$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft File: 21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json) Hash identifier: v7cRlgNo6J9tJHVrcoWkdR+cIsd0/rpEW/HdlhNcGRg= Subject key identifier: 06:72:06:72:68:72:53:F6:E7:FB:01:E7:8D:2F:B2:52:12:3D:69:F7 Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 07DC09BF81FA99D1D636E8A6C97504E201778DBE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft Manifest number: 049D Signing time: Tue 17 Jun 2025 03:21:31 +0000 Manifest this update: Tue 17 Jun 2025 03:16:31 +0000 Manifest next update: Fri 20 Jun 2025 09:12:31 +0000 Files and hashes: 1: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: OnBB+AVgOO2yluvkbnT8cnywdpmmnyLp0O1UDMPsJsk=) 2: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: 7blkTXyq3RKCIws921Czw5yMKl/tVjEFOw3lq63q9I8=) 3: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: RhfOeKNZ4j1KvALyW4SxaRw/kBv+Dgu0smuwmiknx1Y=) 4: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: Smb7HmzUf0UyLsjEJtoRvm3jALFW5SuffGaYfUAtD2s=) 5: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: xGlvhhCZWPzs+DSZkh7srQD/ievnERGkidhG5RocNNA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:10:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:dc:09:bf:81:fa:99:d1:d6:36:e8:a6:c9:75:04:e2:01:77:8d:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Jun 17 03:16:31 2025 GMT Not After : Jun 20 09:12:31 2025 GMT Subject: CN=06720672687253F6E7FB01E78D2FB252123D69F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a9:63:64:9a:66:e6:ee:3b:57:73:9b:d8:d9: 9d:29:f2:dc:da:f4:19:b8:89:18:26:d6:0e:79:6a: 22:ab:16:6a:10:93:08:e3:7e:7e:19:a1:dc:3a:b3: 6e:8f:2a:bc:45:d8:d7:2a:38:e3:e6:6f:08:49:4b: b5:76:4a:9c:0a:68:a5:ba:86:b4:41:54:0b:ea:b3: 41:63:47:8b:68:d2:5c:7f:d6:b6:5c:8b:26:5e:fe: 58:bd:36:63:19:da:c8:b6:88:68:f1:e9:08:31:db: fd:8a:f8:5d:73:52:9d:cb:82:56:81:f8:03:31:3d: cc:0c:ff:a0:83:8b:a9:a2:d7:11:38:43:ff:2a:67: db:31:b2:f5:cd:35:12:8f:57:a6:12:18:51:db:0a: 12:65:fc:88:d6:e7:38:2b:32:1c:88:b6:e3:00:50: 41:ac:ff:85:b3:b0:00:b9:05:a5:30:8b:ee:50:03: e0:62:a0:f6:62:97:00:ff:f1:6d:d7:a8:7c:3b:ae: 21:43:33:85:b7:c4:d2:47:b2:27:d4:73:98:94:15: 89:7f:2d:47:38:d2:5d:90:eb:a6:42:2e:f1:d7:1c: 90:7f:55:e9:6c:ae:d9:53:34:3e:1a:f4:20:bc:77: 4c:97:8c:c8:e2:90:f4:2d:81:c3:22:a1:df:88:a4: c8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:72:06:72:68:72:53:F6:E7:FB:01:E7:8D:2F:B2:52:12:3D:69:F7 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:30:8a:05:16:c5:c3:2c:44:45:16:fc:61:5f:9a:53:dc:c9: c6:77:f7:ef:df:a5:ea:03:29:5c:dc:d3:28:79:e5:5e:4c:eb: 23:3f:9d:5a:c3:d6:01:62:7f:d2:fa:6e:8f:14:25:b7:99:73: 8f:1f:f0:be:8c:29:70:19:40:8c:14:ff:df:9b:e3:ad:ec:c8: cf:1a:41:b7:20:44:77:c7:78:b7:6c:34:88:6f:fb:b4:92:56: c9:ba:61:5a:a3:a0:40:21:cd:47:a1:fc:b2:7b:d7:5b:e5:dd: fd:15:d8:1f:c4:e8:79:6a:4a:f2:88:07:39:55:2d:c5:2b:d4: 34:0c:72:c3:f6:48:6e:3e:90:45:e0:6a:84:d6:45:a2:e4:a2: 36:11:2c:f3:9b:32:7b:9b:5d:e9:d4:15:a9:bc:12:35:f7:9b: a7:c0:44:94:ce:25:82:be:8a:5a:04:da:0e:83:29:c4:4d:92: 11:8d:91:90:ac:f6:af:c4:38:2a:3f:17:e2:6d:83:88:d2:47: ef:0f:3d:52:a9:b1:b8:35:c5:42:88:f0:16:48:b5:23:a4:02: 7b:1f:75:fc:91:fd:f6:69:68:1b:d6:2c:58:f6:5e:40:bf:1a: 75:8c:67:8c:62:5b:70:bf:2d:b8:36:de:4f:7f:12:a9:f0:72: 60:13:d5:36 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUB9wJv4H6mdHWNuimyXUE4gF3jb4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNTA2MTcwMzE2MzFaFw0yNTA2MjAwOTEyMzFaMDMxMTAvBgNV BAMTKDA2NzIwNjcyNjg3MjUzRjZFN0ZCMDFFNzhEMkZCMjUyMTIzRDY5RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyqWNkmmbm7jtXc5vY2Z0p8tza 9Bm4iRgm1g55aiKrFmoQkwjjfn4Zodw6s26PKrxF2NcqOOPmbwhJS7V2SpwKaKW6 hrRBVAvqs0FjR4to0lx/1rZciyZe/li9NmMZ2si2iGjx6Qgx2/2K+F1zUp3LglaB +AMxPcwM/6CDi6mi1xE4Q/8qZ9sxsvXNNRKPV6YSGFHbChJl/IjW5zgrMhyItuMA UEGs/4WzsAC5BaUwi+5QA+BioPZilwD/8W3XqHw7riFDM4W3xNJHsifUc5iUFYl/ LUc40l2Q66ZCLvHXHJB/VelsrtlTND4a9CC8d0yXjMjikPQtgcMiod+IpMjNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUBnIGcmhyU/bn+wHnjS+yUhI9afcwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmRhYmMwYmEtOTIyMi00YzQ1LTgz NDItZWI4NjQzYzQ5NjdkLzAvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5Qzgz NjNERDAwOTExQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACAwigUWxcMsREUW/GFfmlPcycZ39+/fpeoD KVzc0yh55V5M6yM/nVrD1gFif9L6bo8UJbeZc48f8L6MKXAZQIwU/9+b463syM8a QbcgRHfHeLdsNIhv+7SSVsm6YVqjoEAhzUeh/LJ711vl3f0V2B/E6HlqSvKIBzlV LcUr1DQMcsP2SG4+kEXgaoTWRaLkojYRLPObMnubXenUFam8EjX3m6fARJTOJYK+ iloE2g6DKcRNkhGNkZCs9q/EOCo/F+Jtg4jSR+8PPVKpsbg1xUKI8BZItSOkAnsf dfyR/fZpaBvWLFj2XkC/GnWMZ4xiW3C/Lbg23k9/EqnwcmAT1TY= -----END CERTIFICATE-----Generated at Tue Jun 17 11:10:13 2025 by rpki-client