$ rpki-client -vvf repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft File: 95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft (raw, json) Hash identifier: Wx4P0ilPS4FJ/BsV9Xan6ct58NsnvdcQbpKt5Rcr8IQ= Subject key identifier: EF:21:6A:D2:F2:AF:5B:B6:9E:4F:B5:37:10:90:8B:69:66:59:5C:77 Authority key identifier: 95:FA:C3:8A:5C:B2:CE:A3:E5:FF:E2:49:56:26:A7:BE:A3:28:D6:89 Certificate issuer: /CN=95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689 Certificate serial: 2E59878DC35E348ED45082EC3B9439B0E500E767 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer Subject info access: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft Manifest number: AE Signing time: Mon 30 Jun 2025 02:11:21 +0000 Manifest this update: Mon 30 Jun 2025 02:06:21 +0000 Manifest next update: Thu 03 Jul 2025 12:53:21 +0000 Files and hashes: 1: 95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl (hash: Opc1VImkB0oTvBe/swKYxmp+XaHBg3Xf1DQqZsxYTOo=) 2: 3136302e31392e38382e302f32342d3234203d3e20313437303838.roa (hash: +Xk0mxGkc/lCxZDeUptrpwZhCqCSnBV/uCVgeNZ+WpY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 12:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:59:87:8d:c3:5e:34:8e:d4:50:82:ec:3b:94:39:b0:e5:00:e7:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689 Validity Not Before: Jun 30 02:06:21 2025 GMT Not After : Jul 3 12:53:21 2025 GMT Subject: CN=EF216AD2F2AF5BB69E4FB53710908B6966595C77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a7:68:6f:f2:8c:63:0d:02:65:05:89:83:00: 9f:06:51:8c:75:7f:f6:e3:a3:54:ab:20:4b:34:ff: 3f:58:32:c2:0d:7a:bf:5d:76:13:6b:d7:48:cd:99: 09:44:66:cc:ba:fd:a2:3b:be:04:c1:8b:9c:c0:4b: 3e:d5:23:56:85:42:45:23:88:bd:96:bf:73:a2:fc: 8c:91:d3:24:7d:23:d0:f8:56:12:af:2b:f5:a4:ec: 54:d2:5a:8b:3e:7d:b5:8e:9b:f7:28:2e:1c:bc:fe: be:b5:89:79:9d:ad:96:55:64:05:ea:2f:17:8e:5b: f5:20:90:0b:fe:86:36:b8:fb:a2:f3:fc:df:9c:30: a2:81:ed:ce:02:4e:09:d4:02:18:ae:ca:ee:c4:cc: 9e:f3:89:f1:66:d3:30:e6:90:48:79:29:a1:a6:a4: 2e:e2:ed:e9:07:16:62:91:f2:b0:a2:92:38:3f:4d: eb:09:07:b6:98:41:78:0b:10:5a:63:0f:af:24:b6: 5f:48:17:58:7c:da:e9:d7:89:f8:41:39:c4:20:93: 09:de:1d:fe:55:8d:b2:35:ae:6f:b0:6f:96:8c:43: 2e:52:57:ec:9d:46:fd:0c:ae:20:27:71:aa:d7:33: 3f:8e:54:1d:0a:62:6f:f4:53:f6:cf:47:d9:06:79: 70:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:21:6A:D2:F2:AF:5B:B6:9E:4F:B5:37:10:90:8B:69:66:59:5C:77 X509v3 Authority Key Identifier: keyid:95:FA:C3:8A:5C:B2:CE:A3:E5:FF:E2:49:56:26:A7:BE:A3:28:D6:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:b9:2c:99:b6:e3:11:9f:3c:a5:67:85:2e:4a:53:6d:fd:b6: 59:46:68:b6:72:69:e8:00:08:24:6e:12:d6:29:50:0d:95:2b: c4:50:13:5f:f9:55:68:0f:d5:0f:e2:08:b7:be:ec:a4:5a:11: 67:bd:a3:86:26:9f:b7:5e:23:60:58:52:db:de:eb:6c:17:8c: 31:26:bb:91:b7:98:99:f8:ef:18:9c:4f:78:c5:13:99:c0:5b: e8:36:d8:d1:5c:d5:4c:9c:b3:8c:cb:aa:6c:81:ac:6a:04:84: 14:19:aa:83:44:15:7f:ca:4c:4e:b2:d7:c7:1e:43:a2:f0:6e: 10:f4:c1:8f:20:28:b8:e4:75:75:34:e4:e9:41:d0:97:90:54: a7:bc:b0:60:99:7c:f7:f6:41:16:55:1b:b8:db:5b:24:25:e3: 07:e9:95:16:1b:a8:72:38:43:70:76:d1:7f:ec:06:5e:44:72: 8a:74:f1:85:92:e2:55:92:49:1b:28:a9:61:d5:7a:f1:37:7f: 21:57:d3:56:c0:a9:6d:a1:82:ef:4e:2a:a0:4c:78:30:33:b6: 9a:e1:0f:df:2a:ed:9a:36:2a:02:a0:72:d5:df:38:be:a7:a8: 7f:a4:5f:05:2a:c0:f2:df:21:17:c8:00:fb:7a:b1:40:55:3d: 5e:7d:4d:7f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULlmHjcNeNI7UUILsO5Q5sOUA52cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3QkVB MzI4RDY4OTAeFw0yNTA2MzAwMjA2MjFaFw0yNTA3MDMxMjUzMjFaMDMxMTAvBgNV BAMTKEVGMjE2QUQyRjJBRjVCQjY5RTRGQjUzNzEwOTA4QjY5NjY1OTVDNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMp2hv8oxjDQJlBYmDAJ8GUYx1 f/bjo1SrIEs0/z9YMsINer9ddhNr10jNmQlEZsy6/aI7vgTBi5zASz7VI1aFQkUj iL2Wv3Oi/IyR0yR9I9D4VhKvK/Wk7FTSWos+fbWOm/coLhy8/r61iXmdrZZVZAXq LxeOW/UgkAv+hja4+6Lz/N+cMKKB7c4CTgnUAhiuyu7EzJ7zifFm0zDmkEh5KaGm pC7i7ekHFmKR8rCikjg/TesJB7aYQXgLEFpjD68ktl9IF1h82unXifhBOcQgkwne Hf5VjbI1rm+wb5aMQy5SV+ydRv0MriAncarXMz+OVB0KYm/0U/bPR9kGeXDdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7yFq0vKvW7aeT7U3EJCLaWZZXHcwHwYDVR0j BBgwFoAUlfrDilyyzqPl/+JJVianvqMo1okwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NGRhNDE1Yi01ZjE3LTQ2MDItOWJkOS1mZDg0YWMyY2FlODYvMC85NUZBQzM4QTVD QjJDRUEzRTVGRkUyNDk1NjI2QTdCRUEzMjhENjg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3QkVBMzI4 RDY4OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODRkYTQxNWItNWYxNy00NjAyLTli ZDktZmQ4NGFjMmNhZTg2LzAvOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3 QkVBMzI4RDY4OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFK5LJm24xGfPKVnhS5KU239tllGaLZyaegA CCRuEtYpUA2VK8RQE1/5VWgP1Q/iCLe+7KRaEWe9o4Ymn7deI2BYUtve62wXjDEm u5G3mJn47xicT3jFE5nAW+g22NFc1Uycs4zLqmyBrGoEhBQZqoNEFX/KTE6y18ce Q6LwbhD0wY8gKLjkdXU05OlB0JeQVKe8sGCZfPf2QRZVG7jbWyQl4wfplRYbqHI4 Q3B20X/sBl5Ecop08YWS4lWSSRsoqWHVevE3fyFX01bAqW2hgu9OKqBMeDAztprh D98q7Zo2KgKgctXfOL6nqH+kXwUqwPLfIRfIAPt6sUBVPV59TX8= -----END CERTIFICATE-----Generated at Tue Jul 1 02:38:44 2025 by rpki-client