$ rpki-client -vvf repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft File: 0FA41B65D1881666013C9683E40575E68E5DC0A5.mft (raw, json) Hash identifier: CxZEuED28trJS0mkpsbCRRWn9Sexa8+0biPho1Sd/5A= Subject key identifier: 5C:26:97:74:12:F0:59:CE:62:7D:F6:F6:7F:42:81:81:37:58:38:24 Authority key identifier: 0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 Certificate issuer: /CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Certificate serial: 7513F431340FAE545ACA8CD9E31F1ADD39C72A22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft Manifest number: 04F1 Signing time: Tue 17 Jun 2025 02:31:00 +0000 Manifest this update: Tue 17 Jun 2025 02:26:00 +0000 Manifest next update: Fri 20 Jun 2025 05:41:00 +0000 Files and hashes: 1: 3130332e3231362e3138382e302f32342d3234203d3e20313431313037.roa (hash: VyhY07ev3HZs4lJdDII/xjr5IV8edk9Khb+3ZQ71QT4=) 2: 3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa (hash: E/D2Cv8nys+Xw52/1AbUQ7ljKhbTpvG2KMsVr5WOMsA=) 3: 0FA41B65D1881666013C9683E40575E68E5DC0A5.crl (hash: LJaSJG2voEzT6sMyzvJjZb99YX75gH7MbEQOrL6gCxs=) 4: 323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa (hash: 96iMJoj+cFMvtnyIVwYET8bE27HKdbaW3rJ7KX7hPqQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:13:f4:31:34:0f:ae:54:5a:ca:8c:d9:e3:1f:1a:dd:39:c7:2a:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Validity Not Before: Jun 17 02:26:00 2025 GMT Not After : Jun 20 05:41:00 2025 GMT Subject: CN=5C26977412F059CE627DF6F67F42818137583824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:8f:54:4f:07:45:45:0b:c3:01:c5:a6:6e:7f: 2a:84:54:91:3c:a1:50:32:af:de:82:c5:f5:e4:88: f2:ff:1c:8b:5a:ae:dc:9c:b5:fb:a4:39:c4:2e:7b: 8c:65:76:3a:29:a1:57:82:d4:13:db:9a:ce:5e:2b: d9:12:2b:92:60:8a:66:bb:28:f8:1c:27:c9:79:14: f3:87:69:38:62:aa:64:37:11:d3:8a:31:cd:74:e4: 8a:73:30:52:3a:b7:91:13:9b:06:2b:5d:a6:0b:84: e6:e8:95:70:67:d8:70:7a:c4:e7:78:64:73:4c:2e: f7:5c:45:f7:2b:51:a6:d6:37:d6:36:8a:6b:3d:ac: 43:b1:7e:0e:13:89:de:42:96:06:cc:27:ee:d0:eb: 77:56:63:47:45:69:2d:f3:ff:d4:91:f7:c7:8a:e2: fc:87:18:bb:6c:1c:1d:8d:91:83:b8:e6:33:1c:37: 2f:8d:db:9b:8b:24:18:aa:dc:ee:1c:f7:b1:35:60: 65:40:6c:a1:36:88:ac:4f:6c:51:85:f1:6c:dd:46: e2:9d:58:41:db:e1:7e:3d:32:4f:83:b4:69:e6:0a: 16:cc:fd:dd:89:20:2c:14:ca:4f:11:e7:6f:59:4c: 1a:5a:2f:2f:31:d2:09:ad:ba:f8:55:1a:51:a3:5f: a4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:26:97:74:12:F0:59:CE:62:7D:F6:F6:7F:42:81:81:37:58:38:24 X509v3 Authority Key Identifier: keyid:0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:15:a0:a2:c4:94:95:13:7d:15:3b:7a:77:ee:da:67:dd:47: 9f:29:27:81:3b:1a:87:69:1d:ca:51:f5:d6:53:54:7b:7b:7f: 08:02:85:6b:0e:77:e5:6b:7f:df:50:44:e8:dd:8a:f6:55:7e: 35:13:9d:05:17:35:34:0b:d1:99:76:04:7d:0e:48:08:14:9f: c9:32:ec:09:46:d6:71:8f:65:93:a4:8e:4e:c6:91:4d:d1:cc: da:c7:ea:19:25:b0:3e:05:52:21:df:9e:91:29:41:26:80:d1: 9f:71:91:66:ad:8c:e8:3e:03:1e:92:e5:2a:0f:55:28:59:db: 6a:78:4e:c1:45:bb:df:40:d2:7f:3f:a6:69:84:af:76:8b:84: 65:aa:52:ad:2b:02:f0:d8:c7:60:af:2e:70:64:b8:a1:fe:1c: ed:c4:16:49:be:04:5f:e2:da:19:d8:3f:da:8a:12:8b:fa:a9: 7b:12:d7:14:7a:98:dd:6f:20:4e:e9:c6:14:e7:14:e5:bf:f7: 4f:27:7a:0c:01:84:e5:b9:81:e1:a9:a6:90:8d:18:cc:7f:0f: 30:90:56:a6:84:7e:97:4d:cc:83:b6:0a:76:4c:7e:f0:78:74: a6:71:49:b2:9d:8e:fd:d1:73:4a:76:a1:06:ce:64:eb:a7:c1: fb:8e:d0:e7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdRP0MTQPrlRayozZ4x8a3TnHKiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4 RTVEQzBBNTAeFw0yNTA2MTcwMjI2MDBaFw0yNTA2MjAwNTQxMDBaMDMxMTAvBgNV BAMTKDVDMjY5Nzc0MTJGMDU5Q0U2MjdERjZGNjdGNDI4MTgxMzc1ODM4MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXj1RPB0VFC8MBxaZufyqEVJE8 oVAyr96CxfXkiPL/HItartyctfukOcQue4xldjopoVeC1BPbms5eK9kSK5Jgima7 KPgcJ8l5FPOHaThiqmQ3EdOKMc105IpzMFI6t5ETmwYrXaYLhObolXBn2HB6xOd4 ZHNMLvdcRfcrUabWN9Y2ims9rEOxfg4Tid5ClgbMJ+7Q63dWY0dFaS3z/9SR98eK 4vyHGLtsHB2NkYO45jMcNy+N25uLJBiq3O4c97E1YGVAbKE2iKxPbFGF8WzdRuKd WEHb4X49Mk+DtGnmChbM/d2JICwUyk8R529ZTBpaLy8x0gmtuvhVGlGjX6SPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXCaXdBLwWc5iffb2f0KBgTdYOCQwHwYDVR0j BBgwFoAUD6QbZdGIFmYBPJaD5AV15o5dwKUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk0ZDM3NS1mYzdkLTRkYzctYTFmMS1lMGIzYTU5ZmRmNzgvMC8wRkE0MUI2NUQx ODgxNjY2MDEzQzk2ODNFNDA1NzVFNjhFNURDMEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4RTVE QzBBNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzk5NGQzNzUtZmM3ZC00ZGM3LWEx ZjEtZTBiM2E1OWZkZjc4LzAvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1 RTY4RTVEQzBBNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIcVoKLElJUTfRU7enfu2mfdR58pJ4E7Godp HcpR9dZTVHt7fwgChWsOd+Vrf99QROjdivZVfjUTnQUXNTQL0Zl2BH0OSAgUn8ky 7AlG1nGPZZOkjk7GkU3RzNrH6hklsD4FUiHfnpEpQSaA0Z9xkWatjOg+Ax6S5SoP VShZ22p4TsFFu99A0n8/pmmEr3aLhGWqUq0rAvDYx2CvLnBkuKH+HO3EFkm+BF/i 2hnYP9qKEov6qXsS1xR6mN1vIE7pxhTnFOW/908negwBhOW5geGpppCNGMx/DzCQ VqaEfpdNzIO2CnZMfvB4dKZxSbKdjv3Rc0p2oQbOZOunwfuO0Oc= -----END CERTIFICATE-----Generated at Wed Jun 18 05:29:33 2025 by rpki-client