$ rpki-client -vvf repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft File: 2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft (raw, json) Hash identifier: K0ruhKsItIatx0W7W2PnEhYwfMAMv14ox+zsfD86eFA= Subject key identifier: BF:16:F7:31:2A:F9:65:C6:93:39:C3:D9:09:AB:47:0C:83:AF:A3:E6 Authority key identifier: 2C:B2:1E:F3:36:B6:AB:46:40:E4:61:96:01:E0:F6:48:8C:B8:FD:52 Certificate issuer: /CN=2CB21EF336B6AB4640E4619601E0F6488CB8FD52 Certificate serial: 76AEFF9E76C2A0087CFBF17336797A2D071D0105 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft Manifest number: 0310 Signing time: Mon 16 Jun 2025 19:32:08 +0000 Manifest this update: Mon 16 Jun 2025 19:27:08 +0000 Manifest next update: Thu 19 Jun 2025 22:36:08 +0000 Files and hashes: 1: 3130332e3136302e31322e302f32332d3234203d3e20313331313131.roa (hash: 2TjUbAwclmvFhuQfA5b8APF/xfL7qfTm8NzkksHu4ng=) 2: 2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl (hash: eEuoI1k1Sr7ofqwRhXVHM2vkCMzx/uv3V//s1FrxfH8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:36:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:ae:ff:9e:76:c2:a0:08:7c:fb:f1:73:36:79:7a:2d:07:1d:01:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB21EF336B6AB4640E4619601E0F6488CB8FD52 Validity Not Before: Jun 16 19:27:08 2025 GMT Not After : Jun 19 22:36:08 2025 GMT Subject: CN=BF16F7312AF965C69339C3D909AB470C83AFA3E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e4:fc:41:66:48:5a:23:3a:13:cb:fa:3e:72: 53:a9:35:20:2a:35:b6:6c:5f:45:87:8c:b3:7d:7c: e9:2d:bb:c5:67:ca:34:a4:0c:47:57:68:b6:65:51: 56:ba:e2:2c:d2:77:6b:27:51:11:79:4b:3f:d9:de: 0a:58:4d:87:d3:91:db:fa:9b:a5:b7:d1:1b:9c:95: 7f:37:cd:84:fb:d8:df:53:a5:68:21:05:48:8a:81: 94:89:33:f1:75:6b:15:76:77:81:78:18:88:42:47: ab:52:d0:b0:4b:fc:51:7f:a4:65:1e:05:99:33:01: 7b:8c:1a:e4:21:c8:fe:08:7c:51:92:fd:c3:fa:61: 48:19:18:14:14:0f:99:47:dc:08:46:bc:46:11:b4: 0e:7a:00:f1:fc:52:1b:27:a9:b1:d7:42:af:75:d3: 49:b8:de:2b:ca:6a:1a:ac:64:54:21:cd:54:fd:a2: 38:df:63:f0:72:e1:06:2b:61:04:a4:6a:f7:ad:c1: d6:1a:b0:f2:50:99:21:e2:ac:c8:d8:1b:87:2d:c0: 85:ce:ad:27:55:67:c4:6a:40:a6:86:42:d9:be:0f: e9:d0:63:11:0c:4d:63:70:dc:0f:8e:0a:17:3f:12: 93:43:6c:1e:7d:13:6d:a6:b0:aa:73:47:a0:b9:78: 9e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:16:F7:31:2A:F9:65:C6:93:39:C3:D9:09:AB:47:0C:83:AF:A3:E6 X509v3 Authority Key Identifier: keyid:2C:B2:1E:F3:36:B6:AB:46:40:E4:61:96:01:E0:F6:48:8C:B8:FD:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:02:c8:9d:fa:61:6c:ea:6b:3c:11:5a:97:0b:8d:3d:f1:aa: e0:03:f3:cf:d2:fd:22:e3:af:71:0e:fe:b6:09:f5:78:dd:84: 34:21:50:d7:db:06:77:af:57:2b:ea:7b:b4:bb:c7:6e:e4:44: fd:39:be:1d:d1:8f:74:77:07:63:34:ec:94:1a:3f:b5:61:15: 19:31:2b:3a:98:e5:76:e2:59:61:27:b5:40:02:00:77:46:1b: a7:80:1b:fc:7e:d6:67:40:7f:6d:e0:5d:43:21:a2:6c:ab:2a: 37:94:32:c8:e9:f6:0f:0b:d4:d3:31:72:14:81:80:05:3b:94: be:25:a8:59:a3:46:e1:ea:4a:47:87:d5:63:f9:b4:1c:4a:8b: c7:b5:16:26:11:69:64:b0:37:90:e9:d0:23:b0:84:d6:01:78: d3:78:a0:aa:b3:0f:6e:73:33:2d:1a:85:ee:0a:01:b0:54:76: b0:ca:ed:62:b3:25:e5:b5:dc:33:be:0b:6f:ec:66:6e:0e:e2: df:b5:48:11:08:2c:be:fe:d6:47:11:02:61:04:31:f0:46:b2: 99:8b:c1:97:d7:01:d6:5f:5f:fc:75:51:f3:8b:22:2b:27:20: ca:05:5a:03:4f:f9:d2:e9:24:1c:8d:74:98:2a:a4:72:fa:cf: a5:4b:6c:65 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdq7/nnbCoAh8+/FzNnl6LQcdAQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2NDg4 Q0I4RkQ1MjAeFw0yNTA2MTYxOTI3MDhaFw0yNTA2MTkyMjM2MDhaMDMxMTAvBgNV BAMTKEJGMTZGNzMxMkFGOTY1QzY5MzM5QzNEOTA5QUI0NzBDODNBRkEzRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN5PxBZkhaIzoTy/o+clOpNSAq NbZsX0WHjLN9fOktu8VnyjSkDEdXaLZlUVa64izSd2snURF5Sz/Z3gpYTYfTkdv6 m6W30RuclX83zYT72N9TpWghBUiKgZSJM/F1axV2d4F4GIhCR6tS0LBL/FF/pGUe BZkzAXuMGuQhyP4IfFGS/cP6YUgZGBQUD5lH3AhGvEYRtA56APH8UhsnqbHXQq91 00m43ivKahqsZFQhzVT9ojjfY/By4QYrYQSkavetwdYasPJQmSHirMjYG4ctwIXO rSdVZ8RqQKaGQtm+D+nQYxEMTWNw3A+OChc/EpNDbB59E22msKpzR6C5eJ57AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvxb3MSr5ZcaTOcPZCatHDIOvo+YwHwYDVR0j BBgwFoAULLIe8za2q0ZA5GGWAeD2SIy4/VIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGM2Zjc3MC02ODZhLTQ1ZWYtOGRmYi0wYzNhODdkM2Q4ZGEvMC8yQ0IyMUVGMzM2 QjZBQjQ2NDBFNDYxOTYwMUUwRjY0ODhDQjhGRDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2NDg4Q0I4 RkQ1Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjRjNmY3NzAtNjg2YS00NWVmLThk ZmItMGMzYTg3ZDNkOGRhLzAvMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2 NDg4Q0I4RkQ1Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKkCyJ36YWzqazwRWpcLjT3xquAD88/S/SLj r3EO/rYJ9XjdhDQhUNfbBnevVyvqe7S7x27kRP05vh3Rj3R3B2M07JQaP7VhFRkx KzqY5XbiWWEntUACAHdGG6eAG/x+1mdAf23gXUMhomyrKjeUMsjp9g8L1NMxchSB gAU7lL4lqFmjRuHqSkeH1WP5tBxKi8e1FiYRaWSwN5Dp0COwhNYBeNN4oKqzD25z My0ahe4KAbBUdrDK7WKzJeW13DO+C2/sZm4O4t+1SBEILL7+1kcRAmEEMfBGspmL wZfXAdZfX/x1UfOLIisnIMoFWgNP+dLpJByNdJgqpHL6z6VLbGU= -----END CERTIFICATE-----Generated at Tue Jun 17 09:40:50 2025 by rpki-client