$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft File: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft (raw, json) Hash identifier: IK1uQzYTMZppwfrvb5yQn6ygDT+O/kizbk9T/FQpbw0= Subject key identifier: AF:47:A2:DD:DA:58:2F:BF:32:F7:E1:4D:83:14:FA:1D:EC:D5:F6:70 Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 78AD830914F76BD226A0986BC72722B4F6CAB88D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft Manifest number: 90 Signing time: Mon 16 Jun 2025 04:31:59 +0000 Manifest this update: Mon 16 Jun 2025 04:26:59 +0000 Manifest next update: Thu 19 Jun 2025 08:49:59 +0000 Files and hashes: 1: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (hash: 9LNgGVv86zEnKjQNsGSTYEvVvGQkNogYzW1V+EdhwJM=) 2: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (hash: W7WMatvzYXuALvuTzGQVbHotqWD0nd56JaqQ7uT/XBU=) 3: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl (hash: bzA/XPokU7t3n7OfxFh7VBGT21Uqg1yGusmk+jvxj0o=) 4: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (hash: i5RZxjcZhVQvmnAc/gMhyUIUY8n5jdbL7g9L8hbgD/Y=) 5: 323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa (hash: 68fT/6O+GQIrkXJcp+Dg6OpaZLLbbrSI6G1YMP9fXt0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 08:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:ad:83:09:14:f7:6b:d2:26:a0:98:6b:c7:27:22:b4:f6:ca:b8:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Jun 16 04:26:59 2025 GMT Not After : Jun 19 08:49:59 2025 GMT Subject: CN=AF47A2DDDA582FBF32F7E14D8314FA1DECD5F670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:de:01:17:89:79:91:64:96:cc:57:ac:11:ed: f6:fa:2d:2e:d2:26:c6:ef:63:b3:c3:26:f9:77:2b: 96:4f:ce:a5:f3:05:2a:44:5e:ca:1d:60:72:75:a3: 32:eb:30:4f:5c:08:fb:25:2a:3b:a2:1c:97:2b:27: 62:90:f9:fd:a5:f3:8c:78:37:1d:a6:d4:26:07:23: f4:9a:5e:c0:be:61:6e:8a:fc:eb:75:5c:65:23:b7: 02:e0:4a:d3:08:07:14:8d:97:5b:98:98:18:a9:0b: 03:77:88:70:bc:9d:94:13:28:39:f6:bf:53:dc:c1: 5c:0f:aa:24:2b:6c:a7:7f:91:40:65:77:82:2c:2b: 30:7a:c4:93:79:1f:b3:c9:d2:3a:20:17:c1:ca:25: af:7b:52:04:a5:44:0b:57:2f:3a:50:d1:2e:80:fa: c8:c3:0b:c7:97:71:83:9e:79:b7:ae:e3:a2:ba:96: 94:6a:58:5f:2a:ac:f4:a5:a9:cd:12:ab:80:59:6f: 5b:a6:c5:71:f6:b3:a0:9e:3a:fc:76:9d:47:e7:7e: ae:98:0f:f1:0c:ac:ed:1f:7b:4a:ee:03:88:86:9d: 65:16:59:5c:bd:73:a5:8a:8e:7c:5c:e6:cd:ac:b5: 8a:7a:b4:23:4b:72:53:7c:7a:3f:55:55:7f:a5:47: bb:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:47:A2:DD:DA:58:2F:BF:32:F7:E1:4D:83:14:FA:1D:EC:D5:F6:70 X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:26:76:6f:73:46:20:9f:36:72:d4:04:a5:38:24:f3:0f:fd: 51:b9:20:47:bf:4c:e9:20:4f:b5:93:8c:a4:04:f9:9e:30:3d: 09:03:5c:53:65:33:26:a3:b3:50:fc:fc:60:7e:a9:91:00:a5: a0:60:37:df:36:a2:2a:eb:53:ff:55:9a:5e:eb:20:d3:4c:33: 9e:ac:79:a8:d4:33:3e:37:65:77:61:60:f6:b8:f6:8f:5f:b1: 3c:f7:c4:f1:78:ea:a4:43:c8:b4:21:cb:f5:a6:32:d5:68:1d: ec:04:60:a6:84:a2:23:5d:ad:46:e7:12:0d:16:c7:fc:5e:7c: 4b:6d:4b:de:29:c2:13:39:c0:bd:ef:32:42:11:6c:6f:e6:8a: 67:0a:7f:9f:7e:68:2b:7d:37:20:82:9d:8f:81:a8:7a:60:d7: 7f:18:72:3a:93:47:59:5f:ac:81:51:64:15:36:dd:e8:52:4d: 05:8a:12:40:49:24:32:7e:fe:f4:67:ad:83:fc:fa:6b:b1:40: 8e:1f:33:6e:bb:85:01:b4:a6:79:71:2c:21:b8:5d:88:5e:70: fb:09:ea:11:63:d9:ac:32:30:be:48:58:c7:70:d9:09:07:ce: 90:61:f2:e2:89:09:d7:0b:99:84:3e:ca:5e:d0:a0:0a:e6:ae: 28:5c:ba:7f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeK2DCRT3a9ImoJhrxycitPbKuI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNTA2MTYwNDI2NTlaFw0yNTA2MTkwODQ5NTlaMDMxMTAvBgNV BAMTKEFGNDdBMkREREE1ODJGQkYzMkY3RTE0RDgzMTRGQTFERUNENUY2NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC83gEXiXmRZJbMV6wR7fb6LS7S JsbvY7PDJvl3K5ZPzqXzBSpEXsodYHJ1ozLrME9cCPslKjuiHJcrJ2KQ+f2l84x4 Nx2m1CYHI/SaXsC+YW6K/Ot1XGUjtwLgStMIBxSNl1uYmBipCwN3iHC8nZQTKDn2 v1PcwVwPqiQrbKd/kUBld4IsKzB6xJN5H7PJ0jogF8HKJa97UgSlRAtXLzpQ0S6A +sjDC8eXcYOeebeu46K6lpRqWF8qrPSlqc0Sq4BZb1umxXH2s6CeOvx2nUfnfq6Y D/EMrO0fe0ruA4iGnWUWWVy9c6WKjnxc5s2stYp6tCNLclN8ej9VVX+lR7t9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUr0ei3dpYL78y9+FNgxT6HezV9nAwHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGI3MmVjYTQtNzNhZC00ZTBiLWE2 YTYtN2E2NTY5OGI3M2JlLzAvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNG NDM0NDk3QkZFMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALomdm9zRiCfNnLUBKU4JPMP/VG5IEe/TOkg T7WTjKQE+Z4wPQkDXFNlMyajs1D8/GB+qZEApaBgN982oirrU/9Vml7rINNMM56s eajUMz43ZXdhYPa49o9fsTz3xPF46qRDyLQhy/WmMtVoHewEYKaEoiNdrUbnEg0W x/xefEttS94pwhM5wL3vMkIRbG/mimcKf59+aCt9NyCCnY+BqHpg138YcjqTR1lf rIFRZBU23ehSTQWKEkBJJDJ+/vRnrYP8+muxQI4fM267hQG0pnlxLCG4XYhecPsJ 6hFj2awyML5IWMdw2QkHzpBh8uKJCdcLmYQ+yl7QoArmrihcun8= -----END CERTIFICATE-----Generated at Wed Jun 18 07:17:56 2025 by rpki-client