$ rpki-client -vvf repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft File: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft (raw, json) Hash identifier: OHt6EVzrYVGStrH1ciKOxi2GQC8MlRweHAgrzheQOvE= Subject key identifier: F9:81:6B:BD:9A:9D:C0:95:19:9E:6B:D5:19:7B:1C:F9:8F:C8:4E:86 Authority key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Certificate issuer: /CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Certificate serial: 21998B361581F0FA0FBD50033C9BE0F7C65E22EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft Manifest number: 04E0 Signing time: Sun 15 Jun 2025 09:11:14 +0000 Manifest this update: Sun 15 Jun 2025 09:06:14 +0000 Manifest next update: Wed 18 Jun 2025 09:39:14 +0000 Files and hashes: 1: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl (hash: 69FEiEZuFPNbOxa3jkjU9bHV7X9Q1To9LMzU3ND8vy8=) 2: 3130332e3139352e31392e302f32342d3234203d3e203535363833.roa (hash: NswJoPlTbkW1QbykJdu3UOhV7IqDYlomNhuRwW/poHY=) 3: 3130332e3139352e31382e302f32342d3234203d3e203535363833.roa (hash: GyTvAyiqDcz4HqvEtyjLwFP+vqa6W3Rz6dNaGJkDvBQ=) 4: 323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa (hash: Xkph31LntzUaI1/CJr8Ltj+zXZ7Nq1uWNrqZKmCZlP8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 09:39:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:99:8b:36:15:81:f0:fa:0f:bd:50:03:3c:9b:e0:f7:c6:5e:22:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Validity Not Before: Jun 15 09:06:14 2025 GMT Not After : Jun 18 09:39:14 2025 GMT Subject: CN=F9816BBD9A9DC095199E6BD5197B1CF98FC84E86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:02:e0:8a:e1:80:41:ce:ea:f3:42:2a:41:56: 38:1d:86:2e:1f:8f:8e:b1:ae:a0:38:34:91:78:ad: 74:84:88:54:56:71:94:69:2c:8b:1a:a1:aa:ff:b4: 18:aa:50:5b:e9:2d:e1:7f:74:8b:2c:9b:31:32:e4: 61:26:41:7a:16:dd:b9:4e:93:37:7b:02:89:e3:fb: 8e:07:05:2e:0d:3e:79:65:43:cd:6a:ce:bc:d1:be: e4:f3:4b:59:8b:d6:1e:1c:f6:fd:26:c3:ee:b8:6d: f1:5f:db:6e:96:25:9c:b5:63:88:1e:ff:56:b9:79: d7:54:c2:2b:04:31:70:d6:04:65:52:8c:ba:d4:91: b8:ae:f8:f3:78:1f:d6:ad:ea:2d:8a:7e:fa:2c:7f: 2c:30:49:00:02:48:52:d9:08:54:0e:85:0c:00:ed: 5d:86:37:36:6c:14:50:bc:e8:48:bb:99:b1:fe:9e: 11:50:a8:a8:87:37:da:b8:78:80:e8:fd:e9:42:0e: 0b:2d:ac:b8:13:17:6c:9d:e8:eb:5e:55:e8:8c:f8: 3d:80:b9:7e:05:b8:ee:14:0a:85:43:2a:ec:a6:5a: ae:f0:40:09:54:40:60:2f:49:79:7c:4a:ab:18:ba: cd:e3:1e:ed:af:9b:14:7f:cb:f0:5f:5e:bd:ae:13: 29:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:81:6B:BD:9A:9D:C0:95:19:9E:6B:D5:19:7B:1C:F9:8F:C8:4E:86 X509v3 Authority Key Identifier: keyid:35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:66:2e:8c:18:bb:e1:df:f1:17:3f:a6:ae:cd:d2:17:ec:0a: da:3b:08:a4:05:03:68:ba:95:2a:05:09:90:99:e4:90:6a:ae: be:fc:c2:c9:a8:ce:55:a9:d5:3b:f9:ff:82:c0:95:58:46:dc: 98:23:9b:04:f5:fc:57:40:bb:a4:16:29:4c:b3:92:cf:19:58: 3b:59:15:3f:5a:66:16:21:c0:4d:4f:a6:9e:dd:72:b6:5e:2e: 65:04:5e:12:1a:eb:96:42:5a:3d:30:10:02:30:ab:19:40:9d: 5c:88:9c:dd:ec:66:b1:c1:45:8e:b4:d9:da:3f:b2:4a:58:96: 74:ec:e1:60:26:f7:91:d1:27:2c:59:b2:d5:ac:98:fb:69:73: 5a:ea:31:a5:ad:51:78:06:7b:2a:90:12:78:b8:f9:e5:a7:5c: 3a:05:1d:4a:69:9a:d4:e8:b5:df:e5:16:66:14:14:94:99:5f: d2:b3:1a:3f:91:1d:0e:b0:1e:40:d0:b4:a4:fc:2b:81:1d:0c: da:ae:75:69:ed:e6:fc:e3:c6:84:77:a6:9b:f5:c1:eb:64:8a: b0:cd:c8:3d:87:8c:15:87:23:f7:b9:cf:ba:05:dc:6e:65:95: 74:e2:8f:f7:7f:e0:93:9a:6a:3a:4f:b1:e6:9f:20:f9:b5:9c: 50:30:0b:e8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIZmLNhWB8PoPvVADPJvg98ZeIuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENC NUFEQkQyODAeFw0yNTA2MTUwOTA2MTRaFw0yNTA2MTgwOTM5MTRaMDMxMTAvBgNV BAMTKEY5ODE2QkJEOUE5REMwOTUxOTlFNkJENTE5N0IxQ0Y5OEZDODRFODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNAuCK4YBBzurzQipBVjgdhi4f j46xrqA4NJF4rXSEiFRWcZRpLIsaoar/tBiqUFvpLeF/dIssmzEy5GEmQXoW3blO kzd7Aonj+44HBS4NPnllQ81qzrzRvuTzS1mL1h4c9v0mw+64bfFf226WJZy1Y4ge /1a5eddUwisEMXDWBGVSjLrUkbiu+PN4H9at6i2KfvosfywwSQACSFLZCFQOhQwA 7V2GNzZsFFC86Ei7mbH+nhFQqKiHN9q4eIDo/elCDgstrLgTF2yd6OteVeiM+D2A uX4FuO4UCoVDKuymWq7wQAlUQGAvSXl8SqsYus3jHu2vmxR/y/BfXr2uEyl9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+YFrvZqdwJUZnmvVGXsc+Y/IToYwHwYDVR0j BBgwFoAUNWa2zwDXsLZz+LUmxWrr3LWtvSgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMC8zNTY2QjZDRjAw RDdCMEI2NzNGOEI1MjZDNTZBRUJEQ0I1QURCRDI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENCNUFE QkQyOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNiOGFlOTctNjgxOC00OGE5LWFi ZTQtZWRiOTYwNDlmM2M4LzAvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVC RENCNUFEQkQyOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABVmLowYu+Hf8Rc/pq7N0hfsCto7CKQFA2i6 lSoFCZCZ5JBqrr78wsmozlWp1Tv5/4LAlVhG3JgjmwT1/FdAu6QWKUyzks8ZWDtZ FT9aZhYhwE1Ppp7dcrZeLmUEXhIa65ZCWj0wEAIwqxlAnVyInN3sZrHBRY602do/ skpYlnTs4WAm95HRJyxZstWsmPtpc1rqMaWtUXgGeyqQEni4+eWnXDoFHUppmtTo td/lFmYUFJSZX9KzGj+RHQ6wHkDQtKT8K4EdDNqudWnt5vzjxoR3ppv1wetkirDN yD2HjBWHI/e5z7oF3G5llXTij/d/4JOaajpPseafIPm1nFAwC+g= -----END CERTIFICATE-----Generated at Sun Jun 15 19:16:20 2025 by rpki-client