$ rpki-client -vvf repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft File: 3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft (raw, json) Hash identifier: SdKr7m/W8akAmuZD84fsC8ja2JFQou257j+C10t7Wh0= Subject key identifier: A1:0F:2E:69:3A:C2:C9:B0:FB:EE:34:E0:6E:9F:EE:43:45:96:C2:8B Authority key identifier: 3B:A5:C1:01:90:AD:C9:6E:E3:4E:B4:A6:D0:54:45:70:22:CB:DE:E9 Certificate issuer: /CN=3BA5C10190ADC96EE34EB4A6D054457022CBDEE9 Certificate serial: 5869063EAC157E8FB865F3176718B6B2F47DF0FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft Manifest number: 01EB Signing time: Fri 27 Jun 2025 18:11:53 +0000 Manifest this update: Fri 27 Jun 2025 18:06:53 +0000 Manifest next update: Mon 30 Jun 2025 20:12:53 +0000 Files and hashes: 1: 3130332e3139302e36302e302f32342d3234203d3e20313439393031.roa (hash: TsTDpWhEe0S4QbX7Nvx05CapjsmJk1el8Dy5qKfw9Z4=) 2: 3130332e3139302e36312e302f32342d3234203d3e20313439393031.roa (hash: Ykg6X7TmWGcN3xNxQzs8nCjH8QlPm6F3Uq9zQ4bEBTI=) 3: 3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl (hash: YSPhUsR3sUMq36Ktq5N3dP/dRmjXI7bK4+2oKIiYlcs=) 4: 3130332e3139302e36302e302f32332d3233203d3e20313439393031.roa (hash: 51ekgtNLYDLFINvFYDj/N8stn5dpVipAbdc9vPbRQ7I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Jun 2025 20:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:69:06:3e:ac:15:7e:8f:b8:65:f3:17:67:18:b6:b2:f4:7d:f0:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BA5C10190ADC96EE34EB4A6D054457022CBDEE9 Validity Not Before: Jun 27 18:06:53 2025 GMT Not After : Jun 30 20:12:53 2025 GMT Subject: CN=A10F2E693AC2C9B0FBEE34E06E9FEE434596C28B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8c:3c:6f:87:6e:7f:61:71:56:4e:ec:bc:a1: 2a:b1:d7:b3:93:36:36:26:14:ed:12:51:26:ee:75: d7:df:30:cd:a1:08:90:d2:45:f9:10:20:a6:6f:2b: 36:92:69:91:fe:e9:d4:25:78:4c:a2:7c:f7:16:46: 10:b3:f0:e8:1d:f9:e0:c7:97:c2:d1:17:1a:9d:f9: 77:70:f4:e0:eb:42:99:7b:91:d8:19:90:99:30:db: ec:e6:79:4e:80:c0:da:61:96:44:66:90:45:18:43: 2e:2f:1b:37:a0:d4:b8:7e:97:f4:3b:d2:6d:37:c1: 96:f8:cd:1a:d8:5b:db:9a:46:bc:e9:ef:c7:3d:ba: 64:05:fe:9e:c4:3f:63:23:7e:6e:79:ff:4a:07:75: e3:32:82:b6:53:ec:d4:9b:e9:c3:d4:4e:5e:e3:04: b7:7d:46:a1:e0:72:41:bc:97:13:53:1f:1b:4b:5f: 49:6f:ee:18:8c:fd:f8:48:fd:86:55:49:ff:e0:97: ac:96:65:5e:5e:93:1a:88:2b:e4:98:6b:a0:9d:2e: 0e:d0:0c:82:75:c4:14:27:80:8a:03:c4:5f:2f:a7: 14:9b:55:29:44:3d:77:39:4f:4f:1d:61:4b:9e:cb: 07:3e:8f:28:77:84:d3:d6:97:89:25:fb:f3:eb:71: 0a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:0F:2E:69:3A:C2:C9:B0:FB:EE:34:E0:6E:9F:EE:43:45:96:C2:8B X509v3 Authority Key Identifier: keyid:3B:A5:C1:01:90:AD:C9:6E:E3:4E:B4:A6:D0:54:45:70:22:CB:DE:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:27:f9:14:25:c2:65:1d:f2:33:3f:d9:d1:48:f2:d7:ea:19: de:c6:6e:0e:d1:74:ba:d6:95:1c:59:51:51:af:33:c9:53:74: 3d:be:1a:ad:b7:28:77:d3:2c:0c:93:bb:96:34:1b:90:ae:1c: d9:09:8e:10:e2:4d:3e:1e:30:55:96:78:6e:4a:f9:af:bc:62: a0:da:2d:73:66:35:1c:64:2d:67:6f:e9:33:0d:b1:f3:65:01: 50:db:01:87:8b:47:88:13:44:7c:bb:1c:22:59:ec:a4:ab:a6: d2:56:bb:0f:c9:3a:75:9b:87:a5:03:ae:a0:ea:31:3d:a0:98: 47:0b:08:10:2b:e5:c3:00:83:51:58:3a:ad:eb:e3:49:1c:b2: 7d:65:25:87:52:82:0b:9c:c3:cc:ab:6f:f2:62:4b:f8:b8:6b: cf:12:d8:66:2c:04:48:e7:a5:27:d7:b1:34:26:1f:de:9b:df: 17:b0:54:38:0a:1a:66:c4:3f:4d:86:fd:81:2b:2a:81:ea:bd: 74:38:cb:53:0b:33:44:9c:2f:b0:48:04:91:5c:92:6d:bc:21: c4:7e:ec:ab:5b:65:5b:45:2f:63:c8:b0:85:4b:00:7e:64:ab: 2f:f3:84:52:cf:ca:b1:e4:41:b3:50:87:fe:e6:d6:14:3f:6b: 3f:d2:3d:f6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWGkGPqwVfo+4ZfMXZxi2svR98PswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1NzAy MkNCREVFOTAeFw0yNTA2MjcxODA2NTNaFw0yNTA2MzAyMDEyNTNaMDMxMTAvBgNV BAMTKEExMEYyRTY5M0FDMkM5QjBGQkVFMzRFMDZFOUZFRTQzNDU5NkMyOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsjDxvh25/YXFWTuy8oSqx17OT NjYmFO0SUSbuddffMM2hCJDSRfkQIKZvKzaSaZH+6dQleEyifPcWRhCz8Ogd+eDH l8LRFxqd+Xdw9ODrQpl7kdgZkJkw2+zmeU6AwNphlkRmkEUYQy4vGzeg1Lh+l/Q7 0m03wZb4zRrYW9uaRrzp78c9umQF/p7EP2Mjfm55/0oHdeMygrZT7NSb6cPUTl7j BLd9RqHgckG8lxNTHxtLX0lv7hiM/fhI/YZVSf/gl6yWZV5ekxqIK+SYa6CdLg7Q DIJ1xBQngIoDxF8vpxSbVSlEPXc5T08dYUueywc+jyh3hNPWl4kl+/PrcQr9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoQ8uaTrCybD77jTgbp/uQ0WWwoswHwYDVR0j BBgwFoAUO6XBAZCtyW7jTrSm0FRFcCLL3ukwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZTMxNDg1OC1iMzNhLTRiNjUtOWE1NS1kY2U0MWUyMjM4NzMvMC8zQkE1QzEwMTkw QURDOTZFRTM0RUI0QTZEMDU0NDU3MDIyQ0JERUU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1NzAyMkNC REVFOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWUzMTQ4NTgtYjMzYS00YjY1LTlh NTUtZGNlNDFlMjIzODczLzAvM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1 NzAyMkNCREVFOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH8n+RQlwmUd8jM/2dFI8tfqGd7Gbg7RdLrW lRxZUVGvM8lTdD2+Gq23KHfTLAyTu5Y0G5CuHNkJjhDiTT4eMFWWeG5K+a+8YqDa LXNmNRxkLWdv6TMNsfNlAVDbAYeLR4gTRHy7HCJZ7KSrptJWuw/JOnWbh6UDrqDq MT2gmEcLCBAr5cMAg1FYOq3r40kcsn1lJYdSggucw8yrb/JiS/i4a88S2GYsBEjn pSfXsTQmH96b3xewVDgKGmbEP02G/YErKoHqvXQ4y1MLM0ScL7BIBJFckm28IcR+ 7KtbZVtFL2PIsIVLAH5kqy/zhFLPyrHkQbNQh/7m1hQ/az/SPfY= -----END CERTIFICATE-----Generated at Sun Jun 29 19:55:18 2025 by rpki-client