$ rpki-client -vvf repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft File: 289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft (raw, json) Hash identifier: d4kYwbzE0+HiRo90vBR49KArZQY+0VFygV1tbVhGGeY= Subject key identifier: 5B:C3:30:D5:83:65:E6:4E:D3:7C:B5:E1:EC:42:1E:E7:8F:7E:6D:69 Authority key identifier: 28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C Certificate issuer: /CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Certificate serial: 29126370FE0A97BFDF7D66A7B09C736584BE21A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft Manifest number: 0150 Signing time: Sun 29 Jun 2025 17:51:41 +0000 Manifest this update: Sun 29 Jun 2025 17:46:41 +0000 Manifest next update: Wed 02 Jul 2025 21:09:41 +0000 Files and hashes: 1: 323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa (hash: 6LOGBCF5zTr7iAtxuc25TGgWiHmJgXAtcLTxMujO3no=) 2: 3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa (hash: uLA8drzoTGDdLRLknWkZIaOJdJxpC+UKHzjWLF3FpOA=) 3: 289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl (hash: UDoedwUpDWveKl0wcqb6addTakrVbJ0DM2v2JeOQhCM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:12:63:70:fe:0a:97:bf:df:7d:66:a7:b0:9c:73:65:84:be:21:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Validity Not Before: Jun 29 17:46:41 2025 GMT Not After : Jul 2 21:09:41 2025 GMT Subject: CN=5BC330D58365E64ED37CB5E1EC421EE78F7E6D69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b3:a6:ba:a6:38:97:3b:38:be:5a:d1:d9:17: 89:7d:8a:14:d1:3c:f5:50:37:97:37:1e:cf:5a:fc: 48:24:58:83:bc:ec:2b:dd:27:c5:76:6d:a0:eb:a7: 52:8f:0a:bf:a1:d3:b8:5d:5c:93:05:43:eb:3c:45: 8d:7c:52:a5:52:1e:9e:22:e0:1c:78:e2:3d:f7:2a: e2:0f:88:b0:95:99:fd:eb:25:9d:00:f8:97:e9:7b: d0:d2:ba:80:21:28:09:ed:da:a6:76:37:59:f0:7e: fa:26:1b:46:7b:f9:3c:f6:74:3c:45:d7:87:3a:a6: 8d:f8:75:eb:40:2c:5d:ee:1b:bf:2f:4d:15:08:0d: 4d:fc:9f:57:9a:04:6c:eb:79:87:9f:a8:eb:d9:9d: 37:82:71:bf:4c:bf:92:fd:f7:6e:b9:d3:df:0f:69: 74:1e:e6:48:29:69:dd:f9:7d:d9:0a:70:98:1d:f3: f9:1c:d6:4c:62:6b:9c:bf:e7:ee:c7:cc:d2:09:56: f2:30:ed:1e:27:77:ec:4c:80:ca:ea:5f:d0:1e:a9: d6:c0:f9:0a:3a:ec:55:f3:dd:c8:c0:8b:96:0e:a3: 1b:f2:74:e7:a1:2d:cf:b7:85:6f:62:83:82:2a:2a: 28:0a:ba:75:74:3c:86:e9:8e:dd:cf:e4:23:72:c6: ed:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C3:30:D5:83:65:E6:4E:D3:7C:B5:E1:EC:42:1E:E7:8F:7E:6D:69 X509v3 Authority Key Identifier: keyid:28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:bc:90:01:7e:1b:3e:e0:ce:de:75:a6:1a:c7:34:c5:bf:6d: 4f:56:6a:d6:db:fa:d8:99:d2:4b:bb:05:f6:01:35:ea:2a:ed: 98:71:0f:d1:09:52:03:5b:f7:5a:81:d6:8d:7b:da:8e:01:b1: c9:e0:8b:9e:5a:26:f5:3e:34:73:ac:b4:37:17:9a:d9:40:8d: d1:88:fb:58:29:e2:7a:25:85:06:7c:aa:b6:cf:76:04:8c:bb: 4f:15:50:a0:29:2e:0c:a1:c6:9a:cf:11:de:18:b8:7a:4a:b6: 6f:3e:fd:ab:3c:d9:d3:3f:35:0d:7e:a4:ae:a9:05:c8:e4:27: 1a:d9:93:8f:07:7c:44:65:e9:2b:d3:e5:e1:95:d5:26:44:03: fd:2b:28:aa:0f:2d:dc:7c:86:85:32:a5:35:24:06:9e:09:be: 52:0e:bc:5d:2c:c9:5b:79:4a:35:bd:9e:20:66:af:75:80:f0: 69:80:9e:d8:9b:cb:35:42:ab:55:82:f7:f7:11:da:0d:c1:7c: 02:82:e2:9c:87:16:db:3e:c8:42:16:53:35:dc:34:c9:5b:79: 32:93:15:fd:66:d1:b5:07:fa:a3:18:8b:2a:6f:a9:3d:51:74: 27:9f:48:9a:42:93:f0:74:1a:61:50:ca:4a:58:92:2a:60:58: 37:f9:5b:a8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKRJjcP4Kl7/ffWansJxzZYS+IaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgy RkFCM0Q1QzAeFw0yNTA2MjkxNzQ2NDFaFw0yNTA3MDIyMTA5NDFaMDMxMTAvBgNV BAMTKDVCQzMzMEQ1ODM2NUU2NEVEMzdDQjVFMUVDNDIxRUU3OEY3RTZENjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8s6a6pjiXOzi+WtHZF4l9ihTR PPVQN5c3Hs9a/EgkWIO87CvdJ8V2baDrp1KPCr+h07hdXJMFQ+s8RY18UqVSHp4i 4Bx44j33KuIPiLCVmf3rJZ0A+Jfpe9DSuoAhKAnt2qZ2N1nwfvomG0Z7+Tz2dDxF 14c6po34detALF3uG78vTRUIDU38n1eaBGzreYefqOvZnTeCcb9Mv5L99265098P aXQe5kgpad35fdkKcJgd8/kc1kxia5y/5+7HzNIJVvIw7R4nd+xMgMrqX9AeqdbA +Qo67FXz3cjAi5YOoxvydOehLc+3hW9ig4IqKigKunV0PIbpjt3P5CNyxu2pAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUW8Mw1YNl5k7TfLXh7EIe549+bWkwHwYDVR0j BBgwFoAUKJFR74rop52PQmaD0VJa2C+rPVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmJlNjgxNS0zMTBlLTQyMDYtYTUwMC02YmI5ZDMyNjNhYmYvMC8yODkxNTFFRjhB RThBNzlEOEY0MjY2ODNEMTUyNUFEODJGQUIzRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgyRkFC M0Q1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmJiZTY4MTUtMzEwZS00MjA2LWE1 MDAtNmJiOWQzMjYzYWJmLzAvMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVB RDgyRkFCM0Q1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACK8kAF+Gz7gzt51phrHNMW/bU9Watbb+tiZ 0ku7BfYBNeoq7ZhxD9EJUgNb91qB1o172o4Bscngi55aJvU+NHOstDcXmtlAjdGI +1gp4nolhQZ8qrbPdgSMu08VUKApLgyhxprPEd4YuHpKtm8+/as82dM/NQ1+pK6p BcjkJxrZk48HfERl6SvT5eGV1SZEA/0rKKoPLdx8hoUypTUkBp4JvlIOvF0syVt5 SjW9niBmr3WA8GmAntibyzVCq1WC9/cR2g3BfAKC4pyHFts+yEIWUzXcNMlbeTKT Ff1m0bUH+qMYiypvqT1RdCefSJpCk/B0GmFQykpYkipgWDf5W6g= -----END CERTIFICATE-----Generated at Mon Jun 30 01:15:22 2025 by rpki-client