$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: SJLeEJJrlhE++zekbx1rxBat+7UGBV1O0VngbEdds48= Subject key identifier: 8F:CB:C5:DD:DF:D3:54:93:72:D0:69:F7:0E:2C:4B:C1:52:FF:9B:35 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 5C951FD3625C17C5B49828F20411A0B0B28F3837 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 04F1 Signing time: Sat 28 Jun 2025 07:51:59 +0000 Manifest this update: Sat 28 Jun 2025 07:46:59 +0000 Manifest next update: Tue 01 Jul 2025 08:13:59 +0000 Files and hashes: 1: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: HyMWadhCrBlbrvw7eV4dA67xhQ9znG8zfhfFTeZs2rs=) 2: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: eYE4qMcUFmXaY379QoKo2bXqzUrNLN5wgerCMaqF3V0=) 3: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: LMlg0YtMMAZTGP6EzKXImD6a6ZjUtLMQ+VabkB5A5lc=) 4: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: 1cZaLW2bYSVuCFR3p6/QnCg+KIF2tEt9ZDlyjUYN2tI=) 5: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: 9pt7JLtOWMCBsJXp8H1J28V9N/OUvx5VflNai/uQZgc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 08:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:95:1f:d3:62:5c:17:c5:b4:98:28:f2:04:11:a0:b0:b2:8f:38:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Jun 28 07:46:59 2025 GMT Not After : Jul 1 08:13:59 2025 GMT Subject: CN=8FCBC5DDDFD3549372D069F70E2C4BC152FF9B35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:01:3d:64:dd:9b:4a:e6:bf:8d:15:2e:ef:e1: b2:ab:c3:77:61:33:26:98:f8:82:d6:df:1a:79:57: 52:13:8f:21:af:0d:bf:d5:1f:6f:a8:a8:c3:73:d9: 90:af:6f:67:33:d6:07:c7:b3:65:0e:89:05:38:55: 24:56:47:f8:5a:96:ea:7f:d2:7d:f8:5a:ed:69:30: 3a:e9:9f:16:2f:72:ef:d1:0c:22:38:f6:60:12:67: 2d:5a:15:5a:57:36:ed:c6:32:6a:71:0d:1f:4b:89: b1:c5:c1:fa:cb:60:c0:d6:95:90:db:3e:f8:40:0e: cf:53:5e:4e:20:d9:26:9a:86:81:61:fc:dd:a2:7a: cc:ed:d1:03:ec:21:1e:fe:ba:f5:4d:b9:d5:54:91: 1f:40:1f:8d:e8:b9:c9:56:6e:82:f7:ea:b8:6e:88: 4c:a4:5c:64:16:0f:2f:9c:e7:62:b8:52:ef:a9:c9: b6:c9:e9:9b:5a:c5:7b:c9:44:3f:72:64:06:3d:9a: c2:c4:c1:b1:f0:4b:29:e4:98:b0:c1:71:50:a7:00: 2f:de:11:7e:ba:04:1d:8a:25:46:61:e5:47:88:1c: c7:89:31:94:27:fd:73:c5:27:2e:47:70:02:71:7e: a6:2f:57:66:18:68:6b:99:47:4e:68:fb:c4:af:68: 60:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CB:C5:DD:DF:D3:54:93:72:D0:69:F7:0E:2C:4B:C1:52:FF:9B:35 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:8a:d0:77:86:22:a4:2f:99:50:ff:3c:89:2f:81:2f:cb:0c: 00:27:66:9b:aa:0b:1a:cc:e9:15:b2:e0:ed:c6:b7:27:b2:53: 5e:2a:5f:1d:ee:19:13:fc:f1:7f:a2:16:28:d7:14:64:bd:f1: 16:32:50:13:0c:ad:c5:ea:d0:03:9a:51:6a:4d:84:7b:bd:8e: 1a:ea:9a:53:23:54:06:4d:fd:31:f5:2a:a7:71:5c:90:68:9c: 5f:42:73:2e:81:49:20:49:17:a9:a8:6c:3e:20:4f:65:c2:d7: fc:25:cf:05:1b:98:fb:66:6a:05:cd:0f:96:b8:d4:0a:7d:8b: 04:f2:bb:65:86:b7:83:e7:49:11:a9:33:a5:a7:0c:57:a4:87: 08:70:e7:cc:2b:37:d6:b8:8a:48:4c:ce:78:3a:80:66:bd:c0: 9c:d5:c8:d3:10:ba:04:6e:5c:00:c8:7f:14:58:9a:4b:ce:0f: 12:d8:53:06:cb:55:d0:8e:ff:e1:e4:66:6a:f5:5e:62:21:e2: ba:33:90:c0:df:88:c7:cf:57:46:40:4e:40:4d:ce:db:aa:90: 0f:d7:38:8b:15:8f:e9:84:6a:3c:e4:79:f1:61:5a:52:6c:a8: 25:5a:75:7b:fe:07:00:bc:6d:58:52:50:fc:a8:16:bd:da:dd: 64:84:c6:67 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXJUf02JcF8W0mCjyBBGgsLKPODcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNTA2MjgwNzQ2NTlaFw0yNTA3MDEwODEzNTlaMDMxMTAvBgNV BAMTKDhGQ0JDNUREREZEMzU0OTM3MkQwNjlGNzBFMkM0QkMxNTJGRjlCMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJAT1k3ZtK5r+NFS7v4bKrw3dh MyaY+ILW3xp5V1ITjyGvDb/VH2+oqMNz2ZCvb2cz1gfHs2UOiQU4VSRWR/halup/ 0n34Wu1pMDrpnxYvcu/RDCI49mASZy1aFVpXNu3GMmpxDR9LibHFwfrLYMDWlZDb PvhADs9TXk4g2SaahoFh/N2ieszt0QPsIR7+uvVNudVUkR9AH43ouclWboL36rhu iEykXGQWDy+c52K4Uu+pybbJ6ZtaxXvJRD9yZAY9msLEwbHwSynkmLDBcVCnAC/e EX66BB2KJUZh5UeIHMeJMZQn/XPFJy5HcAJxfqYvV2YYaGuZR05o+8SvaGARAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUj8vF3d/TVJNy0Gn3DixLwVL/mzUwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGOK0HeGIqQvmVD/PIkvgS/LDAAnZpuqCxrM 6RWy4O3GtyeyU14qXx3uGRP88X+iFijXFGS98RYyUBMMrcXq0AOaUWpNhHu9jhrq mlMjVAZN/TH1KqdxXJBonF9Ccy6BSSBJF6mobD4gT2XC1/wlzwUbmPtmagXND5a4 1Ap9iwTyu2WGt4PnSRGpM6WnDFekhwhw58wrN9a4ikhMzng6gGa9wJzVyNMQugRu XADIfxRYmkvODxLYUwbLVdCO/+HkZmr1XmIh4rozkMDfiMfPV0ZATkBNztuqkA/X OIsVj+mEajzkefFhWlJsqCVadXv+BwC8bVhSUPyoFr3a3WSExmc= -----END CERTIFICATE-----Generated at Sun Jun 29 22:04:06 2025 by rpki-client