$ rpki-client -vvf repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft File: 604C441ACDF554F380D7FED8F68B2EC7FB780413.mft (raw, json) Hash identifier: X3tN+nWl979CGqHtVpd0yMNkbPD0EPgnvLk5++2Womw= Subject key identifier: E3:DA:97:26:47:89:58:1E:7D:03:A8:60:3B:51:27:74:69:D1:D7:8B Authority key identifier: 60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 Certificate issuer: /CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Certificate serial: 2DD43EE94C3C57C277418FADC608E5D01AF41E6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject info access: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft Manifest number: 01AE Signing time: Sun 29 Jun 2025 15:41:01 +0000 Manifest this update: Sun 29 Jun 2025 15:36:01 +0000 Manifest next update: Wed 02 Jul 2025 23:01:01 +0000 Files and hashes: 1: 3130332e3139312e3139362e302f32332d3234203d3e20313439393334.roa (hash: 0P8RiV2EV8KtV2wVPDkhbbfmwCyYhPd1bfzDVq451ls=) 2: 604C441ACDF554F380D7FED8F68B2EC7FB780413.crl (hash: GSBf69vHbp4bakZzWHGNipGMXL6oQUHQU4ws76MFfLw=) 3: 3130332e3139312e3139372e302f32342d3234203d3e20313439393334.roa (hash: 9VCyBS9IIeec/M2Dmo8IoJQFogFZ4Fro1YlaePTTG58=) 4: 3130332e3139312e3139362e302f32342d3234203d3e20313439393334.roa (hash: M890dag6EE1qtsFlPkd3PB/fu3TZaGNSDr48ih7+xpg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:d4:3e:e9:4c:3c:57:c2:77:41:8f:ad:c6:08:e5:d0:1a:f4:1e:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Validity Not Before: Jun 29 15:36:01 2025 GMT Not After : Jul 2 23:01:01 2025 GMT Subject: CN=E3DA97264789581E7D03A8603B51277469D1D78B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f0:03:4a:3d:e2:0d:ed:3a:20:10:5d:e1:c3: 71:84:da:41:92:e0:1d:dd:ea:f9:3d:61:ef:20:01: 4e:97:d0:59:cd:a8:a0:55:5e:aa:21:08:54:c4:75: 3e:e9:42:d3:65:94:c7:85:0b:c0:dd:3f:32:93:f3: 08:79:9d:11:3a:3b:2b:9d:b7:8a:b0:35:36:8a:e1: cd:16:90:fe:65:8f:a1:28:94:59:a7:35:21:7d:e2: 7b:5e:bb:11:53:a6:bd:74:de:2c:3a:cc:65:ec:f8: eb:6f:a5:7f:ff:42:f2:b0:41:7a:d9:5e:0b:9d:3e: db:a2:46:12:bf:a7:8a:09:57:a0:c3:bb:e7:e3:de: 80:9b:92:64:32:75:8d:a0:26:50:c1:9c:0c:05:a5: d8:c0:f7:5a:60:32:b0:71:77:97:a4:bc:6f:34:3c: 95:82:63:10:24:e5:55:90:a5:4c:75:26:07:53:8d: 5a:03:32:43:9b:96:14:b0:5d:fd:45:de:7b:fe:c1: 0f:9f:79:60:f2:0a:7a:09:d5:c4:3a:5c:18:40:4b: 57:87:26:f2:4b:40:b2:75:13:d4:b6:3b:b3:8c:45: 59:81:b1:d0:24:b3:7a:cd:27:00:70:88:f9:4f:4d: 7e:88:fc:94:7c:8d:50:22:be:ca:a0:02:3e:1c:63: 93:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:DA:97:26:47:89:58:1E:7D:03:A8:60:3B:51:27:74:69:D1:D7:8B X509v3 Authority Key Identifier: keyid:60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:0b:49:46:e6:69:33:1a:57:61:ea:32:04:ac:bb:20:aa:1c: 2a:50:40:89:51:75:91:fd:4d:b1:3c:ce:d0:09:2b:2c:fc:00: cb:13:d3:0d:9d:28:00:1c:20:6a:57:b3:bb:27:62:91:39:24: 5b:67:20:34:ab:2e:8a:72:1a:a3:23:31:b8:5b:35:c2:d8:2f: 09:82:8c:c0:3b:f6:18:5e:30:36:e4:df:40:50:b9:19:6c:60: 63:08:60:82:ff:0c:c4:c4:8f:65:7f:93:c7:af:9e:0d:36:d4: 23:b5:f9:57:7d:c2:07:a9:f0:a0:44:7b:9b:2d:03:f9:82:90: 92:7c:e7:aa:aa:8d:a7:87:73:33:11:5b:ce:35:c7:57:85:91: be:7f:e7:03:f3:41:64:61:d3:41:a1:ba:71:f2:0e:d2:d5:40: 14:bd:53:63:5b:74:a1:f0:20:8c:a7:ba:f2:5f:bb:d3:3f:a6: 93:51:77:7b:b9:43:71:59:fb:d9:37:07:e7:42:a6:37:fc:ad: 20:7a:6e:ee:87:42:1b:a0:9a:91:74:6f:61:7c:af:9a:eb:48: 15:2e:7c:6e:6a:a0:e1:a6:74:58:70:15:76:a4:47:f4:5d:7d: 37:2f:fd:54:53:cf:41:de:1e:07:97:89:b8:ec:a4:a4:5e:26: 77:53:ed:5e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULdQ+6Uw8V8J3QY+txgjl0Br0Hm0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdG Qjc4MDQxMzAeFw0yNTA2MjkxNTM2MDFaFw0yNTA3MDIyMzAxMDFaMDMxMTAvBgNV BAMTKEUzREE5NzI2NDc4OTU4MUU3RDAzQTg2MDNCNTEyNzc0NjlEMUQ3OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT8ANKPeIN7TogEF3hw3GE2kGS 4B3d6vk9Ye8gAU6X0FnNqKBVXqohCFTEdT7pQtNllMeFC8DdPzKT8wh5nRE6Oyud t4qwNTaK4c0WkP5lj6EolFmnNSF94nteuxFTpr103iw6zGXs+OtvpX//QvKwQXrZ XgudPtuiRhK/p4oJV6DDu+fj3oCbkmQydY2gJlDBnAwFpdjA91pgMrBxd5ekvG80 PJWCYxAk5VWQpUx1JgdTjVoDMkOblhSwXf1F3nv+wQ+feWDyCnoJ1cQ6XBhAS1eH JvJLQLJ1E9S2O7OMRVmBsdAks3rNJwBwiPlPTX6I/JR8jVAivsqgAj4cY5PBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU49qXJkeJWB59A6hgO1EndGnR14swHwYDVR0j BBgwFoAUYExEGs31VPOA1/7Y9osux/t4BBMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NWQ2ZWZmZi04NWIyLTRhZjQtODlhYi02ZDk4Yzk1MjdkYTQvMC82MDRDNDQxQUNE RjU1NEYzODBEN0ZFRDhGNjhCMkVDN0ZCNzgwNDEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdGQjc4 MDQxMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzVkNmVmZmYtODViMi00YWY0LTg5 YWItNmQ5OGM5NTI3ZGE0LzAvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJF QzdGQjc4MDQxMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA4LSUbmaTMaV2HqMgSsuyCqHCpQQIlRdZH9 TbE8ztAJKyz8AMsT0w2dKAAcIGpXs7snYpE5JFtnIDSrLopyGqMjMbhbNcLYLwmC jMA79hheMDbk30BQuRlsYGMIYIL/DMTEj2V/k8evng021CO1+Vd9wgep8KBEe5st A/mCkJJ856qqjaeHczMRW841x1eFkb5/5wPzQWRh00GhunHyDtLVQBS9U2NbdKHw IIynuvJfu9M/ppNRd3u5Q3FZ+9k3B+dCpjf8rSB6bu6HQhugmpF0b2F8r5rrSBUu fG5qoOGmdFhwFXakR/RdfTcv/VRTz0HeHgeXibjspKReJndT7V4= -----END CERTIFICATE-----Generated at Sun Jun 29 18:36:07 2025 by rpki-client