$ rpki-client -vvf repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft File: 7433AB64571BE1827F0BC97ED291976B6E3429FA.mft (raw, json) Hash identifier: NXDaJ34X6UUuD+Ur6mIe9LQt48Te5LTzRyIyRg3R8gw= Subject key identifier: ED:5F:2E:DC:14:9D:CA:3F:28:0B:A4:BB:F8:F8:48:5F:B1:C9:74:38 Authority key identifier: 74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA Certificate issuer: /CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Certificate serial: 073B2F7D1ED4C5155EA7D14382ABAD697BFDA6AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft Manifest number: 0183 Signing time: Tue 01 Jul 2025 05:42:12 +0000 Manifest this update: Tue 01 Jul 2025 05:37:12 +0000 Manifest next update: Fri 04 Jul 2025 11:25:12 +0000 Files and hashes: 1: 3130332e37352e36322e302f32342d3234203d3e20313530353339.roa (hash: Foo7ECvYM8eC5QdFLfci515Pz4pdcUotJYsrxOmUjnQ=) 2: 3130332e37352e36332e302f32342d3234203d3e20313530353339.roa (hash: dt0M2E6hMVGXyd6wchuCJpbqgL7DjAEk9eGkYZfJTqo=) 3: 3130332e37352e36322e302f32332d3234203d3e20313530353339.roa (hash: LDOqOfl8+d8Lz+/c+0knmLxGK2Kr8P4Ti1sIU0L3/wo=) 4: 7433AB64571BE1827F0BC97ED291976B6E3429FA.crl (hash: spECpQmPTNmRSqKGRERaPs/1GtsNR4nIhAQbdP+hp4A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 11:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:3b:2f:7d:1e:d4:c5:15:5e:a7:d1:43:82:ab:ad:69:7b:fd:a6:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Validity Not Before: Jul 1 05:37:12 2025 GMT Not After : Jul 4 11:25:12 2025 GMT Subject: CN=ED5F2EDC149DCA3F280BA4BBF8F8485FB1C97438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6b:33:ab:39:f3:e5:a5:68:4e:25:00:89:10: 44:ac:f0:7c:7b:60:5b:17:f3:74:05:6f:0f:a0:1b: 53:32:4f:40:8f:12:81:b3:06:25:f7:84:09:ef:f2: 7e:b0:98:c6:78:c2:07:96:39:ee:ed:ce:4d:14:57: ad:2d:7d:5a:1a:e5:a8:1b:0e:b8:00:4b:98:ae:0c: 40:bb:e0:3e:bb:0a:83:a0:85:f6:4a:43:e3:c6:35: 54:53:92:c2:8b:f8:c7:0f:94:28:7c:cd:ab:06:af: 9f:04:d4:7f:8d:9e:8f:85:8b:a1:7e:80:e4:53:76: 9a:13:30:1c:34:5b:54:ee:ee:59:55:9a:61:aa:74: 6e:fb:2c:c2:2b:d7:a4:b9:a9:86:fa:c1:96:4f:49: 7d:6b:80:13:76:0d:8d:d7:d6:34:0f:16:35:4a:3e: 93:5d:8e:85:26:89:c3:17:24:b1:5d:79:0b:2f:99: c6:0c:06:0d:bd:9f:e3:66:af:9e:fa:b7:1c:0c:6f: 37:69:14:6f:52:3d:f9:8d:bb:33:67:b8:38:85:8e: ff:0f:22:ac:31:cd:af:a9:fd:1d:44:66:f3:95:2f: 13:d7:18:24:21:ee:80:dd:de:54:b1:c2:91:04:14: 0c:0f:83:3e:a8:f9:00:31:3c:82:1b:57:b3:bc:b4: 85:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:5F:2E:DC:14:9D:CA:3F:28:0B:A4:BB:F8:F8:48:5F:B1:C9:74:38 X509v3 Authority Key Identifier: keyid:74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:55:4b:fa:7a:18:d4:9f:e2:25:8f:32:2f:6a:67:6d:ed:b7: 85:b9:c9:42:5c:8f:61:25:04:fa:c1:17:49:22:ee:60:87:cd: ff:41:36:8b:56:8e:f3:cc:c6:22:f4:fa:00:f7:ec:f7:09:af: fb:d3:6c:3f:2e:19:18:f0:55:c3:02:7c:b7:8e:42:b5:44:c6: d1:d7:a4:5b:9f:4a:a7:f0:35:92:77:49:0c:48:f1:28:64:41: 00:ff:b1:b8:78:60:89:58:ec:06:22:cd:f4:cc:7e:dc:a7:05: 90:c9:fd:e4:a4:c8:89:ef:79:85:ec:94:f3:29:da:a6:d4:76: 4c:5b:35:7c:38:78:f4:65:42:31:ed:0f:e1:c8:27:e9:a9:62: 55:c7:b6:bc:eb:00:17:ee:08:03:49:52:c1:52:54:11:a9:2f: 87:cf:4a:6d:e6:88:4f:83:f5:74:73:fe:4d:4a:0f:46:f1:b4: e4:e1:be:f0:b2:b9:7b:55:88:b6:93:72:50:74:4f:f9:10:d4: 23:ec:46:c9:8b:61:45:98:0a:8b:d4:22:93:30:0f:14:19:d5: b3:8f:b6:44:b6:36:34:12:e1:ca:9e:54:9c:72:ac:f4:82:df: df:c4:86:54:b4:f3:f3:1e:b3:4b:44:13:6a:47:8c:7a:d4:cc: 8c:d9:e5:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBzsvfR7UxRVep9FDgqutaXv9pq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2 RTM0MjlGQTAeFw0yNTA3MDEwNTM3MTJaFw0yNTA3MDQxMTI1MTJaMDMxMTAvBgNV BAMTKEVENUYyRURDMTQ5RENBM0YyODBCQTRCQkY4Rjg0ODVGQjFDOTc0MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/azOrOfPlpWhOJQCJEESs8Hx7 YFsX83QFbw+gG1MyT0CPEoGzBiX3hAnv8n6wmMZ4wgeWOe7tzk0UV60tfVoa5agb DrgAS5iuDEC74D67CoOghfZKQ+PGNVRTksKL+McPlCh8zasGr58E1H+Nno+Fi6F+ gORTdpoTMBw0W1Tu7llVmmGqdG77LMIr16S5qYb6wZZPSX1rgBN2DY3X1jQPFjVK PpNdjoUmicMXJLFdeQsvmcYMBg29n+Nmr576txwMbzdpFG9SPfmNuzNnuDiFjv8P Iqwxza+p/R1EZvOVLxPXGCQh7oDd3lSxwpEEFAwPgz6o+QAxPIIbV7O8tIV7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7V8u3BSdyj8oC6S7+PhIX7HJdDgwHwYDVR0j BBgwFoAUdDOrZFcb4YJ/C8l+0pGXa240KfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2M4YTBjMy0zN2Y1LTQ2NjctYTQzMC02ZmExMTFkMzQzYWEvMC83NDMzQUI2NDU3 MUJFMTgyN0YwQkM5N0VEMjkxOTc2QjZFMzQyOUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2RTM0 MjlGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDdjOGEwYzMtMzdmNS00NjY3LWE0 MzAtNmZhMTExZDM0M2FhLzAvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3 NkI2RTM0MjlGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFxVS/p6GNSf4iWPMi9qZ23tt4W5yUJcj2El BPrBF0ki7mCHzf9BNotWjvPMxiL0+gD37PcJr/vTbD8uGRjwVcMCfLeOQrVExtHX pFufSqfwNZJ3SQxI8ShkQQD/sbh4YIlY7AYizfTMftynBZDJ/eSkyInveYXslPMp 2qbUdkxbNXw4ePRlQjHtD+HIJ+mpYlXHtrzrABfuCANJUsFSVBGpL4fPSm3miE+D 9XRz/k1KD0bxtOThvvCyuXtViLaTclB0T/kQ1CPsRsmLYUWYCovUIpMwDxQZ1bOP tkS2NjQS4cqeVJxyrPSC39/EhlS08/Mes0tEE2pHjHrUzIzZ5SE= -----END CERTIFICATE-----Generated at Wed Jul 2 14:22:13 2025 by rpki-client