$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft File: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft (raw, json) Hash identifier: G/CXaDycc0oN59ofcCIY+uuHXWi6CsZajTz0tWzxWf0= Subject key identifier: 23:FC:60:B4:CA:BD:C1:90:51:53:08:F9:E7:16:E7:8A:1F:75:DD:64 Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 033C67767BB403CF8F16A6BB23D44636013BA662 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft Manifest number: 0469 Signing time: Fri 13 Jun 2025 21:42:12 +0000 Manifest this update: Fri 13 Jun 2025 21:37:12 +0000 Manifest next update: Tue 17 Jun 2025 09:22:12 +0000 Files and hashes: 1: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl (hash: oOf20ex3PpZQ/7vFxEZrjZPtTW/scjK7ZC2JknEC4PU=) 2: 3130332e32342e35382e302f32342d3234203d3e203436303532.roa (hash: bPWP0OQUIp2Y9GGXuX0UNuWcLsy7WT1L06MXLwlNCSg=) 3: 323030313a6466303a61383a3a2f34382d3438203d3e203436303532.roa (hash: qMdSXe2z67bVJOmODSeb4BQMQ40LX9lF9FYmIAv+p7A=) 4: 3130332e32342e35372e302f32342d3234203d3e203436303532.roa (hash: WgrIRzdaFJ0g4e27LMgAxhh+yicucERWndK+pSX36cg=) 5: 3130332e32342e35362e302f32342d3234203d3e203436303532.roa (hash: 0GSE1PDB0X1nNRLhLL+YFIj25TLvzXb3P+1q7y2DYeY=) 6: 3130332e32342e35392e302f32342d3234203d3e203436303532.roa (hash: yg0Ga2BI5N+zhlTssMp6B5+VROj1HXmBfDxoTWvqgpA=) 7: 3230322e392e38352e302f32342d3234203d3e203436303532.roa (hash: Y2PTe5fMMDYclXsLhLsiwjVncBgzuq5ROa1U1eOC/Wc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 09:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:3c:67:76:7b:b4:03:cf:8f:16:a6:bb:23:d4:46:36:01:3b:a6:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Jun 13 21:37:12 2025 GMT Not After : Jun 17 09:22:12 2025 GMT Subject: CN=23FC60B4CABDC190515308F9E716E78A1F75DD64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:08:95:52:15:2a:33:b1:31:df:cb:4c:40:6d: 2a:01:23:d4:67:d7:9a:30:32:e8:0f:85:ad:4f:f2: 90:0c:3e:2a:e8:93:09:c6:b0:76:8c:07:69:59:cc: 76:2c:85:8f:71:4b:7e:e8:62:41:df:8d:51:0c:fc: 8b:d3:1c:a6:b6:0d:ad:b5:27:51:76:d0:aa:1a:2d: 7d:d9:80:03:ec:66:c7:ac:0f:71:ec:c6:39:0a:ad: a2:f6:82:10:f2:79:e4:c9:72:72:b9:74:1a:04:9d: 70:89:81:c6:f1:d6:93:a7:10:d7:b4:86:a3:c4:9c: a1:b8:75:90:2d:13:94:43:80:0d:18:94:15:7e:90: 58:a7:7a:f0:6a:36:02:d8:5a:e3:5e:d2:4e:58:4a: 08:3c:2e:33:d1:23:ac:f3:a8:b4:00:a0:95:03:bb: 12:d5:95:15:3d:58:02:e2:5d:03:9e:d1:d1:82:99: 9c:1e:a4:ba:28:14:bf:ed:58:a4:fa:ff:96:60:fb: 6c:71:74:3b:84:6c:eb:e8:40:38:41:c9:00:64:7c: 73:bf:12:95:6a:cd:ad:4f:f0:78:c3:69:db:54:f5: 55:74:20:ee:d0:41:2c:15:71:2f:93:8d:36:82:60: 89:79:6e:10:c7:12:2d:51:d1:10:1b:cd:33:95:3d: d7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:FC:60:B4:CA:BD:C1:90:51:53:08:F9:E7:16:E7:8A:1F:75:DD:64 X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:ad:f4:90:7c:5b:bc:65:f8:84:63:e3:67:fa:c1:d6:14:45: 0c:fa:5e:fd:97:ce:dc:1f:21:98:86:63:95:61:a1:4a:37:b9: ba:92:e2:66:bf:5c:5e:b9:91:9c:6e:7c:e3:91:ea:e1:7e:84: 51:5f:10:8d:89:bc:79:1b:98:04:4e:42:3d:87:ab:2a:b3:a9: f2:0b:75:de:61:a9:03:d1:50:bc:34:7d:5a:68:4b:c2:0b:d9: 09:19:3d:bc:7f:6a:ae:0d:d1:65:71:ff:84:3a:86:b3:96:32: 50:df:66:10:71:39:68:1d:f4:b7:4d:38:b7:d3:ba:ab:44:ed: c1:96:da:38:bd:35:1d:43:3a:7f:e2:88:db:20:81:d6:0d:ed: 29:d6:6d:f9:82:f5:84:1c:01:1c:0f:b1:e9:30:24:03:fa:43: ff:87:7a:2a:c1:05:e2:b9:fc:e8:88:15:de:f9:bb:97:c5:45: 93:0a:1a:b9:f2:f7:69:26:62:9f:7e:d8:70:bf:ab:81:f8:f8: 9c:f8:d0:3d:31:6a:ec:20:e3:ed:53:dd:3f:6f:6c:9b:45:23: 96:84:90:88:35:8f:cc:76:39:b4:e4:e7:20:c4:37:41:9f:e1: 9a:d8:c7:43:ab:d0:eb:7f:8b:1d:64:4e:96:91:c6:7f:4d:c1: 6e:ad:52:47 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAzxndnu0A8+PFqa7I9RGNgE7pmIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNTA2MTMyMTM3MTJaFw0yNTA2MTcwOTIyMTJaMDMxMTAvBgNV BAMTKDIzRkM2MEI0Q0FCREMxOTA1MTUzMDhGOUU3MTZFNzhBMUY3NURENjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBCJVSFSozsTHfy0xAbSoBI9Rn 15owMugPha1P8pAMPirokwnGsHaMB2lZzHYshY9xS37oYkHfjVEM/IvTHKa2Da21 J1F20KoaLX3ZgAPsZsesD3HsxjkKraL2ghDyeeTJcnK5dBoEnXCJgcbx1pOnENe0 hqPEnKG4dZAtE5RDgA0YlBV+kFinevBqNgLYWuNe0k5YSgg8LjPRI6zzqLQAoJUD uxLVlRU9WALiXQOe0dGCmZwepLooFL/tWKT6/5Zg+2xxdDuEbOvoQDhByQBkfHO/ EpVqza1P8HjDadtU9VV0IO7QQSwVcS+TjTaCYIl5bhDHEi1R0RAbzTOVPddPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUI/xgtMq9wZBRUwj55xbnih913WQwHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmQxZWU1ZTItMzM4Yy00ZDIwLTgw N2UtZTUwYjc1NTgzZGI4LzAvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIw RTFEQzlBMTI2OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAICt9JB8W7xl+IRj42f6wdYURQz6Xv2Xztwf IZiGY5VhoUo3ubqS4ma/XF65kZxufOOR6uF+hFFfEI2JvHkbmAROQj2HqyqzqfIL dd5hqQPRULw0fVpoS8IL2QkZPbx/aq4N0WVx/4Q6hrOWMlDfZhBxOWgd9LdNOLfT uqtE7cGW2ji9NR1DOn/iiNsggdYN7SnWbfmC9YQcARwPsekwJAP6Q/+HeirBBeK5 /OiIFd75u5fFRZMKGrny92kmYp9+2HC/q4H4+Jz40D0xauwg4+1T3T9vbJtFI5aE kIg1j8x2ObTk5yDEN0Gf4ZrYx0Or0Ot/ix1kTpaRxn9NwW6tUkc= -----END CERTIFICATE-----Generated at Sun Jun 15 17:09:56 2025 by rpki-client