$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: piSg+DTffxeMJf73o+uqkv4/+aKDshoX4PEvQGjQQDg= Subject key identifier: BB:83:BB:52:0B:38:D2:6E:56:B0:47:6E:76:1F:87:71:21:5A:19:F7 Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 47091C8035DD478FA722E32163DE0282FBE3EE32 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: 9B Signing time: Sat 14 Jun 2025 19:01:07 +0000 Manifest this update: Sat 14 Jun 2025 18:56:07 +0000 Manifest next update: Tue 17 Jun 2025 20:44:07 +0000 Files and hashes: 1: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI=) 2: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: Jit+uJIEyqjGrv7HRmDwiYsYuySfB8Lk478TOnlXVFM=) 3: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: 5Q8DhCQ/P+prMHlWNgt+viOKLJorxVJ+qFNiSjzDFc8=) 4: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: 5TysUWdf//ijZZADQg/kyk1hPl8L9rMcShCWekWYvss=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 20:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:09:1c:80:35:dd:47:8f:a7:22:e3:21:63:de:02:82:fb:e3:ee:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Jun 14 18:56:07 2025 GMT Not After : Jun 17 20:44:07 2025 GMT Subject: CN=BB83BB520B38D26E56B0476E761F8771215A19F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d0:a4:fe:c6:29:c6:dc:19:31:8d:f1:2b:81: 92:81:b3:07:16:4c:70:fd:0e:8e:20:69:d4:82:93: 7b:b6:e4:22:6c:56:69:c3:a1:a2:96:bd:54:06:53: 6b:0b:76:5e:ff:4a:de:e0:3d:de:8b:61:55:6a:1d: ae:14:ef:66:f5:9f:02:bf:67:97:01:65:a5:80:6e: 7e:b8:5a:4b:87:07:7c:e1:78:d0:e7:45:65:43:49: 1f:c0:aa:c9:85:02:ff:7c:2d:ba:d9:c7:a2:67:37: b8:f2:6e:39:a2:24:71:24:98:8a:5f:d0:f8:84:4f: 88:bb:a0:b9:da:a0:19:8b:5a:73:e1:29:e7:bc:28: 7b:3a:82:77:e7:e2:70:57:0b:1e:5d:e8:ac:c9:ba: 94:1f:de:52:9e:d9:4f:81:50:3d:41:09:05:fc:bf: 2f:e0:6d:28:3f:94:8b:ed:6b:9e:d9:6a:2e:f5:94: fe:08:ca:f8:cd:b0:59:16:55:b4:d1:c6:27:49:8a: 70:09:b8:85:3c:fa:54:62:1f:e0:20:43:0e:cb:7b: 17:be:e6:f2:92:42:1d:59:81:9f:09:62:40:b4:34: 07:98:4b:38:69:12:79:6f:97:2e:d7:a2:e0:8d:aa: ff:62:51:1f:86:64:30:3a:a5:d2:8a:5b:f1:44:5c: 90:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:83:BB:52:0B:38:D2:6E:56:B0:47:6E:76:1F:87:71:21:5A:19:F7 X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:c6:79:17:2d:a1:f8:ca:b8:ea:a3:d4:d3:95:85:44:44:48: 23:dd:2c:fd:d1:e6:e6:b8:25:48:72:0a:6a:46:79:15:65:d9: 5e:3a:b0:d1:d4:4c:3d:10:a3:d3:03:ac:30:4b:f8:1c:94:00: 37:a7:03:b6:cb:0f:0c:ff:d2:de:c7:e2:be:c5:f4:60:9c:1c: 88:14:fe:88:86:a7:f3:28:9a:d9:b5:71:1b:ee:2b:7e:56:2e: 62:42:9c:33:d1:35:16:9b:df:10:a9:f7:14:3d:09:e6:7c:bb: 8a:62:1b:74:41:a2:04:1e:d8:04:79:77:85:fc:88:ea:74:9f: e5:52:88:b4:93:7a:14:55:84:c4:9f:16:07:65:06:44:33:72: 53:ce:67:b9:5a:67:62:16:6c:8f:d9:6e:9d:57:4b:17:a1:03: e8:a9:1c:b3:1e:cd:34:90:f3:2e:14:7c:64:a5:3c:08:f7:a7: 99:19:e4:ef:29:18:43:71:64:16:0a:38:79:95:1c:f6:be:b0: 31:20:f9:9c:8d:fe:3a:71:5f:73:35:a3:a2:24:9d:ee:27:af: df:a5:eb:3f:f7:b6:57:df:58:58:44:4f:6a:e4:df:4b:86:4f: 98:fd:1d:0a:c5:e5:89:f7:b9:05:3f:5a:74:bf:ac:bd:34:41: bd:b8:70:ea -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURwkcgDXdR4+nIuMhY94Cgvvj7jIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNTA2MTQxODU2MDdaFw0yNTA2MTcyMDQ0MDdaMDMxMTAvBgNV BAMTKEJCODNCQjUyMEIzOEQyNkU1NkIwNDc2RTc2MUY4NzcxMjE1QTE5RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC30KT+xinG3BkxjfErgZKBswcW THD9Do4gadSCk3u25CJsVmnDoaKWvVQGU2sLdl7/St7gPd6LYVVqHa4U72b1nwK/ Z5cBZaWAbn64WkuHB3zheNDnRWVDSR/AqsmFAv98LbrZx6JnN7jybjmiJHEkmIpf 0PiET4i7oLnaoBmLWnPhKee8KHs6gnfn4nBXCx5d6KzJupQf3lKe2U+BUD1BCQX8 vy/gbSg/lIvta57Zai71lP4IyvjNsFkWVbTRxidJinAJuIU8+lRiH+AgQw7Lexe+ 5vKSQh1ZgZ8JYkC0NAeYSzhpEnlvly7XouCNqv9iUR+GZDA6pdKKW/FEXJCbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUu4O7Ugs40m5WsEdudh+HcSFaGfcwHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIPGeRctofjKuOqj1NOVhURESCPdLP3R5ua4 JUhyCmpGeRVl2V46sNHUTD0Qo9MDrDBL+ByUADenA7bLDwz/0t7H4r7F9GCcHIgU /oiGp/Momtm1cRvuK35WLmJCnDPRNRab3xCp9xQ9CeZ8u4piG3RBogQe2AR5d4X8 iOp0n+VSiLSTehRVhMSfFgdlBkQzclPOZ7laZ2IWbI/Zbp1XSxehA+ipHLMezTSQ 8y4UfGSlPAj3p5kZ5O8pGENxZBYKOHmVHPa+sDEg+ZyN/jpxX3M1o6Ikne4nr9+l 6z/3tlffWFhET2rk30uGT5j9HQrF5Yn3uQU/WnS/rL00Qb24cOo= -----END CERTIFICATE-----Generated at Mon Jun 16 06:16:13 2025 by rpki-client