$ rpki-client -vvf repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft File: CA5B0322788B7A041373A944677E83F0D48FF4E7.mft (raw, json) Hash identifier: Wvsk9jKyMXQC3y3QHl6JpW0o2gFeO9B7LG2k++e+zRI= Subject key identifier: BD:FB:D4:AF:A6:EB:10:84:04:E1:3C:A2:11:F7:0F:18:50:79:96:7B Authority key identifier: CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 Certificate issuer: /CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Certificate serial: 4AB6D699BC95A1EBE19B2C11E5AB4392FCCE2337 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft Manifest number: A5 Signing time: Tue 01 Jul 2025 17:11:05 +0000 Manifest this update: Tue 01 Jul 2025 17:06:05 +0000 Manifest next update: Sat 05 Jul 2025 02:14:05 +0000 Files and hashes: 1: CA5B0322788B7A041373A944677E83F0D48FF4E7.crl (hash: 1AFzyLdq5gjAowGis1pTxVWK+615j1NDE/oFzGtOW4s=) 2: 3130332e37312e3136302e302f32322d3234203d3e20313339393831.roa (hash: lDykVwxJoW4GFsi2L2TOWuZVobAaZLaNG/GuK7uwVOw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 15:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:b6:d6:99:bc:95:a1:eb:e1:9b:2c:11:e5:ab:43:92:fc:ce:23:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Validity Not Before: Jul 1 17:06:05 2025 GMT Not After : Jul 5 02:14:05 2025 GMT Subject: CN=BDFBD4AFA6EB108404E13CA211F70F185079967B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:65:43:d7:9e:03:09:93:80:ea:24:89:d7: 2b:10:98:4b:c5:eb:cb:c3:1d:46:b5:3a:91:59:43: 16:3f:2f:dc:cc:21:2f:4e:81:44:5f:4e:0e:3b:1a: 69:d2:b0:e5:29:52:a5:c7:ff:dd:c6:3b:47:7e:2c: 23:68:b3:a9:d4:4e:97:3c:63:9a:82:0e:79:69:d5: 70:6d:b4:7b:1b:6c:71:bb:48:e7:44:70:56:5a:b5: da:94:b4:e4:8d:0f:2c:b8:a8:95:a0:ac:11:ab:78: 5c:42:7e:2d:67:1f:95:0a:8d:0c:58:91:a3:c6:e8: 3e:8a:d3:21:c0:ed:07:84:9c:7e:4d:f0:31:60:73: 46:4e:cf:9e:ce:9d:70:11:9e:6f:43:89:a6:89:79: d0:45:a0:1f:5e:6d:a0:a3:db:d2:4f:86:24:45:ba: 47:9d:b4:8e:1d:2a:7b:95:1a:2e:03:36:41:d3:ce: 29:2a:db:9f:12:a6:ca:40:fe:14:aa:7c:bc:62:9b: ff:c9:f2:a0:90:65:e0:fc:65:4b:44:0d:75:f7:70: 81:e2:db:24:ae:19:ff:c4:7d:a4:df:6e:9e:c0:e4: e9:6e:b9:49:5c:51:bf:45:30:2b:5e:0d:fa:bf:da: d2:c9:96:aa:4a:5e:8d:1a:ef:f9:56:a6:e4:3c:a6: 51:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:FB:D4:AF:A6:EB:10:84:04:E1:3C:A2:11:F7:0F:18:50:79:96:7B X509v3 Authority Key Identifier: keyid:CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:8f:a3:d7:f1:31:f0:fc:4e:4d:26:e4:61:73:32:04:3d:73: bc:e4:69:f2:c1:17:03:82:20:02:bf:d9:ef:80:ab:06:c1:18: d4:4c:c9:b4:16:68:2b:e1:2e:ff:2e:c8:38:4b:26:d2:45:21: 04:f2:be:05:56:f0:4a:03:5a:8f:87:8a:29:fb:03:c4:2c:f5: ec:fc:f7:ff:58:d5:b4:97:5e:f9:f6:ac:64:81:31:5b:07:02: 42:df:2a:b9:5b:f7:c2:8f:8e:84:a1:18:77:af:bf:a4:81:96: db:f7:f2:e7:61:31:fd:ef:4a:44:06:f6:02:1a:82:2f:0b:ab: 26:c3:a8:8e:57:68:c9:9a:25:39:9f:64:59:ca:6e:95:4e:cf: 2f:f7:08:96:e8:a7:96:52:c9:a5:be:ca:a5:3e:d5:66:53:44: f3:b7:9b:0b:0d:4e:99:55:de:65:2a:fc:ed:16:2e:b6:79:9b: 59:07:66:64:65:09:ca:1f:a3:9d:9d:f5:13:e5:fd:92:e8:17: ff:3d:80:07:21:d7:32:09:0a:01:da:1d:8a:77:69:fd:3a:0f: 47:67:69:ee:af:bd:29:3c:77:94:93:98:cc:dc:61:71:b9:f8: 45:08:4e:84:fd:82:27:8e:a6:a6:40:64:91:b6:b9:77:49:e2: 3e:64:ec:b6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSrbWmbyVoevhmywR5atDkvzOIzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBE NDhGRjRFNzAeFw0yNTA3MDExNzA2MDVaFw0yNTA3MDUwMjE0MDVaMDMxMTAvBgNV BAMTKEJERkJENEFGQTZFQjEwODQwNEUxM0NBMjExRjcwRjE4NTA3OTk2N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9sGVD154DCZOA6iSJ1ysQmEvF 68vDHUa1OpFZQxY/L9zMIS9OgURfTg47GmnSsOUpUqXH/93GO0d+LCNos6nUTpc8 Y5qCDnlp1XBttHsbbHG7SOdEcFZatdqUtOSNDyy4qJWgrBGreFxCfi1nH5UKjQxY kaPG6D6K0yHA7QeEnH5N8DFgc0ZOz57OnXARnm9DiaaJedBFoB9ebaCj29JPhiRF ukedtI4dKnuVGi4DNkHTzikq258SpspA/hSqfLxim//J8qCQZeD8ZUtEDXX3cIHi 2ySuGf/EfaTfbp7A5OluuUlcUb9FMCteDfq/2tLJlqpKXo0a7/lWpuQ8plHnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvfvUr6brEIQE4TyiEfcPGFB5lnswHwYDVR0j BBgwFoAUylsDIniLegQTc6lEZ36D8NSP9OcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZWJhODY3YS04Zjg0LTQ2NjMtYjMyMC1mNDM1MjgyYjlmZmUvMC9DQTVCMDMyMjc4 OEI3QTA0MTM3M0E5NDQ2NzdFODNGMEQ0OEZGNEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBENDhG RjRFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGViYTg2N2EtOGY4NC00NjYzLWIz MjAtZjQzNTI4MmI5ZmZlLzAvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgz RjBENDhGRjRFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABmPo9fxMfD8Tk0m5GFzMgQ9c7zkafLBFwOC IAK/2e+AqwbBGNRMybQWaCvhLv8uyDhLJtJFIQTyvgVW8EoDWo+Hiin7A8Qs9ez8 9/9Y1bSXXvn2rGSBMVsHAkLfKrlb98KPjoShGHevv6SBltv38udhMf3vSkQG9gIa gi8LqybDqI5XaMmaJTmfZFnKbpVOzy/3CJbop5ZSyaW+yqU+1WZTRPO3mwsNTplV 3mUq/O0WLrZ5m1kHZmRlCcofo52d9RPl/ZLoF/89gAch1zIJCgHaHYp3af06D0dn ae6vvSk8d5STmMzcYXG5+EUIToT9gieOpqZAZJG2uXdJ4j5k7LY= -----END CERTIFICATE-----Generated at Tue Jul 1 20:24:55 2025 by rpki-client