$ rpki-client -vvf repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft File: 3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft (raw, json) Hash identifier: uWvpyb4Nb5BWId9u/W9ec4rINitZJPgUhSayDKfjvWo= Subject key identifier: 2D:7F:51:4B:1A:9E:F3:9C:31:9D:30:25:F1:22:5F:1A:EB:C8:D0:1C Authority key identifier: 3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 Certificate issuer: /CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3 Certificate serial: 32E64EAC54CA74B0F292DFE5F405509DAFBC2DD0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft Manifest number: F0 Signing time: Sun 29 Jun 2025 16:21:16 +0000 Manifest this update: Sun 29 Jun 2025 16:16:16 +0000 Manifest next update: Thu 03 Jul 2025 02:30:16 +0000 Files and hashes: 1: 3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl (hash: eaPjriKSaa8VW1ouUPEixbZyjnAEusmZXnnK0oMAW88=) 2: 3130332e3133322e3233302e302f32332d3234203d3e20313338313237.roa (hash: NjJcmD+G+kiFwmmP8zS7heQcwBVqq18Sis+HXMvM+ZY=) 3: 3130332e3133322e3233312e302f32342d3234203d3e20313338313237.roa (hash: YbG5Gw9xgbijBTbp7E/AZR+gn02wD0TeW2SCv/sSqKI=) 4: 3130332e3133322e3233302e302f32342d3234203d3e20313338313237.roa (hash: SdfVlvgb41TvQfFCAAr6Hvu/iM3n38wFz7a+3vMqJi4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 02:30:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:e6:4e:ac:54:ca:74:b0:f2:92:df:e5:f4:05:50:9d:af:bc:2d:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3 Validity Not Before: Jun 29 16:16:16 2025 GMT Not After : Jul 3 02:30:16 2025 GMT Subject: CN=2D7F514B1A9EF39C319D3025F1225F1AEBC8D01C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:2c:6c:d6:dd:d1:70:3e:4c:95:19:24:b2:c7: 80:89:fd:e5:c2:8b:86:2f:c1:5d:d5:93:79:5b:02: 16:a2:74:b6:e8:33:fb:40:cc:9d:1e:02:1b:da:f5: 0b:9e:85:01:a0:17:04:6d:4e:2e:8d:cb:8a:22:5a: dd:eb:22:2a:8b:53:db:35:89:62:d8:87:be:a6:1d: 5f:80:44:a2:51:0b:d8:6d:7f:fc:20:2f:ac:29:a6: 6b:48:a7:85:d4:4e:88:d8:75:16:9f:5d:25:d8:ce: 3a:08:bd:64:25:ec:cd:b9:a8:e6:20:82:ed:b2:14: 3f:4f:ac:1b:e2:66:e6:39:a7:2c:f4:c4:c9:fd:b8: b7:11:c1:2a:91:bf:cf:83:ee:2f:ec:46:54:5a:9c: cf:c0:f9:3c:9d:84:63:78:f0:da:8a:34:4a:0a:99: 2d:2d:59:ce:19:19:4b:50:32:2f:0b:13:22:09:3a: 15:e1:4f:57:6c:7c:10:09:fc:63:99:04:1f:27:f9: c8:26:62:d3:9c:d6:ab:88:84:8a:93:c8:6e:02:22: 32:a8:5e:5b:02:61:68:7b:a4:63:e0:19:25:c5:3b: 51:ce:66:ae:b9:e6:c4:d8:c7:9e:eb:b6:1f:eb:df: 90:9e:29:90:f4:aa:eb:5e:f2:98:91:ab:4e:21:db: 9f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:7F:51:4B:1A:9E:F3:9C:31:9D:30:25:F1:22:5F:1A:EB:C8:D0:1C X509v3 Authority Key Identifier: keyid:3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:ca:2b:50:cb:54:91:31:58:98:b5:0e:4f:10:33:b6:c8:8a: 09:4c:37:d8:0f:f3:62:38:01:ae:c4:76:15:18:03:66:3a:77: 28:f8:ab:e6:d3:c0:2c:ef:fb:2b:07:0a:b9:a6:f1:41:09:32: c3:a0:83:de:74:02:fd:27:ed:ad:e8:8b:80:48:d6:68:6d:8c: 14:8b:82:96:54:d0:a1:c1:3c:66:9e:96:17:e3:12:e6:d8:f4: 04:d4:d6:57:49:6e:28:55:e4:00:cc:d0:dd:f2:23:69:58:44: d9:1e:74:4c:b6:67:2c:bc:fc:b2:71:7b:66:08:23:e2:b3:db: 6c:2c:4e:7b:68:27:2f:6f:dd:56:fb:a7:37:95:77:a7:15:f1: 21:49:23:fd:60:3b:38:43:6e:21:7b:58:1e:fd:25:f0:1a:1f: 91:1d:e6:8d:0d:30:11:68:3c:20:c1:1a:7a:95:b7:a0:af:8a: e8:03:cb:d8:f7:73:8f:c7:6b:f2:63:5f:06:c7:fd:a9:e2:90: 4a:63:7a:9c:ba:87:78:e8:89:b3:48:48:8c:21:6c:8e:9b:38: 9e:61:95:65:0f:c5:45:a7:58:0c:ef:53:24:f6:f7:64:7f:0a: e0:0a:fb:f8:6b:58:15:7d:d9:c8:ce:31:90:46:dd:e1:5c:2d: 86:33:91:9b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMuZOrFTKdLDykt/l9AVQna+8LdAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5M0M3 MjM3OEJGMzAeFw0yNTA2MjkxNjE2MTZaFw0yNTA3MDMwMjMwMTZaMDMxMTAvBgNV BAMTKDJEN0Y1MTRCMUE5RUYzOUMzMTlEMzAyNUYxMjI1RjFBRUJDOEQwMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrLGzW3dFwPkyVGSSyx4CJ/eXC i4YvwV3Vk3lbAhaidLboM/tAzJ0eAhva9QuehQGgFwRtTi6Ny4oiWt3rIiqLU9s1 iWLYh76mHV+ARKJRC9htf/wgL6wppmtIp4XUTojYdRafXSXYzjoIvWQl7M25qOYg gu2yFD9PrBviZuY5pyz0xMn9uLcRwSqRv8+D7i/sRlRanM/A+TydhGN48NqKNEoK mS0tWc4ZGUtQMi8LEyIJOhXhT1dsfBAJ/GOZBB8n+cgmYtOc1quIhIqTyG4CIjKo XlsCYWh7pGPgGSXFO1HOZq655sTYx57rth/r35CeKZD0qute8piRq04h25+vAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULX9RSxqe85wxnTAl8SJfGuvI0BwwHwYDVR0j BBgwFoAUPguVe1gtiu+ZpJxkSPmZPHI3i/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZWRjOWU0Zi04MTgwLTQxZDYtYjA4ZC04ZWU1YThhNzBhMDUvMC8zRTBCOTU3QjU4 MkQ4QUVGOTlBNDlDNjQ0OEY5OTkzQzcyMzc4QkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5M0M3MjM3 OEJGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGVkYzllNGYtODE4MC00MWQ2LWIw OGQtOGVlNWE4YTcwYTA1LzAvM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5 M0M3MjM3OEJGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACDKK1DLVJExWJi1Dk8QM7bIiglMN9gP82I4 Aa7EdhUYA2Y6dyj4q+bTwCzv+ysHCrmm8UEJMsOgg950Av0n7a3oi4BI1mhtjBSL gpZU0KHBPGaelhfjEubY9ATU1ldJbihV5ADM0N3yI2lYRNkedEy2Zyy8/LJxe2YI I+Kz22wsTntoJy9v3Vb7pzeVd6cV8SFJI/1gOzhDbiF7WB79JfAaH5Ed5o0NMBFo PCDBGnqVt6CviugDy9j3c4/Ha/JjXwbH/anikEpjepy6h3joibNISIwhbI6bOJ5h lWUPxUWnWAzvUyT292R/CuAK+/hrWBV92cjOMZBG3eFcLYYzkZs= -----END CERTIFICATE-----Generated at Mon Jun 30 21:54:17 2025 by rpki-client