$ rpki-client -vvf repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft File: 658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft (raw, json) Hash identifier: JW3vAd4j4NCkSNmalurstWoCiKSYR1PKxaIv8zFpH5o= Subject key identifier: 71:7C:E1:34:BA:19:1C:58:52:30:C3:6D:27:23:A7:26:C6:DE:0B:FE Authority key identifier: 65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F Certificate issuer: /CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Certificate serial: 7EDC24CC3BD05C3E022CF06BA20D31768CCD0E5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft Manifest number: 01C8 Signing time: Sat 28 Jun 2025 04:41:43 +0000 Manifest this update: Sat 28 Jun 2025 04:36:43 +0000 Manifest next update: Tue 01 Jul 2025 08:27:43 +0000 Files and hashes: 1: 658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl (hash: LWPiSz88W3MLmYdMUeikjtatiGAL9ZkcmV5sfOtTZb4=) 2: 3130332e3133392e32362e302f32332d3234203d3e20313338383630.roa (hash: en7yrsRqDUaal9vRU4LRRex8mQ3pcI0rlYghVnCEE78=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 08:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:dc:24:cc:3b:d0:5c:3e:02:2c:f0:6b:a2:0d:31:76:8c:cd:0e:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Validity Not Before: Jun 28 04:36:43 2025 GMT Not After : Jul 1 08:27:43 2025 GMT Subject: CN=717CE134BA191C585230C36D2723A726C6DE0BFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:95:42:e5:f5:3b:36:fe:68:e0:88:a4:29:94: c9:e7:85:c2:88:f2:35:62:a6:f7:b3:e7:d2:7e:f5: 71:d0:fa:12:8a:04:86:30:e4:7d:f4:10:9d:65:47: fc:fe:bb:4b:d0:2d:4e:79:80:e9:ce:02:91:13:04: 3b:96:de:81:9c:a7:1c:94:06:9d:b5:e1:87:dc:9f: 7f:d0:33:0f:28:51:e9:4c:56:81:57:81:b7:3c:17: 93:07:54:0c:a3:e2:6a:df:8b:8b:06:f2:eb:5a:0d: 2f:96:fa:15:0b:a0:4e:4e:3c:c7:b3:84:9c:bc:14: c5:02:be:00:a1:69:f7:de:b9:b1:ae:b5:0a:68:49: fe:d2:69:8d:eb:65:0e:4d:2a:6d:21:df:41:32:0f: 3b:23:a1:f4:d7:3d:6e:c9:4b:5e:84:87:02:fc:4f: c5:0e:6a:04:f8:31:67:c9:76:d3:c4:08:19:3f:c2: cf:54:98:01:32:02:fb:20:7e:d1:3b:15:7f:cc:16: ae:d3:90:df:b5:fd:97:2d:68:ce:b7:d7:e3:94:c9: 63:a0:1d:d8:5e:d9:6a:a6:be:ba:5b:42:f2:67:0f: a9:08:dc:1c:32:e2:41:0b:b6:00:0f:1f:80:4f:0c: d2:05:da:41:a3:fb:a8:9d:af:2b:02:26:d4:ee:16: b7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:7C:E1:34:BA:19:1C:58:52:30:C3:6D:27:23:A7:26:C6:DE:0B:FE X509v3 Authority Key Identifier: keyid:65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:a0:2c:24:e8:c7:0c:a6:f6:b5:a9:a1:5d:4c:00:a3:07:82: 22:68:e5:a0:f6:fb:c3:ad:24:0b:b4:64:40:9f:f7:1c:f5:be: 09:14:a5:ce:a5:ae:02:c1:11:ce:04:94:c7:b0:d3:13:70:84: 85:e3:e5:3c:3c:a6:a4:57:48:db:0d:89:2f:02:4c:0c:72:05: 3c:0f:8a:cb:c8:e4:d8:d4:c5:49:cf:1b:f1:29:42:3d:d6:fe: 61:ff:3a:38:30:d2:0a:21:e9:e7:61:58:72:47:40:fa:36:5b: d5:2d:47:51:0e:f1:a3:e9:30:d7:1d:35:86:d1:31:05:7a:71: f1:3f:aa:49:4f:cf:b3:2a:9d:c3:58:19:4c:62:67:69:c7:ad: 89:71:01:a2:f6:8a:e0:30:a8:a9:f6:c8:48:69:19:e8:99:ce: 0f:2b:bb:88:fe:3c:6e:08:88:0f:94:ab:0f:42:49:5e:5f:f5: 3e:37:d9:26:1a:1f:e6:8c:c5:ef:7a:0a:bf:77:be:66:a2:9e: 8e:e7:b3:b9:82:fd:20:7a:f4:21:e3:e6:31:ac:61:ae:3f:d3: 75:c4:da:c1:77:d7:e4:f2:3c:99:cc:05:86:df:b5:71:53:a3: 46:71:cd:69:96:29:1b:cf:d6:65:28:5c:4f:b9:da:1e:31:b2: 41:67:10:27 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUftwkzDvQXD4CLPBrog0xdozNDlswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUx MkM5Q0I5RjAeFw0yNTA2MjgwNDM2NDNaFw0yNTA3MDEwODI3NDNaMDMxMTAvBgNV BAMTKDcxN0NFMTM0QkExOTFDNTg1MjMwQzM2RDI3MjNBNzI2QzZERTBCRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDplULl9Ts2/mjgiKQplMnnhcKI 8jVipvez59J+9XHQ+hKKBIYw5H30EJ1lR/z+u0vQLU55gOnOApETBDuW3oGcpxyU Bp214Yfcn3/QMw8oUelMVoFXgbc8F5MHVAyj4mrfi4sG8utaDS+W+hULoE5OPMez hJy8FMUCvgChaffeubGutQpoSf7SaY3rZQ5NKm0h30EyDzsjofTXPW7JS16EhwL8 T8UOagT4MWfJdtPECBk/ws9UmAEyAvsgftE7FX/MFq7TkN+1/ZctaM631+OUyWOg Hdhe2WqmvrpbQvJnD6kI3Bwy4kELtgAPH4BPDNIF2kGj+6idrysCJtTuFrebAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcXzhNLoZHFhSMMNtJyOnJsbeC/4wHwYDVR0j BBgwFoAUZYwNhhfC0FznIEJ+Hfcv3hLJy58wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjVkODhmMS1iOWMwLTQ4NWUtOTE2ZS01OWI3ZTM2OThkYTEvMC82NThDMEQ4NjE3 QzJEMDVDRTcyMDQyN0UxREY3MkZERTEyQzlDQjlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUxMkM5 Q0I5Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTY1ZDg4ZjEtYjljMC00ODVlLTkx NmUtNTliN2UzNjk4ZGExLzAvNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJG REUxMkM5Q0I5Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAKgLCToxwym9rWpoV1MAKMHgiJo5aD2+8Ot JAu0ZECf9xz1vgkUpc6lrgLBEc4ElMew0xNwhIXj5Tw8pqRXSNsNiS8CTAxyBTwP isvI5NjUxUnPG/EpQj3W/mH/Ojgw0goh6edhWHJHQPo2W9UtR1EO8aPpMNcdNYbR MQV6cfE/qklPz7MqncNYGUxiZ2nHrYlxAaL2iuAwqKn2yEhpGeiZzg8ru4j+PG4I iA+Uqw9CSV5f9T432SYaH+aMxe96Cr93vmaino7ns7mC/SB69CHj5jGsYa4/03XE 2sF31+TyPJnMBYbftXFTo0ZxzWmWKRvP1mUoXE+52h4xskFnECc= -----END CERTIFICATE-----Generated at Sun Jun 29 22:08:50 2025 by rpki-client