$ rpki-client -vvf repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft File: 68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft (raw, json) Hash identifier: +9/snwZ+fOFtc5J2IYLHzDfHwNo3NyyOkHCM9KHabLE= Subject key identifier: 17:0D:1E:38:07:47:FC:E0:9E:2A:27:5D:DC:EE:F8:5A:99:EB:34:D0 Authority key identifier: 68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 Certificate issuer: /CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Certificate serial: 08169563DE2693DE5E1C8F5D6DD13B6BDCD37D82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft Manifest number: 044E Signing time: Mon 30 Jun 2025 18:50:58 +0000 Manifest this update: Mon 30 Jun 2025 18:45:58 +0000 Manifest next update: Fri 04 Jul 2025 05:45:58 +0000 Files and hashes: 1: 68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl (hash: Pb7FMwRjC0yrEevlJSx3O9MOWY7VLO0+DegcLLxFay4=) 2: 3130332e3136312e3131312e302f32342d3234203d3e20313431363135.roa (hash: DSCdhRjgPhVc7GP3hYwZBTxGLDzPYuxYKap6JH0m82g=) 3: 3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa (hash: I1rDYvqqFg4aRnuf/vWK5XXOGVBK8suZyd8orlilX60=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 05:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:16:95:63:de:26:93:de:5e:1c:8f:5d:6d:d1:3b:6b:dc:d3:7d:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Validity Not Before: Jun 30 18:45:58 2025 GMT Not After : Jul 4 05:45:58 2025 GMT Subject: CN=170D1E380747FCE09E2A275DDCEEF85A99EB34D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:40:3e:b7:84:b8:ea:3d:b4:92:33:15:91:f6: 6c:3f:6d:b2:59:c5:33:44:45:b6:8b:b2:db:03:c0: 5b:33:54:25:ae:da:6d:ef:5d:6c:58:aa:81:7d:31: 7b:1f:27:ca:65:d9:3b:c4:68:14:9e:85:49:79:3b: c0:f0:b5:ef:86:e9:c1:75:f5:92:52:94:b3:81:b1: 72:d1:f2:bd:38:07:eb:f8:48:2e:96:4c:b9:44:aa: 09:2c:21:fb:bc:28:c6:9e:d1:f8:aa:de:4f:f4:3d: 13:39:66:a2:e7:c2:25:d1:1c:27:2c:33:b7:06:73: 99:e9:e7:8b:b8:63:6f:7d:48:ef:78:5e:eb:d0:57: 1f:c3:65:e8:f4:9b:d5:38:a2:9f:a3:68:de:55:fa: 1c:c7:41:8a:10:61:34:4c:fb:4c:bd:ad:00:36:19: 09:a2:8e:49:3d:b2:fa:a0:1c:e3:ad:cc:fe:bf:be: 3f:f2:98:9e:b3:26:35:31:c7:98:8c:23:89:e9:a4: 60:da:bc:22:ce:5c:f3:55:51:d8:71:8c:6d:0b:58: 8d:60:47:19:7e:ee:fa:29:d8:23:4f:cb:52:ea:b9: 13:0d:07:bc:bd:bb:98:9a:1a:4e:80:3c:3b:e6:3a: 53:40:54:6a:6b:72:54:a5:c4:88:aa:63:c7:b3:20: 60:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:0D:1E:38:07:47:FC:E0:9E:2A:27:5D:DC:EE:F8:5A:99:EB:34:D0 X509v3 Authority Key Identifier: keyid:68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:db:38:0f:a9:66:20:01:d8:dc:c8:80:0f:a3:f3:c3:f6:fb: 3c:be:ec:e3:88:cc:4a:5f:96:25:87:e6:ca:6f:cf:fd:57:fb: 1b:3b:67:19:99:5c:f4:e9:40:e5:37:8c:11:b1:58:ea:fb:7b: 9f:3e:27:91:df:6e:c3:9a:2d:93:55:5b:24:22:16:96:e0:e0: 3a:79:8b:7f:bf:12:5e:f5:9e:a6:4a:f8:88:5a:ed:92:cd:49: ff:f5:34:9a:95:70:15:fc:36:a3:ca:05:c5:53:b4:00:97:12: f7:64:d1:0b:e8:85:7d:c0:7b:cd:45:b0:ae:85:da:c6:3b:78: 6c:e1:38:7a:85:83:80:20:7e:9c:87:85:9c:ff:af:34:92:5c: 87:6d:f0:c0:20:d9:97:92:6e:f4:ac:e6:fb:2f:f9:85:a7:0a: 7b:57:19:e3:c6:70:1f:24:11:cf:e9:b0:5b:4e:ef:0b:f0:e3: 2c:4e:5b:d7:1d:29:3d:55:4a:6a:04:32:be:41:65:a3:b1:58: 0c:c8:2d:f3:8a:0d:e3:7e:04:1c:a1:fb:2d:8f:44:97:de:aa: f5:06:33:48:be:06:96:13:32:f7:26:41:52:ec:57:b2:bb:22: 3d:8a:86:2b:f4:0b:1c:79:bc:59:c7:13:e9:b6:ae:01:26:15: fb:91:fa:85 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCBaVY94mk95eHI9dbdE7a9zTfYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1 QUFFQUFGODAeFw0yNTA2MzAxODQ1NThaFw0yNTA3MDQwNTQ1NThaMDMxMTAvBgNV BAMTKDE3MEQxRTM4MDc0N0ZDRTA5RTJBMjc1RERDRUVGODVBOTlFQjM0RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0QD63hLjqPbSSMxWR9mw/bbJZ xTNERbaLstsDwFszVCWu2m3vXWxYqoF9MXsfJ8pl2TvEaBSehUl5O8Dwte+G6cF1 9ZJSlLOBsXLR8r04B+v4SC6WTLlEqgksIfu8KMae0fiq3k/0PRM5ZqLnwiXRHCcs M7cGc5np54u4Y299SO94XuvQVx/DZej0m9U4op+jaN5V+hzHQYoQYTRM+0y9rQA2 GQmijkk9svqgHOOtzP6/vj/ymJ6zJjUxx5iMI4nppGDavCLOXPNVUdhxjG0LWI1g Rxl+7vop2CNPy1LquRMNB7y9u5iaGk6APDvmOlNAVGprclSlxIiqY8ezIGB/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFw0eOAdH/OCeKidd3O74WpnrNNAwHwYDVR0j BBgwFoAUaNV4L7rbkUz9dK4o2ll4SlquqvgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZjQwOGU0NC0zZTljLTQ1ZTUtYmNhNC01ZGZiZDRiMjcxMzAvMC82OEQ1NzgyRkJB REI5MTRDRkQ3NEFFMjhEQTU5Nzg0QTVBQUVBQUY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1QUFF QUFGOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2Y0MDhlNDQtM2U5Yy00NWU1LWJj YTQtNWRmYmQ0YjI3MTMwLzAvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4 NEE1QUFFQUFGOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIrbOA+pZiAB2NzIgA+j88P2+zy+7OOIzEpf liWH5spvz/1X+xs7ZxmZXPTpQOU3jBGxWOr7e58+J5HfbsOaLZNVWyQiFpbg4Dp5 i3+/El71nqZK+Iha7ZLNSf/1NJqVcBX8NqPKBcVTtACXEvdk0QvohX3Ae81FsK6F 2sY7eGzhOHqFg4AgfpyHhZz/rzSSXIdt8MAg2ZeSbvSs5vsv+YWnCntXGePGcB8k Ec/psFtO7wvw4yxOW9cdKT1VSmoEMr5BZaOxWAzILfOKDeN+BByh+y2PRJfeqvUG M0i+BpYTMvcmQVLsV7K7Ij2Khiv0Cxx5vFnHE+m2rgEmFfuR+oU= -----END CERTIFICATE-----Generated at Tue Jul 1 05:04:16 2025 by rpki-client