$ rpki-client -vvf repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft File: 957CC5B55223EC29F2E71324C678334C4348BE02.mft (raw, json) Hash identifier: Nx3ITzpK3MVryspbgyQyXe31YDhGgdj+E+HFquj+D5o= Subject key identifier: 33:52:12:B9:D1:EB:59:09:92:1F:40:9F:79:D4:B2:54:E7:33:7B:48 Authority key identifier: 95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 Certificate issuer: /CN=957CC5B55223EC29F2E71324C678334C4348BE02 Certificate serial: 200EC4A374C419631842F054CE8A5D596AFA19BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft Manifest number: 01A6 Signing time: Sat 28 Jun 2025 09:30:51 +0000 Manifest this update: Sat 28 Jun 2025 09:25:50 +0000 Manifest next update: Tue 01 Jul 2025 13:27:50 +0000 Files and hashes: 1: 957CC5B55223EC29F2E71324C678334C4348BE02.crl (hash: 0BZNKWrmCtVVfvnG066kOlD7AsEwT+HFvE+DFlaBno8=) 2: 3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa (hash: gpKP80eZFgz1Xe+59VM+E5nhQuUU0t/9JV7P0fWMBTY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 13:27:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:0e:c4:a3:74:c4:19:63:18:42:f0:54:ce:8a:5d:59:6a:fa:19:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=957CC5B55223EC29F2E71324C678334C4348BE02 Validity Not Before: Jun 28 09:25:50 2025 GMT Not After : Jul 1 13:27:50 2025 GMT Subject: CN=335212B9D1EB5909921F409F79D4B254E7337B48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:22:1e:87:0e:62:67:ae:61:2a:26:57:c2:2d: 1c:52:35:d3:4a:c2:b1:ed:d6:ae:04:50:c8:09:e8: 7e:ab:96:5f:6a:5c:3d:fe:2a:d6:8d:95:1a:d7:92: 03:c6:56:c6:ca:8a:ab:47:bc:6f:32:34:0d:6f:70: 79:8d:ee:d1:2c:e0:63:90:2b:80:a1:7d:89:9d:aa: 59:8f:c7:4c:b9:9e:2d:ff:50:9a:47:3d:dc:04:70: a7:77:5e:a0:dd:c7:43:b3:80:b1:61:a1:e8:24:5e: c8:70:d1:8e:0e:ff:de:81:ee:ca:35:af:92:09:03: db:2d:30:70:27:d2:c0:10:92:ab:63:06:a5:6e:de: 31:90:24:c7:92:82:04:15:f3:8a:5e:bc:e1:c0:78: ea:df:04:4f:02:23:3b:9c:c8:cb:8b:ca:94:eb:fe: 22:ad:3a:57:62:ba:a8:a8:51:07:1b:21:44:fa:6f: 10:e6:a3:06:e1:83:e3:c4:35:58:ca:c1:ad:7d:1c: a6:09:f2:43:a2:b7:13:2c:0a:9f:80:83:99:45:12: 88:8f:15:99:0e:fe:50:e2:f3:4a:98:35:83:0f:17: 68:c3:25:18:ff:7e:61:f2:54:a7:d2:c1:74:12:6f: 34:4c:ba:63:04:3e:6a:a9:88:b6:02:1d:fe:b3:b7: 61:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:52:12:B9:D1:EB:59:09:92:1F:40:9F:79:D4:B2:54:E7:33:7B:48 X509v3 Authority Key Identifier: keyid:95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:2f:98:05:2a:57:ed:b1:37:4c:c6:17:49:17:37:60:d9:7f: 4f:44:ff:66:61:38:59:34:59:ae:4f:f1:b9:9c:c3:3e:51:76: 1e:bc:e8:e0:8b:84:2c:a6:0d:4c:e5:14:17:3d:5d:89:6b:43: 72:b3:11:93:bf:c8:b4:1f:f3:1f:c7:d8:c7:10:df:49:98:4c: ac:ec:f9:1b:46:a1:64:64:43:7c:a9:80:1f:58:6f:22:a4:cd: 5a:d2:d6:7c:4e:28:1a:db:75:6c:9e:8a:13:7a:aa:63:03:e9: 00:da:92:6d:0f:e4:9e:29:27:03:74:c4:61:61:00:c2:51:c1: 7e:18:61:ca:43:30:83:ae:26:ad:9d:03:4c:e4:ae:51:20:25: 38:ea:f8:f2:04:fd:d0:25:3f:14:69:55:6e:f9:d7:38:ac:68: 65:8c:91:81:3b:95:58:b7:b9:0c:88:75:fd:17:bf:36:1d:7a: 1b:64:f1:fa:62:de:9f:8e:ca:f9:6d:fd:94:9d:80:bc:ee:9a: 81:19:83:04:72:14:6c:57:bc:24:4f:9f:c4:9f:31:48:33:e4: 1e:93:b8:4d:e5:0e:5d:fd:73:40:9e:3d:46:ca:69:61:99:51: a5:60:ff:ab:88:4b:7c:01:ed:75:2e:8c:b3:ed:dc:5d:30:7a: a6:28:9a:38 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIA7Eo3TEGWMYQvBUzopdWWr6Gb4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0 MzQ4QkUwMjAeFw0yNTA2MjgwOTI1NTBaFw0yNTA3MDExMzI3NTBaMDMxMTAvBgNV BAMTKDMzNTIxMkI5RDFFQjU5MDk5MjFGNDA5Rjc5RDRCMjU0RTczMzdCNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChIh6HDmJnrmEqJlfCLRxSNdNK wrHt1q4EUMgJ6H6rll9qXD3+KtaNlRrXkgPGVsbKiqtHvG8yNA1vcHmN7tEs4GOQ K4ChfYmdqlmPx0y5ni3/UJpHPdwEcKd3XqDdx0OzgLFhoegkXshw0Y4O/96B7so1 r5IJA9stMHAn0sAQkqtjBqVu3jGQJMeSggQV84pevOHAeOrfBE8CIzucyMuLypTr /iKtOldiuqioUQcbIUT6bxDmowbhg+PENVjKwa19HKYJ8kOitxMsCp+Ag5lFEoiP FZkO/lDi80qYNYMPF2jDJRj/fmHyVKfSwXQSbzRMumMEPmqpiLYCHf6zt2F1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUM1ISudHrWQmSH0CfedSyVOcze0gwHwYDVR0j BBgwFoAUlXzFtVIj7Cny5xMkxngzTENIvgIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGE3OGMwNi0xZDZlLTQzYjYtYmYzMC04NjBjZWJkZGZiMzIvMC85NTdDQzVCNTUy MjNFQzI5RjJFNzEzMjRDNjc4MzM0QzQzNDhCRTAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0MzQ4 QkUwMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjBhNzhjMDYtMWQ2ZS00M2I2LWJm MzAtODYwY2ViZGRmYjMyLzAvOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMz NEM0MzQ4QkUwMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC4vmAUqV+2xN0zGF0kXN2DZf09E/2ZhOFk0 Wa5P8bmcwz5Rdh686OCLhCymDUzlFBc9XYlrQ3KzEZO/yLQf8x/H2McQ30mYTKzs +RtGoWRkQ3ypgB9YbyKkzVrS1nxOKBrbdWyeihN6qmMD6QDakm0P5J4pJwN0xGFh AMJRwX4YYcpDMIOuJq2dA0zkrlEgJTjq+PIE/dAlPxRpVW751zisaGWMkYE7lVi3 uQyIdf0XvzYdehtk8fpi3p+Oyvlt/ZSdgLzumoEZgwRyFGxXvCRPn8SfMUgz5B6T uE3lDl39c0CePUbKaWGZUaVg/6uIS3wB7XUujLPt3F0weqYomjg= -----END CERTIFICATE-----Generated at Mon Jun 30 13:28:23 2025 by rpki-client