$ rpki-client -vvf repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft File: A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft (raw, json) Hash identifier: mQhPavV9h6MRqiw+gra5RF1dI/AFooQke6G0Vq5Uwds= Subject key identifier: C6:EE:AA:D4:2A:4B:E0:82:3F:5E:E0:7E:08:D1:D1:ED:C8:A5:12:22 Authority key identifier: A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 Certificate issuer: /CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Certificate serial: 1B85203A9A5F58550BF726EBEE0C9F8F1CBA6679 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft Manifest number: 38 Signing time: Sun 29 Jun 2025 11:51:17 +0000 Manifest this update: Sun 29 Jun 2025 11:46:17 +0000 Manifest next update: Wed 02 Jul 2025 15:06:17 +0000 Files and hashes: 1: A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl (hash: IPAOKQEOygdI29QTB3anE4aJ/1QQZuiUtl148fh0Z6c=) 2: 3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa (hash: fAL9MfqpRcilmiK6cDbN2CreeawZppTYa6tvP1zgN7Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 15:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:85:20:3a:9a:5f:58:55:0b:f7:26:eb:ee:0c:9f:8f:1c:ba:66:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Validity Not Before: Jun 29 11:46:17 2025 GMT Not After : Jul 2 15:06:17 2025 GMT Subject: CN=C6EEAAD42A4BE0823F5EE07E08D1D1EDC8A51222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c9:54:8d:52:87:08:65:91:aa:0d:ac:12:42: ef:b6:36:d1:52:8d:74:74:e2:19:31:c4:70:94:60: 2c:96:09:bf:ce:92:f3:18:f0:10:ad:58:c9:0b:f7: c0:35:65:c9:d6:04:36:2c:0b:d4:5b:32:46:28:25: e7:13:66:1f:04:f8:ff:30:b2:16:28:8c:cd:33:f7: 56:01:5b:1b:70:f6:a7:74:50:75:e5:b4:de:91:72: b3:06:7b:e8:7a:d0:d5:70:a7:50:bc:0f:1b:0d:f4: bb:d9:85:90:ea:62:07:1d:b4:db:06:24:eb:d5:51: e4:c5:ec:0e:d8:1c:90:14:af:4c:5a:6e:04:50:a1: db:be:67:e6:72:a9:25:81:b4:5c:b1:e3:62:3e:e0: 7b:83:a0:bb:50:93:66:a0:ed:1e:48:af:a7:77:b9: e8:fc:da:6e:97:3c:d6:62:31:2f:bf:ca:12:ed:23: 36:02:13:43:cf:18:1c:71:bb:c1:88:98:65:68:83: cd:59:a8:9b:9f:27:8a:e4:6c:88:4b:54:d3:c4:5b: bf:39:ad:3d:0a:8e:5b:5d:4b:81:0d:46:16:87:82: a5:e5:6c:2c:c3:84:74:a3:5f:c8:e1:c1:79:7a:6d: 16:f6:83:ae:e8:d0:4f:b1:82:0b:39:bc:e8:c2:a9: a3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:EE:AA:D4:2A:4B:E0:82:3F:5E:E0:7E:08:D1:D1:ED:C8:A5:12:22 X509v3 Authority Key Identifier: keyid:A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:6c:88:5e:e6:4e:fb:c3:9b:ed:90:a3:2e:34:28:cf:1a:19: 39:28:28:af:54:27:6b:26:e5:31:c5:64:32:e5:9c:07:81:55: c4:a9:64:84:37:d0:a7:fb:71:34:3c:c7:b5:3b:ea:b6:16:96: 99:e1:87:f6:3a:b6:67:e9:99:9e:14:a3:49:1c:34:85:51:53: 0e:6c:90:03:a1:87:24:99:52:68:bd:46:41:b5:2e:41:c7:3b: a3:50:3f:ad:06:2f:8d:81:c7:25:f1:1b:43:5d:92:2a:5d:96: 16:82:42:5b:00:2e:f2:75:a1:32:a6:84:7c:3b:96:46:5a:36: 28:bf:d2:72:37:30:d9:40:8e:b9:c8:ab:e2:f8:73:e9:ff:b6: a9:a6:06:2b:cb:e1:c8:e2:86:fd:8d:17:f0:4b:2c:9d:9e:2c: ed:8c:90:0a:01:d2:7e:13:e4:c9:00:bb:8a:12:34:3d:8f:a2: 02:75:4a:a1:c8:b0:ce:6d:a4:43:dd:22:21:d4:4e:9d:93:82: 1a:87:2c:c5:21:76:f4:24:07:fb:cf:96:13:fc:2b:47:70:72: e9:b9:f2:1d:8d:67:f1:6b:f4:fb:3a:35:3e:05:24:2b:75:13: ac:f5:78:6d:2b:af:c8:1c:4a:a7:77:80:0a:44:ff:78:9a:cd: bf:7e:68:b6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG4UgOppfWFUL9ybr7gyfjxy6ZnkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1 NzBFRDNBNDAeFw0yNTA2MjkxMTQ2MTdaFw0yNTA3MDIxNTA2MTdaMDMxMTAvBgNV BAMTKEM2RUVBQUQ0MkE0QkUwODIzRjVFRTA3RTA4RDFEMUVEQzhBNTEyMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/yVSNUocIZZGqDawSQu+2NtFS jXR04hkxxHCUYCyWCb/OkvMY8BCtWMkL98A1ZcnWBDYsC9RbMkYoJecTZh8E+P8w shYojM0z91YBWxtw9qd0UHXltN6RcrMGe+h60NVwp1C8DxsN9LvZhZDqYgcdtNsG JOvVUeTF7A7YHJAUr0xabgRQodu+Z+ZyqSWBtFyx42I+4HuDoLtQk2ag7R5Ir6d3 uej82m6XPNZiMS+/yhLtIzYCE0PPGBxxu8GImGVog81ZqJufJ4rkbIhLVNPEW785 rT0KjltdS4ENRhaHgqXlbCzDhHSjX8jhwXl6bRb2g67o0E+xggs5vOjCqaPNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxu6q1CpL4II/XuB+CNHR7cilEiIwHwYDVR0j BBgwFoAUohunDfjuRw/npgOFtmU4QlcO06QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTQwNTU0NS1jMzVkLTRkZTEtOTYxOC00NGI1ZjQxN2EzMDMvMS9BMjFCQTcwREY4 RUU0NzBGRTdBNjAzODVCNjY1Mzg0MjU3MEVEM0E0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1NzBF RDNBNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDE0MDU1NDUtYzM1ZC00ZGUxLTk2 MTgtNDRiNWY0MTdhMzAzLzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4 NDI1NzBFRDNBNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH1siF7mTvvDm+2Qoy40KM8aGTkoKK9UJ2sm 5THFZDLlnAeBVcSpZIQ30Kf7cTQ8x7U76rYWlpnhh/Y6tmfpmZ4Uo0kcNIVRUw5s kAOhhySZUmi9RkG1LkHHO6NQP60GL42BxyXxG0NdkipdlhaCQlsALvJ1oTKmhHw7 lkZaNii/0nI3MNlAjrnIq+L4c+n/tqmmBivL4cjihv2NF/BLLJ2eLO2MkAoB0n4T 5MkAu4oSND2PogJ1SqHIsM5tpEPdIiHUTp2TghqHLMUhdvQkB/vPlhP8K0dwcum5 8h2NZ/Fr9Ps6NT4FJCt1E6z1eG0rr8gcSqd3gApE/3iazb9+aLY= -----END CERTIFICATE-----Generated at Mon Jun 30 08:48:38 2025 by rpki-client