$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: rWRCVv9AibC0o8c3IgEZRCLCyz6m7tIlzOoQxrcD/6A= Subject key identifier: 1C:18:9B:4A:D7:1F:58:97:84:5E:62:AF:F6:3E:C4:AA:EA:BB:03:22 Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 618B3E1890160857B9087F2EA72B13C868C9B94F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: BD Signing time: Sun 29 Jun 2025 20:51:02 +0000 Manifest this update: Sun 29 Jun 2025 20:46:02 +0000 Manifest next update: Thu 03 Jul 2025 01:58:02 +0000 Files and hashes: 1: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: RlFSSBI6S/efn8SHlSMfE4d+cXFMqk8F8HqEwT8eQQc=) 2: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: LQj0jMPge82CwHOWS5fHIk0tBtvaFA1Hv5mniV+5odo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 01:58:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:8b:3e:18:90:16:08:57:b9:08:7f:2e:a7:2b:13:c8:68:c9:b9:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Jun 29 20:46:02 2025 GMT Not After : Jul 3 01:58:02 2025 GMT Subject: CN=1C189B4AD71F5897845E62AFF63EC4AAEABB0322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d1:1f:35:a4:b5:3d:5c:6e:8a:55:5c:64:ff: 8e:0e:21:14:b2:29:39:98:69:c3:10:a8:b4:3d:a2: 42:78:59:84:33:d5:90:4c:f8:be:56:b2:13:a1:ca: 8e:41:44:dd:e0:0b:cc:fb:c7:6b:69:2b:2a:c2:b7: 59:ea:e7:e5:d9:48:81:5c:41:54:e7:3a:4f:61:67: d8:cd:95:4e:d0:35:58:f6:92:bf:24:8e:f8:4a:d6: 60:a3:f2:fd:41:5e:24:b3:40:2f:34:9e:67:c7:a3: d4:36:dd:7c:ca:0f:4c:47:ff:c6:40:a2:99:b5:dd: b9:8c:aa:3b:66:08:5d:ab:a9:46:ea:77:a6:d2:11: f7:f9:6d:7b:73:4d:db:72:71:d2:77:09:e8:61:81: dc:48:dc:03:b2:a7:8d:a6:05:4e:5c:9d:4a:47:06: 1a:9a:92:9e:d5:79:cd:7d:c9:3f:66:14:95:e1:b7: 94:70:f0:60:1e:2b:04:43:0e:b2:f0:0b:c7:a2:10: b5:cc:d7:a1:e2:76:ad:9e:bd:83:e3:e1:c7:ce:c7: fa:04:18:9a:8e:41:48:f6:33:ed:ea:f5:9b:e2:dd: 2c:b4:1b:25:9c:97:8e:79:f9:78:38:24:bc:a3:c6: f1:1d:2d:1f:5a:c2:9e:42:19:9f:91:5c:d8:77:5a: 18:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:18:9B:4A:D7:1F:58:97:84:5E:62:AF:F6:3E:C4:AA:EA:BB:03:22 X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:b2:55:f8:b8:91:07:a1:1d:fe:ae:ed:42:21:a5:21:5d:c2: cb:0a:28:df:6c:c0:12:87:4b:73:ce:95:2f:42:54:f6:e9:25: f8:17:cc:13:65:3f:3b:a7:e6:02:9c:eb:53:50:80:9d:6b:71: 98:07:3d:99:c8:10:39:04:79:c3:9d:1d:eb:6b:c8:5a:5f:dd: ef:27:df:a2:32:3d:b2:ae:00:29:39:36:97:78:91:50:45:c2: a2:63:04:e4:8e:de:53:af:70:dc:12:af:7c:f1:85:4d:78:e3: c4:9d:9e:6c:d8:e9:f4:79:4a:cc:73:68:06:25:c8:94:82:27: 15:53:e2:be:de:26:c7:ba:b6:e3:91:a0:b0:0f:56:6d:56:01: 15:ab:cb:71:36:69:ef:aa:80:40:01:2f:a6:3f:7f:d6:59:36: 8a:85:19:16:4f:d5:03:73:1a:2c:5a:b8:9f:00:b8:91:31:49: 24:94:c3:3a:e3:50:da:66:db:52:a9:66:aa:e1:1a:0b:6e:50: 0e:c3:6f:05:68:f0:a7:17:55:c6:00:34:f8:73:b0:3f:10:f3: a5:5e:f0:23:bb:ab:ba:4f:0e:2e:28:7d:8c:22:5a:27:5a:db: 21:2f:c3:21:ce:29:cc:07:76:12:26:b5:c3:a0:43:c0:1b:fe: 33:11:8e:77 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYYs+GJAWCFe5CH8upysTyGjJuU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNTA2MjkyMDQ2MDJaFw0yNTA3MDMwMTU4MDJaMDMxMTAvBgNV BAMTKDFDMTg5QjRBRDcxRjU4OTc4NDVFNjJBRkY2M0VDNEFBRUFCQjAzMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC20R81pLU9XG6KVVxk/44OIRSy KTmYacMQqLQ9okJ4WYQz1ZBM+L5WshOhyo5BRN3gC8z7x2tpKyrCt1nq5+XZSIFc QVTnOk9hZ9jNlU7QNVj2kr8kjvhK1mCj8v1BXiSzQC80nmfHo9Q23XzKD0xH/8ZA opm13bmMqjtmCF2rqUbqd6bSEff5bXtzTdtycdJ3CehhgdxI3AOyp42mBU5cnUpH Bhqakp7Vec19yT9mFJXht5Rw8GAeKwRDDrLwC8eiELXM16Hidq2evYPj4cfOx/oE GJqOQUj2M+3q9Zvi3Sy0GyWcl455+Xg4JLyjxvEdLR9awp5CGZ+RXNh3Whh1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHBibStcfWJeEXmKv9j7Equq7AyIwHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAeyVfi4kQehHf6u7UIhpSFdwssKKN9swBKH S3POlS9CVPbpJfgXzBNlPzun5gKc61NQgJ1rcZgHPZnIEDkEecOdHetryFpf3e8n 36IyPbKuACk5Npd4kVBFwqJjBOSO3lOvcNwSr3zxhU1448SdnmzY6fR5SsxzaAYl yJSCJxVT4r7eJse6tuORoLAPVm1WARWry3E2ae+qgEABL6Y/f9ZZNoqFGRZP1QNz GixauJ8AuJExSSSUwzrjUNpm21KpZqrhGgtuUA7DbwVo8KcXVcYANPhzsD8Q86Ve 8CO7q7pPDi4ofYwiWida2yEvwyHOKcwHdhImtcOgQ8Ab/jMRjnc= -----END CERTIFICATE-----Generated at Mon Jun 30 14:37:03 2025 by rpki-client