$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft File: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft (raw, json) Hash identifier: HcGew4Xrl3DyM0aFCPrwvvITSYZGCLMF6TBqaiMY/fM= Subject key identifier: 94:F7:79:A7:34:7A:42:5B:C8:76:D1:98:35:79:12:D0:95:DA:DA:A6 Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Certificate serial: 7E5AAE82A8C7A419B9D779E2D73AE3AAE11D929F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft Manifest number: 0336 Signing time: Mon 16 Jun 2025 04:51:29 +0000 Manifest this update: Mon 16 Jun 2025 04:46:29 +0000 Manifest next update: Thu 19 Jun 2025 05:06:29 +0000 Files and hashes: 1: 3130332e3136392e3133332e302f32342d3234203d3e20313432333431.roa (hash: XIli98cQ5DslYaylLZi+5Ts9pki82Z8fAKzqEWLUjbk=) 2: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl (hash: GjbLifrTuMD/opsdFTd0C1EOJCiwXarrdg24tfNp4Yw=) 3: 3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa (hash: mdAnNzPQX1fBQRxqx/liQc+y8HoOIQ1ZRmWeSXm/9lE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 05:06:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:5a:ae:82:a8:c7:a4:19:b9:d7:79:e2:d7:3a:e3:aa:e1:1d:92:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Validity Not Before: Jun 16 04:46:29 2025 GMT Not After : Jun 19 05:06:29 2025 GMT Subject: CN=94F779A7347A425BC876D198357912D095DADAA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:60:7a:56:bb:e1:d1:b0:72:9b:3f:4a:73:e4: f3:50:f2:ef:01:c7:4e:69:3a:97:43:81:52:ce:89: cf:18:0e:21:e6:0c:b6:26:83:c1:5d:08:81:d9:c1: 25:94:fb:b2:e8:8e:ca:9b:a5:76:c8:9b:b2:6a:5d: 51:23:31:55:fc:74:04:d2:f1:86:70:15:93:7b:a0: c5:58:b8:13:c0:32:0c:ef:20:b2:db:79:fa:8a:e4: e9:5f:a2:c6:41:7b:02:5d:5a:bf:47:56:18:1e:2b: b8:d9:09:3e:c6:a3:5b:6b:8b:65:46:7a:dc:16:76: 18:a1:3e:d0:50:a1:44:77:97:2a:24:02:ea:a7:ef: a8:f4:31:71:44:ab:0f:66:50:8b:82:36:23:ee:fb: 72:c4:34:bd:82:c9:11:68:4e:67:55:99:a0:d0:43: ac:a1:02:ab:02:cc:bc:f2:c2:4f:92:21:c5:e2:b0: f7:32:b2:25:be:88:dd:83:83:c2:5c:ab:04:bf:f2: da:29:cd:c5:d4:5e:01:2d:07:d7:01:3c:3b:71:4d: ba:c2:b9:09:e8:da:57:61:21:cb:2c:f3:d4:c5:c0: df:17:f0:9a:de:ae:af:f2:ce:50:71:f6:8a:82:ac: e2:df:5b:a0:cd:62:8f:70:36:39:2d:9e:1d:d4:ca: 3f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F7:79:A7:34:7A:42:5B:C8:76:D1:98:35:79:12:D0:95:DA:DA:A6 X509v3 Authority Key Identifier: keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:fa:66:cf:68:13:4c:54:10:21:f9:c9:e3:23:1a:86:a1:24: 54:22:f3:95:c2:aa:48:e8:d2:14:28:25:10:00:e3:de:c9:02: 13:da:3f:77:0e:ae:10:32:1b:d4:c2:90:f4:74:75:76:cb:75: c1:f7:13:3a:d7:43:9f:3b:b3:72:ac:bb:e0:4a:7b:c0:ed:be: 76:64:f5:ee:c3:67:e7:c4:cc:a0:5a:5f:ea:38:3d:ae:f9:32: 07:43:d4:25:3d:c1:11:6f:b5:2d:99:79:e4:69:46:0b:73:92: af:3b:2d:28:8d:59:73:e1:b7:89:39:15:f0:04:b5:f4:d2:f3: c7:d2:03:fd:53:d3:21:f3:e2:d0:16:2c:a5:83:61:57:fe:56: 8a:9b:17:73:6d:d3:a5:7d:0b:8a:91:1b:66:a9:5a:cc:cc:ca: 96:bb:15:75:a1:8d:4b:30:dc:2f:53:2c:2d:3c:2c:07:bf:54: 1c:55:c7:81:e5:aa:87:46:a2:9d:4c:92:83:b5:0f:30:7d:4c: d2:07:58:a5:65:99:4b:de:7f:b9:26:6f:45:91:ec:51:4e:a5: ca:3c:8d:25:08:b3:3f:d0:8e:93:69:1c:14:ef:7f:44:1f:0e: df:8a:45:fc:4d:23:7b:ed:36:df:31:7e:d9:2e:83:70:27:4f: d2:7b:2a:88 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUflqugqjHpBm513ni1zrjquEdkp8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VF NDlFOEExNzAeFw0yNTA2MTYwNDQ2MjlaFw0yNTA2MTkwNTA2MjlaMDMxMTAvBgNV BAMTKDk0Rjc3OUE3MzQ3QTQyNUJDODc2RDE5ODM1NzkxMkQwOTVEQURBQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnYHpWu+HRsHKbP0pz5PNQ8u8B x05pOpdDgVLOic8YDiHmDLYmg8FdCIHZwSWU+7LojsqbpXbIm7JqXVEjMVX8dATS 8YZwFZN7oMVYuBPAMgzvILLbefqK5OlfosZBewJdWr9HVhgeK7jZCT7Go1tri2VG etwWdhihPtBQoUR3lyokAuqn76j0MXFEqw9mUIuCNiPu+3LENL2CyRFoTmdVmaDQ Q6yhAqsCzLzywk+SIcXisPcysiW+iN2Dg8JcqwS/8topzcXUXgEtB9cBPDtxTbrC uQno2ldhIcss89TFwN8X8Jrerq/yzlBx9oqCrOLfW6DNYo9wNjktnh3Uyj9/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlPd5pzR6QlvIdtGYNXkS0JXa2qYwHwYDVR0j BBgwFoAUNuaOKiZOGL/Z9J5HLQ0mfuSeihcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMC8zNkU2OEUyQTI2 NEUxOEJGRDlGNDlFNDcyRDBEMjY3RUU0OUU4QTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VFNDlF OEExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODdkMjAzMWItMjc2MS00YzM2LWI2 OTAtNWI2OWQxNTY5YmFlLzAvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2 N0VFNDlFOEExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE36Zs9oE0xUECH5yeMjGoahJFQi85XCqkjo 0hQoJRAA497JAhPaP3cOrhAyG9TCkPR0dXbLdcH3EzrXQ587s3Ksu+BKe8DtvnZk 9e7DZ+fEzKBaX+o4Pa75MgdD1CU9wRFvtS2ZeeRpRgtzkq87LSiNWXPht4k5FfAE tfTS88fSA/1T0yHz4tAWLKWDYVf+VoqbF3Nt06V9C4qRG2apWszMypa7FXWhjUsw 3C9TLC08LAe/VBxVx4HlqodGop1MkoO1DzB9TNIHWKVlmUvef7kmb0WR7FFOpco8 jSUIsz/QjpNpHBTvf0QfDt+KRfxNI3vtNt8xftkug3AnT9J7Kog= -----END CERTIFICATE-----Generated at Mon Jun 16 12:22:27 2025 by rpki-client