$ rpki-client -vvf repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft File: 4E52504397B6835784BD4E67D8048C0D1CE3B242.mft (raw, json) Hash identifier: +Js/XhGVjrsQdAvYcKPFGwBzxgwNhGFpbf7UOObDFyE= Subject key identifier: F2:0D:D7:B2:77:CA:7F:40:9F:AE:CB:70:3F:96:2F:B5:E0:90:2A:9B Authority key identifier: 4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 Certificate issuer: /CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Certificate serial: 3D72C5323576E521AB9FD3E3B718FF622823EB65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject info access: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft Manifest number: 04E9 Signing time: Wed 02 Jul 2025 01:12:08 +0000 Manifest this update: Wed 02 Jul 2025 01:07:08 +0000 Manifest next update: Sat 05 Jul 2025 07:06:08 +0000 Files and hashes: 1: 323430333a653630303a3a2f33322d3332203d3e203538333736.roa (hash: bVu2SaAa9IWvlQ6o6+veKHD0ZA7xlveBNCWEZ2Ja1Z4=) 2: 323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa (hash: 28/7yzYFPU2INXX42MopSeFSOK24RIpHwZvJY6Bghl8=) 3: 4E52504397B6835784BD4E67D8048C0D1CE3B242.crl (hash: RtwBu7H2ja73DRQuXcVQUiK0mIQeMaeWVbD8sZ9AO9g=) 4: 34332e3234352e3138382e302f32322d3234203d3e203538333736.roa (hash: AI/USbQ/a0LFBdjZWtV22hxC6HEFmmDia8w1dNa/lbM=) 5: 3130332e32392e3134382e302f32322d3234203d3e203538333736.roa (hash: kZ6+BhGljQylz/AhW+5O41yNHq5oDRG+mIs3e+fq18E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 07:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:72:c5:32:35:76:e5:21:ab:9f:d3:e3:b7:18:ff:62:28:23:eb:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Validity Not Before: Jul 2 01:07:08 2025 GMT Not After : Jul 5 07:06:08 2025 GMT Subject: CN=F20DD7B277CA7F409FAECB703F962FB5E0902A9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ed:84:f9:0d:d7:1c:d9:f3:d8:88:78:90:20: 14:ef:4e:5e:72:81:b1:dc:93:c8:f9:57:2b:6e:73: a6:75:dd:92:fb:06:00:27:73:90:44:0d:db:b0:c8: a1:8b:c1:5a:d0:05:7b:6f:5b:a8:48:76:c1:1a:ed: 2b:67:89:c0:0b:b9:69:e9:77:de:1a:c2:f6:17:5f: 0a:3d:ca:ba:1c:77:57:6b:88:92:5d:0d:00:81:80: 70:ba:42:e6:e3:9b:4d:50:b1:25:a9:29:08:c4:e5: 6d:2b:0d:01:87:29:7f:c7:c5:9c:74:d8:9e:a4:05: 67:a5:03:c7:42:12:36:3f:76:f3:77:da:82:b2:e5: ff:a1:47:78:da:68:d9:2a:af:9c:a7:ab:ab:54:dc: c0:cb:30:6d:0a:f4:e1:79:d3:38:a9:a2:c7:2c:a9: c4:4f:f8:a2:c6:e9:88:e5:c5:00:ac:cc:de:cb:0f: dd:0c:33:7e:3e:fe:f8:38:b7:50:68:89:87:6e:ff: 9f:b1:99:7d:1f:33:59:cb:fd:82:34:a7:94:5d:70: fd:c9:33:47:dc:6a:b3:51:3d:c4:2b:16:62:5e:f7: 0f:5f:d5:b9:0e:12:c0:74:5c:c4:47:6a:c2:20:15: 27:f2:d9:2b:d2:51:f5:ce:17:64:5d:93:a8:08:6e: 8b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:0D:D7:B2:77:CA:7F:40:9F:AE:CB:70:3F:96:2F:B5:E0:90:2A:9B X509v3 Authority Key Identifier: keyid:4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:19:0b:8e:73:32:45:cd:2b:52:da:95:01:80:62:ce:48:5e: 8f:12:3b:a2:dc:fc:8d:eb:fc:96:87:1e:ed:3d:37:6c:60:26: 3f:5f:74:eb:c5:6e:88:0e:b7:5d:27:65:84:73:e3:ab:db:b4: 58:6b:76:d7:9e:ea:c0:a0:b6:ab:85:85:31:54:0e:2b:7d:f2: 4e:b8:9b:0d:24:2c:4f:f7:60:bc:64:a0:23:da:1b:9b:e1:e2: 4f:e1:be:77:86:d2:3c:c1:49:06:32:ea:7b:03:b8:44:28:29: 89:6c:40:b3:a3:ed:15:c8:00:e6:bc:27:72:8b:cf:de:3a:1e: f0:5f:7c:50:e5:1c:6a:5f:62:d7:96:ac:01:57:a3:60:a2:7b: d4:81:1e:7f:cb:62:03:85:04:0d:d8:53:d2:35:65:b1:4b:ab: be:cf:00:99:40:f7:b8:8f:1f:ba:2c:b6:60:de:d6:b6:a0:da: 6a:b4:4a:b0:f3:b7:28:8c:1c:48:20:78:41:f1:e6:85:86:38: cf:eb:25:5b:3c:3e:4c:2b:89:ea:64:16:c0:0d:a9:9f:1d:96: b9:37:67:b7:bd:d8:98:f9:8f:eb:91:fa:aa:d4:fe:80:b5:b0: 27:c8:a7:b4:a6:88:bc:12:cc:8b:fd:d8:0f:b1:e0:ce:e5:45: 53:d4:bd:2a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPXLFMjV25SGrn9Pjtxj/Yigj62UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQx Q0UzQjI0MjAeFw0yNTA3MDIwMTA3MDhaFw0yNTA3MDUwNzA2MDhaMDMxMTAvBgNV BAMTKEYyMEREN0IyNzdDQTdGNDA5RkFFQ0I3MDNGOTYyRkI1RTA5MDJBOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl7YT5Ddcc2fPYiHiQIBTvTl5y gbHck8j5Vytuc6Z13ZL7BgAnc5BEDduwyKGLwVrQBXtvW6hIdsEa7StnicALuWnp d94awvYXXwo9yrocd1driJJdDQCBgHC6Qubjm01QsSWpKQjE5W0rDQGHKX/HxZx0 2J6kBWelA8dCEjY/dvN32oKy5f+hR3jaaNkqr5ynq6tU3MDLMG0K9OF50ziposcs qcRP+KLG6YjlxQCszN7LD90MM34+/vg4t1BoiYdu/5+xmX0fM1nL/YI0p5RdcP3J M0fcarNRPcQrFmJe9w9f1bkOEsB0XMRHasIgFSfy2SvSUfXOF2Rdk6gIbotLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8g3XsnfKf0CfrstwP5YvteCQKpswHwYDVR0j BBgwFoAUTlJQQ5e2g1eEvU5n2ASMDRzjskIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTFkM2MzMC05NWRjLTRiNzItYWUxYi1hZDFlOThiMGUxNzkvMC80RTUyNTA0Mzk3 QjY4MzU3ODRCRDRFNjdEODA0OEMwRDFDRTNCMjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQxQ0Uz QjI0Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODkxZDNjMzAtOTVkYy00YjcyLWFl MWItYWQxZTk4YjBlMTc5LzAvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhD MEQxQ0UzQjI0Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGQZC45zMkXNK1LalQGAYs5IXo8SO6Lc/I3r /JaHHu09N2xgJj9fdOvFbogOt10nZYRz46vbtFhrdtee6sCgtquFhTFUDit98k64 mw0kLE/3YLxkoCPaG5vh4k/hvneG0jzBSQYy6nsDuEQoKYlsQLOj7RXIAOa8J3KL z946HvBffFDlHGpfYteWrAFXo2Cie9SBHn/LYgOFBA3YU9I1ZbFLq77PAJlA97iP H7ostmDe1rag2mq0SrDztyiMHEggeEHx5oWGOM/rJVs8PkwriepkFsANqZ8dlrk3 Z7e92Jj5j+uR+qrU/oC1sCfIp7SmiLwSzIv92A+x4M7lRVPUvSo= -----END CERTIFICATE-----Generated at Wed Jul 2 04:15:01 2025 by rpki-client