$ rpki-client -vvf repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft File: 1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft (raw, json) Hash identifier: NsfarVrlvgbUqfbHwOKT7S+qJWxP88RFQkjUrb5GM3w= Subject key identifier: F3:0D:CA:4C:5C:C3:03:B0:5F:81:E9:76:92:83:20:13:FD:90:72:64 Authority key identifier: 16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 Certificate issuer: /CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Certificate serial: 01E875B032305D18F77DD27D4004E07E47C0D456 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft Manifest number: 04AF Signing time: Mon 16 Jun 2025 11:32:13 +0000 Manifest this update: Mon 16 Jun 2025 11:27:13 +0000 Manifest next update: Thu 19 Jun 2025 14:03:13 +0000 Files and hashes: 1: 3130332e33302e3134372e302f32342d3234203d3e203436303530.roa (hash: e40kdwd9RGaDzut85pUqofV0tIg/vdE6e4M9mcDTUZU=) 2: 1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl (hash: dsudfCCKfQzjuYUYdSd0QGZBEDXZ/aKnQUh5Fhq17ms=) 3: 323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa (hash: yvEJWkP0xFq1u9XfkAxvcy195JE5QOchL8JpvPiL8B8=) 4: 3230332e3136312e3138342e302f32332d3234203d3e203436303530.roa (hash: qb/Mp/evl7jg0oYt9bdhD9XiouNQbvER0H1nFXzf/fA=) 5: 3130332e33302e3134342e302f32322d3234203d3e203436303530.roa (hash: Ect2ZTg7f92BY0SZ7MDChpSHiOXgr96F/7kTPjRYg7g=) 6: 3230322e35322e3134362e302f32332d3234203d3e203435333234.roa (hash: iyuYI15kkpPbO7NUigKqskqQQ4plk9btKYZQ0Pd1YJg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 14:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:e8:75:b0:32:30:5d:18:f7:7d:d2:7d:40:04:e0:7e:47:c0:d4:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Validity Not Before: Jun 16 11:27:13 2025 GMT Not After : Jun 19 14:03:13 2025 GMT Subject: CN=F30DCA4C5CC303B05F81E97692832013FD907264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7b:3b:76:6f:d7:0d:4b:5c:46:21:2a:78:93: 8c:de:f8:46:02:7e:4d:9d:42:3e:6e:48:7b:1f:0a: 50:ad:60:e8:47:b3:0e:bc:08:01:fb:e5:58:99:04: f0:54:5c:ea:42:e4:c2:7b:9d:6d:0b:50:41:dc:58: dc:93:3d:8c:a5:e0:19:2e:b9:ff:50:cb:cb:bc:3b: d3:ce:c0:a2:c2:f5:0e:55:46:37:6f:ac:a7:93:50: ff:f2:28:1f:2a:9f:fe:25:52:26:04:3c:d6:00:a8: 6b:9b:a8:77:42:f5:86:22:f1:e7:24:6e:55:dd:e7: ee:8f:75:75:0b:e3:9f:24:01:19:11:30:c1:3f:25: 35:75:bc:23:95:3b:d2:f6:02:48:40:b1:16:32:47: 83:45:b2:35:30:f0:ec:b9:28:1f:0d:15:2e:9b:ea: b7:35:be:83:2c:fd:ad:eb:b8:2f:af:cd:75:9f:26: 5e:2a:a7:4b:7f:f2:95:a6:d3:81:98:a2:d2:24:a3: 5f:2d:06:ea:df:d8:2b:41:e2:79:21:81:a7:21:eb: 91:ab:39:8f:5e:1f:76:5d:89:64:7e:40:0c:8d:e4: 52:18:2b:35:fb:d2:95:ae:45:44:f9:e8:d9:24:f9: d0:f4:af:76:f1:f5:49:cc:41:ab:c7:b7:58:42:9d: 7e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:0D:CA:4C:5C:C3:03:B0:5F:81:E9:76:92:83:20:13:FD:90:72:64 X509v3 Authority Key Identifier: keyid:16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:28:3e:b5:24:1e:b4:c2:1d:44:45:ff:ec:50:c4:f8:d9:68: 52:71:bb:0c:dd:d1:93:d7:ff:75:db:5a:03:1e:94:02:08:0c: 5b:9e:19:e7:63:79:0e:00:96:81:b8:76:c4:81:61:17:7a:83: 4d:c7:f5:0c:d7:bb:53:7c:12:fe:bc:d6:60:e0:ce:fd:4b:8e: 68:81:72:ad:e1:5b:80:e1:f1:45:82:6c:5d:c1:db:ba:db:cd: e9:4c:19:09:80:60:3e:4a:d2:77:99:dc:5d:cf:86:59:a9:e6: 7b:47:65:a8:77:25:c2:aa:e5:3b:e1:26:1d:01:3d:a1:32:03: 48:2b:5d:c0:c3:53:9c:cd:af:82:9e:51:16:2d:dc:7c:d9:71: fd:53:68:33:97:1a:4c:b5:fb:37:8c:0c:ed:18:bf:a3:3f:07: a9:3c:1a:80:4a:85:5d:d7:fc:a9:6c:21:31:19:4d:e2:98:84: d2:ed:4b:cc:7f:77:fa:41:46:e3:e4:d8:92:27:05:2f:e8:b2: 16:2d:83:32:5a:61:64:a0:0e:25:d0:c4:c2:33:29:3f:4f:5c: 2e:4a:b3:81:0c:26:03:f0:07:82:37:2d:13:ee:70:1a:26:84: af:e2:e6:4c:6d:0e:ac:0e:3b:40:c2:b3:6f:a5:9d:1f:3f:79: 5d:68:dd:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAeh1sDIwXRj3fdJ9QATgfkfA1FYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBE RTE4MUUwNjAeFw0yNTA2MTYxMTI3MTNaFw0yNTA2MTkxNDAzMTNaMDMxMTAvBgNV BAMTKEYzMERDQTRDNUNDMzAzQjA1RjgxRTk3NjkyODMyMDEzRkQ5MDcyNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcezt2b9cNS1xGISp4k4ze+EYC fk2dQj5uSHsfClCtYOhHsw68CAH75ViZBPBUXOpC5MJ7nW0LUEHcWNyTPYyl4Bku uf9Qy8u8O9POwKLC9Q5VRjdvrKeTUP/yKB8qn/4lUiYEPNYAqGubqHdC9YYi8eck blXd5+6PdXUL458kARkRMME/JTV1vCOVO9L2AkhAsRYyR4NFsjUw8Oy5KB8NFS6b 6rc1voMs/a3ruC+vzXWfJl4qp0t/8pWm04GYotIko18tBurf2CtB4nkhgach65Gr OY9eH3ZdiWR+QAyN5FIYKzX70pWuRUT56Nkk+dD0r3bx9UnMQavHt1hCnX5pAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8w3KTFzDA7Bfgel2koMgE/2QcmQwHwYDVR0j BBgwFoAUFmGhvInMrdTHvnIwUq5ZAN4YHgYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MGQyZDNlMy00YzIwLTRhOTAtODMzZS1lYWQ0M2MzMzk5MWUvMC8xNjYxQTFCQzg5 Q0NBREQ0QzdCRTcyMzA1MkFFNTkwMERFMTgxRTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBERTE4 MUUwNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDBkMmQzZTMtNGMyMC00YTkwLTgz M2UtZWFkNDNjMzM5OTFlLzAvMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5 MDBERTE4MUUwNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAsoPrUkHrTCHURF/+xQxPjZaFJxuwzd0ZPX /3XbWgMelAIIDFueGedjeQ4AloG4dsSBYRd6g03H9QzXu1N8Ev681mDgzv1LjmiB cq3hW4Dh8UWCbF3B27rbzelMGQmAYD5K0neZ3F3Phlmp5ntHZah3JcKq5TvhJh0B PaEyA0grXcDDU5zNr4KeURYt3HzZcf1TaDOXGky1+zeMDO0Yv6M/B6k8GoBKhV3X /KlsITEZTeKYhNLtS8x/d/pBRuPk2JInBS/oshYtgzJaYWSgDiXQxMIzKT9PXC5K s4EMJgPwB4I3LRPucBomhK/i5kxtDqwOO0DCs2+lnR8/eV1o3Vs= -----END CERTIFICATE-----Generated at Mon Jun 16 22:17:17 2025 by rpki-client