$ rpki-client -vvf repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft File: 9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft (raw, json) Hash identifier: xupGjGyI/kNCwNe5qK0x1NRq6S+2awu+5uqVR27h+kw= Subject key identifier: B5:D4:45:62:7F:43:D4:2B:D8:49:3F:25:71:C7:A3:86:8D:BB:23:C9 Authority key identifier: 9F:FC:46:BA:A3:F1:95:22:AF:5B:DD:60:DF:7D:E9:2E:94:F5:AB:7B Certificate issuer: /CN=9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B Certificate serial: 7D202B224189E2608AED671042ADE17E246E0CBE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft Manifest number: 01A1 Signing time: Sun 29 Jun 2025 07:52:05 +0000 Manifest this update: Sun 29 Jun 2025 07:47:05 +0000 Manifest next update: Wed 02 Jul 2025 13:59:05 +0000 Files and hashes: 1: 3130332e33392e37302e302f32332d3233203d3e20313530323734.roa (hash: Na4r9r8nnow4eud4P32zyb2HwE34kjIncW5/HOVTmbY=) 2: 9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl (hash: zTgzqXURtfj90/5RtY7Ww1Pjk8ZB/bwa6bEQefgZRNI=) 3: 3130332e33392e37302e302f32342d3234203d3e20313530323734.roa (hash: n9HiNkJ52DbLxZISXERFZtFdqx3265M08OZ/zKtOVYU=) 4: 3130332e33392e37312e302f32342d3234203d3e20313530323734.roa (hash: vX/A9y9l7mDzRfDBjuCxoiwVgHmV7OjNWsTWxTukflI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:20:2b:22:41:89:e2:60:8a:ed:67:10:42:ad:e1:7e:24:6e:0c:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B Validity Not Before: Jun 29 07:47:05 2025 GMT Not After : Jul 2 13:59:05 2025 GMT Subject: CN=B5D445627F43D42BD8493F2571C7A3868DBB23C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:22:0c:a0:0d:cc:4c:70:aa:fb:89:98:ce:c2: 7c:a7:6b:8b:a8:ed:55:31:5d:d0:9a:06:4c:62:1b: f9:17:df:3c:e6:8b:e4:a3:c4:2f:ea:9f:8e:d6:96: 43:02:2f:ad:02:e8:33:a2:d9:b9:33:cd:da:c4:6f: 44:7f:08:77:31:85:1b:10:03:4e:a5:34:79:25:6d: ce:5e:e5:d6:d3:52:d9:fa:ad:5b:33:2d:a5:95:5f: 5a:85:66:73:59:27:88:aa:0d:99:a8:08:85:28:51: 5e:ce:e9:05:51:8e:d7:5b:9d:54:cb:87:1f:db:00: 00:37:d8:2d:aa:05:fe:b2:5e:24:3b:64:9e:22:3f: e5:c9:f3:8b:55:40:f6:41:22:51:e1:b0:7a:18:43: 7a:54:97:8c:d5:db:4e:9d:3e:64:2f:3a:86:23:83: 19:b4:37:a3:15:8d:0f:20:53:fc:95:3d:ea:d3:1f: 5c:48:98:ea:35:8b:7e:ff:67:c3:f0:6e:db:27:9b: 03:b2:32:94:f0:02:93:37:48:d0:2e:13:8e:bb:11: a6:ef:9a:00:1e:2c:68:11:91:a4:a5:9f:f5:0d:f5: 70:f0:24:b0:86:d3:2f:6d:8f:29:04:cd:88:5b:8a: f2:9e:36:11:bb:cf:96:3a:a1:bc:38:5f:ea:e5:04: 51:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D4:45:62:7F:43:D4:2B:D8:49:3F:25:71:C7:A3:86:8D:BB:23:C9 X509v3 Authority Key Identifier: keyid:9F:FC:46:BA:A3:F1:95:22:AF:5B:DD:60:DF:7D:E9:2E:94:F5:AB:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:e6:1c:4b:d9:80:4c:59:5c:da:2f:5b:8f:f1:70:63:e2:23: 18:07:ca:2d:f6:d4:97:78:94:8d:3f:b7:0d:81:54:95:8a:f8: 93:1c:a7:02:43:5b:a6:4e:52:a9:cf:34:52:07:83:fc:b2:6e: d2:6b:1c:a0:c9:af:07:58:a4:9c:53:f8:00:f6:4a:a4:8f:2d: b1:01:40:b3:f5:b0:c3:87:52:b6:5d:70:bc:12:f1:b9:2a:b0: 96:28:1b:74:2d:19:4c:e0:ec:e7:eb:af:8e:0d:7d:23:9a:26: c5:53:e2:26:c9:02:47:38:63:73:5d:11:47:ff:c7:3a:28:ec: 19:3a:8d:79:d2:4a:40:05:c5:98:45:fc:dd:ad:a3:00:1d:a7: 93:67:23:ef:37:8a:67:1b:78:7a:7d:95:60:4b:4e:e5:0a:f6: 69:9f:9c:c5:dd:6c:88:19:db:ca:b9:8b:a7:e6:41:8d:78:06: d1:d8:e8:37:4a:86:a6:93:a9:35:4f:da:2c:37:db:fc:12:3f: 56:09:78:05:a9:d7:9b:cc:4c:2c:c3:f9:d5:e8:02:be:ee:a5: 6b:2e:ef:a8:0a:8c:e1:fa:0f:6e:65:4b:3e:7b:9e:9c:01:a8: 0c:eb:03:1c:09:0f:1e:4f:ba:08:7c:88:a1:16:b4:f4:a3:95: 38:b6:00:1f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfSArIkGJ4mCK7WcQQq3hfiRuDL4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5MkU5 NEY1QUI3QjAeFw0yNTA2MjkwNzQ3MDVaFw0yNTA3MDIxMzU5MDVaMDMxMTAvBgNV BAMTKEI1RDQ0NTYyN0Y0M0Q0MkJEODQ5M0YyNTcxQzdBMzg2OERCQjIzQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUIgygDcxMcKr7iZjOwnyna4uo 7VUxXdCaBkxiG/kX3zzmi+SjxC/qn47WlkMCL60C6DOi2bkzzdrEb0R/CHcxhRsQ A06lNHklbc5e5dbTUtn6rVszLaWVX1qFZnNZJ4iqDZmoCIUoUV7O6QVRjtdbnVTL hx/bAAA32C2qBf6yXiQ7ZJ4iP+XJ84tVQPZBIlHhsHoYQ3pUl4zV206dPmQvOoYj gxm0N6MVjQ8gU/yVPerTH1xImOo1i37/Z8PwbtsnmwOyMpTwApM3SNAuE467Eabv mgAeLGgRkaSln/UN9XDwJLCG0y9tjykEzYhbivKeNhG7z5Y6obw4X+rlBFF9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtdRFYn9D1CvYST8lccejho27I8kwHwYDVR0j BBgwFoAUn/xGuqPxlSKvW91g333pLpT1q3swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTU3ZDU0My1iYWYwLTQzNDgtODg1Ny0zZDI2MDFjM2E4MDMvMC85RkZDNDZCQUEz RjE5NTIyQUY1QkRENjBERjdERTkyRTk0RjVBQjdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5MkU5NEY1 QUI3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2U1N2Q1NDMtYmFmMC00MzQ4LTg4 NTctM2QyNjAxYzNhODAzLzAvOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5 MkU5NEY1QUI3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJPmHEvZgExZXNovW4/xcGPiIxgHyi321Jd4 lI0/tw2BVJWK+JMcpwJDW6ZOUqnPNFIHg/yybtJrHKDJrwdYpJxT+AD2SqSPLbEB QLP1sMOHUrZdcLwS8bkqsJYoG3QtGUzg7Ofrr44NfSOaJsVT4ibJAkc4Y3NdEUf/ xzoo7Bk6jXnSSkAFxZhF/N2towAdp5NnI+83imcbeHp9lWBLTuUK9mmfnMXdbIgZ 28q5i6fmQY14BtHY6DdKhqaTqTVP2iw32/wSP1YJeAWp15vMTCzD+dXoAr7upWsu 76gKjOH6D25lSz57npwBqAzrAxwJDx5Pugh8iKEWtPSjlTi2AB8= -----END CERTIFICATE-----Generated at Mon Jun 30 01:09:25 2025 by rpki-client