$ rpki-client -vvf repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft File: 656A72A6F38230D6A0DB097480D736B5C2FBA683.mft (raw, json) Hash identifier: 0YJP9jo7TRBw3beGJazq/cDcGcAzktMIrer6Y6IbgEs= Subject key identifier: 93:38:77:95:49:73:FD:F7:02:BC:04:3C:0D:26:E0:57:35:A8:5F:61 Authority key identifier: 65:6A:72:A6:F3:82:30:D6:A0:DB:09:74:80:D7:36:B5:C2:FB:A6:83 Certificate issuer: /CN=656A72A6F38230D6A0DB097480D736B5C2FBA683 Certificate serial: 08C13D010ACAEFE44056A9A0F9CD15D06EB8F055 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer Subject info access: rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft Manifest number: 021B Signing time: Sat 28 Jun 2025 19:12:33 +0000 Manifest this update: Sat 28 Jun 2025 19:07:33 +0000 Manifest next update: Tue 01 Jul 2025 19:19:33 +0000 Files and hashes: 1: 656A72A6F38230D6A0DB097480D736B5C2FBA683.crl (hash: 9bcJT/MVeQZxSsB5ErRtKEhJA5nhwp4EouxyNds+Do8=) 2: 3130332e3138322e37322e302f32342d3234203d3e20313439343038.roa (hash: vPnPfMFVMwFeTvRaeceb22yqey+t7BHBklK6ecujm+A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.crl rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 19:19:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:c1:3d:01:0a:ca:ef:e4:40:56:a9:a0:f9:cd:15:d0:6e:b8:f0:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=656A72A6F38230D6A0DB097480D736B5C2FBA683 Validity Not Before: Jun 28 19:07:33 2025 GMT Not After : Jul 1 19:19:33 2025 GMT Subject: CN=933877954973FDF702BC043C0D26E05735A85F61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c7:d8:0d:98:69:71:82:b4:72:d7:80:5c:15: a9:83:c3:e0:b5:38:08:77:fa:d3:09:ce:d2:e3:6c: 0b:be:2a:46:a2:5d:bd:ab:87:a8:13:e6:29:69:4a: 06:60:a3:db:ac:49:a0:00:e9:7e:06:9a:9c:ba:41: fd:74:a2:d0:1b:98:d4:1e:d7:40:a9:4f:33:83:8b: b9:a4:f2:06:ca:9f:3d:23:27:9f:e4:20:ec:8e:27: cf:3a:90:eb:e2:08:1d:2b:df:f6:2f:ca:10:bb:5f: 17:6d:a2:d9:27:b7:65:37:38:8e:ee:b6:51:a5:dc: 1f:8e:14:0d:91:03:60:e7:42:b3:f2:ad:ff:5b:3b: 6f:21:60:bb:cf:17:c1:18:db:43:40:51:99:99:2c: bd:d6:f1:6b:b1:71:70:52:11:05:51:12:41:fe:c8: 09:1f:9e:6d:13:16:c8:61:7e:37:b7:2e:68:0c:d7: c5:c5:e1:1c:29:cc:70:2c:6b:94:26:35:ac:20:0f: 6d:58:25:e3:b7:ac:e5:ae:50:58:b0:3d:ce:9a:59: 98:9c:dc:6a:37:fa:8d:13:db:fb:de:fc:1b:b4:b8: 6f:50:f8:cd:0c:1f:e2:71:3d:01:58:15:71:ce:19: 6b:cf:c7:0f:48:66:97:fa:ca:61:ab:4e:ad:ea:81: 7f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:38:77:95:49:73:FD:F7:02:BC:04:3C:0D:26:E0:57:35:A8:5F:61 X509v3 Authority Key Identifier: keyid:65:6A:72:A6:F3:82:30:D6:A0:DB:09:74:80:D7:36:B5:C2:FB:A6:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:72:5b:7e:0c:4a:bb:ba:c3:25:0b:82:9a:64:5d:32:ee:00: 9a:48:ea:5d:83:23:51:f1:2a:36:81:55:42:fc:7a:b0:e4:ba: 05:62:59:bc:de:fc:86:fa:58:8e:59:0d:bd:fb:c4:10:90:50: 07:66:2a:d9:57:3d:37:e7:a2:1a:1d:d2:64:1e:57:65:3f:91: 74:81:88:d0:33:24:40:5a:92:f2:0c:b9:25:e1:ce:6a:3d:61: ec:f5:a2:03:e6:d7:ba:85:27:4c:db:16:71:de:eb:e5:31:8f: c7:a4:08:0d:b2:f7:86:f4:bc:8a:b0:7c:ab:c8:ae:65:8f:4f: 61:74:94:a3:dd:98:1e:03:af:2c:f6:51:6a:01:8f:69:0f:b0: fd:d5:d6:74:d1:36:99:43:c7:10:09:95:52:12:a8:cf:fb:ab: 73:7e:e2:e6:db:3c:d9:6d:24:5e:93:5f:97:30:6e:6d:9c:ac: e7:ed:21:36:91:0c:db:b9:28:e3:b4:a2:f9:3e:e9:c5:1a:9f: 9f:27:a5:1c:30:16:40:ec:49:06:e2:96:77:00:18:ea:15:d3: 11:b0:21:cf:65:fe:4c:5a:bc:a5:19:cf:37:e6:f2:6a:db:54: de:8f:23:fe:97:ea:91:8f:dd:ae:56:8a:08:98:2b:f0:20:1d: 6d:f0:a5:ea -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCME9AQrK7+RAVqmg+c0V0G648FUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2QjVD MkZCQTY4MzAeFw0yNTA2MjgxOTA3MzNaFw0yNTA3MDExOTE5MzNaMDMxMTAvBgNV BAMTKDkzMzg3Nzk1NDk3M0ZERjcwMkJDMDQzQzBEMjZFMDU3MzVBODVGNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVx9gNmGlxgrRy14BcFamDw+C1 OAh3+tMJztLjbAu+KkaiXb2rh6gT5ilpSgZgo9usSaAA6X4Gmpy6Qf10otAbmNQe 10CpTzODi7mk8gbKnz0jJ5/kIOyOJ886kOviCB0r3/YvyhC7Xxdtotknt2U3OI7u tlGl3B+OFA2RA2DnQrPyrf9bO28hYLvPF8EY20NAUZmZLL3W8WuxcXBSEQVREkH+ yAkfnm0TFshhfje3LmgM18XF4RwpzHAsa5QmNawgD21YJeO3rOWuUFiwPc6aWZic 3Go3+o0T2/ve/Bu0uG9Q+M0MH+JxPQFYFXHOGWvPxw9IZpf6ymGrTq3qgX8fAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkzh3lUlz/fcCvAQ8DSbgVzWoX2EwHwYDVR0j BBgwFoAUZWpypvOCMNag2wl0gNc2tcL7poMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjczNzVmOS1lOGI1LTRkOTQtODBhOC0zNWUwMmRkMGY2ZjIvMC82NTZBNzJBNkYz ODIzMEQ2QTBEQjA5NzQ4MEQ3MzZCNUMyRkJBNjgzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2QjVDMkZC QTY4My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTY3Mzc1ZjktZThiNS00ZDk0LTgw YTgtMzVlMDJkZDBmNmYyLzAvNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2 QjVDMkZCQTY4My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFFyW34MSru6wyULgppkXTLuAJpI6l2DI1Hx KjaBVUL8erDkugViWbze/Ib6WI5ZDb37xBCQUAdmKtlXPTfnohod0mQeV2U/kXSB iNAzJEBakvIMuSXhzmo9Yez1ogPm17qFJ0zbFnHe6+Uxj8ekCA2y94b0vIqwfKvI rmWPT2F0lKPdmB4Dryz2UWoBj2kPsP3V1nTRNplDxxAJlVISqM/7q3N+4ubbPNlt JF6TX5cwbm2crOftITaRDNu5KOO0ovk+6cUan58npRwwFkDsSQbilncAGOoV0xGw Ic9l/kxavKUZzzfm8mrbVN6PI/6X6pGP3a5WigiYK/AgHW3wpeo= -----END CERTIFICATE-----Generated at Mon Jun 30 00:39:05 2025 by rpki-client