1c:8b:d6:fc:27:73:c0:13:e5:90:07:8b:c1:73:09:c7:79: cc:ce:da:e6:70:7a:4d:19:c3:a1:3b:cf:e0:91:00:c5:a2:6d: d9:d7:e8:e7:c9:19:a7:7d:a0:e9:49:6b:b6:6a:bc:bc:64:05: 40:0b:85:39:9f:07:97:59:21:9b:53:70:e6:f7:e6:25:75:5f: dd:ae:23:0e:fa:a2:2f:f4:2a:bb:a0:5c:ca:3e:2a:22:f4:a7: 43:e5:44:cb:e8:1f:17:59:94:bf:12:f8:92:50:ac:3a:24:cb: 25:a1:5b:fd:28:2d:4d:7d:fa:bf:bb:79:a7:3d:94:d7:83:8c: 07:14:b1:a7:df:24:64:d2:c5:c9:b1:ae:6b:3b:db:55:1f:08: 18:3f:0d:bb:cd:b0:34:01:ca:c1:35:e6:f8:12:3a:9a:db:a8: 8f:22:a8:24:54:47:ee:36:7b:d1:d0:3d:55:10:56:de:be:bd: da:8e:13:90:ef:ad:c6:76:03:c4:e7:5b:4a:0b:f8:4d:a8:6e: b8:42:d4:84 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGxNyuUHhzJq6enm5WCugTeh21BYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQx ODg3OTAxOTAeFw0yNTA2MTUxODQ3MTFaFw0yNTA2MTkwNjA2MTFaMDMxMTAvBgNV BAMTKDQ4NjhFRDIzRDJEQzU3REFBOTlFMEM4NDg2OTI5ODQ5RUU5MzJENDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+mfs3TtYngcCsoUzKxbNJFPtm fje20TfPNEAfAQ8k3ebgTlsVJFIIn8AxqEzb45Y6rhadRr75b+EMTm9PRJi0KP7p ey31Cw+oPiAK41Bj4XOluxG+i6Xx/80d82geug/4o2qUK9EMRBe1zFP5u3V8s1BV 9s9iA/P1cGK1U42MddhNMXfEsutMmxSAN5VN9Mr7HHjc38hde+YQxWOD9g9LpMNs iBzC9RK+Tlr9xnNj6Y40BdD7DUg4K+FFyDJ56P/TrXK8kRI/BVRrDj5MlXTEtgBd kOfNT5Efi5kTnC+EJzeO1SfCCqW1tj2R74aHvv/WegulDmDXv+5khrY4LT1HAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSGjtI9LcV9qpngyEhpKYSe6TLUMwHwYDVR0j BBgwFoAUZReQ//wWiK+jhNE2/EeSrRiHkBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmY3ZWYzNC00OTkxLTRiYjEtOTZiNC1iZTQzZjFlY2FiYjQvMC82NTE3OTBGRkZD MTY4OEFGQTM4NEQxMzZGQzQ3OTJBRDE4ODc5MDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQxODg3 OTAxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZmN2VmMzQtNDk5MS00YmIxLTk2 YjQtYmU0M2YxZWNhYmI0LzAvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0Nzky QUQxODg3OTAxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG358jJ6LvhDBlHNBFK6tzfs9O7d+HUnTDwW LPOqrtDM0ZKW9dEzb0OazWLak+i/mSNgduUxSY0ci9b8J3PAE+WQB4vBcwnHeczO 2uZwek0Zw6E7z+CRAMWibdnX6OfJGad9oOlJa7ZqvLxkBUALhTmfB5dZIZtTcOb3 5iV1X92uIw76oi/0KrugXMo+KiL0p0PlRMvoHxdZlL8S+JJQrDokyyWhW/0oLU19 +r+7eac9lNeDjAcUsaffJGTSxcmxrms721UfCBg/DbvNsDQBysE15vgSOprbqI8i qCRUR+42e9HQPVUQVt6+vdqOE5DvrcZ2A8TnW0oL+E2obrhC1IQ= -----END CERTIFICATE-----Generated at Wed Jun 18 05:24:36 2025 by rpki-client