$ rpki-client -vvf repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft File: 3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft (raw, json) Hash identifier: 7n7HA33ET4KbyDWOal9xTv+0WdZNnUIs5fT9EFPWm00= Subject key identifier: BB:24:10:75:E7:25:43:E6:78:83:CD:CC:45:91:00:5C:68:8B:43:9A Authority key identifier: 3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F Certificate issuer: /CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Certificate serial: 3439453D88F0A6B74E01F77753A36ECB619A428C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft Manifest number: 01C4 Signing time: Sat 28 Jun 2025 01:20:54 +0000 Manifest this update: Sat 28 Jun 2025 01:15:54 +0000 Manifest next update: Tue 01 Jul 2025 09:34:54 +0000 Files and hashes: 1: 3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl (hash: p5+FmMwV9ETMOt0xeFb2Sxy5CkRuQRJHNyMqv7nvWs0=) 2: 3130332e32382e3136332e302f32342d3234203d3e203536323539.roa (hash: wNXvnBOlqkuZ+mDM8d8H+wRf148WwJ/aSIjk47cajS4=) 3: 3130332e31302e3235332e302f32342d3234203d3e203536323539.roa (hash: Y9UwdeMAqthoV4BdpHdzHHfHrHSy2NpCx4uk4sbXYrk=) 4: 3130332e36352e39362e302f32332d3234203d3e203536323539.roa (hash: CZ4K7GFD9Go5aD48WSkhSXI8wxpmYnTQCrXJMjgAzo4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 09:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:39:45:3d:88:f0:a6:b7:4e:01:f7:77:53:a3:6e:cb:61:9a:42:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Validity Not Before: Jun 28 01:15:54 2025 GMT Not After : Jul 1 09:34:54 2025 GMT Subject: CN=BB241075E72543E67883CDCC4591005C688B439A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7d:77:7e:13:fa:d7:7f:3d:c3:41:4b:d2:f9: 3f:55:7d:14:39:94:8c:9a:99:fa:41:ae:2e:74:5c: 9b:df:3b:86:c0:81:da:91:7f:ac:68:f3:af:6a:6b: 7e:fb:89:79:71:19:4d:9f:c5:19:c9:0d:2f:e9:16: e0:63:72:3c:c0:d2:28:24:d9:49:87:bd:4c:db:86: c9:57:3d:4b:a5:8e:83:57:88:04:e6:5c:97:a2:89: 25:4d:3f:1b:76:23:b9:ac:9d:c6:8c:c0:b8:7e:1b: 0f:fa:08:0d:63:13:3a:31:22:bf:10:23:0e:3e:3f: 42:f2:cc:95:99:2e:96:6f:d1:2a:d5:b4:72:c0:5e: 25:01:11:49:bf:f0:89:6e:dc:ad:0e:cd:a5:b6:77: 84:a8:2a:12:ce:21:05:cd:00:c3:1b:59:05:81:ac: 68:ad:d5:34:f3:0c:5a:e6:a8:1d:67:96:81:f3:43: 96:e0:45:43:45:4a:5a:10:09:0d:e9:5d:3e:a9:68: 27:5a:31:c0:c2:41:ad:27:db:e9:f8:fd:ae:4c:40: 01:23:4e:fe:76:e5:aa:5d:69:61:88:68:49:29:d9: da:db:e4:36:4d:25:cf:30:7c:4e:36:ec:69:3e:1e: 4c:8a:c0:10:a9:1f:f2:c9:fe:ca:2b:a8:a7:c9:fe: cc:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:24:10:75:E7:25:43:E6:78:83:CD:CC:45:91:00:5C:68:8B:43:9A X509v3 Authority Key Identifier: keyid:3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:6d:c1:34:12:38:67:ff:e1:5c:d3:33:7d:67:a7:32:43:5d: 92:1f:48:fe:c7:dd:b4:ff:58:7a:b4:12:46:81:60:06:a1:67: 87:bb:b1:41:59:a6:94:36:b2:f0:0b:05:e2:a7:4d:46:da:17: f2:94:59:4a:a1:aa:b3:86:60:8f:de:41:d6:47:e0:42:f8:a3: 0a:65:6e:42:e6:4c:e8:c3:ba:e7:3d:32:2f:4c:9b:10:53:2e: 0c:1c:2b:fc:af:5e:64:5c:4a:cb:53:b7:72:ea:3b:ac:7f:c7: 3c:d0:6e:f9:a0:5a:68:88:3b:12:a5:cc:22:89:53:d1:32:1e: e9:5a:2e:0e:ba:7e:e4:db:e9:b8:ef:74:09:89:70:a3:71:5a: 81:f5:97:6e:7b:df:89:d9:39:c1:65:77:8c:10:45:f8:66:ab: 3a:1d:eb:f4:37:4f:fb:c6:bf:ee:ad:d2:44:cd:4a:f6:5e:0d: 6f:a8:54:7f:ed:d2:ab:32:0a:73:0c:8c:86:79:cc:37:d0:63: ac:86:45:2e:b3:ed:cd:13:5a:16:8a:03:2b:26:fe:2c:94:68: e1:d5:a4:1c:41:89:b0:15:41:00:be:2a:3e:62:07:22:2a:e8: c8:fd:0b:6a:55:98:b1:b4:15:35:cf:47:a5:c5:98:41:95:ee: 63:03:79:b2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNDlFPYjwprdOAfd3U6Nuy2GaQowwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4 NUMzNUU0RjAeFw0yNTA2MjgwMTE1NTRaFw0yNTA3MDEwOTM0NTRaMDMxMTAvBgNV BAMTKEJCMjQxMDc1RTcyNTQzRTY3ODgzQ0RDQzQ1OTEwMDVDNjg4QjQzOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdfXd+E/rXfz3DQUvS+T9VfRQ5 lIyamfpBri50XJvfO4bAgdqRf6xo869qa377iXlxGU2fxRnJDS/pFuBjcjzA0igk 2UmHvUzbhslXPUuljoNXiATmXJeiiSVNPxt2I7msncaMwLh+Gw/6CA1jEzoxIr8Q Iw4+P0LyzJWZLpZv0SrVtHLAXiUBEUm/8Ilu3K0OzaW2d4SoKhLOIQXNAMMbWQWB rGit1TTzDFrmqB1nloHzQ5bgRUNFSloQCQ3pXT6paCdaMcDCQa0n2+n4/a5MQAEj Tv525apdaWGIaEkp2drb5DZNJc8wfE427Gk+HkyKwBCpH/LJ/sorqKfJ/szDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUuyQQdeclQ+Z4g83MRZEAXGiLQ5owHwYDVR0j BBgwFoAUPXifr19+vmk4xMcj3NLu14XDXk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDk3MDAzMi0wOGVhLTQ4OTAtYmRiYS02MzA5YTQ5NzkxN2QvMC8zRDc4OUZBRjVG N0VCRTY5MzhDNEM3MjNEQ0QyRUVENzg1QzM1RTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4NUMz NUU0Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGQ5NzAwMzItMDhlYS00ODkwLWJk YmEtNjMwOWE0OTc5MTdkLzAvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVF RDc4NUMzNUU0Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIltwTQSOGf/4VzTM31npzJDXZIfSP7H3bT/ WHq0EkaBYAahZ4e7sUFZppQ2svALBeKnTUbaF/KUWUqhqrOGYI/eQdZH4EL4owpl bkLmTOjDuuc9Mi9MmxBTLgwcK/yvXmRcSstTt3LqO6x/xzzQbvmgWmiIOxKlzCKJ U9EyHulaLg66fuTb6bjvdAmJcKNxWoH1l25734nZOcFld4wQRfhmqzod6/Q3T/vG v+6t0kTNSvZeDW+oVH/t0qsyCnMMjIZ5zDfQY6yGRS6z7c0TWhaKAysm/iyUaOHV pBxBibAVQQC+Kj5iByIq6Mj9C2pVmLG0FTXPR6XFmEGV7mMDebI= -----END CERTIFICATE-----Generated at Mon Jun 30 02:38:04 2025 by rpki-client