$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft File: DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft (raw, json) Hash identifier: 2WVZZmv8KYSNXrSB+aEjPiyNa6BqdMlP5zvT1GP+x1s= Subject key identifier: 39:9F:E9:F4:CB:28:9E:59:D2:7C:2B:43:8B:56:C1:6F:AE:DC:76:41 Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 Certificate issuer: /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Certificate serial: 4EE9FE9A2218398680A77D6ECCE058AA2F2831FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft Manifest number: 04E1 Signing time: Sun 29 Jun 2025 21:51:15 +0000 Manifest this update: Sun 29 Jun 2025 21:46:15 +0000 Manifest next update: Wed 02 Jul 2025 22:40:15 +0000 Files and hashes: 1: 3130332e3233332e38382e302f32332d3234203d3e203536323333.roa (hash: 7Q0dwA0Rc1pnpyLnXxos7sM1Wj4t+yMR55gSNZ0dsoU=) 2: 3132302e38392e39342e302f32332d3234203d3e203536323333.roa (hash: dkwLIgjutNqyS1fEiwY5jB8EjSSH9/0tY66Lo4b2moY=) 3: 34332e3235322e3134342e302f32332d3234203d3e203536323333.roa (hash: u7MPei7+iN4f1OLKumfeRBmfOe2wgHqRvP7yaGUByuA=) 4: 3130332e31342e3131302e302f32332d3234203d3e203536323333.roa (hash: tDRK/Vdz8u2hhC9LdyJ4AT+BwDcg/REr12fUhDIA9Bo=) 5: DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl (hash: ORaxFmbz5KB9kRWsD8o4zZwe8rRl5Kp7UF1+ktwTzXE=) 6: 3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa (hash: BlXsQ1QjfVoT6J0SDJFst3KLhMp6LiWyqHWFZlBXj2o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 22:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:e9:fe:9a:22:18:39:86:80:a7:7d:6e:cc:e0:58:aa:2f:28:31:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Validity Not Before: Jun 29 21:46:15 2025 GMT Not After : Jul 2 22:40:15 2025 GMT Subject: CN=399FE9F4CB289E59D27C2B438B56C16FAEDC7641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:32:da:66:60:a9:b4:9d:6d:f9:0f:2c:02:0d: 6f:05:9d:fe:0e:42:42:09:ca:66:f2:f6:3b:97:0b: af:dd:14:d1:99:23:4f:31:69:2d:bb:85:07:14:0b: 86:e5:40:a1:ac:0c:a0:44:9d:1d:f2:dd:e2:e5:ca: 46:ae:71:69:af:10:1f:00:94:ea:a0:9f:20:28:7c: 2f:d1:72:c5:47:ac:9d:a0:1e:97:89:36:e6:09:92: 37:9b:aa:9f:14:47:3e:66:1c:46:dc:e0:97:f2:b0: 83:1b:fe:c1:2e:16:ce:98:96:07:ce:ce:94:16:ac: 59:e1:a0:89:78:28:01:88:27:05:77:25:1f:f0:b6: 41:05:45:0c:63:4c:fa:53:af:22:f8:77:01:a1:a8: e5:73:16:94:fd:4e:04:22:20:4d:60:b8:57:d8:a7: 78:0b:ff:c4:22:8f:41:80:45:30:8a:6e:4f:04:38: b3:92:b1:f8:9b:6c:0e:a4:f7:c4:1d:8e:be:da:32: e4:6b:45:c4:88:ae:ef:f2:cb:15:08:4a:a2:4a:d9: 80:03:b4:70:12:53:eb:d0:63:d0:97:9b:da:f5:aa: e0:05:c0:fc:ac:46:9b:46:80:28:5b:0b:c3:b6:5c: 38:c1:55:6f:08:17:e5:11:07:fb:fa:22:46:b8:7c: 93:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:9F:E9:F4:CB:28:9E:59:D2:7C:2B:43:8B:56:C1:6F:AE:DC:76:41 X509v3 Authority Key Identifier: keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:3f:f7:76:e8:68:de:71:6c:47:ba:a0:52:66:de:4f:0d:9a: 1f:22:41:ad:28:65:a5:ec:25:c7:66:98:06:8d:9b:ff:bb:77: b8:3c:f0:2f:a3:63:5d:c4:36:95:26:0f:98:83:7d:ab:28:6e: 9f:c5:15:f1:dd:d2:1c:94:d2:5a:9b:51:29:54:1f:46:7d:67: 3c:3a:0f:65:3d:8c:2f:fc:8f:5e:20:6d:f0:fc:f1:ae:9e:43: 85:63:b7:51:13:f7:a9:33:70:80:04:cd:93:f2:5a:14:f7:ed: 45:3f:75:90:3a:fa:a9:10:8c:35:1c:8c:1e:fe:46:27:ef:86: aa:50:57:2e:fb:97:cf:79:2e:8c:69:00:69:aa:57:cc:74:8f: 93:b9:74:db:dd:20:5c:34:2b:1e:b3:18:ca:55:44:96:5c:19: d3:01:bb:5d:83:f3:a0:e7:88:2c:e2:4d:b8:d5:f1:52:0b:d2: 64:cc:f7:6b:6f:7a:b8:d9:1f:8a:de:42:ef:e9:07:65:0c:27: d5:79:cf:69:e9:a2:2a:e4:b0:82:7e:27:b4:72:f9:b8:68:b6: b9:22:fe:00:0b:8e:c2:5b:63:9d:88:a2:b1:9f:44:49:7e:01: c5:af:0d:57:9c:17:23:fb:22:e1:d1:ad:e6:44:12:30:fb:85: b5:0b:52:5c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTun+miIYOYaAp31uzOBYqi8oMf4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVF NTRDQTg1OTAeFw0yNTA2MjkyMTQ2MTVaFw0yNTA3MDIyMjQwMTVaMDMxMTAvBgNV BAMTKDM5OUZFOUY0Q0IyODlFNTlEMjdDMkI0MzhCNTZDMTZGQUVEQzc2NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTMtpmYKm0nW35DywCDW8Fnf4O QkIJymby9juXC6/dFNGZI08xaS27hQcUC4blQKGsDKBEnR3y3eLlykaucWmvEB8A lOqgnyAofC/RcsVHrJ2gHpeJNuYJkjebqp8URz5mHEbc4JfysIMb/sEuFs6YlgfO zpQWrFnhoIl4KAGIJwV3JR/wtkEFRQxjTPpTryL4dwGhqOVzFpT9TgQiIE1guFfY p3gL/8Qij0GARTCKbk8EOLOSsfibbA6k98Qdjr7aMuRrRcSIru/yyxUISqJK2YAD tHASU+vQY9CXm9r1quAFwPysRptGgChbC8O2XDjBVW8IF+URB/v6Ika4fJPdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOZ/p9MsonlnSfCtDi1bBb67cdkEwHwYDVR0j BBgwFoAU3xzqAxPadQDXCuCJFptLvuVMqFkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGZkNGJjMi00MWQ0LTQyZTYtYTdmZi01OTQ5Mzg4NTEyNmEvMC9ERjFDRUEwMzEz REE3NTAwRDcwQUUwODkxNjlCNEJCRUU1NENBODU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVFNTRD QTg1OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDRmZDRiYzItNDFkNC00MmU2LWE3 ZmYtNTk0OTM4ODUxMjZhLzAvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRC QkVFNTRDQTg1OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA8/93boaN5xbEe6oFJm3k8Nmh8iQa0oZaXs JcdmmAaNm/+7d7g88C+jY13ENpUmD5iDfasobp/FFfHd0hyU0lqbUSlUH0Z9Zzw6 D2U9jC/8j14gbfD88a6eQ4Vjt1ET96kzcIAEzZPyWhT37UU/dZA6+qkQjDUcjB7+ RifvhqpQVy77l895LoxpAGmqV8x0j5O5dNvdIFw0Kx6zGMpVRJZcGdMBu12D86Dn iCziTbjV8VIL0mTM92tverjZH4reQu/pB2UMJ9V5z2npoirksIJ+J7Ry+bhotrki /gALjsJbY52IorGfREl+AcWvDVecFyP7IuHRreZEEjD7hbULUlw= -----END CERTIFICATE-----Generated at Mon Jun 30 16:48:26 2025 by rpki-client