$ rpki-client -vvf repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft File: D1E28E396E82778793018513BD084854BE663886.mft (raw, json) Hash identifier: atbf+31ERMEzxn9LQqIClW2pvSGS10g437wi2b7eA2E= Subject key identifier: 32:DC:97:AE:84:A3:D4:1B:4C:4F:98:57:B5:38:25:B4:82:4C:A8:09 Authority key identifier: D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 Certificate issuer: /CN=D1E28E396E82778793018513BD084854BE663886 Certificate serial: 679EEE0911D9B3416A89BA4D48FABF2542185FFF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft Manifest number: 0241 Signing time: Mon 30 Jun 2025 01:10:44 +0000 Manifest this update: Mon 30 Jun 2025 01:05:44 +0000 Manifest next update: Thu 03 Jul 2025 13:07:44 +0000 Files and hashes: 1: D1E28E396E82778793018513BD084854BE663886.crl (hash: GthOnc3+sPLMMPM8lu6E5wPWUDLXTiuLV+ELWBL/06I=) 2: 3130332e3136392e3233302e302f32332d3234203d3e2034383030.roa (hash: wAotKcJ/dAT1Ar3MTmbAktiozrzps2/cZFRmdSxY5TY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 13:07:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:9e:ee:09:11:d9:b3:41:6a:89:ba:4d:48:fa:bf:25:42:18:5f:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1E28E396E82778793018513BD084854BE663886 Validity Not Before: Jun 30 01:05:44 2025 GMT Not After : Jul 3 13:07:44 2025 GMT Subject: CN=32DC97AE84A3D41B4C4F9857B53825B4824CA809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8e:a2:ee:3a:b9:b9:ff:6b:b5:4a:ac:e2:18: 4a:ee:45:a5:bc:b4:2c:3a:6c:97:f4:65:71:7e:8e: e0:50:f5:70:10:6f:fb:36:d8:06:1c:36:00:a4:f4: de:4e:f0:43:49:1e:2b:c1:c7:05:86:a1:c5:4c:96: 9f:42:5e:ae:7e:3d:6b:45:e3:05:a7:73:e5:a0:25: 60:9f:43:80:7b:47:00:f6:01:3d:f6:c2:79:3e:ca: f5:35:6a:df:b2:91:1e:f8:b9:4c:0b:3e:c4:48:d8: b2:98:23:b4:29:37:93:e6:e6:62:5a:ff:2d:1a:4d: fa:f7:8f:7f:7f:16:49:b5:dc:c2:5d:48:77:98:f9: 71:7a:94:6a:19:4f:11:f9:c0:da:c6:cb:b2:dd:f4: 8e:5d:c8:dc:6b:9a:62:f1:1b:0a:85:3d:ff:87:94: d9:11:92:06:b8:1e:6f:ea:ee:0a:a7:b2:48:fb:29: e9:eb:97:01:57:ed:64:12:d0:ed:04:42:b0:8e:cc: d7:9c:7b:aa:c8:2c:35:d7:cb:40:bb:15:1a:99:57: 1b:75:82:43:02:85:5a:21:1d:93:77:de:5e:46:1c: ce:bc:1b:74:06:ea:30:68:aa:17:c8:30:84:ea:f9: cb:e3:0f:14:b3:69:39:1f:44:71:15:01:e8:b1:74: e2:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:DC:97:AE:84:A3:D4:1B:4C:4F:98:57:B5:38:25:B4:82:4C:A8:09 X509v3 Authority Key Identifier: keyid:D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:73:75:c0:9a:ae:2e:e6:2d:d8:70:50:53:78:39:92:c1:ae: 81:68:23:7d:4d:d7:cc:d6:b2:de:c0:cf:f7:16:c3:fc:76:7e: 55:fa:d4:ac:43:b0:30:7e:d3:44:28:c5:a9:c2:de:31:15:2f: e3:35:35:8c:26:a6:cb:a0:4a:09:89:07:92:0e:bb:6e:60:62: 4c:4e:70:80:77:52:59:8c:39:b7:bd:b0:56:46:f6:66:39:da: c8:6d:17:e1:23:47:d8:0e:bf:f4:69:c3:c8:2c:d1:66:e4:25: 04:2c:65:ad:99:49:cd:9a:89:b1:ed:cb:8c:5a:af:55:e1:3b: d2:eb:85:9a:6b:e6:af:ac:71:d8:35:67:cc:19:1c:07:c7:8f: c2:48:a9:01:c1:25:a6:7b:8f:26:e7:3f:b6:19:56:2c:3d:3d: 8b:38:26:37:c4:2c:b3:fd:af:7e:a1:b0:e3:b0:d5:29:be:b9: 88:64:02:96:56:f3:42:6c:19:90:ca:44:3b:f6:cf:2d:80:c4: 73:fa:78:4f:d0:9a:50:1d:17:e6:97:cd:0c:c1:b3:d1:00:4c: b0:c0:3a:c3:ed:e4:66:4f:23:8f:71:cc:36:2e:df:69:8e:c6: 42:9b:8a:66:e9:72:96:e8:d2:55:6a:35:c4:53:ea:c9:78:c0: 50:49:66:22 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZ57uCRHZs0FqibpNSPq/JUIYX/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRC RTY2Mzg4NjAeFw0yNTA2MzAwMTA1NDRaFw0yNTA3MDMxMzA3NDRaMDMxMTAvBgNV BAMTKDMyREM5N0FFODRBM0Q0MUI0QzRGOTg1N0I1MzgyNUI0ODI0Q0E4MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAjqLuOrm5/2u1SqziGEruRaW8 tCw6bJf0ZXF+juBQ9XAQb/s22AYcNgCk9N5O8ENJHivBxwWGocVMlp9CXq5+PWtF 4wWnc+WgJWCfQ4B7RwD2AT32wnk+yvU1at+ykR74uUwLPsRI2LKYI7QpN5Pm5mJa /y0aTfr3j39/Fkm13MJdSHeY+XF6lGoZTxH5wNrGy7Ld9I5dyNxrmmLxGwqFPf+H lNkRkga4Hm/q7gqnskj7KenrlwFX7WQS0O0EQrCOzNece6rILDXXy0C7FRqZVxt1 gkMChVohHZN33l5GHM68G3QG6jBoqhfIMITq+cvjDxSzaTkfRHEVAeixdOIVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMtyXroSj1BtMT5hXtTgltIJMqAkwHwYDVR0j BBgwFoAU0eKOOW6Cd4eTAYUTvQhIVL5mOIYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmQ2MTEzNS03NWU0LTQ2YzYtYmRkZC1mYmE2ODM0ZGNlNDEvMC9EMUUyOEUzOTZF ODI3Nzg3OTMwMTg1MTNCRDA4NDg1NEJFNjYzODg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRCRTY2 Mzg4Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTZkNjExMzUtNzVlNC00NmM2LWJk ZGQtZmJhNjgzNGRjZTQxLzAvRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4 NTRCRTY2Mzg4Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFdzdcCari7mLdhwUFN4OZLBroFoI31N18zW st7Az/cWw/x2flX61KxDsDB+00QoxanC3jEVL+M1NYwmpsugSgmJB5IOu25gYkxO cIB3UlmMObe9sFZG9mY52shtF+EjR9gOv/Rpw8gs0WbkJQQsZa2ZSc2aibHty4xa r1XhO9LrhZpr5q+scdg1Z8wZHAfHj8JIqQHBJaZ7jybnP7YZViw9PYs4JjfELLP9 r36hsOOw1Sm+uYhkApZW80JsGZDKRDv2zy2AxHP6eE/QmlAdF+aXzQzBs9EATLDA OsPt5GZPI49xzDYu32mOxkKbimbpcpbo0lVqNcRT6sl4wFBJZiI= -----END CERTIFICATE-----Generated at Tue Jul 1 21:09:37 2025 by rpki-client