$ rpki-client -vvf repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft File: 253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft (raw, json) Hash identifier: 47CbuJJr1KtSSH1FQNmx3CfjAQyLaO5QVnVzZY7w1FQ= Subject key identifier: A3:83:E1:6B:6E:D8:9B:C5:95:C8:58:44:46:1F:9C:14:7C:73:CD:E7 Authority key identifier: 25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 Certificate issuer: /CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Certificate serial: 744445331CA4DC6737511BDA883C74099A4934C5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft Manifest number: 04E8 Signing time: Sat 28 Jun 2025 13:01:31 +0000 Manifest this update: Sat 28 Jun 2025 12:56:31 +0000 Manifest next update: Wed 02 Jul 2025 00:24:31 +0000 Files and hashes: 1: 253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl (hash: UqbrF8JNfaZdfiPQlcaYFfwBWdx0AMkfG62c9je7Tog=) 2: 36302e3235332e39362e302f31392d3234203d3e203338313434.roa (hash: gI7OgYv6GfwsEVRaXvd5tRlYtRW/gCZ+OwdOGTRV5w8=) 3: 3230322e35312e3232342e302f32302d3234203d3e203338313434.roa (hash: N2YGkCBG++ItZbATxx+8Wnv+w5mJADtnDrbFxCasjwk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 00:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:44:45:33:1c:a4:dc:67:37:51:1b:da:88:3c:74:09:9a:49:34:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Validity Not Before: Jun 28 12:56:31 2025 GMT Not After : Jul 2 00:24:31 2025 GMT Subject: CN=A383E16B6ED89BC595C85844461F9C147C73CDE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:26:0a:73:c7:0a:9c:34:65:5e:ca:7c:a0:5b: e0:ad:25:21:37:b6:4c:5d:0b:fd:83:35:4d:47:1e: d0:ab:32:20:77:e5:7d:cf:4e:e5:64:90:0f:7e:d1: 97:a5:62:34:12:31:70:29:5f:83:75:82:ce:75:be: 5b:72:69:79:ec:f3:b5:5c:b6:00:59:6e:c8:db:6e: 70:40:2d:eb:8c:18:7d:7f:d1:57:e8:32:d4:64:2b: 4c:8b:ba:a0:8b:d0:15:c2:1b:45:8c:7f:12:1e:a1: 4d:12:73:8c:c1:39:86:b1:08:67:48:90:56:3a:a0: c3:17:25:43:02:53:5a:44:87:ed:67:a8:82:4c:12: e0:2a:00:e2:d4:46:9b:7a:8a:06:86:47:9d:54:54: bd:11:9d:d9:3a:9c:3b:ee:c6:a3:fe:be:be:72:2b: 45:a8:cf:6d:cf:be:f0:c1:15:fe:69:23:f3:99:da: 70:55:95:88:b9:ed:a9:12:15:a9:d5:cf:a7:c8:49: a8:8b:bf:dd:a8:17:86:d8:44:3d:28:9f:4a:30:ed: 99:13:86:9e:2d:7b:a1:e3:38:3f:3e:80:16:8a:2e: 16:97:cf:62:13:cc:fa:f8:5b:ae:03:82:70:61:d5: 74:fc:3b:c2:a0:d8:02:fa:dc:0f:cb:45:1f:5f:37: 8a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:83:E1:6B:6E:D8:9B:C5:95:C8:58:44:46:1F:9C:14:7C:73:CD:E7 X509v3 Authority Key Identifier: keyid:25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:6b:96:73:06:7e:c1:58:7e:6d:4b:bc:40:ba:20:e3:04:d5: e9:f9:cf:56:17:39:2c:a4:d0:95:c7:7e:af:7d:a4:48:41:ef: f2:3d:f7:31:a4:bd:3c:f1:86:4c:0d:4b:e4:36:49:32:9c:25: 39:fc:0a:c5:73:57:03:51:31:91:d5:da:e7:fd:fa:8b:89:5a: 0b:77:30:68:4f:78:82:30:bb:a5:39:c2:ec:8e:e3:a2:9c:85: 2c:ab:4a:04:1a:70:b0:97:64:10:ad:8d:81:a6:dc:0c:7e:fc: f2:f3:e9:47:a9:2e:7a:3c:5c:aa:90:96:25:b7:cf:22:9c:4c: 30:f4:89:fa:c5:9c:d1:b5:ce:80:47:7e:e6:3e:62:e8:dc:b5: 23:e9:6a:62:9c:df:0c:94:fa:a9:1a:ac:a5:ce:29:0f:d6:8c: 21:d5:d0:59:5a:8e:41:a5:dc:81:17:ce:8a:89:37:a5:f5:20: 6a:a3:a5:92:df:e7:40:60:5f:ae:40:b3:6b:ff:f2:9d:d5:12: a0:0f:48:b3:5d:93:89:a4:82:a7:63:68:18:b2:d7:96:c3:a0: cd:c7:53:ce:7a:17:37:2b:22:bd:31:c9:b5:59:df:11:d7:0d: 8b:36:dc:7b:0c:4e:8d:cb:5a:1a:44:a8:c5:23:b1:6d:1e:5b: 33:83:98:c1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdERFMxyk3Gc3URvaiDx0CZpJNMUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQw NThEQTEwMTAeFw0yNTA2MjgxMjU2MzFaFw0yNTA3MDIwMDI0MzFaMDMxMTAvBgNV BAMTKEEzODNFMTZCNkVEODlCQzU5NUM4NTg0NDQ2MUY5QzE0N0M3M0NERTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnJgpzxwqcNGVeynygW+CtJSE3 tkxdC/2DNU1HHtCrMiB35X3PTuVkkA9+0ZelYjQSMXApX4N1gs51vltyaXns87Vc tgBZbsjbbnBALeuMGH1/0VfoMtRkK0yLuqCL0BXCG0WMfxIeoU0Sc4zBOYaxCGdI kFY6oMMXJUMCU1pEh+1nqIJMEuAqAOLURpt6igaGR51UVL0Rndk6nDvuxqP+vr5y K0Woz23PvvDBFf5pI/OZ2nBVlYi57akSFanVz6fISaiLv92oF4bYRD0on0ow7ZkT hp4te6HjOD8+gBaKLhaXz2ITzPr4W64DgnBh1XT8O8Kg2AL63A/LRR9fN4r7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUo4Pha27Ym8WVyFhERh+cFHxzzecwHwYDVR0j BBgwFoAUJT4rtN5GevCPGRr3Yy7jvQWNoQEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2Q3NTM2ZC05ZTEwLTRkNDktYjZjYS0wNDFjYzlhNTkxNGUvMC8yNTNFMkJCNERF NDY3QUYwOEYxOTFBRjc2MzJFRTNCRDA1OERBMTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQwNThE QTEwMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmNkNzUzNmQtOWUxMC00ZDQ5LWI2 Y2EtMDQxY2M5YTU5MTRlLzAvMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUz QkQwNThEQTEwMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADFrlnMGfsFYfm1LvEC6IOME1en5z1YXOSyk 0JXHfq99pEhB7/I99zGkvTzxhkwNS+Q2STKcJTn8CsVzVwNRMZHV2uf9+ouJWgt3 MGhPeIIwu6U5wuyO46KchSyrSgQacLCXZBCtjYGm3Ax+/PLz6UepLno8XKqQliW3 zyKcTDD0ifrFnNG1zoBHfuY+YujctSPpamKc3wyU+qkarKXOKQ/WjCHV0FlajkGl 3IEXzoqJN6X1IGqjpZLf50BgX65As2v/8p3VEqAPSLNdk4mkgqdjaBiy15bDoM3H U856FzcrIr0xybVZ3xHXDYs23HsMTo3LWhpEqMUjsW0eWzODmME= -----END CERTIFICATE-----Generated at Sun Jun 29 19:53:28 2025 by rpki-client