$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft File: 024ABFF2959A6144CC4889C70F77F968FA410EF1.mft (raw, json) Hash identifier: RvFZNkugNiD2sBvszrAnv4EAAWUV4j87VQoZlrowNuU= Subject key identifier: 61:FC:57:95:D7:9A:01:67:C6:9C:CB:BD:BE:A6:81:4E:E1:A3:85:91 Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 7F62E0F22964E5274D13F95C62CAE675BAD51F71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft Manifest number: 02A5 Signing time: Sat 28 Jun 2025 18:01:12 +0000 Manifest this update: Sat 28 Jun 2025 17:56:12 +0000 Manifest next update: Wed 02 Jul 2025 05:17:12 +0000 Files and hashes: 1: 3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa (hash: G2juGB6eftwsC+fsnzguy++P5zlF0bkzL2c8r+kWKkI=) 2: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (hash: ZcflU18QHaOG0H5AVVuZs+fe6ZIRvg4OT/QSDZzqWpk=) 3: 3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa (hash: aay9Jvclfs8gBm7idaaHHT8mQr3TT32/vrVHbT4o17k=) 4: 024ABFF2959A6144CC4889C70F77F968FA410EF1.crl (hash: nPzyxJsnNvCNJbxFa09tI0F8f376IX/mnagJ1xeWHaA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 05:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:62:e0:f2:29:64:e5:27:4d:13:f9:5c:62:ca:e6:75:ba:d5:1f:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Jun 28 17:56:12 2025 GMT Not After : Jul 2 05:17:12 2025 GMT Subject: CN=61FC5795D79A0167C69CCBBDBEA6814EE1A38591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:01:75:4e:ba:9d:c8:f9:2a:87:a8:fa:f6:55: 6a:79:26:5d:d6:8a:ee:93:5f:c9:54:45:cb:01:03: b3:2b:8e:4d:2b:82:fa:e0:69:f0:ba:e5:84:80:ce: 01:b8:69:a9:87:b6:f2:3b:2c:9a:37:15:a1:dc:ca: 9a:a9:3b:2b:30:74:e5:67:ab:57:84:52:af:6e:0a: 84:3d:8b:29:14:3e:ed:aa:4e:8d:7a:8c:0b:4b:68: ab:c7:d2:f8:25:cf:00:8f:8a:7b:6f:6a:e0:b4:7e: 91:2f:f5:97:ca:5d:85:d5:bf:ae:d8:f7:2d:ef:dd: e9:fa:0f:98:35:3b:9b:99:9e:cf:5c:88:8e:37:50: 71:25:61:82:71:30:9c:5b:1b:fe:31:72:28:98:f0: 8c:9d:35:ca:9a:30:27:8b:cf:18:5b:4a:87:19:b2: ef:b8:75:d4:81:15:5a:42:51:61:a6:24:0a:da:48: 7c:43:f2:65:0b:05:aa:07:0c:05:16:7a:26:39:2b: 47:d5:8c:01:e1:ea:d7:c0:06:ca:44:1c:9e:d6:48: 04:bf:eb:43:86:14:f6:4c:30:2a:a9:8d:f3:8b:51: 62:b7:f4:d7:6d:ea:02:b5:2b:07:84:8e:6b:a9:1e: a3:c6:cd:9a:b6:b4:7a:b7:a1:92:86:84:be:a7:31: 16:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:FC:57:95:D7:9A:01:67:C6:9C:CB:BD:BE:A6:81:4E:E1:A3:85:91 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:78:13:c5:20:9f:49:cc:5c:cb:7b:a8:5f:7f:5b:ce:54:aa: 96:e3:42:57:94:86:30:12:b8:77:dd:2e:f6:1e:00:16:06:be: c1:23:77:10:ea:31:f7:af:fa:cc:75:da:0f:67:85:d8:74:d4: 54:aa:e0:e1:bc:41:2b:56:62:ca:04:9f:77:5b:0b:e3:4f:10: b9:cf:ba:1d:49:e7:53:23:a1:9b:1f:20:e2:ec:5e:f5:77:cd: 18:59:91:13:d7:4a:b6:e3:ff:e7:cc:98:2b:16:a2:3a:3d:96: e5:d5:0f:ff:0e:99:c3:b6:d0:15:ad:bf:15:c2:56:2d:3f:7f: 29:1e:9d:40:22:86:07:7f:34:8f:ef:45:65:c6:06:9b:5f:1e: 2d:f3:0a:38:2b:05:28:09:3f:f2:c3:4c:36:fc:76:11:51:a2: d0:cc:9f:a6:6a:3d:e5:65:de:13:27:2e:9f:18:11:f1:83:26: 93:32:04:4e:aa:c9:b9:af:ba:75:f8:01:74:6a:26:17:0a:4a: 6a:8b:0d:3d:0e:11:28:3a:66:9a:5d:df:6d:b7:9a:64:25:b2: b9:dd:74:72:e5:2a:02:ab:8c:c2:da:63:67:6b:85:b1:bb:24: 5c:99:3f:49:bb:e5:fe:84:a1:b0:6c:aa:44:b9:15:2c:8e:8a: 58:55:ef:4e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf2Lg8ilk5SdNE/lcYsrmdbrVH3EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNTA2MjgxNzU2MTJaFw0yNTA3MDIwNTE3MTJaMDMxMTAvBgNV BAMTKDYxRkM1Nzk1RDc5QTAxNjdDNjlDQ0JCREJFQTY4MTRFRTFBMzg1OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDAXVOup3I+SqHqPr2VWp5Jl3W iu6TX8lURcsBA7Mrjk0rgvrgafC65YSAzgG4aamHtvI7LJo3FaHcypqpOyswdOVn q1eEUq9uCoQ9iykUPu2qTo16jAtLaKvH0vglzwCPintvauC0fpEv9ZfKXYXVv67Y 9y3v3en6D5g1O5uZns9ciI43UHElYYJxMJxbG/4xciiY8IydNcqaMCeLzxhbSocZ su+4ddSBFVpCUWGmJAraSHxD8mULBaoHDAUWeiY5K0fVjAHh6tfABspEHJ7WSAS/ 60OGFPZMMCqpjfOLUWK39Ndt6gK1KweEjmupHqPGzZq2tHq3oZKGhL6nMRZhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYfxXldeaAWfGnMu9vqaBTuGjhZEwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDMxYTk0MjYtM2MzNS00NzBlLWJm MzQtMzBlN2U0MTYwMmNiLzAvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5 NjhGQTQxMEVGMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALB4E8Ugn0nMXMt7qF9/W85UqpbjQleUhjAS uHfdLvYeABYGvsEjdxDqMfev+sx12g9nhdh01FSq4OG8QStWYsoEn3dbC+NPELnP uh1J51MjoZsfIOLsXvV3zRhZkRPXSrbj/+fMmCsWojo9luXVD/8OmcO20BWtvxXC Vi0/fykenUAihgd/NI/vRWXGBptfHi3zCjgrBSgJP/LDTDb8dhFRotDMn6ZqPeVl 3hMnLp8YEfGDJpMyBE6qybmvunX4AXRqJhcKSmqLDT0OESg6Zppd3223mmQlsrnd dHLlKgKrjMLaY2drhbG7JFyZP0m75f6EobBsqkS5FSyOilhV704= -----END CERTIFICATE-----Generated at Mon Jun 30 01:13:01 2025 by rpki-client