$ rpki-client -vvf repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft File: 2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft (raw, json) Hash identifier: 9P8bai6hXWNB3m2r2Ik5x8Rxx1I9aO0xTBJ9Yn2rd68= Subject key identifier: FD:ED:10:40:3E:73:59:C8:5E:2E:E8:00:BC:82:C9:64:55:78:B9:FC Authority key identifier: 2C:FD:5B:DD:D1:DB:A6:D9:40:28:74:D6:22:3A:BD:7E:EE:E0:16:05 Certificate issuer: /CN=2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605 Certificate serial: 2F776881D0BF4E146EB12C393B6D16F94E7535B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft Manifest number: B9 Signing time: Sun 29 Jun 2025 07:30:36 +0000 Manifest this update: Sun 29 Jun 2025 07:25:36 +0000 Manifest next update: Wed 02 Jul 2025 11:57:36 +0000 Files and hashes: 1: 32372e3132342e36372e302f32342d3234203d3e20313532303339.roa (hash: PIB1m7UZc9kcov7LjZoIh/Ol3lgnFrAZfbEkkmZBCd0=) 2: 32372e3132342e36362e302f32342d3234203d3e20313532303339.roa (hash: Qk1aebZH6HpsmbRtyw6Zbd7LsZDQbi5L/mrlB31+AsU=) 3: 2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl (hash: dkv4FMgcNvnIRGiVm9rOKLmPJ7fr1UxY46kBYBgYIMc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 11:57:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:77:68:81:d0:bf:4e:14:6e:b1:2c:39:3b:6d:16:f9:4e:75:35:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605 Validity Not Before: Jun 29 07:25:36 2025 GMT Not After : Jul 2 11:57:36 2025 GMT Subject: CN=FDED10403E7359C85E2EE800BC82C9645578B9FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fc:f7:9b:82:7b:24:dc:f2:28:3a:27:53:0e: df:f6:bf:d3:e8:d8:c4:b6:c1:b8:ce:76:ea:38:39: 15:3a:66:18:03:36:e2:8d:ff:48:50:b7:b9:75:3b: 1a:50:e3:bb:87:ae:63:bf:ba:30:b5:d2:5a:3e:8e: 98:43:82:eb:4d:e3:f3:64:51:6a:90:39:8d:8b:4c: 03:a8:d2:c1:f5:bc:53:1b:93:b2:3f:80:51:ab:5e: 72:47:47:8e:f9:38:56:cc:0e:8d:06:0e:67:c0:00: 80:31:4c:14:64:74:0d:91:ae:b0:e0:66:d8:2a:71: 36:3c:a0:e8:4b:01:49:17:10:3e:bd:3a:2d:ef:49: 39:af:b2:b5:86:a6:ef:fc:af:2c:d5:b6:de:d6:f3: 8a:1e:4e:52:85:bd:5f:f7:e3:30:a3:e6:cc:d9:a5: 62:b0:c3:c2:4e:82:a7:8d:3f:bd:f2:2b:99:54:e9: 4d:74:f3:f4:75:73:80:61:01:a7:50:e7:b0:d0:e4: 07:f5:9e:26:27:64:3a:63:2b:65:32:ec:53:a7:bf: 54:eb:74:22:12:23:88:90:88:47:5a:6c:d6:03:fa: dc:48:5b:e4:72:ab:62:7a:95:92:ef:80:de:a0:a1: 9c:52:c7:a4:47:80:3f:6f:4e:c0:a1:29:c5:5d:36: 95:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:ED:10:40:3E:73:59:C8:5E:2E:E8:00:BC:82:C9:64:55:78:B9:FC X509v3 Authority Key Identifier: keyid:2C:FD:5B:DD:D1:DB:A6:D9:40:28:74:D6:22:3A:BD:7E:EE:E0:16:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:24:44:53:51:e3:0b:85:1d:91:db:97:2f:69:0b:36:83:78: 44:9f:91:1e:00:f9:b3:8d:ba:37:27:e8:02:41:66:a7:ae:35: b7:cc:3f:ac:74:48:5c:eb:65:2a:b2:22:5a:24:74:ef:03:69: 10:39:87:b3:c1:a3:13:b2:c5:b2:fd:75:6e:ac:61:ab:2e:5b: 25:f3:f0:6e:ad:7e:0f:4e:aa:fc:22:40:45:7b:97:52:54:37: 89:14:a8:fd:d4:9c:b3:cf:92:d5:d5:5c:0e:3e:82:5b:d9:95: 19:1a:4d:84:75:64:1a:fe:a7:cb:83:c1:5a:d5:20:2f:7e:d7: e0:6f:d5:9d:dc:e2:ab:03:cf:02:fc:30:d3:86:44:22:69:69: b4:88:91:c5:dd:5b:37:cc:42:2d:d7:e8:cf:ea:19:5d:41:74: b7:15:06:50:1e:3d:2e:fd:6e:e8:7e:c3:43:90:44:99:46:39: 97:1f:07:b7:7d:78:76:b1:96:e8:cf:de:3a:ec:31:0b:1c:c3: c7:71:3c:b3:d9:3b:3a:43:7f:6d:e0:26:89:5b:a3:41:8b:0e: 70:83:41:e6:b8:c8:35:34:0b:e9:94:79:e6:98:18:62:2b:f3: 6b:a1:a4:6e:9b:f0:38:4b:fa:80:33:f5:9c:85:c5:6d:3c:60: 9c:39:a3:81 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUL3dogdC/ThRusSw5O20W+U51NbcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJEN0VF RUUwMTYwNTAeFw0yNTA2MjkwNzI1MzZaFw0yNTA3MDIxMTU3MzZaMDMxMTAvBgNV BAMTKEZERUQxMDQwM0U3MzU5Qzg1RTJFRTgwMEJDODJDOTY0NTU3OEI5RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB/Pebgnsk3PIoOidTDt/2v9Po 2MS2wbjOduo4ORU6ZhgDNuKN/0hQt7l1OxpQ47uHrmO/ujC10lo+jphDgutN4/Nk UWqQOY2LTAOo0sH1vFMbk7I/gFGrXnJHR475OFbMDo0GDmfAAIAxTBRkdA2RrrDg ZtgqcTY8oOhLAUkXED69Oi3vSTmvsrWGpu/8ryzVtt7W84oeTlKFvV/34zCj5szZ pWKww8JOgqeNP73yK5lU6U108/R1c4BhAadQ57DQ5Af1niYnZDpjK2Uy7FOnv1Tr dCISI4iQiEdabNYD+txIW+Ryq2J6lZLvgN6goZxSx6RHgD9vTsChKcVdNpUnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/e0QQD5zWcheLugAvILJZFV4ufwwHwYDVR0j BBgwFoAULP1b3dHbptlAKHTWIjq9fu7gFgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjdlMGJjMC03NjFiLTRlYzMtOGY0Mi04Mjk4MWI5MWE5N2EvMC8yQ0ZENUJEREQx REJBNkQ5NDAyODc0RDYyMjNBQkQ3RUVFRTAxNjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJEN0VFRUUw MTYwNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWI3ZTBiYzAtNzYxYi00ZWMzLThm NDItODI5ODFiOTFhOTdhLzAvMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJE N0VFRUUwMTYwNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHskRFNR4wuFHZHbly9pCzaDeESfkR4A+bON ujcn6AJBZqeuNbfMP6x0SFzrZSqyIlokdO8DaRA5h7PBoxOyxbL9dW6sYasuWyXz 8G6tfg9OqvwiQEV7l1JUN4kUqP3UnLPPktXVXA4+glvZlRkaTYR1ZBr+p8uDwVrV IC9+1+Bv1Z3c4qsDzwL8MNOGRCJpabSIkcXdWzfMQi3X6M/qGV1BdLcVBlAePS79 buh+w0OQRJlGOZcfB7d9eHaxlujP3jrsMQscw8dxPLPZOzpDf23gJolbo0GLDnCD Qea4yDU0C+mUeeaYGGIr82uhpG6b8DhL+oAz9ZyFxW08YJw5o4E= -----END CERTIFICATE-----Generated at Mon Jun 30 21:05:44 2025 by rpki-client