$ rpki-client -vvf repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft File: 52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft (raw, json) Hash identifier: e6U9ypss6SKJ0qwsMMH0IyJq0ZiTrzGl3FDw2qicvbQ= Subject key identifier: 37:30:B0:CB:66:6D:4E:63:44:93:C4:15:DF:43:E4:F5:74:B8:AA:55 Authority key identifier: 52:E7:7B:06:BC:26:91:C6:13:C7:A9:87:2E:E1:E2:8F:CB:8A:A2:45 Certificate issuer: /CN=52E77B06BC2691C613C7A9872EE1E28FCB8AA245 Certificate serial: 6ECCBE5877A7682A155E1EC95AA7BE3C7FF55130 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft Manifest number: 0240 Signing time: Sun 29 Jun 2025 21:20:51 +0000 Manifest this update: Sun 29 Jun 2025 21:15:51 +0000 Manifest next update: Wed 02 Jul 2025 21:48:51 +0000 Files and hashes: 1: 3130332e3138302e3136352e302f32342d3234203d3e20313338313331.roa (hash: UDP5vaqP++IAcM6lMBhTtGhgbdITohHwdo+pbRZf5tI=) 2: 3130332e3138302e3136342e302f32332d3233203d3e20313338313331.roa (hash: itO8sihFgXMUbSQlwLdSsBmvziIF/OpyE/yJGtrY67A=) 3: 3130332e3138302e3136342e302f32342d3234203d3e20313338313331.roa (hash: fKMeJeAwMbkwf1kmZ/AB9YQDJH0OhHULVGJWeX+RPu0=) 4: 52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl (hash: B2a3IfU/hARxZJHwiod60MiZj43s6uYhWW5R1ZdKz7c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 21:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:cc:be:58:77:a7:68:2a:15:5e:1e:c9:5a:a7:be:3c:7f:f5:51:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52E77B06BC2691C613C7A9872EE1E28FCB8AA245 Validity Not Before: Jun 29 21:15:51 2025 GMT Not After : Jul 2 21:48:51 2025 GMT Subject: CN=3730B0CB666D4E634493C415DF43E4F574B8AA55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5b:b0:8a:0a:4a:09:ff:e4:dd:9b:fa:ba:00: 45:1e:06:49:f7:88:c2:70:8f:d9:60:85:bc:e0:72: ea:e3:0a:22:27:81:df:a2:df:82:31:06:81:65:95: 26:ff:30:fb:4a:48:e1:9d:36:66:18:cf:62:74:5d: 85:1e:d4:e3:0d:a2:18:db:7a:7d:ce:9e:90:b1:a6: 92:c9:31:8b:99:f2:65:9c:ea:ee:74:89:c6:b4:8c: e3:b5:44:63:2a:86:65:c9:1c:e2:ca:1a:05:ac:6c: e9:20:7e:20:a1:fe:74:9c:25:08:f9:ac:53:09:75: 93:e5:6a:8a:ab:8b:ea:40:63:a6:15:86:ae:ee:fc: 05:d4:20:28:3c:0d:7b:41:30:63:ac:99:87:5f:6c: 12:99:a0:03:4f:fd:f8:2e:fd:3c:45:61:67:f5:1c: a8:33:26:b6:8e:f5:5a:fd:e4:02:6f:1b:cc:3a:31: 2d:43:24:50:dd:8b:4c:eb:b1:2d:b8:f4:14:b4:b0: 22:bb:94:69:54:bc:c9:d9:6d:d3:56:90:fb:56:d3: 70:6a:f9:85:1e:4f:12:89:54:0c:8b:f9:99:c2:48: db:d4:d7:29:ca:69:5b:2f:a5:4d:bd:e2:2e:e4:63: e9:74:58:39:cf:c7:98:a5:c8:72:09:87:47:e9:f5: ac:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:30:B0:CB:66:6D:4E:63:44:93:C4:15:DF:43:E4:F5:74:B8:AA:55 X509v3 Authority Key Identifier: keyid:52:E7:7B:06:BC:26:91:C6:13:C7:A9:87:2E:E1:E2:8F:CB:8A:A2:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:a4:0c:60:12:3e:7f:62:05:0a:fa:c3:82:fb:fe:64:0e:c9: 37:19:ae:b5:f0:f5:37:3b:8e:77:ac:79:47:e5:9f:e3:20:0d: fc:83:1d:43:b3:f0:70:0a:15:7e:cc:6e:be:c2:87:fb:76:00: 17:67:44:63:cf:e3:7e:8f:cc:fc:d8:4b:b4:8a:08:5a:92:62: f0:4a:1e:d9:09:eb:45:58:1f:46:04:23:91:4e:5b:63:2d:b9: 2d:2c:a5:31:8b:a1:84:8d:9e:5a:9c:2e:dd:3a:bb:12:67:47: a2:b8:a1:ef:89:c5:d7:ac:a6:9a:fe:cc:04:bf:88:82:37:47: 0b:ab:23:38:01:87:62:ae:0f:25:db:2a:1e:59:4f:aa:4b:d0: 74:12:3e:43:a3:f4:3e:40:e4:f9:f0:99:b5:a5:bc:6e:d0:9f: 33:eb:57:38:44:ab:6a:dc:74:b8:04:fe:c4:07:9c:64:64:4d: 60:c9:2b:9f:22:35:fb:6c:52:15:35:30:43:15:ea:bd:a1:4b: 0d:31:68:b0:65:78:72:d2:bf:97:c2:6c:fa:ce:d8:34:ff:ab: 69:c6:99:a9:94:db:16:fd:1c:d4:3b:bd:33:5e:b5:d3:89:b2: 4f:21:d4:c8:f7:8a:ad:66:de:fd:d3:dd:09:ea:87:a3:03:6e: a0:e8:b9:19 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbsy+WHenaCoVXh7JWqe+PH/1UTAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUyOEZD QjhBQTI0NTAeFw0yNTA2MjkyMTE1NTFaFw0yNTA3MDIyMTQ4NTFaMDMxMTAvBgNV BAMTKDM3MzBCMENCNjY2RDRFNjM0NDkzQzQxNURGNDNFNEY1NzRCOEFBNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJW7CKCkoJ/+Tdm/q6AEUeBkn3 iMJwj9lghbzgcurjCiIngd+i34IxBoFllSb/MPtKSOGdNmYYz2J0XYUe1OMNohjb en3OnpCxppLJMYuZ8mWc6u50ica0jOO1RGMqhmXJHOLKGgWsbOkgfiCh/nScJQj5 rFMJdZPlaoqri+pAY6YVhq7u/AXUICg8DXtBMGOsmYdfbBKZoANP/fgu/TxFYWf1 HKgzJraO9Vr95AJvG8w6MS1DJFDdi0zrsS249BS0sCK7lGlUvMnZbdNWkPtW03Bq +YUeTxKJVAyL+ZnCSNvU1ynKaVsvpU294i7kY+l0WDnPx5ilyHIJh0fp9azjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNzCwy2ZtTmNEk8QV30Pk9XS4qlUwHwYDVR0j BBgwFoAUUud7BrwmkcYTx6mHLuHij8uKokUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MzkwODc4Mi00NTIwLTQ1YjQtOTllZC0xOTNlNTFkZjUxYzMvMC81MkU3N0IwNkJD MjY5MUM2MTNDN0E5ODcyRUUxRTI4RkNCOEFBMjQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUyOEZDQjhB QTI0NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDM5MDg3ODItNDUyMC00NWI0LTk5 ZWQtMTkzZTUxZGY1MWMzLzAvNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUy OEZDQjhBQTI0NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK6kDGASPn9iBQr6w4L7/mQOyTcZrrXw9Tc7 jneseUfln+MgDfyDHUOz8HAKFX7Mbr7Ch/t2ABdnRGPP436PzPzYS7SKCFqSYvBK HtkJ60VYH0YEI5FOW2MtuS0spTGLoYSNnlqcLt06uxJnR6K4oe+Jxdesppr+zAS/ iII3RwurIzgBh2KuDyXbKh5ZT6pL0HQSPkOj9D5A5PnwmbWlvG7QnzPrVzhEq2rc dLgE/sQHnGRkTWDJK58iNftsUhU1MEMV6r2hSw0xaLBleHLSv5fCbPrO2DT/q2nG mamU2xb9HNQ7vTNetdOJsk8h1Mj3iq1m3v3T3Qnqh6MDbqDouRk= -----END CERTIFICATE-----Generated at Mon Jun 30 18:25:12 2025 by rpki-client