$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft File: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft (raw, json) Hash identifier: fhhttluqU1WFnQZwOlXWOCrkT8aRU2gb+i253Od5AJY= Subject key identifier: B7:21:FD:FE:4A:B4:E1:D2:D5:05:0C:B1:9C:BE:48:A9:3C:F6:F6:D4 Authority key identifier: D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB Certificate issuer: /CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Certificate serial: 74492E401B9B218AAC484BCFB0994561E3A8427F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft Manifest number: 0215 Signing time: Sun 29 Jun 2025 17:41:54 +0000 Manifest this update: Sun 29 Jun 2025 17:36:54 +0000 Manifest next update: Thu 03 Jul 2025 02:11:54 +0000 Files and hashes: 1: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl (hash: S5KcT2HC68OL9SfwP4TOCXN3Ec4v3sQYpU8OlCMMa88=) 2: 3130332e3138332e3235302e302f32332d3234203d3e2034383030.roa (hash: Ytn4J3L//ntkx3dIdir2Ut4ptmhaS3TkbsBspKupuTk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:49:2e:40:1b:9b:21:8a:ac:48:4b:cf:b0:99:45:61:e3:a8:42:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Validity Not Before: Jun 29 17:36:54 2025 GMT Not After : Jul 3 02:11:54 2025 GMT Subject: CN=B721FDFE4AB4E1D2D5050CB19CBE48A93CF6F6D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:08:e6:5d:d0:42:1e:c4:81:1b:21:fb:95:cc: 74:be:08:5c:cd:6b:6e:d4:09:b7:35:95:93:93:b7: 63:f8:af:52:7b:59:1f:d3:29:7a:5b:ff:9a:34:6b: 62:65:55:99:29:6f:53:11:7e:85:cf:07:c9:77:38: 96:d3:36:88:6d:df:10:2a:d9:10:60:55:bd:78:6f: e6:39:c0:ae:56:d9:97:1a:fd:df:cc:53:73:c8:fd: e5:96:4a:3f:f9:ae:24:09:e8:08:ed:5e:2b:6f:f8: 1e:3d:2f:9f:64:1a:e7:e0:24:58:1d:b7:30:87:8a: 1d:8a:70:cd:4d:9c:e8:1b:1c:c9:8b:67:8e:2d:a2: 24:83:48:3f:41:81:e6:f6:e2:da:c5:d5:33:cf:9a: c5:ba:22:1c:c7:bf:65:62:45:df:cd:17:66:14:07: 28:dd:17:73:da:f5:18:01:5d:27:8d:f3:22:1b:25: e6:67:59:28:9e:25:d6:f4:90:e9:e2:32:26:09:2b: 93:f5:8e:1c:0d:cb:37:1a:d6:b9:77:37:7e:11:b2: 2c:94:65:44:46:e9:ee:f7:69:9a:fc:f5:1a:09:d1: e8:71:55:7b:b4:77:b2:c0:c5:02:70:15:d7:09:02: 2f:b6:57:25:aa:8c:0d:f3:40:2d:31:84:af:06:79: c4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:21:FD:FE:4A:B4:E1:D2:D5:05:0C:B1:9C:BE:48:A9:3C:F6:F6:D4 X509v3 Authority Key Identifier: keyid:D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:aa:26:6c:84:a1:6e:29:e3:cb:37:ca:98:84:29:f2:2e:e1: b8:f4:f9:c1:c0:c1:47:70:ee:9f:75:fa:2c:e2:35:4e:f3:40: 44:79:d0:97:0a:6f:f3:6b:6b:11:99:98:46:9e:7a:8d:32:0a: ac:c4:d1:1e:04:ac:1f:8f:80:f4:cb:7f:e5:3d:8e:13:0f:73: 79:b8:60:39:5b:72:e3:84:f9:11:62:f9:2a:d0:1a:f9:5f:98: a1:2b:24:8f:f6:c1:d7:c2:4b:0c:8b:99:12:1b:7d:82:24:0c: 14:68:4f:d5:cc:25:4e:2d:e6:e1:09:b0:ab:93:a6:a6:1b:f4: b9:c8:d3:0d:4e:a0:b8:bc:94:37:51:20:5f:2d:52:5a:7d:27: 0d:7b:6a:93:ce:b6:2d:32:d7:d9:03:a5:b2:1d:42:84:5b:54: a6:d3:d8:94:a6:4d:90:65:6f:68:23:91:a7:f8:db:d2:dc:b2: 06:ef:28:58:ed:58:49:61:fd:eb:4a:c4:50:19:65:12:01:4b: 15:8b:9f:e3:0c:55:35:7c:43:ca:75:f9:ee:bf:1a:df:ad:fd: 06:28:cf:81:f9:b3:e2:6a:f7:30:ec:02:8c:0d:cb:73:28:20: f0:5d:f1:5c:2a:ba:1c:5c:ce:d4:2d:8f:09:00:9a:0d:fd:4c: e6:3b:e6:07 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdEkuQBubIYqsSEvPsJlFYeOoQn8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1 MTdDOEZEQjAeFw0yNTA2MjkxNzM2NTRaFw0yNTA3MDMwMjExNTRaMDMxMTAvBgNV BAMTKEI3MjFGREZFNEFCNEUxRDJENTA1MENCMTlDQkU0OEE5M0NGNkY2RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/COZd0EIexIEbIfuVzHS+CFzN a27UCbc1lZOTt2P4r1J7WR/TKXpb/5o0a2JlVZkpb1MRfoXPB8l3OJbTNoht3xAq 2RBgVb14b+Y5wK5W2Zca/d/MU3PI/eWWSj/5riQJ6AjtXitv+B49L59kGufgJFgd tzCHih2KcM1NnOgbHMmLZ44toiSDSD9Bgeb24trF1TPPmsW6IhzHv2ViRd/NF2YU ByjdF3Pa9RgBXSeN8yIbJeZnWSieJdb0kOniMiYJK5P1jhwNyzca1rl3N34RsiyU ZURG6e73aZr89RoJ0ehxVXu0d7LAxQJwFdcJAi+2VyWqjA3zQC0xhK8GecTFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtyH9/kq04dLVBQyxnL5IqTz29tQwHwYDVR0j BBgwFoAU2dBzDbUSlf7FvUgM3UK16FF8j9swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyYjhiMy1kZWM4LTQxY2YtYTE2ZC1lMTE3MTU2MWQ3MjUvMC9EOUQwNzMwREI1 MTI5NUZFQzVCRDQ4MENERDQyQjVFODUxN0M4RkRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1MTdD OEZEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmI4YjMtZGVjOC00MWNmLWEx NmQtZTExNzE1NjFkNzI1LzAvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1 RTg1MTdDOEZEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMOqJmyEoW4p48s3ypiEKfIu4bj0+cHAwUdw 7p91+iziNU7zQER50JcKb/NraxGZmEaeeo0yCqzE0R4ErB+PgPTLf+U9jhMPc3m4 YDlbcuOE+RFi+SrQGvlfmKErJI/2wdfCSwyLmRIbfYIkDBRoT9XMJU4t5uEJsKuT pqYb9LnI0w1OoLi8lDdRIF8tUlp9Jw17apPOti0y19kDpbIdQoRbVKbT2JSmTZBl b2gjkaf429LcsgbvKFjtWElh/etKxFAZZRIBSxWLn+MMVTV8Q8p1+e6/Gt+t/QYo z4H5s+Jq9zDsAowNy3MoIPBd8VwquhxcztQtjwkAmg39TOY75gc= -----END CERTIFICATE-----Generated at Sun Jun 29 21:11:45 2025 by rpki-client