$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft File: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft (raw, json) Hash identifier: syjU5w4kLxU6LkxYX84jokCctA1jmi7f2+ITrrZR49Q= Subject key identifier: D1:EB:17:6F:17:DD:0B:0C:90:D0:72:4F:02:5B:16:83:6E:55:2A:7F Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Certificate serial: 0222D6BE214BFF5A60ABC88C3212285CA0F5C809 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft Manifest number: 026C Signing time: Sat 28 Jun 2025 02:10:50 +0000 Manifest this update: Sat 28 Jun 2025 02:05:50 +0000 Manifest next update: Tue 01 Jul 2025 13:19:50 +0000 Files and hashes: 1: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl (hash: c5pY4R0rqqubna4R+SAlTFI5ph+FuWqBJ8W5Reil31o=) 2: 3130332e3137392e36362e302f32332d3234203d3e20313531303030.roa (hash: 3ytI4WNdkarTA98AKzILbdHeDtsgun+xePSvAI/3j/w=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 13:19:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:22:d6:be:21:4b:ff:5a:60:ab:c8:8c:32:12:28:5c:a0:f5:c8:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Validity Not Before: Jun 28 02:05:50 2025 GMT Not After : Jul 1 13:19:50 2025 GMT Subject: CN=D1EB176F17DD0B0C90D0724F025B16836E552A7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:27:c6:c9:bd:0a:7d:3a:dd:07:ae:b3:c6:8b: f9:61:1a:79:3a:55:54:59:cc:9a:05:27:67:25:a4: c1:fd:71:78:70:24:be:b3:97:b6:2c:87:cc:1e:68: e4:6f:11:93:65:0d:36:c4:9b:bf:8e:db:aa:af:14: b8:76:c5:1d:69:1a:f6:f6:c6:8b:ac:e4:b5:71:a9: 1a:c0:66:ca:9a:ba:2b:13:d4:d8:39:15:03:4d:5a: 1b:e6:2d:2c:b6:0b:f8:ce:44:97:63:fe:d3:02:25: 3c:8e:51:e8:95:4e:b4:2d:33:6a:e7:f2:c7:e2:0f: 02:26:49:29:2a:e3:7b:ef:75:2a:a7:ee:c4:47:21: fa:77:19:71:f4:44:a4:21:f8:85:87:18:a3:98:37: 21:6d:d4:d0:cb:e8:59:2c:c6:f5:e7:d6:61:cd:bd: 57:13:20:65:9f:b9:82:29:2f:70:f4:04:ff:04:03: 31:80:5e:0e:43:85:53:b4:a0:64:19:c9:3c:bb:c6: 57:ba:2c:c7:f0:70:92:21:4e:fb:59:f5:d0:35:e2: 9e:07:e1:58:ee:5a:aa:51:64:37:3c:7f:e8:4f:78: 45:46:fd:1e:98:85:76:cb:e7:e3:0c:cd:93:ef:20: 7c:17:9a:bb:dd:b6:b7:3d:4a:78:00:9e:ce:06:39: 39:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:EB:17:6F:17:DD:0B:0C:90:D0:72:4F:02:5B:16:83:6E:55:2A:7F X509v3 Authority Key Identifier: keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:6e:12:8b:4d:e6:7b:77:06:07:aa:48:78:2b:7e:41:d5:e9: 73:6b:66:9e:6b:f4:19:b3:7e:f1:da:f4:58:16:78:1c:d1:6d: 05:9c:60:a1:06:f9:34:8e:59:0a:34:84:ab:29:6d:b1:e7:9b: 8a:41:b0:30:9a:e4:07:80:bc:0a:30:fb:91:cc:42:e6:57:27: 87:be:ae:a9:b1:69:42:ed:eb:eb:f4:27:cb:80:b0:08:60:25: 8f:3d:7d:08:be:2b:3c:1b:45:76:a1:41:e5:c6:cf:24:29:40: 6b:aa:41:ee:d7:2c:36:10:66:8c:72:c8:73:f6:47:10:5f:c0: af:9f:9e:e9:a9:d8:f4:18:b9:5c:97:1b:3b:a3:7a:f3:7b:83: 59:cb:87:c9:49:98:2b:8f:f8:85:92:20:3c:1e:d2:76:44:04: c0:8b:33:11:e3:9a:4c:4b:d9:eb:85:c5:e1:76:1f:64:12:bc: 85:c3:a6:6f:05:57:fd:b1:f8:ea:1c:59:1f:99:2c:af:2c:60: cc:17:7c:33:8d:aa:e7:38:1d:4c:92:e9:e9:4f:3f:e2:a2:71: bd:9f:31:ea:4b:0e:61:84:97:7f:24:01:5b:ba:d1:df:88:97: a3:1f:19:bb:75:c8:a9:38:b0:c2:4d:b0:a9:fb:80:23:bc:35: 48:d0:9b:12 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAiLWviFL/1pgq8iMMhIoXKD1yAkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRF RUFDQTI3MDAeFw0yNTA2MjgwMjA1NTBaFw0yNTA3MDExMzE5NTBaMDMxMTAvBgNV BAMTKEQxRUIxNzZGMTdERDBCMEM5MEQwNzI0RjAyNUIxNjgzNkU1NTJBN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKJ8bJvQp9Ot0HrrPGi/lhGnk6 VVRZzJoFJ2clpMH9cXhwJL6zl7Ysh8weaORvEZNlDTbEm7+O26qvFLh2xR1pGvb2 xous5LVxqRrAZsqauisT1Ng5FQNNWhvmLSy2C/jORJdj/tMCJTyOUeiVTrQtM2rn 8sfiDwImSSkq43vvdSqn7sRHIfp3GXH0RKQh+IWHGKOYNyFt1NDL6FksxvXn1mHN vVcTIGWfuYIpL3D0BP8EAzGAXg5DhVO0oGQZyTy7xle6LMfwcJIhTvtZ9dA14p4H 4VjuWqpRZDc8f+hPeEVG/R6YhXbL5+MMzZPvIHwXmrvdtrc9SngAns4GOTlZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0esXbxfdCwyQ0HJPAlsWg25VKn8wHwYDVR0j BBgwFoAUW9NBptRq9Sz/I6XR4liUlO6sonAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMC81QkQzNDFBNkQ0 NkFGNTJDRkYyM0E1RDFFMjU4OTQ5NEVFQUNBMjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRFRUFD QTI3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UxMjc0M2QtZDU2ZC00YTc3LTkw ZTItYzUyZTZkZmUwNmMyLzAvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0 OTRFRUFDQTI3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMZuEotN5nt3BgeqSHgrfkHV6XNrZp5r9Bmz fvHa9FgWeBzRbQWcYKEG+TSOWQo0hKspbbHnm4pBsDCa5AeAvAow+5HMQuZXJ4e+ rqmxaULt6+v0J8uAsAhgJY89fQi+KzwbRXahQeXGzyQpQGuqQe7XLDYQZoxyyHP2 RxBfwK+fnump2PQYuVyXGzujevN7g1nLh8lJmCuP+IWSIDwe0nZEBMCLMxHjmkxL 2euFxeF2H2QSvIXDpm8FV/2x+OocWR+ZLK8sYMwXfDONquc4HUyS6elPP+Kicb2f MepLDmGEl38kAVu60d+Il6MfGbt1yKk4sMJNsKn7gCO8NUjQmxI= -----END CERTIFICATE-----Generated at Mon Jun 30 14:47:07 2025 by rpki-client