$ rpki-client -vvf repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft File: 27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft (raw, json) Hash identifier: 50fyFYup+reZPWePKIT36G3wlVcIPIvWj0vMEPY1YhY= Subject key identifier: F6:EC:1C:36:5D:78:81:08:FE:72:43:EE:D6:63:4D:64:51:85:DC:BB Authority key identifier: 27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC Certificate issuer: /CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Certificate serial: 34B324221B46A2E8A5D2BF1120296F7C4A321415 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft Manifest number: 0170 Signing time: Sat 28 Jun 2025 15:01:15 +0000 Manifest this update: Sat 28 Jun 2025 14:56:15 +0000 Manifest next update: Tue 01 Jul 2025 21:38:15 +0000 Files and hashes: 1: 3130332e37302e31382e302f32342d3234203d3e20313335343632.roa (hash: Q3xxSdQXC23vXFGFdHyLQV020HZB9BgH6IL3S5vtQAA=) 2: 27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl (hash: 72hjC5IR7SYnk5tBcr+JHRWUQLGSRO/Djs+lkumb0UY=) 3: 3130332e37302e31362e302f32342d3234203d3e20313335343632.roa (hash: JiNsqLJvEYFIyhrR6R0JR1hrj3KWiaaB75HG9L5QPcg=) 4: 3130332e37302e31392e302f32342d3234203d3e20313335343632.roa (hash: 6N2J2kg+Zlk+0sQHWC1BIhfECV5xjbZiRhQRFmUUNag=) 5: 3130332e37302e31362e302f32322d3232203d3e20313335343632.roa (hash: 1f4e1XEuXG9su40zHvwmNI+q39l2fKb22IFThBoIE0Y=) 6: 3130332e37302e31372e302f32342d3234203d3e20313335343632.roa (hash: 6gVzJ3lnoTzbRecAFAnRC8x24kDXXXW3lAWqPBdz2dw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 21:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:b3:24:22:1b:46:a2:e8:a5:d2:bf:11:20:29:6f:7c:4a:32:14:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Validity Not Before: Jun 28 14:56:15 2025 GMT Not After : Jul 1 21:38:15 2025 GMT Subject: CN=F6EC1C365D788108FE7243EED6634D645185DCBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ab:57:07:40:48:3c:b1:07:ab:42:74:90:04: 99:fd:3d:ce:88:1a:d0:1e:91:8e:fd:43:f6:9a:19: a2:1e:a4:b8:16:de:53:be:8a:0d:e6:e0:eb:d9:e9: e4:58:92:c5:d2:93:79:a2:6b:c1:41:66:51:c3:86: f5:d2:d3:a6:e1:12:8a:b2:24:bb:d8:dc:71:1f:72: da:a8:db:36:50:0d:c2:88:6a:f9:47:6d:1d:cf:cf: 4b:a4:7d:50:de:f8:06:05:92:1a:90:ee:c5:6e:e4: 8c:1e:94:2d:57:8d:4b:42:f6:7e:64:32:d5:4c:50: 0a:58:50:9d:07:11:ee:96:36:98:64:5c:ed:73:57: c9:e2:bd:7d:b6:dc:89:4c:f2:2f:a2:c1:8c:fa:1f: 70:e2:c2:d5:2b:65:cc:73:7e:d3:93:9b:99:a6:75: 76:25:45:79:f5:54:66:80:03:10:36:3b:ed:93:4b: 52:0d:b6:9d:fd:70:73:53:07:36:ce:57:42:b2:14: b7:53:3c:b2:4a:66:f0:1b:01:8f:ea:87:38:c2:5a: 91:46:4d:fe:25:6b:6d:76:dd:c6:2f:6f:d2:32:d7: 3a:e1:d7:3d:29:15:44:4b:17:6d:e5:79:49:3a:d6: 1f:66:22:47:cc:64:4f:7b:90:5b:8c:81:a3:b0:05: 0c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:EC:1C:36:5D:78:81:08:FE:72:43:EE:D6:63:4D:64:51:85:DC:BB X509v3 Authority Key Identifier: keyid:27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:8a:84:70:88:88:97:bd:dd:37:3d:69:b4:e2:20:0d:aa:c4: bd:91:40:9c:02:41:19:08:50:68:bc:f1:59:50:ee:6d:33:1b: b9:84:19:25:d6:68:f6:12:e0:c9:a0:00:ec:42:6f:50:c6:d9: 3d:d8:e5:ad:bc:84:58:9a:f2:7f:a4:e6:b1:8f:da:02:db:75: 08:d1:00:1a:e7:61:de:d8:ed:2f:99:87:a2:f5:28:c4:74:12: bc:c3:d6:6f:06:40:f8:90:74:04:50:1d:2e:0c:fe:c9:b2:f3: d9:13:e1:65:e9:8f:a7:8b:df:25:e3:53:eb:0c:a3:b1:ed:9d: 3f:33:8c:a1:15:34:c5:39:f0:e0:be:29:ac:c7:8c:a3:4b:33: 6f:25:9b:b5:38:85:7c:be:99:9e:ee:8e:f0:6d:99:4e:d3:3f: 6e:4e:4d:f0:ef:b5:6d:8d:9e:c1:17:9e:99:a0:fb:88:8f:92: 9d:17:c0:99:37:d5:08:02:3a:42:6d:7e:33:ee:d5:d3:28:82: a6:56:03:64:5d:20:23:9c:49:d8:10:d5:c5:f1:94:f0:e1:68: 9c:ed:a2:f8:75:9f:c3:11:26:85:5d:e0:3e:99:ee:db:16:05: 74:41:a5:68:f6:fa:49:fd:73:ca:1b:48:5a:2e:ad:26:e9:ea: 98:a8:1c:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNLMkIhtGouil0r8RIClvfEoyFBUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlC NTM2OTVGQzAeFw0yNTA2MjgxNDU2MTVaFw0yNTA3MDEyMTM4MTVaMDMxMTAvBgNV BAMTKEY2RUMxQzM2NUQ3ODgxMDhGRTcyNDNFRUQ2NjM0RDY0NTE4NURDQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIq1cHQEg8sQerQnSQBJn9Pc6I GtAekY79Q/aaGaIepLgW3lO+ig3m4OvZ6eRYksXSk3mia8FBZlHDhvXS06bhEoqy JLvY3HEfctqo2zZQDcKIavlHbR3Pz0ukfVDe+AYFkhqQ7sVu5IwelC1XjUtC9n5k MtVMUApYUJ0HEe6WNphkXO1zV8nivX223IlM8i+iwYz6H3DiwtUrZcxzftOTm5mm dXYlRXn1VGaAAxA2O+2TS1INtp39cHNTBzbOV0KyFLdTPLJKZvAbAY/qhzjCWpFG Tf4la2123cYvb9Iy1zrh1z0pFURLF23leUk61h9mIkfMZE97kFuMgaOwBQxdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9uwcNl14gQj+ckPu1mNNZFGF3LswHwYDVR0j BBgwFoAUJ7dzoXPgQA+8DX/t/P94CbU2lfwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmY0ZDRmMS1iMzZjLTRhNDYtODg0NC00ZTZjN2EzYzk3ZDkvMC8yN0I3NzNBMTcz RTA0MDBGQkMwRDdGRURGQ0ZGNzgwOUI1MzY5NUZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlCNTM2 OTVGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODZmNGQ0ZjEtYjM2Yy00YTQ2LTg4 NDQtNGU2YzdhM2M5N2Q5LzAvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4 MDlCNTM2OTVGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA2KhHCIiJe93Tc9abTiIA2qxL2RQJwCQRkI UGi88VlQ7m0zG7mEGSXWaPYS4MmgAOxCb1DG2T3Y5a28hFia8n+k5rGP2gLbdQjR ABrnYd7Y7S+Zh6L1KMR0ErzD1m8GQPiQdARQHS4M/smy89kT4WXpj6eL3yXjU+sM o7HtnT8zjKEVNMU58OC+KazHjKNLM28lm7U4hXy+mZ7ujvBtmU7TP25OTfDvtW2N nsEXnpmg+4iPkp0XwJk31QgCOkJtfjPu1dMogqZWA2RdICOcSdgQ1cXxlPDhaJzt ovh1n8MRJoVd4D6Z7tsWBXRBpWj2+kn9c8obSFourSbp6pioHCE= -----END CERTIFICATE-----Generated at Mon Jun 30 07:43:52 2025 by rpki-client