$ rpki-client -vvf repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft File: D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft (raw, json) Hash identifier: VlwcIGFC3tJ1aJHsYmMYpgegy7RsAt9D4aBIHoaDtOM= Subject key identifier: 6B:2D:44:DE:F9:99:48:55:FE:F7:87:AA:65:53:A9:7D:44:CF:E4:D3 Authority key identifier: D2:1A:35:97:D7:B5:EB:D9:A5:47:68:0F:1C:2E:D7:A4:64:DD:9F:26 Certificate issuer: /CN=D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26 Certificate serial: 5C533A1AC5D7ABD424469347FF2BCBB047E8315C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft Manifest number: 01FD Signing time: Sun 29 Jun 2025 09:11:46 +0000 Manifest this update: Sun 29 Jun 2025 09:06:46 +0000 Manifest next update: Wed 02 Jul 2025 10:50:46 +0000 Files and hashes: 1: D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.crl (hash: HUQub2rSbVq+43CQGbikAYDTfTv11TmFXIhnHdv7R7E=) 2: 3130332e3138332e362e302f32332d3234203d3e20313439343037.roa (hash: bu4LtbxxfvYhSmPVYXsHJnQ8u6QDASxNerDLPSby9+A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.crl rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:53:3a:1a:c5:d7:ab:d4:24:46:93:47:ff:2b:cb:b0:47:e8:31:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26 Validity Not Before: Jun 29 09:06:46 2025 GMT Not After : Jul 2 10:50:46 2025 GMT Subject: CN=6B2D44DEF9994855FEF787AA6553A97D44CFE4D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cf:9d:17:a0:8f:37:a3:a7:17:3e:58:0c:35: ef:18:0f:34:04:8a:fc:50:0a:0e:93:d7:b1:d6:c3: 83:8f:6b:ab:51:61:82:6a:a9:c7:f6:c7:e4:77:6d: 2a:ae:b8:c4:c9:f8:59:f4:70:f7:e6:b7:a6:01:cb: 3f:dd:46:b0:01:ee:5b:18:0b:6b:59:e1:a0:5c:df: 46:37:4e:59:7a:66:62:64:96:11:9c:2c:74:1e:f8: ad:d5:e7:a4:ae:08:b0:7c:e9:96:75:07:9b:af:2e: 7f:3a:69:1f:10:ab:78:d7:2f:d5:65:39:a2:45:da: 5e:fc:f2:5d:a1:37:ff:6f:32:bb:0f:b8:32:fc:e4: 3f:87:4e:0e:55:01:41:e5:48:87:32:3c:ae:aa:74: b5:6e:98:78:25:c1:48:2e:65:84:52:9e:e8:0b:df: 38:06:6c:99:2e:76:80:28:cc:b0:be:26:c6:09:7a: 27:56:c4:1c:83:0f:bc:31:f6:4b:ed:e3:7f:77:aa: 65:0c:40:14:af:be:44:2f:ea:1d:41:fa:e4:7c:6a: 22:b3:75:e3:80:b6:ac:ef:75:dc:05:f1:41:5c:a3: f2:17:59:45:8b:33:f9:74:0a:ba:e4:df:a3:09:1e: 4c:43:60:be:93:80:5c:bc:56:41:12:dd:dd:f5:00: 69:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2D:44:DE:F9:99:48:55:FE:F7:87:AA:65:53:A9:7D:44:CF:E4:D3 X509v3 Authority Key Identifier: keyid:D2:1A:35:97:D7:B5:EB:D9:A5:47:68:0F:1C:2E:D7:A4:64:DD:9F:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:96:6e:3b:b6:b2:ae:ec:b3:9a:fd:3a:4b:58:06:54:43:e2: 08:f0:5c:04:be:35:41:c5:3e:6a:9c:34:9e:56:82:6d:d8:54: eb:35:dd:01:5e:3b:fe:6b:19:0d:ca:5b:63:02:15:5e:5d:14: 8b:a9:3b:dc:c9:57:ce:1f:71:9e:d8:07:27:cb:43:c5:12:c2: df:93:ed:e9:3b:fb:4f:25:06:80:20:d3:bf:19:5d:01:83:23: 93:ab:8b:15:62:ef:6d:97:de:79:10:5f:00:13:7d:76:94:fb: 32:75:f9:0b:6d:62:63:69:1b:0a:b3:ad:6f:e2:ae:47:21:4d: fe:a9:7a:a7:c5:bb:11:72:b6:d8:bb:9d:67:e2:31:5b:15:ea: 9e:c2:a2:b8:f0:d2:2d:7d:b8:9a:e8:93:61:33:c6:79:74:1a: 8c:6d:4e:8c:33:49:7a:db:96:7d:d8:26:33:41:75:25:fb:fc: 7b:f2:97:81:cc:3d:e9:9d:e5:7b:1c:e4:f4:92:ec:48:7f:e1: a8:60:0a:00:6c:66:6f:59:ca:68:0c:6d:96:b5:f0:04:8e:f8: 1b:6b:f4:6e:3d:9a:e4:71:5d:2e:af:3e:e8:a7:d9:83:a6:49: 14:e1:d2:2b:14:9b:fd:f6:d8:c7:d7:bf:a7:56:23:46:3f:77: 0a:d1:5b:d1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXFM6GsXXq9QkRpNH/yvLsEfoMVwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIxQTM1OTdEN0I1RUJEOUE1NDc2ODBGMUMyRUQ3QTQ2 NEREOUYyNjAeFw0yNTA2MjkwOTA2NDZaFw0yNTA3MDIxMDUwNDZaMDMxMTAvBgNV BAMTKDZCMkQ0NERFRjk5OTQ4NTVGRUY3ODdBQTY1NTNBOTdENDRDRkU0RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLz50XoI83o6cXPlgMNe8YDzQE ivxQCg6T17HWw4OPa6tRYYJqqcf2x+R3bSquuMTJ+Fn0cPfmt6YByz/dRrAB7lsY C2tZ4aBc30Y3Tll6ZmJklhGcLHQe+K3V56SuCLB86ZZ1B5uvLn86aR8Qq3jXL9Vl OaJF2l788l2hN/9vMrsPuDL85D+HTg5VAUHlSIcyPK6qdLVumHglwUguZYRSnugL 3zgGbJkudoAozLC+JsYJeidWxByDD7wx9kvt4393qmUMQBSvvkQv6h1B+uR8aiKz deOAtqzvddwF8UFco/IXWUWLM/l0Crrk36MJHkxDYL6TgFy8VkES3d31AGm/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUay1E3vmZSFX+94eqZVOpfUTP5NMwHwYDVR0j BBgwFoAU0ho1l9e169mlR2gPHC7XpGTdnyYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2M1NjA1ZC1mMTdhLTQwMTAtOTI1My0yMTBjNjRmMTQ4YmQvMC9EMjFBMzU5N0Q3 QjVFQkQ5QTU0NzY4MEYxQzJFRDdBNDY0REQ5RjI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDIxQTM1OTdEN0I1RUJEOUE1NDc2ODBGMUMyRUQ3QTQ2NERE OUYyNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2NjNTYwNWQtZjE3YS00MDEwLTky NTMtMjEwYzY0ZjE0OGJkLzAvRDIxQTM1OTdEN0I1RUJEOUE1NDc2ODBGMUMyRUQ3 QTQ2NEREOUYyNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJqWbju2sq7ss5r9OktYBlRD4gjwXAS+NUHF PmqcNJ5Wgm3YVOs13QFeO/5rGQ3KW2MCFV5dFIupO9zJV84fcZ7YByfLQ8USwt+T 7ek7+08lBoAg078ZXQGDI5OrixVi722X3nkQXwATfXaU+zJ1+QttYmNpGwqzrW/i rkchTf6peqfFuxFytti7nWfiMVsV6p7Corjw0i19uJrok2Ezxnl0GoxtTowzSXrb ln3YJjNBdSX7/Hvyl4HMPemd5Xsc5PSS7Eh/4ahgCgBsZm9ZymgMbZa18ASO+Btr 9G49muRxXS6vPuin2YOmSRTh0isUm/322MfXv6dWI0Y/dwrRW9E= -----END CERTIFICATE-----Generated at Sun Jun 29 19:40:36 2025 by rpki-client