$ rpki-client -vvf repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft File: 5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft (raw, json) Hash identifier: 3xMFB+lJdeH4QTMJ3vi2p/unFuBl7vpDC32A0z/FoIA= Subject key identifier: 95:16:DC:2D:98:86:E1:25:3F:46:A6:A4:04:61:A1:BA:CE:D4:F9:85 Authority key identifier: 5A:8D:4D:EC:5F:C2:9B:E6:E2:49:04:62:F5:80:90:3D:D4:A9:84:EB Certificate issuer: /CN=5A8D4DEC5FC29BE6E2490462F580903DD4A984EB Certificate serial: 2BB3B4DDDF0EBE248B9E738BC0E3B6E19F820CFD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft Manifest number: B1 Signing time: Sun 15 Jun 2025 12:41:01 +0000 Manifest this update: Sun 15 Jun 2025 12:36:01 +0000 Manifest next update: Wed 18 Jun 2025 23:00:01 +0000 Files and hashes: 1: 3135372e36362e3132322e302f32342d3234203d3e203633383538.roa (hash: 4USC1AQzGKvJLoaILHyi8/vcN8nVPul2782sFf1fdxE=) 2: 5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl (hash: 2C5aPdX3A6uCyIXuioHLPGSTReg/OTfD0Xbz/FBmfbs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 23:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:b3:b4:dd:df:0e:be:24:8b:9e:73:8b:c0:e3:b6:e1:9f:82:0c:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A8D4DEC5FC29BE6E2490462F580903DD4A984EB Validity Not Before: Jun 15 12:36:01 2025 GMT Not After : Jun 18 23:00:01 2025 GMT Subject: CN=9516DC2D9886E1253F46A6A40461A1BACED4F985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ba:46:88:d4:a9:28:da:6c:0e:af:5c:15:83: 7a:fb:d6:3a:2f:37:56:e0:df:ca:d4:2d:cd:13:ca: 41:9e:82:fa:4b:6b:ec:99:f3:9e:4a:d4:f8:04:4e: 71:5c:1b:0d:6b:ad:2c:2d:60:aa:f1:c4:69:91:8d: 1c:0b:67:91:a9:ee:06:b7:78:f9:35:80:5a:1d:74: d8:09:47:cd:13:38:58:ec:15:e3:bc:08:28:61:bb: 17:b5:7b:e3:a4:2c:d7:00:cb:f2:8f:fa:bc:69:5c: cb:74:c7:6e:b2:46:3b:c5:2c:36:f7:0d:ef:d5:70: e4:55:a6:90:77:26:30:f9:e9:9d:63:df:7a:c4:1b: 27:d9:1b:20:67:dd:0c:f1:6b:0f:c2:20:fb:7a:8d: 7c:b5:81:8a:50:26:4a:34:c3:34:f8:2d:c2:da:35: ef:1d:ac:cf:40:86:2b:b7:4d:e7:4c:a5:75:af:8a: bc:d8:bb:fc:ed:c4:08:97:63:ab:0f:2b:2d:53:79: 7d:0e:2b:78:90:62:74:d4:ed:c9:3e:d2:ad:42:0c: 41:c6:18:8c:20:20:e0:74:cc:5b:2b:96:db:c8:2d: 6b:f4:57:f4:97:8c:bb:28:3e:20:26:64:b3:43:01: 6f:14:28:ca:13:80:11:14:7b:83:15:1d:70:f4:f0: 97:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:16:DC:2D:98:86:E1:25:3F:46:A6:A4:04:61:A1:BA:CE:D4:F9:85 X509v3 Authority Key Identifier: keyid:5A:8D:4D:EC:5F:C2:9B:E6:E2:49:04:62:F5:80:90:3D:D4:A9:84:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:3f:8b:3e:d5:f4:ce:19:3e:90:a4:92:90:d8:fc:28:44:c0: 2f:f5:c2:d0:61:f2:c5:e2:28:30:3a:9c:65:0f:d9:8c:05:d5: 63:cf:54:b7:a1:10:96:aa:a2:a4:37:44:eb:ab:01:6e:e1:da: 6c:08:4e:d7:54:6f:1b:8d:52:02:1a:7e:06:a7:45:57:0e:a3: 4c:52:5d:af:a3:4f:b7:20:80:fc:f1:ad:8e:20:01:28:de:7f: 2f:5d:93:06:ea:0d:de:9a:4f:d6:4a:d3:2e:45:82:66:5f:fd: da:97:46:be:24:a5:dc:c2:49:33:fb:bb:c4:23:7b:72:ef:ee: e8:a6:c5:75:d4:38:6a:f7:c8:c0:54:70:58:13:1b:c3:7e:f7: 65:c5:d9:33:12:e4:d8:2b:d0:24:c6:7c:5f:9c:4f:d8:5d:90: 20:42:23:9b:37:a1:ff:7a:b4:72:76:8f:d0:60:b3:32:fe:05: 6d:0a:66:17:9f:d7:79:09:29:b2:d2:02:26:e1:51:46:a3:29: ee:20:10:61:71:45:f8:e2:9e:53:7a:77:8c:23:4f:70:c0:2b: a3:77:8e:fd:6c:e1:dd:68:96:3e:57:8d:ce:1f:8d:a7:4a:75: 53:0c:46:44:7e:f9:d0:e9:aa:63:10:11:54:ba:66:5b:1e:a0: 03:14:fe:a3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUK7O03d8OviSLnnOLwOO24Z+CDP0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkwM0RE NEE5ODRFQjAeFw0yNTA2MTUxMjM2MDFaFw0yNTA2MTgyMzAwMDFaMDMxMTAvBgNV BAMTKDk1MTZEQzJEOTg4NkUxMjUzRjQ2QTZBNDA0NjFBMUJBQ0VENEY5ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXukaI1Kko2mwOr1wVg3r71jov N1bg38rULc0TykGegvpLa+yZ855K1PgETnFcGw1rrSwtYKrxxGmRjRwLZ5Gp7ga3 ePk1gFoddNgJR80TOFjsFeO8CChhuxe1e+OkLNcAy/KP+rxpXMt0x26yRjvFLDb3 De/VcORVppB3JjD56Z1j33rEGyfZGyBn3Qzxaw/CIPt6jXy1gYpQJko0wzT4LcLa Ne8drM9Ahiu3TedMpXWvirzYu/ztxAiXY6sPKy1TeX0OK3iQYnTU7ck+0q1CDEHG GIwgIOB0zFsrltvILWv0V/SXjLsoPiAmZLNDAW8UKMoTgBEUe4MVHXD08Je1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlRbcLZiG4SU/RqakBGGhus7U+YUwHwYDVR0j BBgwFoAUWo1N7F/Cm+biSQRi9YCQPdSphOswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZWNmNWQ5NC03ZjFmLTQzYmYtYjdhYS0yMjBmMGMxNTZlYzAvMC81QThENERFQzVG QzI5QkU2RTI0OTA0NjJGNTgwOTAzREQ0QTk4NEVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkwM0RENEE5 ODRFQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2VjZjVkOTQtN2YxZi00M2JmLWI3 YWEtMjIwZjBjMTU2ZWMwLzAvNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkw M0RENEE5ODRFQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABI/iz7V9M4ZPpCkkpDY/ChEwC/1wtBh8sXi KDA6nGUP2YwF1WPPVLehEJaqoqQ3ROurAW7h2mwITtdUbxuNUgIafganRVcOo0xS Xa+jT7cggPzxrY4gASjefy9dkwbqDd6aT9ZK0y5FgmZf/dqXRr4kpdzCSTP7u8Qj e3Lv7uimxXXUOGr3yMBUcFgTG8N+92XF2TMS5Ngr0CTGfF+cT9hdkCBCI5s3of96 tHJ2j9BgszL+BW0KZhef13kJKbLSAibhUUajKe4gEGFxRfjinlN6d4wjT3DAK6N3 jv1s4d1olj5Xjc4fjadKdVMMRkR++dDpqmMQEVS6ZlseoAMU/qM= -----END CERTIFICATE-----Generated at Tue Jun 17 03:25:35 2025 by rpki-client