$ rpki-client -vvf repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft File: 43A0899A11D5A51202F1304338672AF19B201A74.mft (raw, json) Hash identifier: 4uhpeYJ58fHbIIu94xUQwxsPR1NFR+WYUaoxrUQjd3o= Subject key identifier: A9:67:65:1A:04:DC:31:AC:72:1A:3A:9E:A9:BC:B7:69:B9:43:C0:18 Authority key identifier: 43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 Certificate issuer: /CN=43A0899A11D5A51202F1304338672AF19B201A74 Certificate serial: 27C574401AA7465DDE275A02DA7C1CF4B8EA360E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft Manifest number: 03BE Signing time: Sun 29 Jun 2025 21:01:58 +0000 Manifest this update: Sun 29 Jun 2025 20:56:58 +0000 Manifest next update: Thu 03 Jul 2025 08:15:58 +0000 Files and hashes: 1: 43A0899A11D5A51202F1304338672AF19B201A74.crl (hash: BJni9bzuWdRpRWHwEPZWPcPaYxEi3yfNuQUoZHMqEqk=) 2: 3130332e32392e3231322e302f32322d3234203d3e203538333737.roa (hash: bEv5NJFvGjCqOM99MFNub18kUBXqluJLuz63DD7/xZ4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:c5:74:40:1a:a7:46:5d:de:27:5a:02:da:7c:1c:f4:b8:ea:36:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43A0899A11D5A51202F1304338672AF19B201A74 Validity Not Before: Jun 29 20:56:58 2025 GMT Not After : Jul 3 08:15:58 2025 GMT Subject: CN=A967651A04DC31AC721A3A9EA9BCB769B943C018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:04:d8:30:14:10:5d:f6:5f:25:e8:bd:22:c7: 07:50:c9:e4:39:6e:f7:c0:c2:aa:88:5b:91:a0:e6: 7d:f1:29:9d:d9:76:07:81:15:8c:36:a3:c2:4a:af: 47:b3:a5:14:74:18:77:cf:0c:9e:85:de:2c:97:2b: f9:ce:b8:f9:03:56:8d:35:ba:6b:dd:4b:a6:85:af: 9a:7f:70:78:d1:60:d8:ed:db:fa:54:fb:92:25:31: fc:a7:ec:2f:af:0b:35:0c:89:9e:18:65:e5:3b:54: 09:87:81:91:c6:3e:cc:28:1c:aa:e3:35:6d:ce:83: 52:c1:b5:87:ea:c5:51:b3:91:14:19:c4:99:86:bf: 8d:3c:1b:0f:ba:a4:56:e9:95:10:72:58:ab:de:b5: ad:3a:55:31:6a:ec:33:9c:79:c6:b4:78:0e:bd:85: 16:6b:ee:c2:82:61:a6:3f:3c:de:d0:82:d0:da:cf: 63:d2:f0:42:ac:66:ba:66:f9:fe:ad:54:96:b7:11: 25:4c:0d:2c:70:c0:8d:01:39:48:30:94:45:1a:46: b1:0f:5d:f2:d7:30:76:76:0a:5c:e8:1d:9d:21:99: 65:f2:3d:14:f2:61:55:d2:67:d3:b7:6b:93:a2:72: 66:84:28:56:2b:ac:ae:f3:85:f9:f0:35:47:8a:82: 7b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:67:65:1A:04:DC:31:AC:72:1A:3A:9E:A9:BC:B7:69:B9:43:C0:18 X509v3 Authority Key Identifier: keyid:43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:b1:53:52:30:be:03:0b:ed:92:a8:c8:a8:7f:1d:7b:b7:50: 8d:60:c2:78:0e:54:e1:b4:4a:79:57:b9:bd:c8:4d:22:17:56: 9e:ac:9b:8a:69:2a:e3:2f:bb:9f:41:52:60:09:9c:32:dc:5a: 4e:2e:e0:95:b7:73:43:f6:96:52:b8:37:dc:bb:b1:ee:e7:6c: e8:ee:9d:18:31:8e:b1:1a:7a:1a:be:21:cf:43:0c:7f:d9:f2: be:d2:dd:05:ba:cb:7b:31:6e:dd:08:6a:42:0a:98:b0:70:db: b2:60:e4:f3:0d:22:4b:4d:08:1c:bb:5b:06:81:7e:01:a1:50: 4f:69:44:04:92:ea:ce:1a:3a:12:17:fc:10:ec:45:e7:72:b7: ef:5b:39:63:8d:34:94:56:2b:42:5f:22:fb:22:f7:45:7e:44: c1:d5:0c:76:17:55:8c:50:cf:2b:9c:73:c0:d8:09:d9:e0:bd: 8a:d7:68:81:c3:0b:73:94:b6:f9:2d:66:6c:10:de:4b:6f:ac: 4b:08:b5:fb:83:b5:a8:ce:19:fb:e2:a8:39:34:38:5f:d4:04: 0e:39:aa:03:bb:4e:dd:95:e6:a4:2f:cc:91:71:2f:44:30:1f: a7:b3:c1:c6:c0:6d:dc:70:d9:1a:57:4b:aa:ea:fd:ed:ae:f1: c3:1b:02:d8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ8V0QBqnRl3eJ1oC2nwc9LjqNg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5 QjIwMUE3NDAeFw0yNTA2MjkyMDU2NThaFw0yNTA3MDMwODE1NThaMDMxMTAvBgNV BAMTKEE5Njc2NTFBMDREQzMxQUM3MjFBM0E5RUE5QkNCNzY5Qjk0M0MwMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiBNgwFBBd9l8l6L0ixwdQyeQ5 bvfAwqqIW5Gg5n3xKZ3ZdgeBFYw2o8JKr0ezpRR0GHfPDJ6F3iyXK/nOuPkDVo01 umvdS6aFr5p/cHjRYNjt2/pU+5IlMfyn7C+vCzUMiZ4YZeU7VAmHgZHGPswoHKrj NW3Og1LBtYfqxVGzkRQZxJmGv408Gw+6pFbplRByWKveta06VTFq7DOceca0eA69 hRZr7sKCYaY/PN7QgtDaz2PS8EKsZrpm+f6tVJa3ESVMDSxwwI0BOUgwlEUaRrEP XfLXMHZ2ClzoHZ0hmWXyPRTyYVXSZ9O3a5OicmaEKFYrrK7zhfnwNUeKgnsPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqWdlGgTcMaxyGjqeqby3ablDwBgwHwYDVR0j BBgwFoAUQ6CJmhHVpRIC8TBDOGcq8ZsgGnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDAxYjJkMS0wMWNhLTQwZTgtYmY3Ny05ODYxNTk4NjdhMDQvMC80M0EwODk5QTEx RDVBNTEyMDJGMTMwNDMzODY3MkFGMTlCMjAxQTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5QjIw MUE3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDQwMWIyZDEtMDFjYS00MGU4LWJm NzctOTg2MTU5ODY3YTA0LzAvNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJB RjE5QjIwMUE3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACyxU1IwvgML7ZKoyKh/HXu3UI1gwngOVOG0 SnlXub3ITSIXVp6sm4ppKuMvu59BUmAJnDLcWk4u4JW3c0P2llK4N9y7se7nbOju nRgxjrEaehq+Ic9DDH/Z8r7S3QW6y3sxbt0IakIKmLBw27Jg5PMNIktNCBy7WwaB fgGhUE9pRASS6s4aOhIX/BDsRedyt+9bOWONNJRWK0JfIvsi90V+RMHVDHYXVYxQ zyucc8DYCdngvYrXaIHDC3OUtvktZmwQ3ktvrEsItfuDtajOGfviqDk0OF/UBA45 qgO7Tt2V5qQvzJFxL0QwH6ezwcbAbdxw2RpXS6rq/e2u8cMbAtg= -----END CERTIFICATE-----Generated at Mon Jun 30 01:30:41 2025 by rpki-client