$ rpki-client -vvf repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft File: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft (raw, json) Hash identifier: EsBmfxy/5YedI9U42kEk7Cw1U95Ot3J7PyQPTKCKaHE= Subject key identifier: 29:E0:AF:11:98:5F:87:A1:F7:4D:E8:AD:E7:2E:C8:F3:28:A8:D5:89 Authority key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 Certificate issuer: /CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Certificate serial: 146F018FA9AF656478D000DE8E793C0D221C0686 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft Manifest number: 04B0 Signing time: Sat 14 Jun 2025 11:31:45 +0000 Manifest this update: Sat 14 Jun 2025 11:26:45 +0000 Manifest next update: Tue 17 Jun 2025 23:21:45 +0000 Files and hashes: 1: 3130332e3135362e31342e302f32332d3234203d3e203538383231.roa (hash: uhbTS40xOE2iorcFCGhU6uKqyXCDewHO7yiFkBSc5gw=) 2: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl (hash: g3Fikb+0SWn4a4U/NaLpmG9G8eCqmqYR7QLO/RDYEsQ=) 3: 323430363a376234303a3a2f33322d3438203d3e203538383231.roa (hash: UaGmn4kTfe+1TDn5eCuN9O53yKjU57F4Hz3jxRXHWWY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 23:21:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:6f:01:8f:a9:af:65:64:78:d0:00:de:8e:79:3c:0d:22:1c:06:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Validity Not Before: Jun 14 11:26:45 2025 GMT Not After : Jun 17 23:21:45 2025 GMT Subject: CN=29E0AF11985F87A1F74DE8ADE72EC8F328A8D589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fe:b9:0b:5a:29:b1:19:20:74:e9:2f:36:87: 1c:ba:9f:c7:54:a2:67:1a:59:4c:c0:b7:c6:de:2c: f1:e0:26:25:14:12:14:ae:24:cc:f1:c5:fd:a2:86: 69:0d:7f:b8:d7:76:ee:c7:1d:4f:56:15:76:8c:4d: f0:b6:ef:48:f3:e2:07:2d:8a:84:ef:35:18:79:b9: 59:62:ff:2d:1c:e8:a8:ff:91:4f:97:54:07:cc:e4: d7:f9:37:f7:ca:07:aa:17:57:36:35:c2:b8:7d:eb: 46:ec:44:80:04:d9:d6:44:dc:c0:6d:fb:8d:3a:72: 18:f3:bb:08:09:ff:63:f2:8e:e9:14:6f:31:46:bb: 51:32:c5:24:d5:a8:6b:43:92:29:29:28:0c:62:14: ec:49:02:b1:36:56:c1:60:11:b2:76:fa:84:46:74: 79:8c:27:85:10:b9:5e:f8:ad:7f:fe:dd:45:40:5b: fa:1c:db:38:65:e9:8e:39:81:92:5d:bf:fa:0a:ad: ff:e3:f3:07:b1:cb:0a:39:83:99:ae:a1:10:8c:76: a7:d2:02:df:9e:67:04:82:20:63:27:28:d6:de:c2: 63:5a:3f:38:d2:16:7b:c1:7e:59:46:02:19:c3:cc: 41:a9:83:e3:9e:73:a4:5e:a3:ae:80:35:9f:6f:ac: 7d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E0:AF:11:98:5F:87:A1:F7:4D:E8:AD:E7:2E:C8:F3:28:A8:D5:89 X509v3 Authority Key Identifier: keyid:1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:af:b7:58:62:ce:d4:86:40:09:f9:93:c2:cc:2b:21:7f:25: e4:c0:08:d4:ec:86:fd:8f:f5:4a:74:c7:f8:0f:fc:16:90:78: 8e:73:aa:6a:96:b0:81:4c:ba:34:48:bd:0b:62:a5:1c:58:f4: 6a:63:a3:c9:84:b5:af:fd:b5:6e:cb:1d:0a:47:43:c6:ba:92: 0c:18:35:89:33:09:50:e0:1e:3d:66:8e:e8:eb:38:0f:b9:e9: 64:6a:ee:9e:fa:25:e5:e3:1b:fb:23:f5:fb:03:f1:c8:2a:d7: 5c:79:ff:da:2d:8a:c0:92:60:b2:41:2e:09:a7:e3:30:e6:db: cb:d4:53:74:95:88:e2:b1:4b:0a:7a:11:92:96:97:a5:fd:a4: 39:c4:03:3f:60:9d:b5:5f:05:14:42:8d:d5:12:61:56:07:00: 49:ab:8a:a5:6f:1b:7a:31:90:a2:9d:2a:8f:af:bb:43:ed:52: bc:2a:38:f6:dd:ff:35:2c:6b:c8:8d:0e:68:d6:f1:9f:bd:42: 67:9f:c6:85:fd:62:f5:7b:1f:79:2e:12:12:71:f7:3a:02:db: 4a:36:1f:52:4a:9d:10:4a:fe:1f:c4:f8:bb:ae:d7:7e:70:24: 37:5a:78:0e:04:45:b8:96:10:ac:c0:34:98:cd:97:5a:9d:e5: bf:07:4e:cf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFG8Bj6mvZWR40ADejnk8DSIcBoYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2 OEY4MDQxOTAeFw0yNTA2MTQxMTI2NDVaFw0yNTA2MTcyMzIxNDVaMDMxMTAvBgNV BAMTKDI5RTBBRjExOTg1Rjg3QTFGNzRERThBREU3MkVDOEYzMjhBOEQ1ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6/rkLWimxGSB06S82hxy6n8dU omcaWUzAt8beLPHgJiUUEhSuJMzxxf2ihmkNf7jXdu7HHU9WFXaMTfC270jz4gct ioTvNRh5uVli/y0c6Kj/kU+XVAfM5Nf5N/fKB6oXVzY1wrh960bsRIAE2dZE3MBt +406chjzuwgJ/2PyjukUbzFGu1EyxSTVqGtDkikpKAxiFOxJArE2VsFgEbJ2+oRG dHmMJ4UQuV74rX/+3UVAW/oc2zhl6Y45gZJdv/oKrf/j8wexywo5g5muoRCMdqfS At+eZwSCIGMnKNbewmNaPzjSFnvBfllGAhnDzEGpg+Oec6Reo66ANZ9vrH3vAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKeCvEZhfh6H3Teit5y7I8yio1YkwHwYDVR0j BBgwFoAUHY2cvFKTTvArzR1Hiuumo2j4BBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTFlYTUxMy1hYzZlLTRhNWYtYjNlYi1kNTM1MmNhZjQ4NmIvMC8xRDhEOUNCQzUy OTM0RUYwMkJDRDFENDc4QUVCQTZBMzY4RjgwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2OEY4 MDQxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2UxZWE1MTMtYWM2ZS00YTVmLWIz ZWItZDUzNTJjYWY0ODZiLzAvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2 QTM2OEY4MDQxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACmvt1hiztSGQAn5k8LMKyF/JeTACNTshv2P 9Up0x/gP/BaQeI5zqmqWsIFMujRIvQtipRxY9Gpjo8mEta/9tW7LHQpHQ8a6kgwY NYkzCVDgHj1mjujrOA+56WRq7p76JeXjG/sj9fsD8cgq11x5/9otisCSYLJBLgmn 4zDm28vUU3SViOKxSwp6EZKWl6X9pDnEAz9gnbVfBRRCjdUSYVYHAEmriqVvG3ox kKKdKo+vu0PtUrwqOPbd/zUsa8iNDmjW8Z+9QmefxoX9YvV7H3kuEhJx9zoC20o2 H1JKnRBK/h/E+Luu135wJDdaeA4ERbiWEKzANJjNl1qd5b8HTs8= -----END CERTIFICATE-----Generated at Mon Jun 16 06:17:41 2025 by rpki-client