$ rpki-client -vvf repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft File: D2EA420344F486935839E03DF1B3C237F295C2DE.mft (raw, json) Hash identifier: bPz8T8Yol5jKS2Iyb+khzim4Q9+am1169ijyyDMSUig= Subject key identifier: 6F:EB:4D:DA:A6:FB:69:B3:09:E0:23:AC:71:62:1C:DA:10:3C:91:56 Authority key identifier: D2:EA:42:03:44:F4:86:93:58:39:E0:3D:F1:B3:C2:37:F2:95:C2:DE Certificate issuer: /CN=D2EA420344F486935839E03DF1B3C237F295C2DE Certificate serial: 0602A37EE436D8BA52117301C38AF6EFA8710D81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft Manifest number: 04B1 Signing time: Wed 18 Jun 2025 05:01:44 +0000 Manifest this update: Wed 18 Jun 2025 04:56:44 +0000 Manifest next update: Sat 21 Jun 2025 05:50:44 +0000 Files and hashes: 1: D2EA420344F486935839E03DF1B3C237F295C2DE.crl (hash: EiG4raDM++XhXXUGMsZX/O8t9QONQPJXaAU4l8qUv+M=) 2: 323430323a386163303a3a2f33322d3438203d3e20313337333230.roa (hash: t2JkAO4RGOdwgjllPAyKujK/HVSkrKZfup0TzzlD7iQ=) 3: 3130332e3131302e3132302e302f32322d3234203d3e20313337333230.roa (hash: lMm04bbrV0DrDR/LfrROVfPhtdVsje7cFfAvFrg0iac=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.crl rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 05:50:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:02:a3:7e:e4:36:d8:ba:52:11:73:01:c3:8a:f6:ef:a8:71:0d:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EA420344F486935839E03DF1B3C237F295C2DE Validity Not Before: Jun 18 04:56:44 2025 GMT Not After : Jun 21 05:50:44 2025 GMT Subject: CN=6FEB4DDAA6FB69B309E023AC71621CDA103C9156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:29:75:58:51:67:2a:7e:ad:8d:f1:95:70:f7: c9:c3:27:07:36:17:2a:38:18:be:7d:c2:e3:a0:e5: 66:e5:88:72:62:8f:25:da:ee:f8:2f:3a:43:d5:71: 34:08:27:74:23:3a:8c:6b:a1:a1:bd:0d:e8:2b:3d: e9:08:d1:da:ea:2d:30:76:af:5f:f4:fe:88:f2:56: 69:83:33:a0:97:46:b6:20:20:2d:ba:a7:e0:5d:da: 86:c5:83:d4:84:91:ce:03:fb:6e:1a:95:83:e8:83: 00:84:bc:fc:00:0b:21:85:4e:be:c1:59:c1:b7:c6: 6c:df:ea:b1:17:0c:2e:bc:a5:dc:a0:74:ba:04:c9: 13:c1:1a:3c:4b:22:7d:a8:d4:aa:ea:22:53:f6:34: 80:36:4c:f5:72:1b:50:21:90:6e:5a:7b:a3:e8:87: ac:2b:d8:0f:b7:0b:8c:d4:ef:b7:31:12:39:24:cc: 58:49:de:13:2a:8f:e0:d1:ea:79:51:96:61:a7:38: d8:bc:07:b1:6f:44:cd:38:19:05:ed:44:11:39:86: e7:f3:3c:22:8b:f6:e0:bd:d0:bd:a3:66:da:64:78: 0a:b6:7f:9b:a4:52:9d:23:05:5e:3b:e0:fb:e0:5e: 21:4c:04:90:a9:46:9e:ed:bb:eb:42:12:53:e6:c3: 53:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:EB:4D:DA:A6:FB:69:B3:09:E0:23:AC:71:62:1C:DA:10:3C:91:56 X509v3 Authority Key Identifier: keyid:D2:EA:42:03:44:F4:86:93:58:39:E0:3D:F1:B3:C2:37:F2:95:C2:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d8:dc:76:fe:f7:57:ec:09:00:5e:21:4f:39:56:df:c1:e6:ad: 31:13:1e:c3:79:19:ad:a5:30:ff:9b:e9:b8:20:95:ea:e1:ef: aa:ca:bc:f7:7c:ae:c6:4f:b8:2a:be:bf:9d:a2:a1:48:83:e8: 4a:13:6b:a2:cf:db:63:a9:e0:c2:6f:3a:71:d4:48:bc:19:45: 07:c1:c5:c1:1c:91:30:fe:84:d9:6c:d4:04:66:fc:6c:08:01: 8a:3a:f5:72:1e:e0:91:ea:07:68:76:ff:27:5f:17:b6:fe:15: fc:40:ce:f7:5b:ce:b6:0c:c6:b9:4e:56:79:eb:57:b3:7f:b0: 42:e7:e2:bf:32:60:a0:7b:73:d5:16:82:ea:3d:0f:77:ec:ea: 97:9e:50:3c:db:c5:8a:3f:50:db:f6:d9:e1:fc:a3:8a:fa:6d: 0b:7e:b7:8f:21:22:43:c2:2f:a7:73:b7:30:05:93:32:ed:e5: d3:17:9c:49:17:c3:b1:c4:40:75:e6:84:10:57:2c:63:f2:1d: ec:47:b7:c1:42:f7:26:50:58:b3:62:a3:c2:70:3c:ef:b6:08: c0:95:9e:4e:e4:6f:77:b5:05:7b:65:cf:df:d1:fc:bb:15:ff: 3d:43:49:7e:23:68:89:c2:a5:09:1d:69:08:25:0e:6a:10:9e: 42:b9:a1:ad -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBgKjfuQ22LpSEXMBw4r276hxDYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0MyMzdG Mjk1QzJERTAeFw0yNTA2MTgwNDU2NDRaFw0yNTA2MjEwNTUwNDRaMDMxMTAvBgNV BAMTKDZGRUI0RERBQTZGQjY5QjMwOUUwMjNBQzcxNjIxQ0RBMTAzQzkxNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyKXVYUWcqfq2N8ZVw98nDJwc2 Fyo4GL59wuOg5WbliHJijyXa7vgvOkPVcTQIJ3QjOoxroaG9DegrPekI0drqLTB2 r1/0/ojyVmmDM6CXRrYgIC26p+Bd2obFg9SEkc4D+24alYPogwCEvPwACyGFTr7B WcG3xmzf6rEXDC68pdygdLoEyRPBGjxLIn2o1KrqIlP2NIA2TPVyG1AhkG5ae6Po h6wr2A+3C4zU77cxEjkkzFhJ3hMqj+DR6nlRlmGnONi8B7FvRM04GQXtRBE5hufz PCKL9uC90L2jZtpkeAq2f5ukUp0jBV474PvgXiFMBJCpRp7tu+tCElPmw1NLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUb+tN2qb7abMJ4COscWIc2hA8kVYwHwYDVR0j BBgwFoAU0upCA0T0hpNYOeA98bPCN/KVwt4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NDA4ODNmMy00NTdhLTRjMTQtOTU3Ny02N2UxNTBhMmIxMmEvMC9EMkVBNDIwMzQ0 RjQ4NjkzNTgzOUUwM0RGMUIzQzIzN0YyOTVDMkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0MyMzdGMjk1 QzJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzQwODgzZjMtNDU3YS00YzE0LTk1 NzctNjdlMTUwYTJiMTJhLzAvRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0My MzdGMjk1QzJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANjcdv73V+wJAF4hTzlW38HmrTETHsN5Ga2l MP+b6bgglerh76rKvPd8rsZPuCq+v52ioUiD6EoTa6LP22Op4MJvOnHUSLwZRQfB xcEckTD+hNls1ARm/GwIAYo69XIe4JHqB2h2/ydfF7b+FfxAzvdbzrYMxrlOVnnr V7N/sELn4r8yYKB7c9UWguo9D3fs6peeUDzbxYo/UNv22eH8o4r6bQt+t48hIkPC L6dztzAFkzLt5dMXnEkXw7HEQHXmhBBXLGPyHexHt8FC9yZQWLNio8JwPO+2CMCV nk7kb3e1BXtlz9/R/LsV/z1DSX4jaInCpQkdaQglDmoQnkK5oa0= -----END CERTIFICATE-----Generated at Fri Jun 20 07:15:40 2025 by rpki-client