$ rpki-client -vvf repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft File: 41071AAF0C0E6BD84877680334B4F604B4B4E786.mft (raw, json) Hash identifier: vQjM8KY45duYHba02wV4tIrB6EXq+uiHXwIc65+pPno= Subject key identifier: E8:3C:90:1A:FE:85:80:91:AA:D9:E7:F0:8E:FB:88:D2:75:EA:E2:48 Authority key identifier: 41:07:1A:AF:0C:0E:6B:D8:48:77:68:03:34:B4:F6:04:B4:B4:E7:86 Certificate issuer: /CN=41071AAF0C0E6BD84877680334B4F604B4B4E786 Certificate serial: 165B913653952442E232891EAF4D405D573F413B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft Manifest number: 01DF Signing time: Thu 03 Jul 2025 23:02:08 +0000 Manifest this update: Thu 03 Jul 2025 22:57:08 +0000 Manifest next update: Mon 07 Jul 2025 03:21:08 +0000 Files and hashes: 1: 3130332e3136372e322e302f32342d3234203d3e20313431393637.roa (hash: S3FgE0+gcaLyx6nH2zsRG+Hi0BgVRkLf/ndGC4F7z/0=) 2: 41071AAF0C0E6BD84877680334B4F604B4B4E786.crl (hash: zdgTH1p0fjUuUiXa6egb3y0CQz4NvV6H3wkW8xtfISM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.crl rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 03:21:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:5b:91:36:53:95:24:42:e2:32:89:1e:af:4d:40:5d:57:3f:41:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41071AAF0C0E6BD84877680334B4F604B4B4E786 Validity Not Before: Jul 3 22:57:08 2025 GMT Not After : Jul 7 03:21:08 2025 GMT Subject: CN=E83C901AFE858091AAD9E7F08EFB88D275EAE248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:2b:b6:5e:0b:59:6b:01:a9:b6:e0:bc:45:58: 17:76:0e:27:63:92:be:00:ed:2b:a4:c2:8a:fc:09: e6:bc:6d:23:cd:0d:d7:d3:ef:c8:a3:88:4e:a8:26: e3:b5:70:da:6e:12:e2:6f:f8:e2:09:c0:23:b9:c7: 12:3f:4d:a1:af:f7:ec:e9:4c:90:00:ea:d0:29:c4: 4a:7a:dc:e6:7c:37:f0:73:1a:76:b5:ef:75:a1:66: 63:5d:78:01:06:6b:97:ce:5b:da:37:80:d8:5b:72: f2:a0:4a:e4:8e:3b:94:1b:28:e8:0b:20:b9:64:a2: 79:1f:38:59:1b:a5:2a:ae:6b:62:d4:c3:2e:2a:f8: 2a:aa:17:38:1a:3d:aa:05:74:b8:59:81:2f:dc:0f: 8c:47:14:d1:43:7d:17:d3:82:25:42:57:0c:60:1b: 69:af:b6:27:f0:c7:be:44:14:e7:84:be:07:5a:09: a0:6f:34:fe:3a:e0:fb:3d:7a:ec:5e:c8:e9:91:68: b7:99:9c:a2:a9:17:f4:64:67:66:10:69:7d:7b:91: 3b:6e:40:dc:43:bc:44:96:21:ca:a0:e0:ee:8f:26: 67:ce:76:8b:d7:61:00:cc:72:05:95:6a:e6:de:9f: 06:1f:56:56:59:38:2f:06:ee:ad:c7:fa:1c:9e:5e: 6a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:3C:90:1A:FE:85:80:91:AA:D9:E7:F0:8E:FB:88:D2:75:EA:E2:48 X509v3 Authority Key Identifier: keyid:41:07:1A:AF:0C:0E:6B:D8:48:77:68:03:34:B4:F6:04:B4:B4:E7:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:ec:58:47:c2:9b:cc:62:0c:02:e0:36:db:b3:f7:74:65:3c: a6:13:8a:0c:3f:d4:bd:d5:a3:5c:85:b9:38:5a:41:ff:77:37: b7:47:49:a3:7e:a0:35:48:64:ec:6b:38:70:c9:77:97:fa:9b: 89:5e:e6:fb:46:85:e5:2a:b5:0a:92:be:0c:24:8a:5f:19:1c: af:8c:c3:3d:09:8e:c6:7d:bf:02:5f:b7:57:e5:ab:cf:10:0c: 46:15:3d:c4:16:01:cc:0a:bb:ef:33:43:6f:c5:a8:e7:a3:c2: 89:16:10:ff:22:63:c2:f3:aa:8d:c3:d1:50:37:06:87:f1:c4: 43:f1:fd:f3:e9:5a:20:f3:a0:32:eb:52:11:fa:00:0b:77:29: c6:ac:50:82:40:ba:60:d7:a2:6f:3b:1d:59:ad:21:64:6d:57: 37:19:45:90:8a:3e:17:d6:6f:ab:02:a0:0f:05:da:63:ce:8a: d5:5e:6b:7b:6a:78:04:c4:dc:5b:74:a7:43:1c:be:36:00:ce: 29:51:8c:ff:4c:75:9e:74:c3:4a:28:8c:cb:93:f2:37:83:54: d5:58:3f:53:b9:63:81:7e:6c:16:82:23:87:07:59:d2:ae:ce: f2:a5:20:07:b3:ce:ee:49:58:88:4c:d8:3d:47:07:d7:ec:90: f0:a9:27:5d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFluRNlOVJELiMoker01AXVc/QTswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2MDRC NEI0RTc4NjAeFw0yNTA3MDMyMjU3MDhaFw0yNTA3MDcwMzIxMDhaMDMxMTAvBgNV BAMTKEU4M0M5MDFBRkU4NTgwOTFBQUQ5RTdGMDhFRkI4OEQyNzVFQUUyNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWK7ZeC1lrAam24LxFWBd2Didj kr4A7Sukwor8Cea8bSPNDdfT78ijiE6oJuO1cNpuEuJv+OIJwCO5xxI/TaGv9+zp TJAA6tApxEp63OZ8N/BzGna173WhZmNdeAEGa5fOW9o3gNhbcvKgSuSOO5QbKOgL ILlkonkfOFkbpSqua2LUwy4q+CqqFzgaPaoFdLhZgS/cD4xHFNFDfRfTgiVCVwxg G2mvtifwx75EFOeEvgdaCaBvNP464Ps9euxeyOmRaLeZnKKpF/RkZ2YQaX17kTtu QNxDvESWIcqg4O6PJmfOdovXYQDMcgWVaubenwYfVlZZOC8G7q3H+hyeXmpBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6DyQGv6FgJGq2efwjvuI0nXq4kgwHwYDVR0j BBgwFoAUQQcarwwOa9hId2gDNLT2BLS054YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTI3YjNlMS1mNjExLTRhZmUtOWE0OS01ZmE0ZmQ1NTc2NTMvMC80MTA3MUFBRjBD MEU2QkQ4NDg3NzY4MDMzNEI0RjYwNEI0QjRFNzg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2MDRCNEI0 RTc4Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2UyN2IzZTEtZjYxMS00YWZlLTlh NDktNWZhNGZkNTU3NjUzLzAvNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2 MDRCNEI0RTc4Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJzsWEfCm8xiDALgNtuz93RlPKYTigw/1L3V o1yFuThaQf93N7dHSaN+oDVIZOxrOHDJd5f6m4le5vtGheUqtQqSvgwkil8ZHK+M wz0JjsZ9vwJft1flq88QDEYVPcQWAcwKu+8zQ2/FqOejwokWEP8iY8Lzqo3D0VA3 BofxxEPx/fPpWiDzoDLrUhH6AAt3KcasUIJAumDXom87HVmtIWRtVzcZRZCKPhfW b6sCoA8F2mPOitVea3tqeATE3Ft0p0McvjYAzilRjP9MdZ50w0oojMuT8jeDVNVY P1O5Y4F+bBaCI4cHWdKuzvKlIAezzu5JWIhM2D1HB9fskPCpJ10= -----END CERTIFICATE-----Generated at Sat Jul 5 21:10:29 2025 by rpki-client