$ rpki-client -vvf repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft File: D00472C77B42BC0E23D929360AA568BBAE2AA668.mft (raw, json) Hash identifier: XerwnrM5JoeLWuJcNkTVP0MJF95BDi6TosZgIC3Ya8E= Subject key identifier: 3D:EC:CA:7B:9B:24:79:8C:76:00:FF:56:CA:DB:92:DC:38:69:9E:B1 Authority key identifier: D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 Certificate issuer: /CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Certificate serial: 670705D12FC80AE1734EFEC58D57611AB97FC987 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft Manifest number: 020B Signing time: Sun 29 Jun 2025 23:30:04 +0000 Manifest this update: Sun 29 Jun 2025 23:25:04 +0000 Manifest next update: Thu 03 Jul 2025 01:51:04 +0000 Files and hashes: 1: 3130332e3138352e3235342e302f32332d3234203d3e20313439363838.roa (hash: 6gEpief7n0b1o5LDXUhCiEL/rkB2mrhMUs19uxqg/vs=) 2: D00472C77B42BC0E23D929360AA568BBAE2AA668.crl (hash: AHtbTacgiWBa9CQ7mE7/MHmCYd1US1KqD5rxEM2BNr8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 01:51:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:07:05:d1:2f:c8:0a:e1:73:4e:fe:c5:8d:57:61:1a:b9:7f:c9:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Validity Not Before: Jun 29 23:25:04 2025 GMT Not After : Jul 3 01:51:04 2025 GMT Subject: CN=3DECCA7B9B24798C7600FF56CADB92DC38699EB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3d:73:02:2f:08:1c:2c:0c:80:f3:ff:74:e6: b8:f5:e6:ec:27:0b:98:42:6f:cd:33:92:34:c8:fa: ec:d2:88:0b:29:0c:11:2f:b2:2b:21:a3:db:55:47: f5:a3:44:5b:13:2d:2b:56:1e:fd:ad:ca:6f:93:e7: ba:03:0a:19:45:e6:33:0b:21:c1:f9:6d:96:6f:30: 60:21:af:c4:bc:9a:3e:20:33:4e:ef:c0:3c:bc:ff: c4:51:7f:ef:61:50:6d:bc:15:05:73:a8:4a:08:ee: 36:48:26:93:35:8d:06:7e:21:84:3f:d2:8a:5a:0b: ff:be:83:1c:d1:86:84:33:d7:4e:74:25:79:66:a6: 14:07:11:60:8d:ca:65:fb:7d:6d:0f:75:ae:ab:7b: aa:e0:28:bc:cf:8f:a8:2a:f0:84:34:77:aa:da:0a: 81:04:dc:84:e4:25:5f:38:1c:ad:b5:76:23:a7:e4: ef:04:3f:25:65:17:b1:83:7e:f4:41:33:c3:4d:ed: cf:b9:c8:26:0f:91:90:8c:94:7c:fc:c9:ee:4d:87: bd:73:29:6a:f8:22:f0:7a:e2:88:44:4d:58:6b:7b: 9a:08:f5:e4:5d:85:5e:90:e8:e7:9b:2b:da:b3:79: d8:52:11:c8:92:1e:6b:44:ce:54:2c:68:2c:ee:66: 9c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:EC:CA:7B:9B:24:79:8C:76:00:FF:56:CA:DB:92:DC:38:69:9E:B1 X509v3 Authority Key Identifier: keyid:D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:bb:57:99:eb:a1:70:ba:bf:b0:cf:f6:b1:4c:2e:33:9a:15: 0c:ac:a1:94:6a:e3:47:3c:44:76:6c:46:bf:be:57:85:64:f7: 20:a2:77:28:c5:31:5b:37:de:0c:4e:ed:3a:4f:f1:6d:70:28: 88:99:33:3f:42:91:c4:a8:96:36:81:0c:ac:82:57:36:bc:d2: cf:73:92:6b:7d:4a:c6:e9:cf:ab:48:65:e6:1b:d3:46:0f:6d: d2:e7:8f:72:67:ed:1d:d1:bf:60:91:6d:74:44:e4:97:a7:f2: 30:ff:81:83:5e:b6:0b:90:8f:e6:43:39:47:f9:53:da:b3:9c: 23:5b:fe:f2:e8:77:0e:bb:9f:22:f2:57:a6:8a:d1:7d:df:8e: 58:6a:d0:48:76:e9:f2:77:5d:b0:a2:5b:73:18:76:89:28:99: cd:29:39:a3:28:df:40:74:47:e1:60:cf:7e:e5:e8:f4:d4:ba: 95:55:b5:34:49:f1:27:81:c4:d5:23:68:4f:d4:f9:d3:0c:93: c4:e9:a6:8e:ff:c3:32:b9:ff:7e:01:16:bd:8c:ea:5a:b8:b6: 56:4c:a3:fe:f1:8e:07:77:f2:eb:9b:2e:31:34:57:fc:85:36: 1d:77:d8:e2:90:ce:29:d4:78:06:d6:de:3d:07:03:bc:12:24: aa:43:5e:51 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZwcF0S/ICuFzTv7FjVdhGrl/yYcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJB RTJBQTY2ODAeFw0yNTA2MjkyMzI1MDRaFw0yNTA3MDMwMTUxMDRaMDMxMTAvBgNV BAMTKDNERUNDQTdCOUIyNDc5OEM3NjAwRkY1NkNBREI5MkRDMzg2OTlFQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMPXMCLwgcLAyA8/905rj15uwn C5hCb80zkjTI+uzSiAspDBEvsisho9tVR/WjRFsTLStWHv2tym+T57oDChlF5jML IcH5bZZvMGAhr8S8mj4gM07vwDy8/8RRf+9hUG28FQVzqEoI7jZIJpM1jQZ+IYQ/ 0opaC/++gxzRhoQz1050JXlmphQHEWCNymX7fW0Pda6re6rgKLzPj6gq8IQ0d6ra CoEE3ITkJV84HK21diOn5O8EPyVlF7GDfvRBM8NN7c+5yCYPkZCMlHz8ye5Nh71z KWr4IvB64ohETVhre5oI9eRdhV6Q6OebK9qzedhSEciSHmtEzlQsaCzuZpz9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPezKe5skeYx2AP9WytuS3DhpnrEwHwYDVR0j BBgwFoAU0ARyx3tCvA4j2Sk2CqVou64qpmgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzE3MzY5YS1iY2MxLTQyYmMtYjhiMi1mOTZkNTBkMzc0OWQvMC9EMDA0NzJDNzdC NDJCQzBFMjNEOTI5MzYwQUE1NjhCQkFFMkFBNjY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJBRTJB QTY2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMxNzM2OWEtYmNjMS00MmJjLWI4 YjItZjk2ZDUwZDM3NDlkLzAvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4 QkJBRTJBQTY2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAG7V5nroXC6v7DP9rFMLjOaFQysoZRq40c8 RHZsRr++V4Vk9yCidyjFMVs33gxO7TpP8W1wKIiZMz9CkcSoljaBDKyCVza80s9z kmt9Ssbpz6tIZeYb00YPbdLnj3Jn7R3Rv2CRbXRE5Jen8jD/gYNetguQj+ZDOUf5 U9qznCNb/vLodw67nyLyV6aK0X3fjlhq0Eh26fJ3XbCiW3MYdokomc0pOaMo30B0 R+Fgz37l6PTUupVVtTRJ8SeBxNUjaE/U+dMMk8Tppo7/wzK5/34BFr2M6lq4tlZM o/7xjgd38uubLjE0V/yFNh132OKQzinUeAbW3j0HA7wSJKpDXlE= -----END CERTIFICATE-----Generated at Mon Jun 30 10:35:53 2025 by rpki-client