$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft File: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft (raw, json) Hash identifier: Xr81NV59FuAYv7fgkfEgVyjGeLqwRY8GoCzk5SRudhc= Subject key identifier: C5:E3:BE:CA:E2:82:D9:2E:B1:F0:2A:34:FE:61:32:8C:BE:47:3C:84 Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 26DF9F95EC609F59E4239D08D2FFFA879BD7CF1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft Manifest number: 96 Signing time: Mon 30 Jun 2025 03:41:58 +0000 Manifest this update: Mon 30 Jun 2025 03:36:58 +0000 Manifest next update: Thu 03 Jul 2025 11:16:58 +0000 Files and hashes: 1: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (hash: W7WMatvzYXuALvuTzGQVbHotqWD0nd56JaqQ7uT/XBU=) 2: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl (hash: mbmGO8Ok5xyv3d6RJQotI8DHqKvFveFeI1y5VAmSq3A=) 3: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (hash: 9LNgGVv86zEnKjQNsGSTYEvVvGQkNogYzW1V+EdhwJM=) 4: 323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa (hash: 68fT/6O+GQIrkXJcp+Dg6OpaZLLbbrSI6G1YMP9fXt0=) 5: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (hash: i5RZxjcZhVQvmnAc/gMhyUIUY8n5jdbL7g9L8hbgD/Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 11:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:df:9f:95:ec:60:9f:59:e4:23:9d:08:d2:ff:fa:87:9b:d7:cf:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Jun 30 03:36:58 2025 GMT Not After : Jul 3 11:16:58 2025 GMT Subject: CN=C5E3BECAE282D92EB1F02A34FE61328CBE473C84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:c1:ed:1a:d8:5a:91:3f:41:3b:51:b9:bb:41: 51:39:71:ff:ff:f5:8a:c4:ca:35:47:72:14:92:5c: c9:f7:ec:6f:6d:f9:1a:c1:32:47:2d:64:b8:9e:1a: d9:ae:43:f5:63:62:24:31:2a:e7:12:bc:b1:e0:31: f4:92:e7:06:ce:c1:d1:4f:5b:36:d5:f3:81:cf:de: 40:c1:a0:11:4a:a8:bd:ae:b7:ad:49:04:6a:1e:8b: 23:dd:6c:b0:89:e8:1c:68:61:74:e0:cd:18:e2:b8: d1:d0:6c:d4:b9:35:03:6a:3e:06:72:cd:9e:f1:e4: 91:44:2e:7d:5b:a5:7d:20:81:90:03:57:aa:28:2c: b2:9b:b6:c8:5f:31:16:37:eb:00:ce:f7:ee:18:88: 35:e8:65:c2:a0:0f:08:64:d9:13:94:b2:fe:b3:5b: 83:b5:8b:42:fe:60:70:a7:3c:b1:ad:91:b2:51:e4: 5d:37:8d:f4:3c:c2:81:7c:1f:a3:5a:a7:5b:5a:27: 0e:c8:af:e2:1e:ca:03:ca:85:8e:bf:5a:6e:66:e2: 2d:3c:a5:18:58:ec:c9:43:73:23:45:0e:7d:aa:48: 83:8f:6b:f7:79:43:b4:aa:f9:c4:04:92:82:93:c3: 38:05:25:e3:ea:24:1b:4a:79:47:aa:7c:96:a3:22: 7a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E3:BE:CA:E2:82:D9:2E:B1:F0:2A:34:FE:61:32:8C:BE:47:3C:84 X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:35:e5:77:00:ec:e0:ba:bd:20:34:d4:3c:27:7f:0e:3f:6f: e9:06:40:80:c7:a0:a8:ac:78:15:93:11:97:17:21:d7:f9:47: 57:96:a7:d4:9b:d3:c7:3c:40:f6:60:fa:10:4b:2a:ef:e2:c8: 0b:b3:ef:fc:0e:39:a9:9c:92:96:9a:9c:76:2c:ac:20:92:37: c7:d3:4d:28:ee:5e:25:47:9e:cb:35:e3:aa:b8:ee:24:3d:2f: c1:dd:62:08:f1:39:b2:f2:88:53:06:8b:c3:b9:bf:e6:a8:37: c4:b2:91:a7:a2:8e:fa:65:1c:55:53:64:f0:97:8a:92:ec:fd: 6f:fe:a8:60:9c:e4:f3:18:9f:6c:c0:56:1b:78:0e:d1:08:98: db:8d:a9:51:07:3a:80:d0:81:1f:0e:60:e3:70:68:ad:62:11: 28:30:0d:70:94:cb:f1:29:40:cc:e6:eb:34:b7:3d:a1:f9:3b: 12:62:e5:e1:35:f8:16:84:eb:f7:63:43:0b:fb:a9:79:e5:b3: 00:9f:16:b2:ce:4c:e1:ea:dc:cc:9a:d6:f6:ce:87:f4:2c:ea: 30:eb:86:cd:31:e6:0b:a4:bb:11:2a:1b:ed:ae:66:d0:07:2c: 25:ed:6c:bb:3e:f4:9f:a8:ff:34:f3:e7:f9:ca:75:6b:f2:ae: 2f:c4:73:19 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJt+flexgn1nkI50I0v/6h5vXzx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNTA2MzAwMzM2NThaFw0yNTA3MDMxMTE2NThaMDMxMTAvBgNV BAMTKEM1RTNCRUNBRTI4MkQ5MkVCMUYwMkEzNEZFNjEzMjhDQkU0NzNDODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvwe0a2FqRP0E7Ubm7QVE5cf// 9YrEyjVHchSSXMn37G9t+RrBMkctZLieGtmuQ/VjYiQxKucSvLHgMfSS5wbOwdFP WzbV84HP3kDBoBFKqL2ut61JBGoeiyPdbLCJ6BxoYXTgzRjiuNHQbNS5NQNqPgZy zZ7x5JFELn1bpX0ggZADV6ooLLKbtshfMRY36wDO9+4YiDXoZcKgDwhk2ROUsv6z W4O1i0L+YHCnPLGtkbJR5F03jfQ8woF8H6Nap1taJw7Ir+IeygPKhY6/Wm5m4i08 pRhY7MlDcyNFDn2qSIOPa/d5Q7Sq+cQEkoKTwzgFJePqJBtKeUeqfJajIno5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxeO+yuKC2S6x8Co0/mEyjL5HPIQwHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGI3MmVjYTQtNzNhZC00ZTBiLWE2 YTYtN2E2NTY5OGI3M2JlLzAvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNG NDM0NDk3QkZFMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHI15XcA7OC6vSA01Dwnfw4/b+kGQIDHoKis eBWTEZcXIdf5R1eWp9Sb08c8QPZg+hBLKu/iyAuz7/wOOamckpaanHYsrCCSN8fT TSjuXiVHnss146q47iQ9L8HdYgjxObLyiFMGi8O5v+aoN8SykaeijvplHFVTZPCX ipLs/W/+qGCc5PMYn2zAVht4DtEImNuNqVEHOoDQgR8OYONwaK1iESgwDXCUy/Ep QMzm6zS3PaH5OxJi5eE1+BaE6/djQwv7qXnlswCfFrLOTOHq3Mya1vbOh/Qs6jDr hs0x5gukuxEqG+2uZtAHLCXtbLs+9J+o/zTz5/nKdWvyri/Ecxk= -----END CERTIFICATE-----Generated at Mon Jun 30 14:25:24 2025 by rpki-client