$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft File: 2D0745D26E59440CB71FAFE996834493DA753248.mft (raw, json) Hash identifier: oPazgv05TEsgFIOVMpoupiuLIjt39fml1K7AXunizVY= Subject key identifier: 0C:82:A8:C1:64:02:1F:C8:BC:20:06:9B:1E:C8:70:91:74:31:9E:93 Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 4C2A2CB5FB4F004445E7ACF742A06C554FBA623D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft Manifest number: 01B9 Signing time: Sat 28 Jun 2025 10:02:19 +0000 Manifest this update: Sat 28 Jun 2025 09:57:19 +0000 Manifest next update: Tue 01 Jul 2025 19:14:19 +0000 Files and hashes: 1: 2D0745D26E59440CB71FAFE996834493DA753248.crl (hash: gvqa7cXFhf404Vi6aiAxhiqGVgjz/ugIHvG7s4JWZQY=) 2: 3130332e37332e3135382e302f32342d3234203d3e203234343239.roa (hash: ujITe6uXtdvP5WOayQADk+Rg7asyYqwio86khyT1Nho=) 3: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (hash: nxYZnXzCnu/G6Di5JhS1WLXdlQHk8fuEdbh3UpU3Jf8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 19:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:2a:2c:b5:fb:4f:00:44:45:e7:ac:f7:42:a0:6c:55:4f:ba:62:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: Jun 28 09:57:19 2025 GMT Not After : Jul 1 19:14:19 2025 GMT Subject: CN=0C82A8C164021FC8BC20069B1EC8709174319E93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:be:1e:eb:23:f1:64:ee:94:62:2d:e5:8a:ca: d0:64:1d:29:b9:59:e9:b3:bf:78:ee:03:63:c3:9a: 02:24:f4:f2:cf:42:fa:31:d7:f6:fb:8c:02:73:46: d0:f5:cd:8e:dc:6b:44:8a:f4:20:c9:9f:ba:27:f0: 3d:e5:59:9c:1c:b3:e6:5c:94:a2:47:05:ee:da:1f: 52:f7:59:5b:51:5f:06:77:7c:4f:49:e7:cc:2d:f8: 96:d6:e1:0e:cb:42:c6:a9:82:e8:32:fc:09:77:15: ad:0b:9f:46:67:94:11:d0:c7:b6:6d:fa:af:a2:b0: e4:89:81:61:38:2a:2d:0b:9b:d6:26:5e:8a:23:d9: be:15:53:55:90:58:a3:db:77:6c:a8:42:10:a2:a5: 5a:0f:4a:71:74:d1:27:2a:92:7f:38:c5:46:ba:93: 84:ea:70:1d:2d:b1:cc:63:f3:34:1e:b4:cb:dd:91: 47:4f:f1:d2:b4:29:35:2b:90:74:d1:2d:d6:50:a9: 44:8b:df:29:15:48:d2:dc:e6:3b:c1:49:52:7d:4b: 95:29:bf:4f:38:dd:09:53:0c:9f:4f:b4:90:97:1e: e1:86:27:5d:23:e7:84:67:88:ae:e0:91:83:96:2d: 5e:e3:f2:24:f8:c9:69:82:7c:6a:97:d3:e7:cb:2f: df:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:82:A8:C1:64:02:1F:C8:BC:20:06:9B:1E:C8:70:91:74:31:9E:93 X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:89:58:05:7c:04:a0:47:78:fa:37:33:23:ea:be:e8:30:c8: ca:e5:fe:78:a5:ab:e4:50:6c:36:38:d5:5b:58:f5:60:29:d2: 9d:ba:d2:d3:81:55:2f:92:7a:73:7f:78:2b:b9:f4:ea:60:90: e9:b9:5e:ca:84:df:66:c6:28:2f:e4:13:b6:25:24:e2:60:01: c7:63:8d:27:eb:b8:07:2b:dc:d9:a2:da:8e:2d:f8:1b:eb:eb: 91:f4:f9:5f:8d:df:87:cd:e6:01:46:c3:51:a0:18:6d:c6:15: 90:72:63:70:dd:20:57:16:15:9c:8a:3c:c1:03:d5:ac:fe:3a: ef:f3:8a:87:d0:b7:73:05:9e:1f:08:17:4c:3e:d5:71:93:49: a7:67:66:75:51:33:01:58:70:eb:af:b2:cb:60:b0:dc:73:30: e7:78:18:85:e0:47:65:ba:95:b8:8c:49:87:77:38:a4:96:cd: 4e:ba:08:52:3a:54:5b:c3:85:0b:78:9e:03:a1:03:57:b6:f4: 79:b8:d6:a8:14:86:18:31:48:9a:3b:aa:5c:79:01:76:ca:ba: cf:2e:4a:5c:c0:0a:9c:ba:39:7f:05:97:0d:40:23:e2:fd:a9: 6a:6a:3a:bd:cb:4a:93:1d:ec:8d:3c:f8:a8:f6:cb:2f:a5:be: ed:88:fe:dd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTCostftPAERF56z3QqBsVU+6Yj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNTA2MjgwOTU3MTlaFw0yNTA3MDExOTE0MTlaMDMxMTAvBgNV BAMTKDBDODJBOEMxNjQwMjFGQzhCQzIwMDY5QjFFQzg3MDkxNzQzMTlFOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsvh7rI/Fk7pRiLeWKytBkHSm5 Wemzv3juA2PDmgIk9PLPQvox1/b7jAJzRtD1zY7ca0SK9CDJn7on8D3lWZwcs+Zc lKJHBe7aH1L3WVtRXwZ3fE9J58wt+JbW4Q7LQsapgugy/Al3Fa0Ln0ZnlBHQx7Zt +q+isOSJgWE4Ki0Lm9YmXooj2b4VU1WQWKPbd2yoQhCipVoPSnF00Scqkn84xUa6 k4TqcB0tscxj8zQetMvdkUdP8dK0KTUrkHTRLdZQqUSL3ykVSNLc5jvBSVJ9S5Up v0843QlTDJ9PtJCXHuGGJ10j54RniK7gkYOWLV7j8iT4yWmCfGqX0+fLL9+tAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDIKowWQCH8i8IAabHshwkXQxnpMwHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2E0MDZjZGItMTc5MS00NzhkLTlk MjgtOWUzN2E2ZjgwOWNjLzAvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0 OTNEQTc1MzI0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG6JWAV8BKBHePo3MyPqvugwyMrl/nilq+RQ bDY41VtY9WAp0p260tOBVS+SenN/eCu59OpgkOm5XsqE32bGKC/kE7YlJOJgAcdj jSfruAcr3Nmi2o4t+Bvr65H0+V+N34fN5gFGw1GgGG3GFZByY3DdIFcWFZyKPMED 1az+Ou/ziofQt3MFnh8IF0w+1XGTSadnZnVRMwFYcOuvsstgsNxzMOd4GIXgR2W6 lbiMSYd3OKSWzU66CFI6VFvDhQt4ngOhA1e29Hm41qgUhhgxSJo7qlx5AXbKus8u SlzACpy6OX8Flw1AI+L9qWpqOr3LSpMd7I08+Kj2yy+lvu2I/t0= -----END CERTIFICATE-----Generated at Sun Jun 29 19:14:06 2025 by rpki-client