$ rpki-client -vvf repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft File: DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft (raw, json) Hash identifier: lOMNCBislxIPWh6TakpaV+qEbbMs/t5KfRVu2wQuN3k= Subject key identifier: B7:34:24:5B:E7:BE:F2:BE:E6:FD:C7:55:04:40:78:AF:E6:86:23:74 Authority key identifier: DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 Certificate issuer: /CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Certificate serial: 1BC9A41795BBFDF82F8775F156B87A75ACBACF74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft Manifest number: 0225 Signing time: Sat 28 Jun 2025 21:01:52 +0000 Manifest this update: Sat 28 Jun 2025 20:56:52 +0000 Manifest next update: Tue 01 Jul 2025 22:01:52 +0000 Files and hashes: 1: DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl (hash: tj/v/5UpvK9EM152pOkuPStPojhRbBf1EVvc54eyqLY=) 2: 3130332e3136362e3233342e302f32342d3234203d3e20313430343037.roa (hash: sMfIE/u5AzCpsIXByAsN/oEvGS84+QQDQwr2MsQjPBU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 22:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c9:a4:17:95:bb:fd:f8:2f:87:75:f1:56:b8:7a:75:ac:ba:cf:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Validity Not Before: Jun 28 20:56:52 2025 GMT Not After : Jul 1 22:01:52 2025 GMT Subject: CN=B734245BE7BEF2BEE6FDC755044078AFE6862374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:80:c8:37:84:65:09:17:1a:34:5a:de:0e:d5: b9:1f:8d:4d:ab:10:bf:0b:c2:5b:7e:b3:14:8f:13: 25:01:12:2c:39:92:82:66:b0:a6:5d:ad:2d:94:86: e6:49:65:ef:0a:fd:29:45:74:12:22:3b:16:20:1a: ff:7b:d0:82:a4:2e:2c:fe:94:b9:de:8c:ee:b0:66: 18:12:96:7b:1b:9a:4b:6f:c7:93:e3:b9:46:38:be: 32:0d:44:02:f2:32:1a:21:fd:b8:f3:93:4f:db:82: d1:96:db:c7:8e:dd:c1:23:aa:ed:ac:2b:c3:87:e7: a1:bc:a0:28:37:1d:15:22:ce:72:fa:99:7d:2b:81: 63:ba:fc:82:ed:fa:16:42:ea:ec:a6:b5:b3:1f:ce: fa:0f:90:81:83:f4:04:1f:64:09:5d:bb:05:cf:77: e0:40:11:8b:5c:ef:25:a7:c1:07:64:a7:af:b4:d1: a3:2c:ea:11:df:70:1f:03:08:f8:70:31:51:5d:ff: 51:ff:da:e6:5d:5e:40:22:33:b1:23:e2:e2:15:56: 95:fb:aa:29:c1:1f:2a:10:19:75:4c:76:31:0a:2f: e2:3f:94:69:04:ff:bf:3f:3e:32:03:6e:60:8d:d4: 73:b6:4c:39:4f:9c:eb:f2:10:ca:b5:79:41:5b:85: 8c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:34:24:5B:E7:BE:F2:BE:E6:FD:C7:55:04:40:78:AF:E6:86:23:74 X509v3 Authority Key Identifier: keyid:DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:79:75:b1:1a:90:d1:90:ab:93:eb:9d:2a:d8:21:3e:47:8d: 9f:f4:8b:7f:20:16:d1:c9:22:4d:a6:65:af:dc:f6:15:ba:d7: 0a:1d:80:5d:25:e0:6d:71:9d:06:f1:3b:99:c3:84:78:33:ab: 83:7c:51:52:13:77:52:6b:29:e3:ae:31:f0:06:23:c8:7c:e3: ab:7d:46:42:d1:a8:27:5a:d8:23:fa:50:7a:91:4f:2c:25:a9: 40:71:46:53:ca:7a:59:df:ef:3d:44:df:e9:32:38:8b:5d:d8: e2:8f:c6:85:c1:97:bc:a5:dd:98:13:dc:62:d2:97:bf:8d:57: 41:cb:fd:6a:36:e1:c4:5e:d6:7b:cc:7f:db:30:47:cf:a0:3e: 65:5c:e7:1b:11:13:f1:2f:68:f0:35:3a:c6:a1:a3:c5:92:21: f5:0e:e2:bd:17:32:c7:39:0f:a6:27:5c:56:e8:da:e1:6d:b3: 10:9a:ed:2c:92:44:89:6c:70:fe:d5:e0:ed:78:38:e2:1a:3a: 44:f5:17:67:af:58:1f:56:cb:aa:71:2f:a5:43:17:72:ce:16: 33:b4:cf:c4:94:66:14:06:f2:89:fd:ce:c4:f0:fc:ef:da:83: 93:2e:07:ab:d1:d0:25:a0:90:3b:02:28:3f:f0:b2:82:61:de: f5:d5:71:1b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG8mkF5W7/fgvh3XxVrh6day6z3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0MDVC N0ExQUVGMjAeFw0yNTA2MjgyMDU2NTJaFw0yNTA3MDEyMjAxNTJaMDMxMTAvBgNV BAMTKEI3MzQyNDVCRTdCRUYyQkVFNkZEQzc1NTA0NDA3OEFGRTY4NjIzNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZgMg3hGUJFxo0Wt4O1bkfjU2r EL8Lwlt+sxSPEyUBEiw5koJmsKZdrS2UhuZJZe8K/SlFdBIiOxYgGv970IKkLiz+ lLnejO6wZhgSlnsbmktvx5PjuUY4vjINRALyMhoh/bjzk0/bgtGW28eO3cEjqu2s K8OH56G8oCg3HRUiznL6mX0rgWO6/ILt+hZC6uymtbMfzvoPkIGD9AQfZAlduwXP d+BAEYtc7yWnwQdkp6+00aMs6hHfcB8DCPhwMVFd/1H/2uZdXkAiM7Ej4uIVVpX7 qinBHyoQGXVMdjEKL+I/lGkE/78/PjIDbmCN1HO2TDlPnOvyEMq1eUFbhYzPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtzQkW+e+8r7m/cdVBEB4r+aGI3QwHwYDVR0j BBgwFoAU3xmUnOF9wRbnt8IkjJM0BbehrvIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWVmNzg2Yi02MjI2LTQ0YWYtODUyZC0xZmIwNDVjNGRlYjMvMC9ERjE5OTQ5Q0Ux N0RDMTE2RTdCN0MyMjQ4QzkzMzQwNUI3QTFBRUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0MDVCN0Ex QUVGMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FlZjc4NmItNjIyNi00NGFmLTg1 MmQtMWZiMDQ1YzRkZWIzLzAvREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0 MDVCN0ExQUVGMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKF5dbEakNGQq5PrnSrYIT5HjZ/0i38gFtHJ Ik2mZa/c9hW61wodgF0l4G1xnQbxO5nDhHgzq4N8UVITd1JrKeOuMfAGI8h846t9 RkLRqCda2CP6UHqRTywlqUBxRlPKelnf7z1E3+kyOItd2OKPxoXBl7yl3ZgT3GLS l7+NV0HL/Wo24cRe1nvMf9swR8+gPmVc5xsRE/EvaPA1Osaho8WSIfUO4r0XMsc5 D6YnXFbo2uFtsxCa7SySRIlscP7V4O14OOIaOkT1F2evWB9Wy6pxL6VDF3LOFjO0 z8SUZhQG8on9zsTw/O/ag5MuB6vR0CWgkDsCKD/wsoJh3vXVcRs= -----END CERTIFICATE-----Generated at Mon Jun 30 01:35:26 2025 by rpki-client