$ rpki-client -vvf repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft File: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft (raw, json) Hash identifier: NcppNiUNyviUIoCi7GAwVO3v8OKAR0+he3O3fhf6Qjk= Subject key identifier: 5E:5F:22:8B:57:A3:21:38:7D:D4:D5:51:AB:5B:97:A7:72:80:22:AA Authority key identifier: D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD Certificate issuer: /CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Certificate serial: 47EA538AB438E04B48B64884D3E5D1DBC697AEDE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft Manifest number: 019F Signing time: Tue 01 Jul 2025 03:12:14 +0000 Manifest this update: Tue 01 Jul 2025 03:07:14 +0000 Manifest next update: Fri 04 Jul 2025 09:44:14 +0000 Files and hashes: 1: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl (hash: syHycUz1Xyi5QDU8ExmrOze4Wwfkjan41VTBASCCAQI=) 2: 323030313a6466313a646663303a3a2f34382d3438203d3e20313530353233.roa (hash: 6/CFAgI9fYm2h+bpsbThjdmYrbI1a+tEsxm7cMbpBNY=) 3: 3130332e37352e3133372e302f32342d3234203d3e20313530353233.roa (hash: Qa1udsECIRHsg1OUvc+qS4VEGfZjWwfHSm/JuoyHhYg=) 4: 3130332e37352e3133362e302f32332d3233203d3e20313530353233.roa (hash: YcSRTKOMF12aOzXL8N5UR6kDF37yCb3W4QZONTd7a9A=) 5: 3130332e37352e3133362e302f32342d3234203d3e20313530353233.roa (hash: q6SY7dMZTZK38tnoR+pXFf7kzoZFDF5ifDK7XqxUw8c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 09:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:ea:53:8a:b4:38:e0:4b:48:b6:48:84:d3:e5:d1:db:c6:97:ae:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Validity Not Before: Jul 1 03:07:14 2025 GMT Not After : Jul 4 09:44:14 2025 GMT Subject: CN=5E5F228B57A321387DD4D551AB5B97A7728022AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:89:c6:d0:2a:c0:52:60:a2:0b:e5:2e:71:b1: a3:35:0c:25:1c:af:70:96:cb:16:9b:f6:d9:29:20: af:c3:5f:d3:d2:09:71:67:d5:b3:e6:ac:19:4f:5b: c6:09:93:65:bc:5c:67:a0:73:37:2e:62:2f:d8:42: dc:a6:e1:d2:77:17:6f:41:d6:79:67:4e:b8:ef:cd: 21:a1:b6:d7:de:f5:2a:93:35:b6:0e:01:03:5f:ad: 1f:f7:88:71:89:a0:7e:7b:95:69:ad:c8:f3:f5:62: b6:ca:b8:70:cd:8f:e0:e3:8c:86:9d:cf:b0:01:0e: be:ed:69:49:2f:5c:6b:4f:99:48:a0:7f:70:5b:0d: b1:c4:a9:9c:f1:fe:1a:7d:e8:09:49:0e:23:1b:57: c0:64:62:8e:21:30:b9:7e:35:61:3b:d9:cf:89:b1: f2:8f:a1:78:35:6e:30:a1:df:f3:27:15:07:7a:e8: 2f:98:10:ad:46:a0:19:46:6b:21:e2:eb:66:77:c5: 35:97:8f:d3:00:df:cb:00:c1:a0:ba:9d:87:e6:90: 54:47:82:34:a6:02:62:5d:a3:81:94:63:5d:0a:c3: 00:3a:fd:88:1e:b9:a1:26:2c:a5:b7:2c:c7:13:b7: 94:7e:91:75:6d:12:8f:1b:1f:99:cd:b0:78:a7:8f: 88:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:5F:22:8B:57:A3:21:38:7D:D4:D5:51:AB:5B:97:A7:72:80:22:AA X509v3 Authority Key Identifier: keyid:D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d5:13:59:e3:eb:c6:b8:eb:48:9b:c3:50:03:55:0d:0b:ac:b6: ac:b6:83:03:28:0c:a2:4a:67:18:11:97:c5:ee:e3:42:87:13: ec:51:f5:45:b3:64:7a:20:b8:e4:c7:0f:fe:b4:d8:18:59:0c: c2:92:7d:be:77:c5:9f:ee:d3:0d:eb:c0:7b:a2:69:32:10:c6: ba:8f:47:f5:9d:60:51:29:bc:7f:30:da:28:88:32:18:fe:9c: cb:56:6d:d8:3b:17:65:57:d7:b8:d7:56:4a:2b:45:c8:47:4b: 52:aa:1b:11:a9:a0:e6:71:8f:5c:41:45:1d:2f:a7:c6:07:65: 0e:38:45:18:50:42:1e:00:2b:4f:69:44:3e:fb:a5:7e:fb:60: b7:65:53:8b:3b:ca:b0:c7:51:46:25:da:ea:97:fb:82:cd:de: 53:6b:5d:09:59:f7:0b:29:ca:61:fd:e0:46:ca:b5:56:34:ac: ba:e2:83:12:f2:f3:70:38:91:0c:5e:f1:18:dc:2c:c8:ec:7a: 11:62:d2:81:0b:8d:08:c6:ca:8a:a8:47:bb:70:9c:e5:c9:fd: 9f:99:09:21:6f:32:9d:c1:9f:03:1a:fc:21:14:1d:1b:17:0b: 28:62:09:8c:3a:1d:21:fa:af:94:f8:58:ac:5c:00:c3:31:b6: 00:79:4a:63 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUR+pTirQ44EtItkiE0+XR28aXrt4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVF QzgyMUZGRDAeFw0yNTA3MDEwMzA3MTRaFw0yNTA3MDQwOTQ0MTRaMDMxMTAvBgNV BAMTKDVFNUYyMjhCNTdBMzIxMzg3REQ0RDU1MUFCNUI5N0E3NzI4MDIyQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/icbQKsBSYKIL5S5xsaM1DCUc r3CWyxab9tkpIK/DX9PSCXFn1bPmrBlPW8YJk2W8XGegczcuYi/YQtym4dJ3F29B 1nlnTrjvzSGhttfe9SqTNbYOAQNfrR/3iHGJoH57lWmtyPP1YrbKuHDNj+DjjIad z7ABDr7taUkvXGtPmUigf3BbDbHEqZzx/hp96AlJDiMbV8BkYo4hMLl+NWE72c+J sfKPoXg1bjCh3/MnFQd66C+YEK1GoBlGayHi62Z3xTWXj9MA38sAwaC6nYfmkFRH gjSmAmJdo4GUY10KwwA6/YgeuaEmLKW3LMcTt5R+kXVtEo8bH5nNsHinj4hhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXl8ii1ejITh91NVRq1uXp3KAIqowHwYDVR0j BBgwFoAU0Pedgm5D6rYaeoNOaid3xeyCH/0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODQ2MzI4NS03YzI4LTQzNWEtODJiYi1mY2MzMmQ1ODAyMGUvMC9EMEY3OUQ4MjZF NDNFQUI2MUE3QTgzNEU2QTI3NzdDNUVDODIxRkZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVFQzgy MUZGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg0NjMyODUtN2MyOC00MzVhLTgy YmItZmNjMzJkNTgwMjBlLzAvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3 QzVFQzgyMUZGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANUTWePrxrjrSJvDUANVDQustqy2gwMoDKJK ZxgRl8Xu40KHE+xR9UWzZHoguOTHD/602BhZDMKSfb53xZ/u0w3rwHuiaTIQxrqP R/WdYFEpvH8w2iiIMhj+nMtWbdg7F2VX17jXVkorRchHS1KqGxGpoOZxj1xBRR0v p8YHZQ44RRhQQh4AK09pRD77pX77YLdlU4s7yrDHUUYl2uqX+4LN3lNrXQlZ9wsp ymH94EbKtVY0rLrigxLy83A4kQxe8RjcLMjsehFi0oELjQjGyoqoR7twnOXJ/Z+Z CSFvMp3BnwMa/CEUHRsXCyhiCYw6HSH6r5T4WKxcAMMxtgB5SmM= -----END CERTIFICATE-----Generated at Wed Jul 2 15:47:35 2025 by rpki-client