$ rpki-client -vvf repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft File: 95966A8DB250307CF9852483F96922EE520F6E2A.mft (raw, json) Hash identifier: pRa13hCJpmn+A+Wxysc35PePthcpxsE3zuaCWp7QkPM= Subject key identifier: 80:2A:3A:FB:8A:5B:D1:D2:EA:FA:A8:E4:74:82:B4:1F:8F:63:3A:61 Authority key identifier: 95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A Certificate issuer: /CN=95966A8DB250307CF9852483F96922EE520F6E2A Certificate serial: 10DFFFDD51BCCC8F481D4DED64F23DDC5D522E0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft Manifest number: 02CD Signing time: Mon 16 Jun 2025 12:20:00 +0000 Manifest this update: Mon 16 Jun 2025 12:15:00 +0000 Manifest next update: Thu 19 Jun 2025 21:39:00 +0000 Files and hashes: 1: 3130332e31392e3232392e302f32342d3234203d3e20313332363638.roa (hash: yijgZGAzH5m/suHYf+93ec2StnmCRT8aHziW14hBnJ4=) 2: 3130332e31392e3233302e302f32342d3234203d3e20313332363638.roa (hash: JsesZ2XEjGD90Q6rb53op1u+M0C8ZTvk1vBXUWFrpwg=) 3: 3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa (hash: 2Tm0gdcz+myuN01m+Uce2N/XVde2LN8VW21KDbbagQI=) 4: 3130332e31392e3233312e302f32342d3234203d3e20313332363638.roa (hash: PdjinzPpF/36hO9HHqQU4IxHNvTYYZFMsZTPnz+oEJM=) 5: 95966A8DB250307CF9852483F96922EE520F6E2A.crl (hash: vxweVXUkXvh+GfWNRRAZnwvXkPA9iCtLXzKNnaHaqt4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:df:ff:dd:51:bc:cc:8f:48:1d:4d:ed:64:f2:3d:dc:5d:52:2e:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95966A8DB250307CF9852483F96922EE520F6E2A Validity Not Before: Jun 16 12:15:00 2025 GMT Not After : Jun 19 21:39:00 2025 GMT Subject: CN=802A3AFB8A5BD1D2EAFAA8E47482B41F8F633A61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:dd:d2:f8:4b:9a:3f:a9:c3:95:5e:6a:8d:e9: fe:79:e4:d7:d6:5d:b0:4e:c9:ef:75:93:c0:35:dd: bc:48:f8:3b:a2:48:7c:89:de:e6:59:77:4c:4b:75: 4c:1b:5e:09:7a:92:04:81:ca:c8:74:15:ae:d4:d0: e4:2e:60:55:84:b2:ac:4b:ab:8e:3e:39:f9:6d:36: 3b:fd:78:ef:37:5d:f8:33:f6:20:cf:42:b5:54:47: a9:10:1a:b9:39:2a:62:6d:bb:78:b8:cd:80:d6:c8: 84:c7:e1:65:d4:9e:4f:bb:b8:e9:85:c2:09:73:84: 49:49:1c:c9:12:6d:86:8b:ee:65:d7:3d:71:11:ed: 93:b2:55:06:3b:72:0e:17:95:73:c4:bf:8f:d6:25: 47:14:f2:fb:a5:ad:d8:28:be:49:f1:d6:ca:ae:af: 1c:2a:1c:0c:aa:44:34:77:43:6d:6f:7c:21:bc:80: 68:27:c2:ad:c9:1e:05:b9:34:f7:7c:72:48:f7:eb: d0:eb:5b:78:4c:67:a3:4c:f3:8d:65:f2:ba:cf:19: a1:70:6a:00:5e:4c:d2:ab:49:42:82:0f:e2:86:2e: 4b:fe:81:78:5a:32:34:a3:54:5b:9b:e5:f9:92:90: 78:35:15:aa:27:9c:ae:c6:57:bf:cf:67:ad:2a:43: d2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:2A:3A:FB:8A:5B:D1:D2:EA:FA:A8:E4:74:82:B4:1F:8F:63:3A:61 X509v3 Authority Key Identifier: keyid:95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:39:93:c2:8f:72:1e:f5:8e:f2:28:27:cd:d3:b7:17:36:11: 35:40:be:6c:28:10:82:7a:d4:d9:f8:25:4d:bf:70:9c:8c:c6: b2:96:4d:39:84:fc:b7:1a:e1:e4:71:02:31:8f:a0:39:3c:5c: 7e:6d:e3:06:44:33:55:d7:1b:fc:bf:45:4d:3a:10:a6:74:b1: f6:a2:80:ac:6d:65:c9:e9:2f:f9:e2:a0:b8:b1:73:f6:69:40: c7:be:f7:71:00:e1:e5:23:9d:48:34:b6:3c:3b:09:35:f0:52: 74:2d:cc:d9:d6:77:5c:6d:d6:de:94:49:c0:ea:67:0f:b4:f2: 22:3c:87:9d:97:1c:e9:af:25:0c:da:a4:91:a8:bb:c2:e3:c8: 6d:ce:51:05:3b:08:b1:a6:0d:95:de:9f:7f:d8:01:ab:70:95: da:e5:f8:22:b9:5b:98:a7:90:06:4c:86:c9:11:84:aa:ea:30: e3:bd:5e:92:41:19:d3:0d:e7:b0:2d:89:2b:a7:9e:b2:93:e6: ad:7d:0b:68:dc:19:9b:fa:a7:14:b9:22:ff:74:59:d7:7f:df: 5b:f3:b1:ae:9d:1a:f0:04:aa:8d:85:20:22:13:47:99:9d:73: 52:b0:47:7f:bc:51:2f:2d:ea:3a:c4:b3:8f:70:c6:8a:a3:71: 05:ad:a3:15 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEN//3VG8zI9IHU3tZPI93F1SLg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1 MjBGNkUyQTAeFw0yNTA2MTYxMjE1MDBaFw0yNTA2MTkyMTM5MDBaMDMxMTAvBgNV BAMTKDgwMkEzQUZCOEE1QkQxRDJFQUZBQThFNDc0ODJCNDFGOEY2MzNBNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC43dL4S5o/qcOVXmqN6f555NfW XbBOye91k8A13bxI+DuiSHyJ3uZZd0xLdUwbXgl6kgSBysh0Fa7U0OQuYFWEsqxL q44+OfltNjv9eO83Xfgz9iDPQrVUR6kQGrk5KmJtu3i4zYDWyITH4WXUnk+7uOmF wglzhElJHMkSbYaL7mXXPXER7ZOyVQY7cg4XlXPEv4/WJUcU8vulrdgovknx1squ rxwqHAyqRDR3Q21vfCG8gGgnwq3JHgW5NPd8ckj369DrW3hMZ6NM841l8rrPGaFw agBeTNKrSUKCD+KGLkv+gXhaMjSjVFub5fmSkHg1FaonnK7GV7/PZ60qQ9KrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgCo6+4pb0dLq+qjkdIK0H49jOmEwHwYDVR0j BBgwFoAUlZZqjbJQMHz5hSSD+Wki7lIPbiowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MmYxNDE3YS01NzE4LTQwNzEtOWYzNS1jMTIyNTU1ZGFjN2EvMC85NTk2NkE4REIy NTAzMDdDRjk4NTI0ODNGOTY5MjJFRTUyMEY2RTJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1MjBG NkUyQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDJmMTQxN2EtNTcxOC00MDcxLTlm MzUtYzEyMjU1NWRhYzdhLzAvOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIy RUU1MjBGNkUyQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIY5k8KPch71jvIoJ83Ttxc2ETVAvmwoEIJ6 1Nn4JU2/cJyMxrKWTTmE/Lca4eRxAjGPoDk8XH5t4wZEM1XXG/y/RU06EKZ0sfai gKxtZcnpL/nioLixc/ZpQMe+93EA4eUjnUg0tjw7CTXwUnQtzNnWd1xt1t6UScDq Zw+08iI8h52XHOmvJQzapJGou8LjyG3OUQU7CLGmDZXen3/YAatwldrl+CK5W5in kAZMhskRhKrqMOO9XpJBGdMN57AtiSunnrKT5q19C2jcGZv6pxS5Iv90Wdd/31vz sa6dGvAEqo2FICITR5mdc1KwR3+8US8t6jrEs49wxoqjcQWtoxU= -----END CERTIFICATE-----Generated at Tue Jun 17 20:49:38 2025 by rpki-client