$ rpki-client -vvf repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft File: D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft (raw, json) Hash identifier: XFFE+03Ddl2ftL5jaS86zJ64PyYHkODB/mIux3koD2c= Subject key identifier: BD:E9:52:70:55:2F:2B:3C:5C:9B:EE:D0:5C:78:0C:7A:2A:BB:CE:20 Authority key identifier: D7:8F:E5:AE:87:0E:F2:21:FD:95:77:5C:FE:AF:EA:D5:AC:F3:23:68 Certificate issuer: /CN=D78FE5AE870EF221FD95775CFEAFEAD5ACF32368 Certificate serial: 67B2916E3FF2E7B33E2A55929633D259115FAF39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft Manifest number: 50 Signing time: Sat 28 Jun 2025 12:01:55 +0000 Manifest this update: Sat 28 Jun 2025 11:56:55 +0000 Manifest next update: Tue 01 Jul 2025 13:12:55 +0000 Files and hashes: 1: D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl (hash: z9Ptqd4imnICdoNWStUx9bgB2by82x35CwAL0rY+q0A=) 2: 3135372e32302e3132312e302f32342d3234203d3e20313532343133.roa (hash: J+HA2voObMJkLTe14IHtv1+pBD6tmTWcTW3nQp6DPrc=) 3: 3135372e32302e3132302e302f32342d3234203d3e20313532343133.roa (hash: mtxUuoBWjsUwdIjXZpNi9bHZl2ZJW5TeiOYPZBEVbaM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 13:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:b2:91:6e:3f:f2:e7:b3:3e:2a:55:92:96:33:d2:59:11:5f:af:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D78FE5AE870EF221FD95775CFEAFEAD5ACF32368 Validity Not Before: Jun 28 11:56:55 2025 GMT Not After : Jul 1 13:12:55 2025 GMT Subject: CN=BDE95270552F2B3C5C9BEED05C780C7A2ABBCE20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7d:48:b7:7c:46:f7:4a:ea:56:5d:e3:5e:db: ee:1c:fd:bb:26:d4:33:68:ca:91:d7:3a:c6:23:e9: 00:d5:79:2a:2e:66:dc:34:81:1b:a0:44:6e:8e:1d: 2b:04:b8:7d:13:27:77:fa:da:6d:2d:24:bd:50:a9: 3c:1b:28:e3:72:77:8e:75:f1:d1:64:ae:e7:50:55: 28:1f:74:ff:6a:d6:9f:ef:bc:06:21:37:e4:25:a7: b7:9f:18:c3:3a:64:e2:54:c5:19:b8:17:9a:a0:7a: 2e:7b:2d:bb:e6:c4:68:95:31:3f:ed:81:25:b8:a6: be:b3:45:a2:4b:d6:26:14:af:94:c1:2e:89:53:8c: 26:31:3d:77:61:af:7f:03:e6:7b:49:fe:a1:bf:77: 25:f6:cd:1a:39:67:e5:cf:c0:3c:58:49:87:2c:00: 5c:be:9c:74:8d:51:d1:50:ec:50:0c:33:80:ab:67: bd:b8:51:01:49:ea:0f:20:c4:ee:24:08:01:ed:b6: aa:5f:2e:88:61:52:5b:85:d9:ec:c6:15:bd:77:6a: d5:9c:fa:39:4e:40:fd:0d:1b:71:30:6b:79:d6:73: 8a:ef:7c:77:ec:71:29:d5:48:70:cb:82:3a:78:fb: b6:9c:55:88:17:c2:7c:1e:ca:21:3d:43:c8:83:6f: 26:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E9:52:70:55:2F:2B:3C:5C:9B:EE:D0:5C:78:0C:7A:2A:BB:CE:20 X509v3 Authority Key Identifier: keyid:D7:8F:E5:AE:87:0E:F2:21:FD:95:77:5C:FE:AF:EA:D5:AC:F3:23:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:83:63:60:aa:68:1d:68:d3:7a:88:5c:ea:c5:d3:d9:a6:d8: 9b:7c:17:d2:3c:4b:24:53:76:4a:b9:af:6e:ed:d5:01:ad:b8: d4:6a:0c:df:23:b9:01:ac:58:1b:cd:83:ff:f0:f2:de:15:3f: 99:3f:37:af:df:87:cb:93:d5:80:6a:7b:c9:ac:92:71:ce:3c: b1:8c:db:84:70:a1:ae:10:3f:71:c4:39:79:1c:92:e1:ab:5a: 50:86:98:e4:ef:32:bf:31:2e:34:d1:41:fb:6b:52:c9:2b:64: f8:ca:c5:70:17:d0:55:80:c9:89:00:26:03:04:28:d0:2c:dc: 43:d2:9c:b8:69:c0:61:0f:4f:a9:2e:20:fb:2e:94:b4:fb:c6: 91:52:ab:77:c7:96:80:ad:b3:e9:ae:f2:96:e4:d0:43:5e:38: 25:c7:10:c3:c1:82:5c:52:3b:13:5e:ec:26:81:7e:2c:e7:1c: 44:25:a7:16:77:8c:d0:9a:54:6d:c3:11:48:5c:33:42:be:ef: ee:73:a5:11:f8:d7:ff:6e:0c:2b:29:b5:09:fb:6c:6e:ec:2d: 80:b6:14:b8:40:fc:4a:50:3c:2b:6a:fb:76:85:1a:bb:46:b4: 7a:4d:5b:39:02:2f:55:aa:c6:96:3a:81:43:f0:14:73:2a:ee: a5:27:b5:ad -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZ7KRbj/y57M+KlWSljPSWRFfrzkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVBRDVB Q0YzMjM2ODAeFw0yNTA2MjgxMTU2NTVaFw0yNTA3MDExMzEyNTVaMDMxMTAvBgNV BAMTKEJERTk1MjcwNTUyRjJCM0M1QzlCRUVEMDVDNzgwQzdBMkFCQkNFMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8fUi3fEb3SupWXeNe2+4c/bsm 1DNoypHXOsYj6QDVeSouZtw0gRugRG6OHSsEuH0TJ3f62m0tJL1QqTwbKONyd451 8dFkrudQVSgfdP9q1p/vvAYhN+Qlp7efGMM6ZOJUxRm4F5qgei57LbvmxGiVMT/t gSW4pr6zRaJL1iYUr5TBLolTjCYxPXdhr38D5ntJ/qG/dyX2zRo5Z+XPwDxYSYcs AFy+nHSNUdFQ7FAMM4CrZ724UQFJ6g8gxO4kCAHttqpfLohhUluF2ezGFb13atWc +jlOQP0NG3Ewa3nWc4rvfHfscSnVSHDLgjp4+7acVYgXwnweyiE9Q8iDbyaLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvelScFUvKzxcm+7QXHgMeiq7ziAwHwYDVR0j BBgwFoAU14/lrocO8iH9lXdc/q/q1azzI2gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NjQ0MjYzYS04ZWUyLTRlZWMtYTgxMC01NzMzY2NhZjUxZTMvMC9ENzhGRTVBRTg3 MEVGMjIxRkQ5NTc3NUNGRUFGRUFENUFDRjMyMzY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVBRDVBQ0Yz MjM2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDY0NDI2M2EtOGVlMi00ZWVjLWE4 MTAtNTczM2NjYWY1MWUzLzAvRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVB RDVBQ0YzMjM2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGCDY2CqaB1o03qIXOrF09mm2Jt8F9I8SyRT dkq5r27t1QGtuNRqDN8juQGsWBvNg//w8t4VP5k/N6/fh8uT1YBqe8msknHOPLGM 24Rwoa4QP3HEOXkckuGrWlCGmOTvMr8xLjTRQftrUskrZPjKxXAX0FWAyYkAJgME KNAs3EPSnLhpwGEPT6kuIPsulLT7xpFSq3fHloCts+mu8pbk0ENeOCXHEMPBglxS OxNe7CaBfiznHEQlpxZ3jNCaVG3DEUhcM0K+7+5zpRH41/9uDCsptQn7bG7sLYC2 FLhA/EpQPCtq+3aFGrtGtHpNWzkCL1WqxpY6gUPwFHMq7qUnta0= -----END CERTIFICATE-----Generated at Mon Jun 30 05:25:13 2025 by rpki-client