$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft File: 821049BBD22C335A50850F16AB159C0C6BCC28E5.mft (raw, json) Hash identifier: A5gCZv1a4GM5yMwjtpcQdZtA7e3N9sJaQ+B33c2fFCk= Subject key identifier: 76:9B:B0:1C:06:EB:62:1C:96:7A:2C:DB:95:17:59:6D:64:4D:03:05 Authority key identifier: 82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 Certificate issuer: /CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Certificate serial: 36125FEF069D0F2B50A0F11A24BF6DE6B7738339 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft Manifest number: 0214 Signing time: Sat 14 Jun 2025 23:41:40 +0000 Manifest this update: Sat 14 Jun 2025 23:36:40 +0000 Manifest next update: Wed 18 Jun 2025 00:24:40 +0000 Files and hashes: 1: 3130332e32312e39332e302f32342d3234203d3e20313331373338.roa (hash: gJZ1sW5BxaKi4OlH0Ko1+AD9dXMVkojyx6OKsnKZ2JU=) 2: 821049BBD22C335A50850F16AB159C0C6BCC28E5.crl (hash: J6JZaLAM3hTB+aee60NbAxQbXF1mRnrA/nV5h5HNOSA=) 3: 3130332e32312e39322e302f32342d3234203d3e20313331373338.roa (hash: ncuNmuDMRCz7XEGjG+8p/qjKUpvp2YtlNc4JXvP3iGg=) 4: 3130332e32312e39342e302f32342d3234203d3e20313331373338.roa (hash: YF6vJXMVtUVK6CmNTZeLfmthP1D0nB1ofgHbuXDKxvI=) 5: 3130332e32312e39352e302f32342d3234203d3e203435323935.roa (hash: O6mcNqFGUKoXPAXAaTNGJf2XpVfyBv0t3Gtn3V+6lKE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:12:5f:ef:06:9d:0f:2b:50:a0:f1:1a:24:bf:6d:e6:b7:73:83:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Validity Not Before: Jun 14 23:36:40 2025 GMT Not After : Jun 18 00:24:40 2025 GMT Subject: CN=769BB01C06EB621C967A2CDB9517596D644D0305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:84:76:2b:8c:8f:56:59:f7:c1:17:ee:77:dd: 3a:39:79:01:00:34:72:06:80:aa:c8:75:1d:22:18: 87:2b:04:3a:dc:1e:86:85:cd:13:ae:68:f9:d6:52: e1:6e:c5:ac:dc:be:80:fc:ee:56:18:1a:5e:59:01: 15:3e:ad:ef:21:71:5e:b0:a1:1f:46:e1:f3:76:30: 56:29:c6:80:ba:dd:f7:22:5c:54:be:25:59:30:93: 90:38:bb:af:cd:a3:1d:dc:d2:7f:a5:3d:e0:c8:43: 49:d7:22:9d:c1:57:37:55:d5:42:8a:7b:20:9e:e9: 0a:15:23:12:5f:5b:45:2c:53:91:f0:d1:d8:65:8e: a6:f1:18:06:e3:14:31:1b:9b:06:9a:28:8e:0a:10: 21:55:0a:23:2f:7c:28:5f:d3:4e:c4:54:55:36:0c: ce:2e:1e:f1:54:14:4a:d7:7e:f5:95:6c:d2:7b:18: ca:41:71:7e:59:61:65:36:01:0b:f9:6e:7b:86:57: 60:04:67:08:8f:8e:c6:21:e0:09:b0:62:31:a6:6f: d8:e2:16:10:ad:d1:9b:20:7e:c2:95:b0:bc:ce:e1: 7f:49:18:80:a7:48:bc:c3:ef:a1:f8:ea:b2:bb:2e: 42:1f:64:f2:d4:91:e2:d4:a1:cb:ae:44:4b:cf:c6: 4b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:9B:B0:1C:06:EB:62:1C:96:7A:2C:DB:95:17:59:6D:64:4D:03:05 X509v3 Authority Key Identifier: keyid:82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:b9:f4:14:8e:59:a8:d3:cd:57:2c:71:68:6d:37:8a:52:47: 30:65:cb:56:af:af:6a:29:56:fb:ec:4f:82:cf:58:6b:0f:84: 8a:cb:44:d4:81:70:60:a2:dc:45:33:66:4e:2c:b5:a9:50:96: 35:16:94:b8:09:3f:41:6d:3e:e4:57:b6:ed:98:12:a8:0b:5c: 93:65:cc:b9:08:d5:9e:d7:c5:58:68:95:cb:bd:42:8e:83:31: 8c:e5:b4:e6:df:a9:18:3b:44:ea:31:61:61:94:ae:93:c4:1f: 22:50:be:34:4b:7a:cb:17:9e:49:20:d7:2e:97:82:4d:91:1f: 27:4c:e3:69:57:43:71:24:e0:b0:db:08:95:e6:96:18:93:66: 3b:08:eb:bf:4c:7c:88:cc:61:0c:f7:6c:46:06:49:e6:ff:f4: e7:e4:97:f8:14:75:36:18:c2:ae:44:a5:f7:08:e5:6c:39:29: 4e:a8:07:01:9c:e8:22:a2:d6:f7:5f:9f:5f:b0:4f:49:b8:d5: 90:39:0b:3d:b0:be:99:87:d5:3b:e4:7b:8b:3a:59:c6:9d:1f: 1b:c7:53:7e:d0:d3:0e:6a:7d:a7:c2:1f:52:0e:b1:ea:28:e1: de:f3:a0:af:d3:62:f8:e0:95:8c:02:b0:4e:31:1f:a5:04:fe: 2e:06:ab:92 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNhJf7wadDytQoPEaJL9t5rdzgzkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2 QkNDMjhFNTAeFw0yNTA2MTQyMzM2NDBaFw0yNTA2MTgwMDI0NDBaMDMxMTAvBgNV BAMTKDc2OUJCMDFDMDZFQjYyMUM5NjdBMkNEQjk1MTc1OTZENjQ0RDAzMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVhHYrjI9WWffBF+533To5eQEA NHIGgKrIdR0iGIcrBDrcHoaFzROuaPnWUuFuxazcvoD87lYYGl5ZARU+re8hcV6w oR9G4fN2MFYpxoC63fciXFS+JVkwk5A4u6/Nox3c0n+lPeDIQ0nXIp3BVzdV1UKK eyCe6QoVIxJfW0UsU5Hw0dhljqbxGAbjFDEbmwaaKI4KECFVCiMvfChf007EVFU2 DM4uHvFUFErXfvWVbNJ7GMpBcX5ZYWU2AQv5bnuGV2AEZwiPjsYh4AmwYjGmb9ji FhCt0ZsgfsKVsLzO4X9JGICnSLzD76H46rK7LkIfZPLUkeLUocuuREvPxksxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdpuwHAbrYhyWeizblRdZbWRNAwUwHwYDVR0j BBgwFoAUghBJu9IsM1pQhQ8WqxWcDGvMKOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4ZTE4ZC1hMDQ3LTQ1OTAtOWU1Ni00NjRhNzNlMjNjNmMvMC84MjEwNDlCQkQy MkMzMzVBNTA4NTBGMTZBQjE1OUMwQzZCQ0MyOEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2QkND MjhFNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWRlOGUxOGQtYTA0Ny00NTkwLTll NTYtNDY0YTczZTIzYzZjLzAvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlD MEM2QkNDMjhFNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHa59BSOWajTzVcscWhtN4pSRzBly1avr2op VvvsT4LPWGsPhIrLRNSBcGCi3EUzZk4stalQljUWlLgJP0FtPuRXtu2YEqgLXJNl zLkI1Z7XxVholcu9Qo6DMYzltObfqRg7ROoxYWGUrpPEHyJQvjRLessXnkkg1y6X gk2RHydM42lXQ3Ek4LDbCJXmlhiTZjsI679MfIjMYQz3bEYGSeb/9Ofkl/gUdTYY wq5EpfcI5Ww5KU6oBwGc6CKi1vdfn1+wT0m41ZA5Cz2wvpmH1Tvke4s6WcadHxvH U37Q0w5qfafCH1IOseoo4d7zoK/TYvjglYwCsE4xH6UE/i4Gq5I= -----END CERTIFICATE-----Generated at Mon Jun 16 22:51:54 2025 by rpki-client