$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft File: 4C44F6F543BDBB858D3656D41A36660407672BDE.mft (raw, json) Hash identifier: B49aP1DxXunSLZLOrHKcA9kW6zkJQlgxkrZuroSJ/bI= Subject key identifier: 1F:2C:27:27:54:04:48:BC:6A:B9:D9:BE:57:E0:43:E4:3F:D0:04:63 Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 0B68FC736573C5511B8DC1299FFB04D39555CEE3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft Manifest number: 0238 Signing time: Mon 30 Jun 2025 13:50:56 +0000 Manifest this update: Mon 30 Jun 2025 13:45:56 +0000 Manifest next update: Thu 03 Jul 2025 14:26:56 +0000 Files and hashes: 1: 3130332e32392e3138342e302f32342d3234203d3e203536323630.roa (hash: PxQIpqbQq2jLhpu3Xowhx5fys0b4IY/JPo7Tka0HdFo=) 2: 4C44F6F543BDBB858D3656D41A36660407672BDE.crl (hash: AqsugGiy2L/OIkdz9rAl6/A40ictNid3AORIBSyhw9Y=) 3: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (hash: 8Rg4KVnY/32fl4fG4uMRblRtiju0uviBp14XLoqECcw=) 4: 3130332e31312e3130362e302f32342d3234203d3e203536323630.roa (hash: /oNKkVvACpGRwEaHQtz+NrUuOBWsbNWp6QRHeV0MPMU=) 5: 3130332e31312e3130372e302f32342d3234203d3e203538343832.roa (hash: 4O8b726/lpcYZIzCbq+BOqW7rrh6L+bwyN5I34NP9Oc=) 6: 3130332e32392e3138352e302f32342d3234203d3e203536323630.roa (hash: rlZNRe9QwPDxRgCp5O054ihVTvOafRmbaG0Hj+9kO5Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 14:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:68:fc:73:65:73:c5:51:1b:8d:c1:29:9f:fb:04:d3:95:55:ce:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Jun 30 13:45:56 2025 GMT Not After : Jul 3 14:26:56 2025 GMT Subject: CN=1F2C2727540448BC6AB9D9BE57E043E43FD00463 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:05:f4:20:49:0d:3b:b6:8f:c4:3d:d9:fc:e1: a8:c7:d0:75:5e:0a:c7:f7:8f:a4:10:09:f8:06:53: f9:57:95:2b:22:bd:76:59:2c:9b:98:02:48:4e:06: 95:da:c0:12:a8:b0:7f:7f:70:6b:4e:4c:c7:51:1e: c5:22:55:b8:7a:2e:dd:91:d5:7b:6f:0a:4f:31:38: da:df:3f:66:24:0b:e3:82:b9:66:ae:8a:91:72:12: 4b:64:63:98:6f:6f:a4:b5:23:02:46:b4:2c:35:1f: 1a:92:66:84:b4:10:ca:23:b0:85:13:88:ee:45:88: 85:94:70:91:1e:2d:84:2b:18:7a:b9:c4:92:56:7c: 1f:07:f8:81:b6:22:22:e7:ab:82:aa:48:c9:ac:a1: 7c:c5:38:be:2c:34:bf:cb:16:73:99:6d:4f:06:e4: 05:da:aa:45:3c:11:06:18:28:2f:cf:2b:14:ac:8b: 0c:17:91:b5:ec:a6:57:68:b7:22:75:94:c4:d5:51: 48:fc:dc:d2:40:b8:10:98:b1:76:7c:32:f3:ac:4f: 94:0a:e8:89:1b:18:be:b2:eb:51:31:bd:6a:c6:bd: e6:fd:0c:9e:5b:2d:55:4c:8d:35:e4:fa:ca:6f:47: 3c:8d:e2:bd:63:36:e8:f6:4b:11:12:f0:44:b7:d4: ad:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:2C:27:27:54:04:48:BC:6A:B9:D9:BE:57:E0:43:E4:3F:D0:04:63 X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:2a:b7:b0:6f:d8:d0:3b:c5:04:37:bf:76:d8:01:fc:77:99: eb:fc:4a:e3:2f:35:e9:36:22:aa:e8:90:77:7f:7b:4e:79:b2: bf:27:8c:9e:00:80:43:20:7a:95:d5:22:58:cb:47:29:45:c5: d1:b3:e9:64:17:7b:6b:8e:86:31:9f:50:cb:7f:f0:98:5b:aa: 13:a7:15:ca:63:48:8e:20:e8:b4:a5:ac:c9:f1:c6:03:7f:97: ce:6d:86:fb:f0:a0:76:bc:22:ea:fc:59:f6:de:74:e5:1b:f8: 28:70:3e:35:f1:53:67:11:72:5a:47:af:90:4a:18:ee:1c:1f: f0:64:5a:b3:cb:b9:b1:fe:ec:3e:83:a0:88:02:30:4c:0a:27: fe:2f:ee:38:4b:c5:9f:12:1d:01:4c:cd:78:db:a4:7f:a6:65: ee:91:0b:0a:79:ee:64:a5:9f:63:f9:32:27:2b:05:b4:61:92: 8a:a3:23:22:97:a7:0f:a5:9c:07:8d:e0:0d:9d:cc:97:39:f6: f2:8b:d7:57:8b:47:f0:08:94:b2:f6:bf:65:34:5e:78:c2:c8: 0e:45:4b:d4:68:7f:2f:74:48:6a:25:4c:51:c6:82:d6:6a:30: 10:31:af:5b:49:fd:51:76:03:38:3e:33:81:57:1a:f7:e3:d2: bf:65:d1:73 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUC2j8c2VzxVEbjcEpn/sE05VVzuMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNTA2MzAxMzQ1NTZaFw0yNTA3MDMxNDI2NTZaMDMxMTAvBgNV BAMTKDFGMkMyNzI3NTQwNDQ4QkM2QUI5RDlCRTU3RTA0M0U0M0ZEMDA0NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYBfQgSQ07to/EPdn84ajH0HVe Csf3j6QQCfgGU/lXlSsivXZZLJuYAkhOBpXawBKosH9/cGtOTMdRHsUiVbh6Lt2R 1XtvCk8xONrfP2YkC+OCuWauipFyEktkY5hvb6S1IwJGtCw1HxqSZoS0EMojsIUT iO5FiIWUcJEeLYQrGHq5xJJWfB8H+IG2IiLnq4KqSMmsoXzFOL4sNL/LFnOZbU8G 5AXaqkU8EQYYKC/PKxSsiwwXkbXspldotyJ1lMTVUUj83NJAuBCYsXZ8MvOsT5QK 6IkbGL6y61ExvWrGveb9DJ5bLVVMjTXk+spvRzyN4r1jNuj2SxES8ES31K15AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHywnJ1QESLxqudm+V+BD5D/QBGMwHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODVmMmM2NmMtMWY4Ny00ZDk4LWE0 NjctMzIxOGI2NDViM2FjLzAvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2 MDQwNzY3MkJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAL0qt7Bv2NA7xQQ3v3bYAfx3mev8SuMvNek2 IqrokHd/e055sr8njJ4AgEMgepXVIljLRylFxdGz6WQXe2uOhjGfUMt/8JhbqhOn FcpjSI4g6LSlrMnxxgN/l85thvvwoHa8Iur8WfbedOUb+ChwPjXxU2cRclpHr5BK GO4cH/BkWrPLubH+7D6DoIgCMEwKJ/4v7jhLxZ8SHQFMzXjbpH+mZe6RCwp57mSl n2P5MicrBbRhkoqjIyKXpw+lnAeN4A2dzJc59vKL11eLR/AIlLL2v2U0XnjCyA5F S9Rofy90SGolTFHGgtZqMBAxr1tJ/VF2Azg+M4FXGvfj0r9l0XM= -----END CERTIFICATE-----Generated at Mon Jun 30 19:08:50 2025 by rpki-client