$ rpki-client -vvf repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft File: 3703AC4154F05B1E642F31DEF71A238407E82D59.mft (raw, json) Hash identifier: OLFIDVlFhQQoO/RvDavw2/MiO/JrTGWGQJ5o9o9JaBo= Subject key identifier: 3B:B6:31:53:F7:CD:F8:65:C8:73:D1:3B:37:CA:7D:63:86:2B:FB:22 Authority key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Certificate issuer: /CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Certificate serial: 6BD7C4B1222CB1034A01440538F67012554DE2F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft Manifest number: 048D Signing time: Sun 29 Jun 2025 14:20:53 +0000 Manifest this update: Sun 29 Jun 2025 14:15:53 +0000 Manifest next update: Thu 03 Jul 2025 00:12:53 +0000 Files and hashes: 1: 3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa (hash: 2wmGpgdLLad+yQRBpECeWO5okHIOK5XLuX+ZtyFeGtw=) 2: 3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa (hash: b4KiMwiJASyBICznuxWYSVpBPiU9qpEIZ1f+n3s+3IM=) 3: 3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa (hash: +Sh30nDK5FN0F+rgaXdcf8t+v+X9RkFfwm8Ti8cbstU=) 4: 3703AC4154F05B1E642F31DEF71A238407E82D59.crl (hash: Ggy4bdoK5NoSflH5fiSaTkf+EyxskFws6lrc3zE8+MI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 00:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d7:c4:b1:22:2c:b1:03:4a:01:44:05:38:f6:70:12:55:4d:e2:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Validity Not Before: Jun 29 14:15:53 2025 GMT Not After : Jul 3 00:12:53 2025 GMT Subject: CN=3BB63153F7CDF865C873D13B37CA7D63862BFB22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a2:0a:74:fd:26:8c:97:34:dd:ff:f6:64:d0: d1:5a:90:40:91:53:d0:3e:d1:55:ee:9f:9f:bc:34: 06:1c:b6:d0:1b:93:d1:94:77:30:3f:6b:88:74:ed: a5:27:da:01:6c:75:0e:8b:fa:c1:bf:94:2f:da:ec: 10:89:fc:43:40:7f:31:8d:4d:0d:03:08:91:a9:10: d6:07:75:16:2e:78:34:da:ff:a9:08:43:43:2f:60: 02:47:83:9e:03:1c:18:6d:24:8c:56:da:c8:f3:14: 80:b8:d9:5e:68:99:05:9a:1c:45:c3:9c:db:99:82: f3:78:da:f4:02:50:f6:25:e2:15:3b:02:90:34:0c: 7f:6c:72:23:5b:d1:05:fd:fb:10:b8:77:ed:1f:73: 30:dd:45:d1:59:9a:43:20:91:e4:32:a1:e7:f6:83: 38:36:92:13:9c:22:86:84:77:38:43:53:c5:9f:67: ae:71:92:07:0f:bb:8f:3a:87:74:6f:31:ad:bf:14: 85:72:f4:bc:52:40:4c:51:dc:8f:32:82:98:cd:f7: e5:1b:e7:17:77:77:4d:08:44:f9:8d:bd:a2:80:52: 6e:7a:e8:bf:b4:de:e1:21:cf:55:6e:d7:af:f7:db: 3c:6e:76:ba:af:e5:c0:c5:61:cf:c6:3d:82:78:0c: b2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:B6:31:53:F7:CD:F8:65:C8:73:D1:3B:37:CA:7D:63:86:2B:FB:22 X509v3 Authority Key Identifier: keyid:37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:44:54:e1:89:20:d3:23:2b:38:be:90:bc:6f:35:fb:27:14: a1:18:53:56:83:33:6d:c9:e4:77:e2:51:e6:2b:c8:13:9f:08: 33:c3:37:54:cc:50:09:6e:b6:40:a1:4e:66:1b:44:44:3c:e5: c2:af:ac:9a:72:5b:5d:ab:65:bc:ba:f9:e9:fd:dc:05:90:f3: f4:4f:5a:38:6b:c3:1e:6d:19:ca:d6:ef:cb:ae:ef:1a:57:ba: 3d:bd:97:91:52:ab:e1:90:8a:30:4b:48:0e:d4:f7:8c:96:a9: 6d:d3:8c:1f:8a:88:51:75:82:d4:b9:ae:af:7a:de:01:d4:77: 82:01:33:d5:94:25:df:88:8d:8c:d1:9d:a3:cd:11:a6:7f:f7: 15:13:54:f0:57:12:52:22:37:d9:06:85:35:8e:ca:37:ed:ff: ba:1d:40:07:e5:29:7e:ef:92:e9:ec:36:35:e0:d5:25:44:a6: 33:29:83:c3:db:0f:d3:a6:a4:4b:6c:aa:0e:d5:15:2e:9b:b8: ba:40:5d:bd:d5:f1:c5:a6:d0:06:50:85:c9:5a:52:ca:17:8b: 18:70:00:19:e5:9b:00:6e:ca:37:27:71:10:08:60:aa:8a:fd: 8a:5a:07:fe:48:dc:09:cf:12:d4:a3:44:62:7b:35:49:d5:db: 22:8e:84:d9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUa9fEsSIssQNKAUQFOPZwElVN4vIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQw N0U4MkQ1OTAeFw0yNTA2MjkxNDE1NTNaFw0yNTA3MDMwMDEyNTNaMDMxMTAvBgNV BAMTKDNCQjYzMTUzRjdDREY4NjVDODczRDEzQjM3Q0E3RDYzODYyQkZCMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyogp0/SaMlzTd//Zk0NFakECR U9A+0VXun5+8NAYcttAbk9GUdzA/a4h07aUn2gFsdQ6L+sG/lC/a7BCJ/ENAfzGN TQ0DCJGpENYHdRYueDTa/6kIQ0MvYAJHg54DHBhtJIxW2sjzFIC42V5omQWaHEXD nNuZgvN42vQCUPYl4hU7ApA0DH9sciNb0QX9+xC4d+0fczDdRdFZmkMgkeQyoef2 gzg2khOcIoaEdzhDU8WfZ65xkgcPu486h3RvMa2/FIVy9LxSQExR3I8ygpjN9+Ub 5xd3d00IRPmNvaKAUm566L+03uEhz1Vu16/32zxudrqv5cDFYc/GPYJ4DLLhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUO7YxU/fN+GXIc9E7N8p9Y4Yr+yIwHwYDVR0j BBgwFoAUNwOsQVTwWx5kLzHe9xojhAfoLVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMC8zNzAzQUM0MTU0 RjA1QjFFNjQyRjMxREVGNzFBMjM4NDA3RTgyRDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQwN0U4 MkQ1OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGEwOTlhZGYtN2UxMi00ZTgzLTk1 YzItZGQ3Zjc3NDk0Nzg4LzAvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIz ODQwN0U4MkQ1OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEJEVOGJINMjKzi+kLxvNfsnFKEYU1aDM23J 5HfiUeYryBOfCDPDN1TMUAlutkChTmYbREQ85cKvrJpyW12rZby6+en93AWQ8/RP Wjhrwx5tGcrW78uu7xpXuj29l5FSq+GQijBLSA7U94yWqW3TjB+KiFF1gtS5rq96 3gHUd4IBM9WUJd+IjYzRnaPNEaZ/9xUTVPBXElIiN9kGhTWOyjft/7odQAflKX7v kunsNjXg1SVEpjMpg8PbD9OmpEtsqg7VFS6buLpAXb3V8cWm0AZQhclaUsoXixhw ABnlmwBuyjcncRAIYKqK/YpaB/5I3AnPEtSjRGJ7NUnV2yKOhNk= -----END CERTIFICATE-----Generated at Tue Jul 1 02:34:01 2025 by rpki-client