$ rpki-client -vvf repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft File: D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft (raw, json) Hash identifier: tkIYqyYLAKQokJ+KQ9ZDEwflCnMRiXMHdC/BfAEOhkA= Subject key identifier: 26:B0:E6:76:16:0D:86:2F:C5:9B:35:FD:B6:8E:B1:B1:0B:0E:6F:39 Authority key identifier: D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 Certificate issuer: /CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Certificate serial: 580BFB0C8228E8234A2DD38EB7ADCF302E5A3EF2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft Manifest number: 0112 Signing time: Tue 17 Jun 2025 13:31:04 +0000 Manifest this update: Tue 17 Jun 2025 13:26:04 +0000 Manifest next update: Sat 21 Jun 2025 00:07:04 +0000 Files and hashes: 1: 3130332e3138322e37392e302f32342d3234203d3e20313439363635.roa (hash: dJaS59sTNR5P0zfWxcM9Q8SeRwLPq4ilnHYQElEDNMo=) 2: 3130332e3138322e37382e302f32342d3234203d3e20313439363635.roa (hash: LAATNsnHcnoJWKciQROoRwDYWcBiokYiUiwzyLuS2UY=) 3: D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl (hash: VTf6qsplxANnP6V+9upMHziAgCWBrppEMIlB6zhv/l8=) 4: 3130332e3138322e37382e302f32332d3234203d3e20313439363635.roa (hash: gY0MYBLnrNGMInBtjBk2fVW/5Y8HTuVN7KMpfZNbvwM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 22:26:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:0b:fb:0c:82:28:e8:23:4a:2d:d3:8e:b7:ad:cf:30:2e:5a:3e:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Validity Not Before: Jun 17 13:26:04 2025 GMT Not After : Jun 21 00:07:04 2025 GMT Subject: CN=26B0E676160D862FC59B35FDB68EB1B10B0E6F39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:05:1d:0f:80:93:5b:72:e2:7e:ea:f2:63:36: dd:1a:ae:f1:9f:16:9d:2d:43:31:15:02:8c:c8:34: d4:c8:8c:4c:28:0a:e6:44:f3:01:07:5d:f9:fa:4f: 40:48:ed:b3:8c:ba:7f:63:0f:49:b4:3c:aa:0d:e6: 02:c8:10:e1:5f:70:0f:5d:b3:49:ca:92:04:21:90: 27:c8:24:2f:a5:b7:aa:09:96:28:99:b3:c8:ad:c3: a9:51:89:22:9e:4b:99:85:85:48:1f:e7:b6:45:c2: bb:c2:27:5f:92:d5:a4:d4:fe:41:cd:f9:a4:de:57: 00:43:24:a3:e9:74:ec:91:c6:f6:f2:4c:13:54:e5: 3a:6e:bf:cb:e6:44:71:ff:7f:b7:ae:b9:a7:e2:00: 7f:44:20:b5:3f:26:2b:94:ad:d7:32:a2:b2:08:dc: 56:e7:01:bd:cc:6f:14:2e:63:6b:e8:ba:e0:f7:76: d5:65:b9:97:db:b7:f1:8c:16:58:32:92:09:df:54: a2:19:fc:6f:68:e5:ae:5b:6d:b0:c8:5f:75:1d:d8: 8f:23:50:f1:23:50:84:df:11:75:a7:b9:9c:3a:c9: 9a:d3:c6:bc:00:77:ac:06:c2:51:dd:37:7c:af:05: 2e:ef:92:92:df:e0:55:48:51:d2:e5:fe:aa:70:32: 20:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:B0:E6:76:16:0D:86:2F:C5:9B:35:FD:B6:8E:B1:B1:0B:0E:6F:39 X509v3 Authority Key Identifier: keyid:D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:85:13:e6:50:0c:8b:ed:83:6d:98:95:92:3e:34:53:1e:a0: c5:a3:1e:c3:e9:87:b3:eb:0f:32:1a:65:12:a9:99:2d:95:79: 71:b6:76:c1:90:a8:a2:3a:ea:f5:c9:ac:69:c6:b6:7d:4b:b5: af:f7:54:53:72:91:44:ac:db:34:48:c9:4a:d8:21:b2:45:f9: 9d:42:24:38:f8:f4:af:28:c0:73:d5:1d:2c:4a:2a:f5:33:43: 05:d4:85:20:15:2b:2b:3d:3d:49:40:e0:96:20:af:37:c9:0e: 67:12:98:fd:b2:6d:a8:68:63:51:c9:5b:38:fe:4a:e9:4e:35: 43:c0:cc:d9:7f:15:b9:e3:14:6c:7d:e2:d1:75:f3:65:e1:ad: 6a:49:8f:58:43:2a:30:f6:13:1c:ec:44:58:52:73:1c:ba:e7: ca:f3:85:02:16:5e:22:0d:9f:35:7e:84:9d:9b:86:29:75:f2: 6b:f7:9e:60:de:8e:75:94:db:ff:2e:5c:49:2a:2b:06:77:6a: 1d:9a:33:b8:94:fb:78:24:1f:3e:24:40:71:d7:5a:b9:89:3e: 82:0d:a3:9d:66:55:fe:b3:97:35:46:51:e9:06:8e:1b:6c:dd: 55:49:42:07:b6:7e:3e:3e:7e:5b:61:c9:ff:b8:cb:17:c0:4e: 4f:2f:78:9e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWAv7DIIo6CNKLdOOt63PMC5aPvIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5 M0QxOTZENjAeFw0yNTA2MTcxMzI2MDRaFw0yNTA2MjEwMDA3MDRaMDMxMTAvBgNV BAMTKDI2QjBFNjc2MTYwRDg2MkZDNTlCMzVGREI2OEVCMUIxMEIwRTZGMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbBR0PgJNbcuJ+6vJjNt0arvGf Fp0tQzEVAozINNTIjEwoCuZE8wEHXfn6T0BI7bOMun9jD0m0PKoN5gLIEOFfcA9d s0nKkgQhkCfIJC+lt6oJliiZs8itw6lRiSKeS5mFhUgf57ZFwrvCJ1+S1aTU/kHN +aTeVwBDJKPpdOyRxvbyTBNU5Tpuv8vmRHH/f7euuafiAH9EILU/JiuUrdcyorII 3FbnAb3MbxQuY2vouuD3dtVluZfbt/GMFlgykgnfVKIZ/G9o5a5bbbDIX3Ud2I8j UPEjUITfEXWnuZw6yZrTxrwAd6wGwlHdN3yvBS7vkpLf4FVIUdLl/qpwMiAtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJrDmdhYNhi/FmzX9to6xsQsObzkwHwYDVR0j BBgwFoAU0fcuZ9qczgkET6QgTqmTrpPRltYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRjMzNiOC05ZDQyLTQyMDgtOGFjNC1mMTcyYTE0NGQ4NjgvMC9EMUY3MkU2N0RB OUNDRTA5MDQ0RkE0MjA0RUE5OTNBRTkzRDE5NkQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5M0Qx OTZENi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0YzMzYjgtOWQ0Mi00MjA4LThh YzQtZjE3MmExNDRkODY4LzAvRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkz QUU5M0QxOTZENi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAECFE+ZQDIvtg22YlZI+NFMeoMWjHsPph7Pr DzIaZRKpmS2VeXG2dsGQqKI66vXJrGnGtn1Lta/3VFNykUSs2zRIyUrYIbJF+Z1C JDj49K8owHPVHSxKKvUzQwXUhSAVKys9PUlA4JYgrzfJDmcSmP2ybahoY1HJWzj+ SulONUPAzNl/FbnjFGx94tF182XhrWpJj1hDKjD2ExzsRFhScxy658rzhQIWXiIN nzV+hJ2bhil18mv3nmDejnWU2/8uXEkqKwZ3ah2aM7iU+3gkHz4kQHHXWrmJPoIN o51mVf6zlzVGUekGjhts3VVJQge2fj4+flthyf+4yxfATk8veJ4= -----END CERTIFICATE-----Generated at Wed Jun 18 02:06:17 2025 by rpki-client