$ rpki-client -vvf repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft File: 7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft (raw, json) Hash identifier: rGIYNFV4TE6k3INT2Twm2WQTvU/72pXHIO4+VrWylHI= Subject key identifier: DF:78:0C:78:D7:39:92:48:2E:D3:F6:69:48:DA:00:E8:CC:F3:BB:F7 Authority key identifier: 70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E Certificate issuer: /CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Certificate serial: 1CDBBBC7F5B6787F10256B58EC456E9790E22BF5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft Manifest number: 0481 Signing time: Thu 03 Jul 2025 01:51:18 +0000 Manifest this update: Thu 03 Jul 2025 01:46:18 +0000 Manifest next update: Sun 06 Jul 2025 07:47:18 +0000 Files and hashes: 1: 7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl (hash: qPGhh/2Lree0S00n2JZS8ABiUNAG1XzZ5JkkGJveN+w=) 2: 3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa (hash: lIIq1aJkVgn61JdaqWdkMl1np7mlcmVrzeimT0s2k+E=) 3: 3130332e3134362e3139372e302f32342d3234203d3e20313339393431.roa (hash: a9rim8XhPQdPBnTRrhUohzYt6GpGCVRMKh2SkMkG9T8=) 4: 3130332e3134362e3139362e302f32342d3234203d3e20313339393431.roa (hash: V1cdbz2B4KnRWdpevX8pRA5Z1G9fpGPOBnApCOURAWY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 07:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:db:bb:c7:f5:b6:78:7f:10:25:6b:58:ec:45:6e:97:90:e2:2b:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Validity Not Before: Jul 3 01:46:18 2025 GMT Not After : Jul 6 07:47:18 2025 GMT Subject: CN=DF780C78D73992482ED3F66948DA00E8CCF3BBF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:55:97:01:c3:21:2b:8e:c8:bd:e3:eb:41:c9: a5:cc:3b:4b:b7:b5:57:64:7e:30:73:0a:06:22:cd: 60:92:31:af:0f:75:eb:e1:f0:f1:e6:46:8e:45:f6: 39:e6:e8:f1:ef:10:38:fd:f8:bb:6f:04:da:01:67: c1:cb:42:70:71:9e:f4:2c:99:f9:86:c1:2f:63:b3: 2f:d2:9d:e1:a9:cb:f4:84:6a:73:6c:67:e0:87:de: e3:00:cc:33:03:23:60:24:56:1d:56:b4:34:c5:23: 96:dc:42:b1:d3:90:0c:fc:91:62:49:33:15:4e:37: 22:09:6c:00:ea:cc:cc:d9:fe:95:de:2e:0f:9d:d3: fd:08:c2:db:8e:ad:ca:ea:aa:a3:ad:7b:06:78:c3: d9:dd:f5:4c:3c:50:98:ee:17:a7:3f:27:d3:a3:e8: a2:99:a2:26:d0:98:fc:eb:d6:19:9c:ed:b0:35:be: d4:4b:b3:ab:d3:6d:49:48:21:90:c8:e7:06:ec:6d: 29:2e:98:df:9a:96:6f:e3:0b:16:9d:81:18:b2:fc: 4a:50:18:cb:97:c1:fd:14:8b:15:45:d1:5a:0e:3d: c7:88:0b:d0:ca:b1:4f:ad:50:71:bc:e0:55:d6:85: 7a:b4:6f:10:eb:48:38:b0:1d:ef:89:84:19:eb:1e: 76:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:78:0C:78:D7:39:92:48:2E:D3:F6:69:48:DA:00:E8:CC:F3:BB:F7 X509v3 Authority Key Identifier: keyid:70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:10:a1:10:a7:22:fc:e1:4f:f5:e6:7a:0d:1c:c4:91:bd:94: b3:61:8e:8c:87:3a:48:87:a6:3e:c4:52:a8:8f:2f:7a:8f:99: 05:32:55:41:ea:a1:85:72:69:2d:b9:c2:75:12:6a:31:b8:46: 31:29:ba:73:cb:8c:77:9a:fd:a4:de:c9:2a:0e:ca:96:4a:30: 7d:09:a4:e1:c9:41:55:b2:36:b5:1e:b6:a2:df:c5:cf:d4:09: ff:99:4c:76:93:ba:77:df:8f:b0:66:11:ca:74:7c:65:b9:53: fc:24:a5:34:30:b7:d8:2c:52:ea:cc:0f:8c:c3:09:c0:6f:9b: 27:98:3b:9b:f0:17:04:dd:9c:d3:fa:12:ba:cd:a0:b6:12:da: a7:7c:8b:e4:3a:5a:c3:e9:26:ac:9d:0f:61:49:8f:c8:53:bf: b6:c3:16:f1:80:0f:10:0d:f5:5e:e2:30:2f:af:7b:d7:f1:76: 70:31:46:67:04:df:dc:5e:80:00:50:58:12:71:a8:c5:9a:a9: 45:5c:5c:ee:87:94:59:c1:5d:fb:a6:d3:59:2a:6d:23:0c:a3: cf:67:17:21:6e:c5:0c:be:65:c1:19:b8:21:a6:08:11:90:5a: 5e:72:61:a3:9c:6d:ff:dd:8d:3a:0a:db:f8:5f:bb:8c:65:b8: d5:5c:22:2c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHNu7x/W2eH8QJWtY7EVul5DiK/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NG NUIyQUE0RTAeFw0yNTA3MDMwMTQ2MThaFw0yNTA3MDYwNzQ3MThaMDMxMTAvBgNV BAMTKERGNzgwQzc4RDczOTkyNDgyRUQzRjY2OTQ4REEwMEU4Q0NGM0JCRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0VZcBwyErjsi94+tByaXMO0u3 tVdkfjBzCgYizWCSMa8Pdevh8PHmRo5F9jnm6PHvEDj9+LtvBNoBZ8HLQnBxnvQs mfmGwS9jsy/SneGpy/SEanNsZ+CH3uMAzDMDI2AkVh1WtDTFI5bcQrHTkAz8kWJJ MxVONyIJbADqzMzZ/pXeLg+d0/0IwtuOrcrqqqOtewZ4w9nd9Uw8UJjuF6c/J9Oj 6KKZoibQmPzr1hmc7bA1vtRLs6vTbUlIIZDI5wbsbSkumN+alm/jCxadgRiy/EpQ GMuXwf0UixVF0VoOPceIC9DKsU+tUHG84FXWhXq0bxDrSDiwHe+JhBnrHnYlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU33gMeNc5kkgu0/ZpSNoA6Mzzu/cwHwYDVR0j BBgwFoAUcAiGh5nnfELkN/DXrM9oPPWyqk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MzUwNDhjNi04Y2NkLTQ2M2QtYWQzNC1hZTc0Mjg2NDdhOWMvMC83MDA4ODY4Nzk5 RTc3QzQyRTQzN0YwRDdBQ0NGNjgzQ0Y1QjJBQTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NGNUIy QUE0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODM1MDQ4YzYtOGNjZC00NjNkLWFk MzQtYWU3NDI4NjQ3YTljLzAvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4 M0NGNUIyQUE0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGQQoRCnIvzhT/Xmeg0cxJG9lLNhjoyHOkiH pj7EUqiPL3qPmQUyVUHqoYVyaS25wnUSajG4RjEpunPLjHea/aTeySoOypZKMH0J pOHJQVWyNrUetqLfxc/UCf+ZTHaTunffj7BmEcp0fGW5U/wkpTQwt9gsUurMD4zD CcBvmyeYO5vwFwTdnNP6ErrNoLYS2qd8i+Q6WsPpJqydD2FJj8hTv7bDFvGADxAN 9V7iMC+ve9fxdnAxRmcE39xegABQWBJxqMWaqUVcXO6HlFnBXfum01kqbSMMo89n FyFuxQy+ZcEZuCGmCBGQWl5yYaOcbf/djToK2/hfu4xluNVcIiw= -----END CERTIFICATE-----Generated at Sat Jul 5 01:19:35 2025 by rpki-client