$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft File: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft (raw, json) Hash identifier: a0mm7VT1MXGfje/lSUwC0uqMAwlv6NoNPWcjKw+MsvE= Subject key identifier: BE:7B:AC:AE:FC:19:27:88:F1:11:95:C3:D8:C2:02:6E:D5:C2:48:00 Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Certificate serial: 72E31B6220E1C32B9ADD5D1C4C2C4CC6386F4592 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft Manifest number: 033C Signing time: Sun 29 Jun 2025 22:21:28 +0000 Manifest this update: Sun 29 Jun 2025 22:16:28 +0000 Manifest next update: Wed 02 Jul 2025 22:49:28 +0000 Files and hashes: 1: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl (hash: 5RvTQNQOh0K3qrvbShdL4Uh0AnjsxN9HAoo4uR9q4Fs=) 2: 3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa (hash: mdAnNzPQX1fBQRxqx/liQc+y8HoOIQ1ZRmWeSXm/9lE=) 3: 3130332e3136392e3133332e302f32342d3234203d3e20313432333431.roa (hash: XIli98cQ5DslYaylLZi+5Ts9pki82Z8fAKzqEWLUjbk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 22:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:e3:1b:62:20:e1:c3:2b:9a:dd:5d:1c:4c:2c:4c:c6:38:6f:45:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Validity Not Before: Jun 29 22:16:28 2025 GMT Not After : Jul 2 22:49:28 2025 GMT Subject: CN=BE7BACAEFC192788F11195C3D8C2026ED5C24800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5a:94:7e:29:e6:39:c0:54:4e:8f:c9:af:7f: 46:f3:a7:9d:1f:39:8e:3b:58:7d:2d:9f:84:87:12: eb:dd:18:4a:30:51:cd:e1:e5:8c:b2:3f:b1:d1:c7: 2f:a6:a2:75:31:e0:53:46:73:20:52:db:84:89:24: 53:01:c8:ae:fa:43:48:dc:f8:a3:c5:a7:6b:35:a3: d5:6c:c4:39:b3:90:39:4b:ef:89:d9:be:da:6c:da: ac:45:d7:45:fe:cc:dd:26:20:c1:a7:d4:07:b7:20: 2a:64:5f:5b:b5:75:1e:79:d3:3d:27:7d:67:bc:dd: c4:ba:3f:44:f1:72:10:37:ea:10:0b:38:b0:e4:a2: 25:08:e6:f5:d5:0f:4d:f9:dc:36:6d:57:e7:7c:12: 48:cf:a1:cc:71:b9:da:69:a3:95:e8:d7:ad:4d:6c: 9e:af:8f:f1:34:78:e2:63:70:51:b6:ed:a6:bb:b3: f8:b0:35:c1:12:d3:fd:fb:dd:db:9d:30:de:98:8c: 04:5f:a5:05:15:99:d7:5a:11:df:b0:25:e3:fa:06: ad:3c:00:80:9a:f6:b0:01:6f:88:81:34:61:f6:50: 6b:4e:4b:9f:9e:3d:c7:48:d6:2e:da:6a:d6:a5:07: d9:f6:1c:b3:d1:99:99:08:bd:8f:e9:c6:33:87:24: 7a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:7B:AC:AE:FC:19:27:88:F1:11:95:C3:D8:C2:02:6E:D5:C2:48:00 X509v3 Authority Key Identifier: keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption da:06:eb:70:5e:d4:e8:fe:52:bc:14:aa:70:95:78:c6:66:af: 05:d3:05:ee:d7:ed:b7:9c:b9:91:77:de:e2:63:10:07:86:66: 5d:7a:0d:66:3c:ac:5a:dd:f3:4f:53:45:b1:3e:bd:12:a5:64: dd:7c:94:fe:a8:f7:08:e1:ee:7f:3b:35:87:8d:57:d4:f4:e8: 2a:47:69:01:f7:3f:18:d7:91:eb:f7:7b:ae:4f:23:fc:ca:53: 3c:3e:7e:1e:d1:ed:82:35:84:38:cb:f8:5e:15:4f:81:5c:92: 2d:7a:c9:a3:df:3e:a6:ce:c3:e5:1d:ac:4f:9b:c3:be:1b:a8: 24:f4:b8:7d:fd:29:b8:b0:b7:4e:32:4a:be:a0:38:e1:32:22: 3b:e9:62:6c:68:e5:dd:5d:77:f5:92:53:3b:35:6d:70:89:37: 64:13:c2:51:01:4f:f7:36:ae:6a:2b:74:cc:9d:08:fd:70:be: 73:8a:7e:09:c3:a4:4e:fb:eb:27:81:7c:c6:63:36:74:6a:4f: 5a:f2:64:fc:b1:7e:94:b1:7b:8a:c7:3b:04:20:e0:c2:50:0a: 0b:c4:1c:72:69:eb:76:44:62:e9:2e:c6:26:5f:67:62:6c:d4: b9:bb:67:13:a2:94:41:58:a7:ec:92:00:42:4a:42:04:4e:75: f6:db:bf:b9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcuMbYiDhwyua3V0cTCxMxjhvRZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VF NDlFOEExNzAeFw0yNTA2MjkyMjE2MjhaFw0yNTA3MDIyMjQ5MjhaMDMxMTAvBgNV BAMTKEJFN0JBQ0FFRkMxOTI3ODhGMTExOTVDM0Q4QzIwMjZFRDVDMjQ4MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdWpR+KeY5wFROj8mvf0bzp50f OY47WH0tn4SHEuvdGEowUc3h5YyyP7HRxy+monUx4FNGcyBS24SJJFMByK76Q0jc +KPFp2s1o9VsxDmzkDlL74nZvtps2qxF10X+zN0mIMGn1Ae3ICpkX1u1dR550z0n fWe83cS6P0TxchA36hALOLDkoiUI5vXVD0353DZtV+d8EkjPocxxudppo5Xo161N bJ6vj/E0eOJjcFG27aa7s/iwNcES0/373dudMN6YjARfpQUVmddaEd+wJeP6Bq08 AICa9rABb4iBNGH2UGtOS5+ePcdI1i7aatalB9n2HLPRmZkIvY/pxjOHJHrdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvnusrvwZJ4jxEZXD2MICbtXCSAAwHwYDVR0j BBgwFoAUNuaOKiZOGL/Z9J5HLQ0mfuSeihcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMC8zNkU2OEUyQTI2 NEUxOEJGRDlGNDlFNDcyRDBEMjY3RUU0OUU4QTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VFNDlF OEExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODdkMjAzMWItMjc2MS00YzM2LWI2 OTAtNWI2OWQxNTY5YmFlLzAvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2 N0VFNDlFOEExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANoG63Be1Oj+UrwUqnCVeMZmrwXTBe7X7bec uZF33uJjEAeGZl16DWY8rFrd809TRbE+vRKlZN18lP6o9wjh7n87NYeNV9T06CpH aQH3PxjXkev3e65PI/zKUzw+fh7R7YI1hDjL+F4VT4Fcki16yaPfPqbOw+UdrE+b w74bqCT0uH39Kbiwt04ySr6gOOEyIjvpYmxo5d1dd/WSUzs1bXCJN2QTwlEBT/c2 rmordMydCP1wvnOKfgnDpE776yeBfMZjNnRqT1ryZPyxfpSxe4rHOwQg4MJQCgvE HHJp63ZEYukuxiZfZ2Js1Lm7ZxOilEFYp+ySAEJKQgROdfbbv7k= -----END CERTIFICATE-----Generated at Mon Jun 30 16:30:30 2025 by rpki-client