$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft File: D85F6D41E807D8825356A681A7518FA27664A965.mft (raw, json) Hash identifier: zO/0KWnLdX4cKLVf3f3ru2z4AxEBOuTEpzp1qaWDCQI= Subject key identifier: B4:83:C8:9E:99:CB:11:6B:34:28:2C:46:39:98:CF:DF:70:87:67:95 Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 5277239C023D568300E28F8699FCB39E9D5EBCDF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft Manifest number: 014E Signing time: Thu 03 Jul 2025 01:02:11 +0000 Manifest this update: Thu 03 Jul 2025 00:57:11 +0000 Manifest next update: Sun 06 Jul 2025 01:38:11 +0000 Files and hashes: 1: D85F6D41E807D8825356A681A7518FA27664A965.crl (hash: Rjrh6+KrHHx/o6FwJk/B4+pwDROKoT7AtaqsGV7c1QQ=) 2: 3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa (hash: mLhBYPkwACBbxlJsTnV03pPrOs7jfGDROaGC1YIb24I=) 3: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (hash: 2X5KoMU/cWrAj0o88iqREF+W66XbV79s9jtdMfDvn84=) 4: 3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa (hash: hFj4Uh0PGeOBka7Cx4rmARhSt9TGPmz98D01cPT+PF4=) 5: 323430373a396363303a3a2f33322d3332203d3e20313431393833.roa (hash: X3XCCURHmUEWOKsujokS9KRQ2ATuG6WfjZ6Xo/ilPmk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 01:38:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:77:23:9c:02:3d:56:83:00:e2:8f:86:99:fc:b3:9e:9d:5e:bc:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Jul 3 00:57:11 2025 GMT Not After : Jul 6 01:38:11 2025 GMT Subject: CN=B483C89E99CB116B34282C463998CFDF70876795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5c:f8:e0:1b:2d:71:89:66:12:67:ec:f3:8b: 42:f4:e0:6b:47:fd:e4:a6:19:da:4c:39:cd:6b:9b: c3:54:43:5f:b5:65:68:39:c5:81:4f:49:1a:0e:5f: 4c:f5:04:66:7f:28:b5:f3:0d:90:d9:c4:80:a2:36: ff:37:99:b7:7f:69:58:4d:f8:e9:e8:d0:99:d8:e5: 8e:22:f8:cc:db:7f:2b:0d:34:11:6c:e2:60:f1:53: a7:27:3c:6d:02:1a:1b:43:58:4e:e0:66:ca:5b:86: 08:29:c1:2c:b3:0a:60:cd:88:e8:5d:51:95:6b:46: 13:22:c9:16:de:9d:87:50:7b:43:b6:b8:c4:f4:72: 80:75:72:dd:6c:be:f4:af:70:3f:1d:82:98:a0:0e: 86:b3:fb:3b:00:25:ef:b4:6e:11:fc:71:e2:f2:55: 72:d7:87:d1:93:3a:bc:10:f3:e7:31:de:35:8f:60: 62:fc:fe:20:af:c7:c7:93:b4:f3:4e:94:f2:6a:87: bf:b6:f5:98:ef:49:f6:e2:ac:20:1e:16:f5:d9:19: cd:75:33:ea:65:1d:0e:a3:84:80:e7:93:e8:ad:c8: 69:1d:a6:48:d4:04:4b:99:f5:03:e9:14:fa:eb:1d: 1f:15:49:9b:5b:7d:80:79:bb:da:5f:7e:b1:b8:72: f1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:83:C8:9E:99:CB:11:6B:34:28:2C:46:39:98:CF:DF:70:87:67:95 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:b6:56:d1:c4:8c:a0:49:f5:67:bd:87:c3:31:87:e7:3d:ec: 5b:13:82:81:b5:e3:0c:41:e7:50:36:98:85:12:9b:30:b0:ec: fe:49:d0:e3:bf:91:07:77:d9:79:ec:3f:98:46:c6:da:ed:23: 9f:b1:5b:eb:1c:38:5a:40:89:92:7b:63:73:4f:c3:13:d1:59: 42:fc:2e:85:0e:59:f8:78:eb:e7:ff:cc:91:6c:ec:1d:a6:73: 70:58:f4:ab:22:91:41:c4:ee:32:19:f0:0c:1f:31:00:8e:a4: a5:5b:03:1a:88:78:86:f9:b5:8d:67:94:04:94:1b:12:b7:c0: b9:09:27:e6:91:7e:33:73:49:6c:01:84:98:03:ae:f7:5e:db: 14:3e:64:fc:69:ad:ca:40:94:8b:37:25:07:54:2b:57:fb:53: 1c:f1:d3:3d:c5:16:33:e3:b7:82:22:84:ed:b3:70:92:b4:db: bb:07:e4:f9:2b:6f:84:91:56:02:31:df:e3:a0:ae:0d:99:c9: 3d:60:d2:21:32:31:de:46:4e:45:01:60:a3:d5:54:a6:d3:42: 55:c8:79:b2:3e:84:e2:df:ad:5e:4a:c5:88:4c:d8:fa:fd:bd: cd:c4:d2:d6:9b:c0:e2:ed:58:4a:1f:41:a1:80:5b:5d:6f:c1: 03:e4:8c:82 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUncjnAI9VoMA4o+Gmfyznp1evN8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNTA3MDMwMDU3MTFaFw0yNTA3MDYwMTM4MTFaMDMxMTAvBgNV BAMTKEI0ODNDODlFOTlDQjExNkIzNDI4MkM0NjM5OThDRkRGNzA4NzY3OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyXPjgGy1xiWYSZ+zzi0L04GtH /eSmGdpMOc1rm8NUQ1+1ZWg5xYFPSRoOX0z1BGZ/KLXzDZDZxICiNv83mbd/aVhN +Ono0JnY5Y4i+MzbfysNNBFs4mDxU6cnPG0CGhtDWE7gZspbhggpwSyzCmDNiOhd UZVrRhMiyRbenYdQe0O2uMT0coB1ct1svvSvcD8dgpigDoaz+zsAJe+0bhH8ceLy VXLXh9GTOrwQ8+cx3jWPYGL8/iCvx8eTtPNOlPJqh7+29ZjvSfbirCAeFvXZGc11 M+plHQ6jhIDnk+ityGkdpkjUBEuZ9QPpFPrrHR8VSZtbfYB5u9pffrG4cvFdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtIPInpnLEWs0KCxGOZjP33CHZ5UwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZiZWRmM2EtZDdkMS00OWE2LTkz ZWQtYjI3N2YxZjdhNmViLzAvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThG QTI3NjY0QTk2NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIy2VtHEjKBJ9We9h8Mxh+c97FsTgoG14wxB 51A2mIUSmzCw7P5J0OO/kQd32XnsP5hGxtrtI5+xW+scOFpAiZJ7Y3NPwxPRWUL8 LoUOWfh46+f/zJFs7B2mc3BY9KsikUHE7jIZ8AwfMQCOpKVbAxqIeIb5tY1nlASU GxK3wLkJJ+aRfjNzSWwBhJgDrvde2xQ+ZPxprcpAlIs3JQdUK1f7Uxzx0z3FFjPj t4IihO2zcJK027sH5Pkrb4SRVgIx3+Ogrg2ZyT1g0iEyMd5GTkUBYKPVVKbTQlXI ebI+hOLfrV5KxYhM2Pr9vc3E0tabwOLtWEofQaGAW11vwQPkjII= -----END CERTIFICATE-----Generated at Thu Jul 3 06:51:26 2025 by rpki-client