$ rpki-client -vvf repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft File: D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft (raw, json) Hash identifier: loKbsUWsG18jD/s4vAVxhPWXpi2oa3lFA2UbLF03UAo= Subject key identifier: D8:36:7E:42:04:A3:EE:53:48:26:91:BF:29:1C:0D:11:53:A2:2A:C1 Authority key identifier: D0:FF:6F:09:3D:0D:EA:FB:5C:B4:2A:93:43:3F:A2:39:C9:03:EA:C0 Certificate issuer: /CN=D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0 Certificate serial: 3C04191D286E1B29A2B612EE1E57DAB2A00403C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft Manifest number: 01DB Signing time: Sun 15 Jun 2025 02:01:47 +0000 Manifest this update: Sun 15 Jun 2025 01:56:47 +0000 Manifest next update: Wed 18 Jun 2025 05:36:47 +0000 Files and hashes: 1: 3130332e3136312e3230322e302f32332d3234203d3e203338333230.roa (hash: BdsS4s7jPHig7lZYR1kjJB8vTutisx05tJ8qnuC/vHI=) 2: D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl (hash: 3yPDRKzNNG6LVWOlqRPjaGhQuWwLAIjsCiT6aHk24lg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 05:36:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:04:19:1d:28:6e:1b:29:a2:b6:12:ee:1e:57:da:b2:a0:04:03:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0 Validity Not Before: Jun 15 01:56:47 2025 GMT Not After : Jun 18 05:36:47 2025 GMT Subject: CN=D8367E4204A3EE53482691BF291C0D1153A22AC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b2:f2:fb:e3:5e:69:df:73:8e:4a:8c:ef:b7: 2f:0e:cb:e6:47:f1:9d:2b:fd:6f:42:9e:db:00:10: 26:36:34:6c:f3:b0:08:3d:dc:64:01:63:a6:20:b8: 1c:97:54:2f:82:61:3a:3f:a2:b6:2e:6f:1d:38:14: 22:ee:97:83:de:02:da:2a:8e:b1:e7:4b:3c:f7:7e: a4:e3:55:2e:9c:ab:ec:5f:41:46:13:f3:5b:7a:8e: 88:57:8e:1c:01:39:fc:c6:ee:e5:94:1b:fc:5c:a1: 0b:e1:f4:aa:91:52:92:e4:27:fb:66:c9:d2:85:97: b0:80:0c:8d:b7:60:ef:44:d2:c8:65:77:88:eb:56: 55:11:70:bb:9a:9e:c6:04:62:17:e8:58:72:eb:23: 9c:ec:3f:12:21:7c:f9:07:c9:6c:c9:e3:c1:b5:6b: 73:9a:e8:7e:cc:75:71:bd:e4:da:45:d1:85:61:d8: 80:61:45:0c:a3:f9:e2:80:15:9a:8f:aa:f4:00:e4: 91:11:96:a8:01:7f:23:34:61:db:7f:44:6d:c0:76: 11:d1:bd:3e:0a:42:73:ac:ab:fa:c8:b8:cf:00:62: 94:7e:d2:b7:84:1c:c8:94:01:07:73:d6:10:3f:f4: f4:bb:30:66:a4:4d:a6:1d:fa:76:ff:06:4c:45:25: ca:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:36:7E:42:04:A3:EE:53:48:26:91:BF:29:1C:0D:11:53:A2:2A:C1 X509v3 Authority Key Identifier: keyid:D0:FF:6F:09:3D:0D:EA:FB:5C:B4:2A:93:43:3F:A2:39:C9:03:EA:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:07:d8:5d:ce:78:c6:8c:3c:1b:18:72:50:ff:9d:07:35:f5: e4:c7:e5:97:3e:d2:10:f7:de:d6:77:87:72:12:3b:7a:5b:75: b6:6f:cc:b9:fa:18:e0:19:22:5d:b7:11:01:a6:34:9b:27:ce: f0:c5:50:7f:ad:1c:72:45:8a:b2:e4:af:74:34:ca:cb:a9:cc: 72:3c:11:d0:e1:95:34:0a:15:a6:b6:23:f7:c1:8e:2f:61:84: 7a:e5:52:ba:c0:7e:36:2f:6e:66:1c:f0:6b:67:ae:b1:fc:47: fc:da:33:e5:6c:b6:ea:9c:96:ce:fb:38:5d:d3:9c:d4:e5:23: 82:27:ac:bc:45:44:05:01:53:28:e6:8e:70:4b:6c:01:92:d2: 0e:6c:7d:5e:2b:4e:d8:51:4f:64:34:e8:f0:1e:21:f3:17:31: 04:57:84:cb:4e:f4:62:60:20:89:d8:2c:c6:c7:2e:5a:ec:4b: 11:ee:8c:32:24:c2:e4:d1:a0:c8:98:51:9d:d7:7b:06:3c:03: 4f:97:a8:d1:00:da:3b:83:24:82:f8:e7:83:8b:b3:94:ba:99: 69:ae:89:fb:b3:41:a4:12:f1:b8:d0:84:3c:41:28:79:d0:eb: 83:4e:f1:45:ed:a9:fc:be:a0:21:81:c2:b8:3d:a3:4c:99:ce: 04:b4:96:af -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPAQZHShuGymithLuHlfasqAEA8QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEyMzlD OTAzRUFDMDAeFw0yNTA2MTUwMTU2NDdaFw0yNTA2MTgwNTM2NDdaMDMxMTAvBgNV BAMTKEQ4MzY3RTQyMDRBM0VFNTM0ODI2OTFCRjI5MUMwRDExNTNBMjJBQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwsvL7415p33OOSozvty8Oy+ZH 8Z0r/W9CntsAECY2NGzzsAg93GQBY6YguByXVC+CYTo/orYubx04FCLul4PeAtoq jrHnSzz3fqTjVS6cq+xfQUYT81t6johXjhwBOfzG7uWUG/xcoQvh9KqRUpLkJ/tm ydKFl7CADI23YO9E0shld4jrVlURcLuansYEYhfoWHLrI5zsPxIhfPkHyWzJ48G1 a3Oa6H7MdXG95NpF0YVh2IBhRQyj+eKAFZqPqvQA5JERlqgBfyM0Ydt/RG3AdhHR vT4KQnOsq/rIuM8AYpR+0reEHMiUAQdz1hA/9PS7MGakTaYd+nb/BkxFJcpLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2DZ+QgSj7lNIJpG/KRwNEVOiKsEwHwYDVR0j BBgwFoAU0P9vCT0N6vtctCqTQz+iOckD6sAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 N2Y5ZjU2Mi03MjkyLTQ0ZjEtOGUyYy00NDBhMDUzMWMzOTYvMC9EMEZGNkYwOTNE MERFQUZCNUNCNDJBOTM0MzNGQTIzOUM5MDNFQUMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEyMzlDOTAz RUFDMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjdmOWY1NjItNzI5Mi00NGYxLThl MmMtNDQwYTA1MzFjMzk2LzAvRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEy MzlDOTAzRUFDMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJwH2F3OeMaMPBsYclD/nQc19eTH5Zc+0hD3 3tZ3h3ISO3pbdbZvzLn6GOAZIl23EQGmNJsnzvDFUH+tHHJFirLkr3Q0ysupzHI8 EdDhlTQKFaa2I/fBji9hhHrlUrrAfjYvbmYc8GtnrrH8R/zaM+Vstuqcls77OF3T nNTlI4InrLxFRAUBUyjmjnBLbAGS0g5sfV4rTthRT2Q06PAeIfMXMQRXhMtO9GJg IInYLMbHLlrsSxHujDIkwuTRoMiYUZ3XewY8A0+XqNEA2juDJIL454OLs5S6mWmu ifuzQaQS8bjQhDxBKHnQ64NO8UXtqfy+oCGBwrg9o0yZzgS0lq8= -----END CERTIFICATE-----Generated at Mon Jun 16 20:45:18 2025 by rpki-client