$ rpki-client -vvf repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft File: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft (raw, json) Hash identifier: ROnNJGcETwI8zXlofR3LcGdQdSHZworMAvEMmSpyFho= Subject key identifier: 11:2E:17:09:71:D9:FB:C4:83:37:DC:92:54:A7:F5:DD:80:DE:3A:05 Authority key identifier: 16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 Certificate issuer: /CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Certificate serial: 482CAA5CB581D43DD2AA08C099DE0B09F942880B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft Manifest number: 021D Signing time: Tue 01 Jul 2025 00:01:50 +0000 Manifest this update: Mon 30 Jun 2025 23:56:50 +0000 Manifest next update: Fri 04 Jul 2025 04:24:50 +0000 Files and hashes: 1: 3130332e3138302e3235312e302f32342d3234203d3e20313439333733.roa (hash: omQCe9i6UAQabn658NY546AFhSlSDQxwejMwWzEAolo=) 2: 3130332e3138302e3235302e302f32332d3234203d3e20313439333733.roa (hash: 6+aOTOrAxzWsWipZ2VbdRwlhEyJYsC/PS67oMR2JaEk=) 3: 3130332e3138302e3235302e302f32342d3234203d3e20313439333733.roa (hash: 132Kizc+R6ps/hT6AogJkCilm9HX7+ORPphZ8hVhLQ8=) 4: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl (hash: yj8Fs4kqfqJ64b2HzBiGv7jmZlVqXjlOWqE9CYjzf+0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 04:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:2c:aa:5c:b5:81:d4:3d:d2:aa:08:c0:99:de:0b:09:f9:42:88:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Validity Not Before: Jun 30 23:56:50 2025 GMT Not After : Jul 4 04:24:50 2025 GMT Subject: CN=112E170971D9FBC48337DC9254A7F5DD80DE3A05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a2:e3:55:bd:b0:dd:4f:43:41:8a:41:d1:6a: 8a:27:c0:cf:6f:c1:11:4f:2f:53:dd:af:e9:b2:be: 3d:9b:07:9d:58:56:f6:05:c5:e6:a7:28:05:90:d9: 09:0c:a1:3c:e3:3e:e3:f0:44:28:0a:de:96:48:c3: d3:19:66:80:81:30:0c:08:4f:4d:16:cf:87:26:81: fb:1c:94:ff:77:9d:50:3c:6a:15:c4:fe:3e:df:6a: 86:dd:8c:5c:03:75:1a:69:48:dc:d1:34:76:22:20: 74:1a:d1:13:88:65:3b:68:71:3d:a6:7c:c2:3b:d0: bb:fe:a9:39:e6:ea:ad:b4:43:1c:aa:37:dc:33:83: 4d:33:d0:a9:8d:2f:bb:8c:51:bb:29:c1:82:42:63: 78:8a:1c:f6:a5:1a:42:72:08:b8:42:b9:51:c4:6d: d8:37:58:5c:3b:c7:f3:01:e4:82:3f:9a:1b:51:3b: 4c:c0:c1:35:db:9f:c4:ad:1a:55:e3:a0:22:66:95: 6a:1b:87:f0:7c:8d:c4:5c:15:e2:ab:ce:a6:1e:08: 4b:75:15:9c:1d:25:ed:02:0d:47:09:99:8c:61:73: 91:e9:be:35:f7:fd:46:0e:9d:22:b1:ed:c2:1c:36: 94:4f:a4:f8:97:5e:30:39:c5:eb:0a:bc:63:ef:58: 10:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:2E:17:09:71:D9:FB:C4:83:37:DC:92:54:A7:F5:DD:80:DE:3A:05 X509v3 Authority Key Identifier: keyid:16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:3e:cc:97:59:5d:b1:57:c8:a1:53:8c:35:a0:21:72:9b:a4: 0d:53:6c:44:4f:02:ae:d3:4e:a4:ec:e5:bf:28:64:f9:dd:81: ad:73:b7:58:d0:56:d8:42:77:06:33:72:06:f4:f4:fd:54:ba: 45:38:08:3d:a1:b5:20:0a:97:4b:17:93:41:8b:e6:72:00:47: f1:9c:03:67:7c:3e:b9:0b:4c:61:b4:81:31:72:84:87:c6:33: 84:a5:27:63:94:84:4a:58:84:c9:00:3e:4b:59:da:b4:97:91: d2:27:02:12:5d:6d:32:bd:03:f4:33:07:38:cf:a1:28:84:e2: b3:34:34:ef:8b:95:dc:41:5f:18:73:bf:69:17:2d:a8:ec:13: 63:e9:6d:a5:b4:03:0b:d1:2b:77:0c:47:f9:c7:ec:47:2d:70: 50:ff:49:09:0c:6a:e9:29:d6:52:3a:30:06:af:2e:07:e0:03: ad:ca:06:82:ba:9f:96:78:cb:c0:d0:12:52:d9:95:fc:a7:8e: 61:00:40:90:df:a7:61:a6:65:d3:fe:30:bc:f5:30:b5:af:dc: 62:2c:11:24:13:33:f3:c3:42:52:4c:d5:91:33:bd:ec:91:c8: fb:24:83:56:63:f1:3d:55:f4:6c:d9:cd:d0:d8:af:04:65:a8: 52:25:20:a7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSCyqXLWB1D3SqgjAmd4LCflCiAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdB MTBBMUUyMDAeFw0yNTA2MzAyMzU2NTBaFw0yNTA3MDQwNDI0NTBaMDMxMTAvBgNV BAMTKDExMkUxNzA5NzFEOUZCQzQ4MzM3REM5MjU0QTdGNUREODBERTNBMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9ouNVvbDdT0NBikHRaoonwM9v wRFPL1Pdr+myvj2bB51YVvYFxeanKAWQ2QkMoTzjPuPwRCgK3pZIw9MZZoCBMAwI T00Wz4cmgfsclP93nVA8ahXE/j7faobdjFwDdRppSNzRNHYiIHQa0ROIZTtocT2m fMI70Lv+qTnm6q20QxyqN9wzg00z0KmNL7uMUbspwYJCY3iKHPalGkJyCLhCuVHE bdg3WFw7x/MB5II/mhtRO0zAwTXbn8StGlXjoCJmlWobh/B8jcRcFeKrzqYeCEt1 FZwdJe0CDUcJmYxhc5HpvjX3/UYOnSKx7cIcNpRPpPiXXjA5xesKvGPvWBDVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUES4XCXHZ+8SDN9ySVKf13YDeOgUwHwYDVR0j BBgwFoAUFpcSeuKI9MA1A+0O2PCb16EKHiAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MjQ5ZDM4Ny03MGNmLTQwZTktODc1OS05Yjg2ZTBjNjUxMjgvMC8xNjk3MTI3QUUy ODhGNEMwMzUwM0VEMEVEOEYwOUJEN0ExMEExRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdBMTBB MUUyMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTI0OWQzODctNzBjZi00MGU5LTg3 NTktOWI4NmUwYzY1MTI4LzAvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlC RDdBMTBBMUUyMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACg+zJdZXbFXyKFTjDWgIXKbpA1TbERPAq7T TqTs5b8oZPndga1zt1jQVthCdwYzcgb09P1UukU4CD2htSAKl0sXk0GL5nIAR/Gc A2d8PrkLTGG0gTFyhIfGM4SlJ2OUhEpYhMkAPktZ2rSXkdInAhJdbTK9A/QzBzjP oSiE4rM0NO+LldxBXxhzv2kXLajsE2PpbaW0AwvRK3cMR/nH7EctcFD/SQkMaukp 1lI6MAavLgfgA63KBoK6n5Z4y8DQElLZlfynjmEAQJDfp2GmZdP+MLz1MLWv3GIs ESQTM/PDQlJM1ZEzveyRyPskg1Zj8T1V9GzZzdDYrwRlqFIlIKc= -----END CERTIFICATE-----Generated at Wed Jul 2 05:41:01 2025 by rpki-client