$ rpki-client -vvf repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft File: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft (raw, json) Hash identifier: h3cP1DlYPCPRMvTnr54LhXqxGMXxIWY9lWkiR4DLsBA= Subject key identifier: 02:3E:9A:B8:C0:0F:8C:E2:2F:32:D7:3C:AA:1A:FE:47:3F:1A:4E:93 Authority key identifier: CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B Certificate issuer: /CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Certificate serial: 5E5F59854B46F4AC4F3ED9AB28E87806C77125D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft Manifest number: 01E5 Signing time: Sun 29 Jun 2025 14:21:23 +0000 Manifest this update: Sun 29 Jun 2025 14:16:23 +0000 Manifest next update: Wed 02 Jul 2025 16:49:23 +0000 Files and hashes: 1: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl (hash: eibRPnP4BaE1jUjPjmmzLEKPTAjHw+yuCSRPifMeazQ=) 2: 3130332e3131312e3131392e302f32342d3234203d3e20313439393531.roa (hash: SQEisBhY0DV53zHr/sBQtcOCDd0Bbr0+fAzbajSxd3s=) 3: 323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa (hash: O62FaU7sfJ7WBpQAG4VOlHgoxy59qAGq0CxPAvacDkY=) 4: 3130332e3131312e3131382e302f32342d3234203d3e20313439393531.roa (hash: FK++k16W5o1G1ymHbgbWCr22LclnvM/8CkDyIWrtSXU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:5f:59:85:4b:46:f4:ac:4f:3e:d9:ab:28:e8:78:06:c7:71:25:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Validity Not Before: Jun 29 14:16:23 2025 GMT Not After : Jul 2 16:49:23 2025 GMT Subject: CN=023E9AB8C00F8CE22F32D73CAA1AFE473F1A4E93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:99:1f:07:21:a4:8b:91:e9:69:fa:0d:03:74: 4b:da:33:28:59:99:69:f0:51:25:ef:84:66:97:4e: f1:36:de:63:d9:80:fa:5a:24:5c:c0:22:2a:24:02: f3:f8:be:43:a3:5b:84:70:e9:e4:61:91:47:16:a3: 1e:21:f6:85:39:2f:90:24:80:82:de:e9:c2:f7:f7: 90:54:f8:cd:05:19:9a:e5:56:0d:27:0b:56:8f:e5: c4:79:ed:82:ac:07:b2:11:80:c1:36:25:87:85:56: 6c:33:f4:bb:f7:ad:1e:52:c1:ac:8c:95:d4:22:4d: a4:8d:7a:8a:0a:31:f1:b0:4c:95:b5:1e:2b:4c:29: 7f:29:d6:e4:21:a8:d5:f2:00:52:86:c3:00:aa:7f: 03:54:9e:7d:38:4e:90:26:04:52:b2:00:bd:66:2a: 1e:78:0f:56:c6:4c:e2:1e:fa:76:c4:ae:f8:9a:d4: 29:24:33:2d:58:41:dc:d8:48:32:be:cb:99:47:9f: ee:a6:ef:c9:aa:d7:f1:64:ef:d2:08:25:58:05:40: 53:3a:ec:03:6e:2e:11:d4:52:88:09:3f:a7:38:8c: dd:c7:db:f3:59:cb:0e:db:7f:1a:e1:34:c6:44:ae: c9:f2:75:ba:2b:ac:82:60:6c:7d:07:fd:b8:27:7b: 61:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:3E:9A:B8:C0:0F:8C:E2:2F:32:D7:3C:AA:1A:FE:47:3F:1A:4E:93 X509v3 Authority Key Identifier: keyid:CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:b2:b0:18:36:a8:e7:12:33:be:45:da:a9:a4:37:a6:2b:fe: 1c:7f:76:3c:48:da:15:dc:98:7b:9f:c0:fe:cf:8a:ed:7b:0e: fc:64:d8:fd:29:3c:d1:76:12:5e:dd:b7:0e:33:43:cb:ce:f5: e1:38:2c:20:26:c4:75:c2:77:b9:98:65:aa:f1:5a:c3:45:ae: af:35:70:f2:6a:61:13:e5:61:b3:22:fe:c3:90:5b:8c:27:52: 5b:21:84:bc:7a:6b:ab:e7:63:36:dc:9e:0a:a9:94:91:0a:ca: fa:30:5e:fc:18:9f:e8:82:4f:96:7a:fb:0e:70:5e:ba:26:7c: a9:96:f0:0a:ce:07:94:9e:4a:56:75:5d:b9:6b:37:4a:d0:56: fb:5c:b2:95:a1:14:b1:c9:b5:39:f7:c1:fa:89:2c:92:c6:0b: 64:33:3c:44:ba:2d:9f:13:9a:c7:9f:b0:22:d5:2e:25:e4:0e: 3d:72:8b:d4:a1:2c:56:41:1f:83:f6:5e:a9:c7:10:a3:1d:76: 3c:e0:a3:ef:b9:62:43:0a:88:da:06:da:74:5c:30:bd:d9:79: 9c:d8:e8:d7:ca:98:88:6d:81:2e:b5:67:c3:1d:94:6f:bd:c1: 88:1d:e3:a4:bc:90:fd:b2:6b:4e:46:47:15:05:79:3a:43:1d: 8f:46:38:d7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXl9ZhUtG9KxPPtmrKOh4BsdxJdIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1 N0IxRTM1QjAeFw0yNTA2MjkxNDE2MjNaFw0yNTA3MDIxNjQ5MjNaMDMxMTAvBgNV BAMTKDAyM0U5QUI4QzAwRjhDRTIyRjMyRDczQ0FBMUFGRTQ3M0YxQTRFOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcmR8HIaSLkelp+g0DdEvaMyhZ mWnwUSXvhGaXTvE23mPZgPpaJFzAIiokAvP4vkOjW4Rw6eRhkUcWox4h9oU5L5Ak gILe6cL395BU+M0FGZrlVg0nC1aP5cR57YKsB7IRgME2JYeFVmwz9Lv3rR5SwayM ldQiTaSNeooKMfGwTJW1HitMKX8p1uQhqNXyAFKGwwCqfwNUnn04TpAmBFKyAL1m Kh54D1bGTOIe+nbErvia1CkkMy1YQdzYSDK+y5lHn+6m78mq1/Fk79IIJVgFQFM6 7ANuLhHUUogJP6c4jN3H2/NZyw7bfxrhNMZErsnydborrIJgbH0H/bgne2EPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAj6auMAPjOIvMtc8qhr+Rz8aTpMwHwYDVR0j BBgwFoAUyhT5bDMynYykIxXCtQCrLVex41swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWYxNmM0NS05NmZiLTRjOTItODA0ZS02NGIwYmYyODAzMDIvMC9DQTE0Rjk2QzMz MzI5RDhDQTQyMzE1QzJCNTAwQUIyRDU3QjFFMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1N0Ix RTM1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTFmMTZjNDUtOTZmYi00YzkyLTgw NGUtNjRiMGJmMjgwMzAyLzAvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFC MkQ1N0IxRTM1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHaysBg2qOcSM75F2qmkN6Yr/hx/djxI2hXc mHufwP7Piu17Dvxk2P0pPNF2El7dtw4zQ8vO9eE4LCAmxHXCd7mYZarxWsNFrq81 cPJqYRPlYbMi/sOQW4wnUlshhLx6a6vnYzbcngqplJEKyvowXvwYn+iCT5Z6+w5w XromfKmW8ArOB5SeSlZ1XblrN0rQVvtcspWhFLHJtTn3wfqJLJLGC2QzPES6LZ8T msefsCLVLiXkDj1yi9ShLFZBH4P2XqnHEKMddjzgo++5YkMKiNoG2nRcML3ZeZzY 6NfKmIhtgS61Z8MdlG+9wYgd46S8kP2ya05GRxUFeTpDHY9GONc= -----END CERTIFICATE-----Generated at Mon Jun 30 01:25:30 2025 by rpki-client