$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: I5twsBm3fXl0eoXQDswW9hYeDNRqLSI296Bb7u57eCg= Subject key identifier: 10:64:5F:3B:99:16:3E:BE:D9:8E:7F:5D:F0:A0:C0:66:CD:00:FA:0B Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 114ADC7019D73DF33B7313E5F0012BAED7AC8D99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: EB Signing time: Sun 15 Jun 2025 14:31:50 +0000 Manifest this update: Sun 15 Jun 2025 14:26:50 +0000 Manifest next update: Wed 18 Jun 2025 16:43:50 +0000 Files and hashes: 1: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: zrLdi5nF7GGpZB48WOUnSTKxjwKiXlNbiZxB52RAYTY=) 2: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xeW9Q+jrWgb1kNw9Ck6owBJ7nXg3E26nbn0fhXlo6qI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 16:43:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:4a:dc:70:19:d7:3d:f3:3b:73:13:e5:f0:01:2b:ae:d7:ac:8d:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Jun 15 14:26:50 2025 GMT Not After : Jun 18 16:43:50 2025 GMT Subject: CN=10645F3B99163EBED98E7F5DF0A0C066CD00FA0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:0e:00:bc:0d:3e:ee:91:ce:cb:08:8a:81:a0: 12:aa:c4:99:57:a7:15:4c:6e:dc:ec:ed:6b:cd:81: 81:6e:10:b3:2d:c9:ae:bd:f8:3b:12:05:c6:3f:a8: c6:b1:7a:02:19:0b:16:38:f3:52:bd:53:03:b4:8f: 8f:71:c9:b5:19:4a:66:9f:01:5d:73:28:a8:f4:7e: 13:29:ad:e7:fc:9a:20:e9:c3:87:f2:0c:38:ad:80: fc:58:0e:df:4d:0b:93:e3:87:48:e2:da:ab:84:7e: 0d:71:21:ab:44:b8:79:98:d4:9c:f3:bb:1f:64:cc: 2a:06:61:e9:e0:13:8f:ae:27:ea:46:9a:2d:1a:ba: 0f:09:1a:bb:be:88:ab:3d:19:ab:2b:f9:7a:54:e8: bf:fd:c7:5e:9a:40:86:c8:fa:03:91:61:0f:38:85: c2:91:c6:19:4d:7a:f9:31:b4:2d:63:7a:1b:93:ac: e4:9c:c4:9b:10:22:61:b4:0a:03:dc:3a:ac:19:cd: dc:49:f0:ee:07:5a:36:5e:6f:0f:27:a1:d1:b0:d4: 36:6f:c2:c6:51:02:73:a1:f1:44:67:82:5a:6e:d5: 08:34:d5:87:62:a2:8e:ed:1e:fa:9d:96:21:5c:b2: b0:f6:e3:bc:78:f6:ec:54:0b:ac:4a:5a:c6:a9:49: 52:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:64:5F:3B:99:16:3E:BE:D9:8E:7F:5D:F0:A0:C0:66:CD:00:FA:0B X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:92:98:af:0f:34:4b:c9:e2:44:74:2a:c1:38:b6:79:29:75: 4f:a1:2d:91:04:79:44:fc:a3:ac:d2:ed:75:b4:7c:36:d1:d5: 22:76:54:f9:5e:5b:1b:5c:3c:b8:70:1a:43:3f:af:e5:89:54: 1a:75:23:ce:db:5e:49:af:08:5a:9f:82:2d:8f:f0:5f:67:6a: 17:26:ef:c9:1b:bb:3e:d8:9a:f0:7d:16:4a:47:47:85:29:15: 6e:51:29:65:74:33:ac:df:e9:d3:8c:ca:80:b3:7c:69:33:4f: 1f:57:fb:ad:48:37:cc:30:bd:5d:01:da:7b:0e:b9:86:28:a4: 23:07:af:c8:31:8d:38:60:7c:d9:d2:08:91:56:3a:1a:54:c4: 8e:b3:e6:1a:ef:ee:b1:44:f8:73:fa:b7:a4:9c:61:93:6d:16: 18:96:7c:1b:ce:dd:74:05:93:e2:e2:ba:57:66:a1:2c:05:34: 53:f4:28:76:ee:81:d7:da:b3:d8:f7:44:50:80:d9:c0:cb:67: 7c:fc:8b:d0:95:fa:51:b4:dd:5b:18:e7:5b:01:06:de:80:48: e0:40:81:ba:39:08:98:27:a0:7d:59:2b:0b:76:a1:79:6d:39: 3e:51:c7:78:2c:93:1c:be:cd:c5:35:eb:eb:df:25:b8:10:23: 3d:d7:8a:7b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEUrccBnXPfM7cxPl8AErrtesjZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNTA2MTUxNDI2NTBaFw0yNTA2MTgxNjQzNTBaMDMxMTAvBgNV BAMTKDEwNjQ1RjNCOTkxNjNFQkVEOThFN0Y1REYwQTBDMDY2Q0QwMEZBMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXDgC8DT7ukc7LCIqBoBKqxJlX pxVMbtzs7WvNgYFuELMtya69+DsSBcY/qMaxegIZCxY481K9UwO0j49xybUZSmaf AV1zKKj0fhMpref8miDpw4fyDDitgPxYDt9NC5Pjh0ji2quEfg1xIatEuHmY1Jzz ux9kzCoGYengE4+uJ+pGmi0aug8JGru+iKs9Gasr+XpU6L/9x16aQIbI+gORYQ84 hcKRxhlNevkxtC1jehuTrOScxJsQImG0CgPcOqwZzdxJ8O4HWjZebw8nodGw1DZv wsZRAnOh8URnglpu1Qg01Ydioo7tHvqdliFcsrD247x49uxUC6xKWsapSVJdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEGRfO5kWPr7Zjn9d8KDAZs0A+gswHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ6SmK8PNEvJ4kR0KsE4tnkpdU+hLZEEeUT8 o6zS7XW0fDbR1SJ2VPleWxtcPLhwGkM/r+WJVBp1I87bXkmvCFqfgi2P8F9nahcm 78kbuz7YmvB9FkpHR4UpFW5RKWV0M6zf6dOMyoCzfGkzTx9X+61IN8wwvV0B2nsO uYYopCMHr8gxjThgfNnSCJFWOhpUxI6z5hrv7rFE+HP6t6ScYZNtFhiWfBvO3XQF k+LiuldmoSwFNFP0KHbugdfas9j3RFCA2cDLZ3z8i9CV+lG03VsY51sBBt6ASOBA gbo5CJgnoH1ZKwt2oXltOT5Rx3gskxy+zcU16+vfJbgQIz3Xins= -----END CERTIFICATE-----Generated at Mon Jun 16 07:48:50 2025 by rpki-client