$ rpki-client -vvf repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft File: A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft (raw, json) Hash identifier: W8TsmwEiv8OB5ZNWP3QMkJXhfV4oikH1v/0Z/OYHJnI= Subject key identifier: 7E:49:54:D8:85:8E:FB:89:5C:37:F0:4C:6C:32:27:FE:94:7A:7F:FE Authority key identifier: A9:D6:63:C6:EB:CD:25:0A:A8:92:7E:A0:94:62:7C:94:15:DE:E7:FC Certificate issuer: /CN=A9D663C6EBCD250AA8927EA094627C9415DEE7FC Certificate serial: 6E5EB5B19BAB8718CECB6DA504D9C730D03BDC16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft Manifest number: 5D Signing time: Mon 30 Jun 2025 19:01:25 +0000 Manifest this update: Mon 30 Jun 2025 18:56:25 +0000 Manifest next update: Thu 03 Jul 2025 20:27:25 +0000 Files and hashes: 1: 3136302e3139312e36352e302f32342d3234203d3e20313533313438.roa (hash: 66g0GBTdSeAme2H37nLc01yyifW6eVqeoyuhCfgsCgA=) 2: 3136302e3139312e36342e302f32342d3234203d3e20313533313438.roa (hash: UdR2VsrcQEJLqL8yqAOv5eiXRwXBi0l4fctRzRTejQo=) 3: A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl (hash: vl34qaIqfhY+URkzbKVyjNCRolezQ8vew8ni3BCF8L8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 20:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:5e:b5:b1:9b:ab:87:18:ce:cb:6d:a5:04:d9:c7:30:d0:3b:dc:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D663C6EBCD250AA8927EA094627C9415DEE7FC Validity Not Before: Jun 30 18:56:25 2025 GMT Not After : Jul 3 20:27:25 2025 GMT Subject: CN=7E4954D8858EFB895C37F04C6C3227FE947A7FFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:61:1a:c3:e8:61:cd:87:30:83:63:b1:f6:50: c1:c5:3e:0e:52:0d:3e:5e:96:ce:4b:7e:9a:80:48: 22:f8:11:08:6c:5e:1f:04:90:36:25:ca:a7:05:d3: 0b:dc:67:c5:0e:34:c2:6f:2f:21:19:75:84:0c:25: 87:1d:38:4b:4c:96:26:b7:ca:70:52:27:0a:30:0b: 10:83:6b:6f:b8:03:06:24:c4:fb:25:7d:0b:77:c6: 60:47:05:f6:eb:d1:29:f1:dd:bc:f2:de:98:c5:0c: 49:ce:23:7c:1e:2d:31:56:d2:5d:67:67:21:fe:8b: f3:80:7e:3c:fe:3c:6b:27:a4:ee:11:8a:c1:fa:83: 7e:68:78:02:06:b8:ee:94:d7:38:29:3d:f6:3e:36: fa:90:1c:b2:14:40:b1:a9:ba:1f:c9:b0:75:26:d3: a7:c8:8f:8f:84:3e:ef:49:94:d8:3c:8e:7a:e1:6b: 9f:9d:a7:92:79:2f:7a:e0:be:69:a9:f2:81:4f:be: 25:5c:a5:b6:c1:8b:1c:b8:88:2d:e9:0b:57:1e:a8: 66:ec:c7:6c:55:ed:17:7b:a6:69:fa:a8:4d:fc:96: ce:cd:ff:6c:87:8e:b6:e3:69:dd:a3:66:fc:ce:93: 2d:50:20:06:e3:b0:6c:0d:11:b9:d6:97:2d:60:9b: 9b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:49:54:D8:85:8E:FB:89:5C:37:F0:4C:6C:32:27:FE:94:7A:7F:FE X509v3 Authority Key Identifier: keyid:A9:D6:63:C6:EB:CD:25:0A:A8:92:7E:A0:94:62:7C:94:15:DE:E7:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:49:46:e0:a9:9d:ac:00:57:20:9b:60:f7:66:b6:1f:93:ab: 15:0a:e6:f3:5b:54:4d:ec:8f:51:83:82:21:ef:5f:e1:1b:7c: 1f:54:f8:69:3d:27:3a:14:bd:93:43:be:5a:c2:4e:d2:4f:a1: f2:76:9a:6d:40:0d:25:34:fa:18:e5:9b:4d:90:7f:83:6e:cf: d5:be:30:6e:be:1b:d1:da:49:d3:1b:6a:d5:9b:38:67:7c:49: d7:14:e3:59:8a:4b:11:29:13:f9:21:04:b3:fa:7c:11:c7:9f: 7b:75:16:25:0a:b4:c5:e9:8e:c7:35:46:95:58:a1:9f:8b:a8: e2:b6:ea:da:ec:04:f1:7f:aa:16:b1:64:bd:25:88:74:1c:8f: 17:1b:88:8a:a6:cc:c8:75:cc:e6:59:4f:f5:6a:43:1e:c8:12: d9:20:4d:68:f6:d5:6f:39:bb:b6:7a:52:c0:46:9f:86:14:9a: b2:5c:f0:ec:ea:c8:03:36:18:88:09:15:1c:a5:63:70:72:96: 0d:0a:a5:8f:86:57:26:69:76:98:95:16:d4:a9:05:ed:4d:92: 71:77:be:25:fc:27:51:a9:bf:c7:90:01:38:2f:79:1f:63:50: 4a:96:2f:8c:96:7e:4a:fa:bd:a1:37:08:e0:e3:0d:76:39:0e: f1:71:bb:bb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbl61sZurhxjOy22lBNnHMNA73BYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdDOTQx NURFRTdGQzAeFw0yNTA2MzAxODU2MjVaFw0yNTA3MDMyMDI3MjVaMDMxMTAvBgNV BAMTKDdFNDk1NEQ4ODU4RUZCODk1QzM3RjA0QzZDMzIyN0ZFOTQ3QTdGRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzYRrD6GHNhzCDY7H2UMHFPg5S DT5els5LfpqASCL4EQhsXh8EkDYlyqcF0wvcZ8UONMJvLyEZdYQMJYcdOEtMlia3 ynBSJwowCxCDa2+4AwYkxPslfQt3xmBHBfbr0Snx3bzy3pjFDEnOI3weLTFW0l1n ZyH+i/OAfjz+PGsnpO4RisH6g35oeAIGuO6U1zgpPfY+NvqQHLIUQLGpuh/JsHUm 06fIj4+EPu9JlNg8jnrha5+dp5J5L3rgvmmp8oFPviVcpbbBixy4iC3pC1ceqGbs x2xV7Rd7pmn6qE38ls7N/2yHjrbjad2jZvzOky1QIAbjsGwNEbnWly1gm5uZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUfklU2IWO+4lcN/BMbDIn/pR6f/4wHwYDVR0j BBgwFoAUqdZjxuvNJQqokn6glGJ8lBXe5/wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODJhOWJkOS0xNjZmLTQ1M2UtYjNjMC1lNmIzZWY5MmE1NDAvMC9BOUQ2NjNDNkVC Q0QyNTBBQTg5MjdFQTA5NDYyN0M5NDE1REVFN0ZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdDOTQxNURF RTdGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjgyYTliZDktMTY2Zi00NTNlLWIz YzAtZTZiM2VmOTJhNTQwLzAvQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdD OTQxNURFRTdGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMJJRuCpnawAVyCbYPdmth+TqxUK5vNbVE3s j1GDgiHvX+EbfB9U+Gk9JzoUvZNDvlrCTtJPofJ2mm1ADSU0+hjlm02Qf4Nuz9W+ MG6+G9HaSdMbatWbOGd8SdcU41mKSxEpE/khBLP6fBHHn3t1FiUKtMXpjsc1RpVY oZ+LqOK26trsBPF/qhaxZL0liHQcjxcbiIqmzMh1zOZZT/VqQx7IEtkgTWj21W85 u7Z6UsBGn4YUmrJc8OzqyAM2GIgJFRylY3Bylg0KpY+GVyZpdpiVFtSpBe1NknF3 viX8J1Gpv8eQATgveR9jUEqWL4yWfkr6vaE3CODjDXY5DvFxu7s= -----END CERTIFICATE-----Generated at Tue Jul 1 05:22:02 2025 by rpki-client