$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft File: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft (raw, json) Hash identifier: Xrht1wyaVOfe1mQM1vI/HQ6PWXyAg9Gv4elZjrZuHOc= Subject key identifier: C7:2F:B5:C6:CF:FC:1B:30:52:25:3F:13:D6:A9:DA:FA:96:0B:0D:78 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 225AB04C6683F678A11989DF444A4F10B7895CCF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft Manifest number: 04E7 Signing time: Fri 27 Jun 2025 10:50:43 +0000 Manifest this update: Fri 27 Jun 2025 10:45:43 +0000 Manifest next update: Mon 30 Jun 2025 19:28:43 +0000 Files and hashes: 1: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (hash: OT+Mk5WwssGJkg82hSQpE4gvwieaMEJQhhjdSn/cLTY=) 2: 34332e3235322e3130342e302f32322d3234203d3e203435333035.roa (hash: PKIt6KT96DVg2otgI4L6Lbo6X1IxxuQSsidS83qyqJk=) 3: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (hash: qTnm5CGA/RYtoBdoUqEMNKhCi+L95N248VCqrGjA3NM=) 4: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (hash: OI9Dbbh3AxBZ/lUfEAmwLldVzXyZ0yA+CnQ3viXQgc8=) 5: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (hash: VtiYvCa1bjH6ANhQ1ZiFk2JkSbje5+lBzE3EKLizBTk=) 6: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (hash: hlUw25q5eNWFZZoKL6XJ7rDIzMv9Ha/qCoX1PFqE3P4=) 7: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl (hash: 9eU331sLlUZ51NaeJONY6zlTcycavgP7byGaoRGHCb4=) 8: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (hash: sOLICWbkOQCKZGJuOxKOtJraYeaZ/2+UOwySpa2U+Ms=) 9: 3230322e35362e3136342e302f32322d3234203d3e203435333035.roa (hash: Ks6djmjYrG5U+knwJmAadX8Vs5do9/GjSatcKmwDXgM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Jun 2025 19:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:5a:b0:4c:66:83:f6:78:a1:19:89:df:44:4a:4f:10:b7:89:5c:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Jun 27 10:45:43 2025 GMT Not After : Jun 30 19:28:43 2025 GMT Subject: CN=C72FB5C6CFFC1B3052253F13D6A9DAFA960B0D78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:72:a0:e8:5b:03:07:12:f9:50:91:38:18:66: 60:b7:10:02:3c:d2:42:0d:a7:92:52:8d:0c:8e:67: b8:41:5b:0b:e0:2c:c2:a0:a8:3c:af:1a:5b:9b:83: aa:55:f3:8b:0b:83:2a:b2:ce:bc:2b:2d:8c:2d:9e: f2:fa:d5:45:7b:b6:27:65:fc:80:f8:55:c3:d9:ad: 3e:cc:39:5a:cb:83:6f:23:a2:9b:f3:78:e4:dd:13: e6:fd:99:07:b3:9b:87:3f:81:a1:f9:f4:c0:a1:97: 08:67:09:74:e7:e9:8f:a7:b5:cf:c1:60:77:08:b5: 1a:1e:f0:8d:3e:0e:fd:fc:bb:c2:13:a7:1d:56:e6: cf:2b:1d:43:33:52:71:d3:2d:71:48:36:dd:43:93: 29:2d:38:d4:57:3e:f9:e2:e5:2e:b5:3a:d0:55:ad: ce:a7:a3:09:3c:14:54:b6:b5:b2:1a:1a:46:99:75: 4a:bc:7e:ae:e9:ec:aa:3e:1d:04:5c:e3:83:d3:75: 12:ee:91:a7:e4:a3:96:e2:5b:4b:47:fd:68:10:17: e5:ab:57:68:29:9b:7d:db:94:ec:f4:f2:38:fd:c7: e6:06:e8:0c:4c:25:05:58:fd:f3:ca:97:a9:ca:79: 8a:45:10:7c:35:ec:52:5e:33:bf:78:86:b7:f4:7b: df:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:2F:B5:C6:CF:FC:1B:30:52:25:3F:13:D6:A9:DA:FA:96:0B:0D:78 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:d5:8e:df:66:43:08:eb:b7:2b:bd:bd:29:39:86:3c:24:01: a2:92:1d:f7:75:54:43:7d:70:87:8c:56:1b:ab:38:9d:ab:4d: d0:2d:a6:4a:47:7a:e5:47:7d:e5:fa:0b:11:16:28:7a:30:2d: 95:90:8b:1e:ad:e2:c9:f6:44:dd:53:6d:21:43:b6:76:3d:28: 17:1b:45:39:2b:15:2b:e8:99:29:7c:43:2d:7b:c3:b0:56:a6: 0d:4e:7c:62:28:22:e1:2a:24:00:f9:05:a0:15:39:ec:b8:6e: b9:a2:49:49:8a:67:8e:79:65:97:13:b4:7f:80:4b:24:1a:28: c9:18:f8:e9:f4:95:40:0f:e6:30:30:36:ab:ea:0f:06:6d:72: 9e:14:ad:92:f1:39:76:02:1e:7c:b3:43:95:a4:9c:9d:ab:0c: 53:b3:7d:e5:95:09:0a:16:4c:df:cb:13:92:04:a3:cd:05:7a: a6:19:a7:b9:6b:a8:41:8e:76:c8:fd:89:37:38:b7:9f:b0:66: 66:53:5a:38:9f:07:f0:36:21:7b:f8:d1:f7:6f:7f:a0:79:5a: 46:de:cc:7c:40:12:38:58:5c:21:76:70:93:7e:c0:6f:41:f1: 75:f8:15:56:d1:08:82:71:f0:7a:7e:71:a1:22:37:b3:f6:ec: 13:d4:a9:5f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIlqwTGaD9nihGYnfREpPELeJXM8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNTA2MjcxMDQ1NDNaFw0yNTA2MzAxOTI4NDNaMDMxMTAvBgNV BAMTKEM3MkZCNUM2Q0ZGQzFCMzA1MjI1M0YxM0Q2QTlEQUZBOTYwQjBENzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMcqDoWwMHEvlQkTgYZmC3EAI8 0kINp5JSjQyOZ7hBWwvgLMKgqDyvGlubg6pV84sLgyqyzrwrLYwtnvL61UV7tidl /ID4VcPZrT7MOVrLg28jopvzeOTdE+b9mQezm4c/gaH59MChlwhnCXTn6Y+ntc/B YHcItRoe8I0+Dv38u8ITpx1W5s8rHUMzUnHTLXFINt1DkyktONRXPvni5S61OtBV rc6nowk8FFS2tbIaGkaZdUq8fq7p7Ko+HQRc44PTdRLukafko5biW0tH/WgQF+Wr V2gpm33blOz08jj9x+YG6AxMJQVY/fPKl6nKeYpFEHw17FJeM794hrf0e99dAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxy+1xs/8GzBSJT8T1qna+pYLDXgwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQ5NWMxOWMtMzI2Mi00OGM3LWFm MDItMzdhODM1ZDBhNzc5LzAvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIz REM2MTQyRTVGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHDVjt9mQwjrtyu9vSk5hjwkAaKSHfd1VEN9 cIeMVhurOJ2rTdAtpkpHeuVHfeX6CxEWKHowLZWQix6t4sn2RN1TbSFDtnY9KBcb RTkrFSvomSl8Qy17w7BWpg1OfGIoIuEqJAD5BaAVOey4brmiSUmKZ455ZZcTtH+A SyQaKMkY+On0lUAP5jAwNqvqDwZtcp4UrZLxOXYCHnyzQ5WknJ2rDFOzfeWVCQoW TN/LE5IEo80FeqYZp7lrqEGOdsj9iTc4t5+wZmZTWjifB/A2IXv40fdvf6B5Wkbe zHxAEjhYXCF2cJN+wG9B8XX4FVbRCIJx8Hp+caEiN7P27BPUqV8= -----END CERTIFICATE-----Generated at Sun Jun 29 18:07:52 2025 by rpki-client