$ rpki-client -vvf repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft File: 3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft (raw, json) Hash identifier: fIpG6P2txVmLdCkPIAdqghW/5D8+ThQtFRxLgmTxr9s= Subject key identifier: D4:CC:5B:1F:6F:BA:48:11:26:47:C8:2C:B4:EE:D0:4E:A4:B8:EF:D0 Authority key identifier: 3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA Certificate issuer: /CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Certificate serial: 30255781D9B9EE92DA792EF7F0844C368DD163CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft Manifest number: 032E Signing time: Thu 19 Jun 2025 04:34:21 +0000 Manifest this update: Thu 19 Jun 2025 04:29:21 +0000 Manifest next update: Sun 22 Jun 2025 10:13:21 +0000 Files and hashes: 1: 3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl (hash: RBYGiH8s21XLNhSEt3/PnTOC1sWl0sXJn2ODP15WHko=) 2: 3130332e3137312e3138332e302f32342d3234203d3e20313432333735.roa (hash: DCgYEPaVukPuYmvO5a2cczC4OgprkfQ5HG76ulQS39Q=) 3: 3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa (hash: YYGVRYPBp9IPNMR5VwzW826x/acetE+4Oj6LGMt7tPU=) 4: 3130332e3137312e3138322e302f32332d3233203d3e20313432333735.roa (hash: aihSJuIZjlYbfPjvBLdvafMIwZ5NASIBmOuqn4SEmM0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 10:13:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:25:57:81:d9:b9:ee:92:da:79:2e:f7:f0:84:4c:36:8d:d1:63:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Validity Not Before: Jun 19 04:29:21 2025 GMT Not After : Jun 22 10:13:21 2025 GMT Subject: CN=D4CC5B1F6FBA48112647C82CB4EED04EA4B8EFD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:60:c2:0e:4e:0f:74:14:51:6d:d0:9b:40:c0: ec:c8:c9:19:4f:5e:e4:e2:0a:c4:3f:9e:d4:32:66: 35:90:8b:9c:c7:96:36:c5:a6:91:1d:c6:c4:e6:ba: e8:2d:54:24:e1:ed:a6:dd:39:99:96:2d:6e:f2:7d: ad:0e:cb:98:fc:ae:cf:ad:06:26:a5:85:48:54:e7: 2d:6d:16:aa:43:7e:d1:21:ef:9e:bf:25:f4:ef:85: 4f:55:d7:b6:0d:b6:c5:88:4f:55:0b:02:bb:34:5a: ee:83:60:e2:44:da:5a:89:e4:1c:0f:d8:fc:48:2a: 52:f5:cd:f0:39:a0:c7:1a:a8:55:c9:0e:eb:5d:cc: 92:49:5e:be:2d:b1:30:12:fb:77:75:89:82:22:92: 9f:27:f0:f5:97:8e:a5:7c:e2:c7:cf:d5:f0:bd:66: fa:30:87:b0:bf:a7:cc:18:bc:6c:bc:6d:fe:e1:fc: 8d:26:c1:08:8e:b0:55:e0:5a:00:b5:ca:bc:f4:15: b1:61:62:dc:8e:ef:f3:38:f1:79:7e:99:07:86:99: c2:b4:04:f0:38:e4:60:4a:c1:86:5f:e2:5b:94:3c: 5f:3b:30:43:5f:cd:50:5e:72:b3:8c:e8:bc:f2:09: 70:ad:28:66:e7:c6:e5:47:98:16:a5:29:ca:99:4a: 3c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:CC:5B:1F:6F:BA:48:11:26:47:C8:2C:B4:EE:D0:4E:A4:B8:EF:D0 X509v3 Authority Key Identifier: keyid:3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:ba:12:20:ec:3d:64:05:cb:69:cc:c8:f6:ad:21:19:9a:1e: 90:9c:4e:1b:f1:fc:09:d6:4b:fd:89:05:9f:3b:7c:31:30:82: 26:7a:bd:52:99:0d:4a:df:5a:ff:4a:6a:df:7e:df:2c:5a:46: 67:fd:1d:d1:29:da:0c:c5:33:c7:fa:aa:5c:d0:f1:fb:ce:38: 24:ae:54:27:f2:dc:1e:9f:69:87:76:8f:b2:a5:6f:88:05:b5: 88:43:ae:3f:24:11:de:76:b1:5d:83:ac:cd:2f:56:2d:83:09: bb:78:e7:be:a4:ff:c8:6c:62:23:0e:42:1f:c6:38:cb:38:e6: 66:78:2f:09:65:6d:25:ec:3f:e7:a0:17:f1:71:69:7a:9f:a8: fa:83:1e:07:8a:12:c0:92:82:7f:8a:4b:07:fd:9b:ff:ff:02: cf:a3:9f:67:b4:65:c8:c9:eb:88:7f:43:a4:8a:17:60:84:15: 8e:3c:e3:2d:6e:fa:a2:cd:b8:15:a2:4b:c8:34:22:a8:60:b4: 79:70:da:ef:5c:cf:a0:69:75:3b:aa:b3:83:f3:6b:97:ab:41: a1:80:82:22:81:2e:ce:0b:dd:16:2e:fd:fc:c6:1d:02:ce:57: 7b:0f:b5:f6:83:c3:a9:c8:1d:37:92:cb:b6:c1:c1:8e:0f:12: cb:90:06:d0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMCVXgdm57pLaeS738IRMNo3RY84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVG NjUxQkFBQTAeFw0yNTA2MTkwNDI5MjFaFw0yNTA2MjIxMDEzMjFaMDMxMTAvBgNV BAMTKEQ0Q0M1QjFGNkZCQTQ4MTEyNjQ3QzgyQ0I0RUVEMDRFQTRCOEVGRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYYMIOTg90FFFt0JtAwOzIyRlP XuTiCsQ/ntQyZjWQi5zHljbFppEdxsTmuugtVCTh7abdOZmWLW7yfa0Oy5j8rs+t BialhUhU5y1tFqpDftEh756/JfTvhU9V17YNtsWIT1ULArs0Wu6DYOJE2lqJ5BwP 2PxIKlL1zfA5oMcaqFXJDutdzJJJXr4tsTAS+3d1iYIikp8n8PWXjqV84sfP1fC9 Zvowh7C/p8wYvGy8bf7h/I0mwQiOsFXgWgC1yrz0FbFhYtyO7/M48Xl+mQeGmcK0 BPA45GBKwYZf4luUPF87MENfzVBecrOM6LzyCXCtKGbnxuVHmBalKcqZSjzJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1MxbH2+6SBEmR8gstO7QTqS479AwHwYDVR0j BBgwFoAUPs59Lpwv89XTDSlNdJLD/vZRuqowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzUwNWNiMy1iNTVlLTQwZTQtYWM3OS02MzY1NjA2ZjRlZjkvMC8zRUNFN0QyRTlD MkZGM0Q1RDMwRDI5NEQ3NDkyQzNGRUY2NTFCQUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVGNjUx QkFBQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTM1MDVjYjMtYjU1ZS00MGU0LWFj NzktNjM2NTYwNmY0ZWY5LzAvM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMz RkVGNjUxQkFBQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJi6EiDsPWQFy2nMyPatIRmaHpCcThvx/AnW S/2JBZ87fDEwgiZ6vVKZDUrfWv9Kat9+3yxaRmf9HdEp2gzFM8f6qlzQ8fvOOCSu VCfy3B6faYd2j7Klb4gFtYhDrj8kEd52sV2DrM0vVi2DCbt4576k/8hsYiMOQh/G OMs45mZ4LwllbSXsP+egF/FxaXqfqPqDHgeKEsCSgn+KSwf9m///As+jn2e0ZcjJ 64h/Q6SKF2CEFY484y1u+qLNuBWiS8g0IqhgtHlw2u9cz6BpdTuqs4Pza5erQaGA giKBLs4L3RYu/fzGHQLOV3sPtfaDw6nIHTeSy7bBwY4PEsuQBtA= -----END CERTIFICATE-----Generated at Fri Jun 20 00:11:42 2025 by rpki-client