$ rpki-client -vvf repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft File: 65E29AACDF8556B440C4D7180F51C447FFE5238F.mft (raw, json) Hash identifier: J7SD7H4te27pWE3HqABmoCZdaMhWfq8/90YJrrBq4z8= Subject key identifier: 47:57:7B:79:DC:8D:DB:D8:D5:2A:4F:5C:82:7E:C9:AE:97:DD:EE:07 Authority key identifier: 65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F Certificate issuer: /CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Certificate serial: 2CA5FB0AF166B93A4D719F42E3D68B2AE134C9DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft Manifest number: 0192 Signing time: Tue 17 Jun 2025 15:31:19 +0000 Manifest this update: Tue 17 Jun 2025 15:26:19 +0000 Manifest next update: Fri 20 Jun 2025 19:56:19 +0000 Files and hashes: 1: 65E29AACDF8556B440C4D7180F51C447FFE5238F.crl (hash: V+u2kLuPHjbZ/0p6d2IifPP4LQDZUCTeg9SVLK7MEm4=) 2: 3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa (hash: nepxzQwvJ312nV9iZgEKlOIPKHQAkqWcvRmCemfI68k=) 3: 3130332e35382e3139382e302f32342d3234203d3e20313530343937.roa (hash: kwgZlAehoInBl32w+IZeJMWxeIEAZ8IfMVtQyqbqAN8=) 4: 3130332e35382e3139382e302f32342d3234203d3e20313531353237.roa (hash: cWHJAdhMo3cUB7SJI/qLeHQjD7fvumO0S0ippQ4UQLg=) 5: 3130332e35382e3139392e302f32342d3234203d3e20313531353237.roa (hash: 8fcVvUOnHnEDxc1LP+W4ikZfxvy9KJkdRccQg7Mp1b8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 19:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:a5:fb:0a:f1:66:b9:3a:4d:71:9f:42:e3:d6:8b:2a:e1:34:c9:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Validity Not Before: Jun 17 15:26:19 2025 GMT Not After : Jun 20 19:56:19 2025 GMT Subject: CN=47577B79DC8DDBD8D52A4F5C827EC9AE97DDEE07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:19:19:6d:97:02:51:6f:ee:19:ad:cc:26:a7: 69:76:e3:5c:40:31:f8:05:e2:93:d0:43:0d:53:96: 81:b8:e4:03:ac:37:c3:c1:cd:d5:5e:26:c7:89:83: 47:09:05:e9:7c:f6:8e:7c:a8:37:ef:0c:09:60:f3: 53:ca:38:03:25:4a:9c:1c:81:90:4d:00:b9:6f:3c: 7a:f4:9a:5b:09:4d:33:37:8a:93:f6:b8:2f:f1:30: ae:1c:ae:5b:95:ec:37:f3:3d:01:38:3c:6b:9d:4f: 55:83:f3:93:be:8a:e0:b1:4c:8b:cd:42:2e:32:e6: f1:0e:a8:8f:68:a7:70:45:9e:ff:f2:f4:68:2c:3e: 11:6c:e5:4a:49:7e:44:95:94:1e:5e:ad:ed:eb:a0: 76:97:cd:5b:14:8f:5c:51:49:62:1c:9a:c0:88:75: 4e:17:36:8f:0a:f5:6c:f3:f6:dd:2d:d8:a7:e8:42: 99:10:ac:96:1d:29:e1:b2:b6:d6:49:e1:63:58:a4: 01:5e:b7:e9:68:d9:7e:55:6b:6c:cb:93:38:de:b1: 00:00:38:39:38:48:ac:d8:38:32:df:ff:40:26:26: 22:99:0e:c6:a4:7f:09:42:72:48:d1:48:b5:0d:b6: b4:da:31:ec:1e:55:31:35:af:76:ae:4d:74:ce:e5: 1a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:57:7B:79:DC:8D:DB:D8:D5:2A:4F:5C:82:7E:C9:AE:97:DD:EE:07 X509v3 Authority Key Identifier: keyid:65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:ac:c6:1a:87:45:a6:7f:e3:1b:05:7f:1a:cb:1d:bc:31:96: 0c:1a:61:ff:71:49:0d:3e:37:ec:51:88:0a:ae:86:82:a0:eb: 37:5d:81:af:32:3b:29:28:34:93:59:d1:bd:3b:19:02:4b:0c: e2:1b:5f:af:eb:6e:73:2e:5f:ac:db:27:13:7e:a6:60:4b:e5: 22:fb:ee:83:00:3b:f2:56:9f:d7:50:bc:68:40:43:01:05:fc: d8:e6:96:a3:61:89:8a:28:96:b9:ce:42:78:94:06:90:a7:08: ed:70:f0:0e:e2:df:cc:7c:14:3b:55:2a:3a:1c:ab:5a:62:41: 89:58:b0:c1:b5:7d:a6:a8:ea:47:8e:b9:9f:f5:e2:48:3c:43: 50:cb:2f:b1:35:3c:d1:ed:84:76:46:2a:e7:0e:09:64:3c:89: e5:e0:cf:9a:a2:0a:9a:9c:13:27:6a:b5:72:44:3d:19:2d:b8: c8:42:d1:95:3e:18:90:05:a0:4f:e5:46:a8:9c:8e:97:e3:4f: f4:14:b5:e8:04:d9:28:d5:31:76:52:31:80:ec:81:1b:51:d3: f9:1e:0c:d8:20:fa:f1:21:41:49:71:90:0b:62:c4:f3:b1:54: e2:8c:98:49:e2:8c:0b:a5:9f:19:e7:31:c8:49:7f:ee:98:ce: ce:cc:4c:5e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULKX7CvFmuTpNcZ9C49aLKuE0yd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdG RkU1MjM4RjAeFw0yNTA2MTcxNTI2MTlaFw0yNTA2MjAxOTU2MTlaMDMxMTAvBgNV BAMTKDQ3NTc3Qjc5REM4RERCRDhENTJBNEY1QzgyN0VDOUFFOTdEREVFMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUGRltlwJRb+4Zrcwmp2l241xA MfgF4pPQQw1TloG45AOsN8PBzdVeJseJg0cJBel89o58qDfvDAlg81PKOAMlSpwc gZBNALlvPHr0mlsJTTM3ipP2uC/xMK4crluV7DfzPQE4PGudT1WD85O+iuCxTIvN Qi4y5vEOqI9op3BFnv/y9GgsPhFs5UpJfkSVlB5ere3roHaXzVsUj1xRSWIcmsCI dU4XNo8K9Wzz9t0t2KfoQpkQrJYdKeGyttZJ4WNYpAFet+lo2X5Va2zLkzjesQAA ODk4SKzYODLf/0AmJiKZDsakfwlCckjRSLUNtrTaMeweVTE1r3auTXTO5RpJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUR1d7edyN29jVKk9cgn7Jrpfd7gcwHwYDVR0j BBgwFoAUZeKarN+FVrRAxNcYD1HER//lI48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGNlMjAwOC04NGI3LTRiZWYtOTRiOS1iYjNmZGIxN2IyMzgvMC82NUUyOUFBQ0RG ODU1NkI0NDBDNEQ3MTgwRjUxQzQ0N0ZGRTUyMzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdGRkU1 MjM4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDhjZTIwMDgtODRiNy00YmVmLTk0 YjktYmIzZmRiMTdiMjM4LzAvNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0 NDdGRkU1MjM4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGCsxhqHRaZ/4xsFfxrLHbwxlgwaYf9xSQ0+ N+xRiAquhoKg6zddga8yOykoNJNZ0b07GQJLDOIbX6/rbnMuX6zbJxN+pmBL5SL7 7oMAO/JWn9dQvGhAQwEF/NjmlqNhiYoolrnOQniUBpCnCO1w8A7i38x8FDtVKjoc q1piQYlYsMG1faao6keOuZ/14kg8Q1DLL7E1PNHthHZGKucOCWQ8ieXgz5qiCpqc EydqtXJEPRktuMhC0ZU+GJAFoE/lRqicjpfjT/QUtegE2SjVMXZSMYDsgRtR0/ke DNgg+vEhQUlxkAtixPOxVOKMmEnijAulnxnnMchJf+6Yzs7MTF4= -----END CERTIFICATE-----Generated at Tue Jun 17 19:43:42 2025 by rpki-client