$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft File: 2FD08E6755CF1CCAAF9D5834449797848A706B57.mft (raw, json) Hash identifier: 4IxmgY6F7dQJpJkSEAn4G8z8/ol4z2enX6i1g4UPkWU= Subject key identifier: CD:C5:26:F3:4B:F4:66:A1:DB:A3:93:B2:72:E9:AE:67:93:AF:64:8A Authority key identifier: 2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 Certificate issuer: /CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Certificate serial: 6E6257F8DD26D54D90F3580A20530C03DE097924 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft Manifest number: 038D Signing time: Sun 29 Jun 2025 10:11:55 +0000 Manifest this update: Sun 29 Jun 2025 10:06:55 +0000 Manifest next update: Wed 02 Jul 2025 20:54:55 +0000 Files and hashes: 1: 3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa (hash: 73VvZzU4m43+fgjvOlr3Vv7ZHMtLS9jm+/QTGsOwFck=) 2: 3130332e3136332e3232382e302f32342d3234203d3e20313431383935.roa (hash: QZlEVkF+HK3hEYAiWRapnYHmq7/bX0k5ZRTsDh0lSOE=) 3: 2FD08E6755CF1CCAAF9D5834449797848A706B57.crl (hash: SCKFrN6GSAB4OjX9j7CaK0Ve9CQcwiV4Mz0zZAPVTU0=) 4: 3130332e3136332e3232382e302f32332d3233203d3e20313431383935.roa (hash: +8jSV/P+qx2iDLcVmAlWUEpzsefjQgC+GskbssdGlnA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:62:57:f8:dd:26:d5:4d:90:f3:58:0a:20:53:0c:03:de:09:79:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Validity Not Before: Jun 29 10:06:55 2025 GMT Not After : Jul 2 20:54:55 2025 GMT Subject: CN=CDC526F34BF466A1DBA393B272E9AE6793AF648A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:21:87:85:4d:14:96:3a:86:53:f5:47:18:d5: 6d:ab:31:dd:dd:dd:10:92:94:db:f9:5c:c6:47:64: 57:e9:dd:0b:37:50:11:c8:7c:68:5c:8f:3c:c5:f2: fe:12:24:ca:62:e8:87:89:ff:68:87:f0:00:6c:f8: 2d:e3:c7:ce:36:8b:2e:22:35:c8:3f:8e:eb:aa:2b: c4:39:2c:b2:b8:50:23:f2:58:89:f9:57:ff:41:30: bc:33:cb:b2:1f:38:f6:a8:b4:3a:6a:24:8a:3a:f4: 83:67:97:68:ce:7c:00:3a:87:e3:8c:44:14:26:02: 55:98:46:af:4f:61:58:4b:6f:c9:1d:c9:ec:2e:d1: 45:58:9c:b9:81:eb:3e:43:04:13:e8:94:07:be:d8: 90:b1:0c:84:15:8f:73:4d:1d:32:97:3c:3b:88:d0: ee:93:b5:60:dc:a2:55:3d:f9:0c:3d:9a:2e:7a:5f: d9:2e:db:d8:12:e0:22:59:ae:1b:f9:be:34:f1:ad: 67:bd:3d:27:7e:20:d3:6a:84:d2:d3:30:52:de:c6: 36:46:78:49:22:d9:cb:f9:1d:62:f8:63:0e:12:a7: 59:f9:cd:29:13:b9:b3:20:8a:63:f3:66:82:6e:18: 7d:63:b3:c8:e8:27:c8:0e:c6:94:0e:b8:83:4f:c7: 53:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C5:26:F3:4B:F4:66:A1:DB:A3:93:B2:72:E9:AE:67:93:AF:64:8A X509v3 Authority Key Identifier: keyid:2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:7f:31:8e:68:f4:f4:ad:14:ae:8e:dd:d3:8c:af:cd:ca:e5: 9f:36:56:95:cb:11:d7:58:80:00:59:ff:21:be:ea:5b:fa:91: 59:f7:36:84:a4:1b:5c:fb:01:4d:70:fd:9d:5b:b0:ca:94:c4: f9:13:5b:ac:7b:72:c8:1e:2c:79:71:60:ec:d3:10:5c:b2:d1: a6:c1:ee:8c:64:52:15:99:39:65:d6:db:50:73:01:e4:d2:93: b2:02:1c:b2:6a:19:9e:46:37:94:29:a1:3c:78:88:72:41:c1: 50:6d:dd:b2:5a:0e:89:b4:a3:95:75:24:e7:53:d0:48:93:25: c7:40:3c:94:5d:4c:ca:5f:84:04:01:cc:0a:a4:07:0a:ff:eb: 00:6e:f1:c7:a4:96:99:c1:25:80:89:1f:34:b3:57:3d:10:ed: 44:73:0d:40:94:6d:37:b6:88:a8:65:0e:b3:3a:25:07:30:79: d6:3d:51:94:81:19:70:9f:cb:eb:f4:7f:44:5a:45:e8:b0:af: d9:23:80:90:a8:14:a2:09:52:90:98:85:09:1f:7e:57:e5:1a: 4c:67:a5:ce:d8:ec:37:95:4d:bb:51:f5:28:2c:b8:ee:ab:2d: 4d:c3:d8:8e:2e:a5:1e:35:91:69:b7:af:d9:81:27:5f:9b:e5: c3:d3:1e:80 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbmJX+N0m1U2Q81gKIFMMA94JeSQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4 QTcwNkI1NzAeFw0yNTA2MjkxMDA2NTVaFw0yNTA3MDIyMDU0NTVaMDMxMTAvBgNV BAMTKENEQzUyNkYzNEJGNDY2QTFEQkEzOTNCMjcyRTlBRTY3OTNBRjY0OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsIYeFTRSWOoZT9UcY1W2rMd3d 3RCSlNv5XMZHZFfp3Qs3UBHIfGhcjzzF8v4SJMpi6IeJ/2iH8ABs+C3jx842iy4i Ncg/juuqK8Q5LLK4UCPyWIn5V/9BMLwzy7IfOPaotDpqJIo69INnl2jOfAA6h+OM RBQmAlWYRq9PYVhLb8kdyewu0UVYnLmB6z5DBBPolAe+2JCxDIQVj3NNHTKXPDuI 0O6TtWDcolU9+Qw9mi56X9ku29gS4CJZrhv5vjTxrWe9PSd+INNqhNLTMFLexjZG eEki2cv5HWL4Yw4Sp1n5zSkTubMgimPzZoJuGH1js8joJ8gOxpQOuINPx1NFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzcUm80v0ZqHbo5OycumuZ5OvZIowHwYDVR0j BBgwFoAUL9COZ1XPHMqvnVg0RJeXhIpwa1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2QwZDdmYS1kNmY4LTRjMjItYjQ4YS01OGI4ZWQ4ZWRkYTcvMC8yRkQwOEU2NzU1 Q0YxQ0NBQUY5RDU4MzQ0NDk3OTc4NDhBNzA2QjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4QTcw NkI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGNkMGQ3ZmEtZDZmOC00YzIyLWI0 OGEtNThiOGVkOGVkZGE3LzAvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3 ODQ4QTcwNkI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABJ/MY5o9PStFK6O3dOMr83K5Z82VpXLEddY gABZ/yG+6lv6kVn3NoSkG1z7AU1w/Z1bsMqUxPkTW6x7csgeLHlxYOzTEFyy0abB 7oxkUhWZOWXW21BzAeTSk7ICHLJqGZ5GN5QpoTx4iHJBwVBt3bJaDom0o5V1JOdT 0EiTJcdAPJRdTMpfhAQBzAqkBwr/6wBu8ceklpnBJYCJHzSzVz0Q7URzDUCUbTe2 iKhlDrM6JQcwedY9UZSBGXCfy+v0f0RaReiwr9kjgJCoFKIJUpCYhQkfflflGkxn pc7Y7DeVTbtR9SgsuO6rLU3D2I4upR41kWm3r9mBJ1+b5cPTHoA= -----END CERTIFICATE-----Generated at Sun Jun 29 18:35:01 2025 by rpki-client