$ rpki-client -vvf repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft File: B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft (raw, json) Hash identifier: 0S1cfGlX/ALR4xJ2AphS3txLM7TEU76aXB+eb+fh4qw= Subject key identifier: D6:DC:6C:CE:F6:F3:62:CF:8B:64:EF:FE:CD:23:43:F5:E4:6A:18:E3 Authority key identifier: B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 Certificate issuer: /CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Certificate serial: 1A373136E01DDFCBB2FD25B5A90E0C61BCA20B44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft Manifest number: 01D9 Signing time: Sun 29 Jun 2025 06:22:01 +0000 Manifest this update: Sun 29 Jun 2025 06:17:01 +0000 Manifest next update: Wed 02 Jul 2025 10:20:01 +0000 Files and hashes: 1: 3130332e3138382e3235332e302f32342d3234203d3e20313439373337.roa (hash: fMitGvSIMZKR/xojJDzG2iWApTg4bDt/1kqJnOfFiTo=) 2: 3130332e3138382e3235322e302f32342d3234203d3e20313439373337.roa (hash: kjCPg8CNqMlAMRebUqHb4gpHFMec5lXxDxlOd53bN+M=) 3: B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl (hash: DF4k72Yt1uUsll49TLhqyXaXI7yIjzOmjYZEa+DzXFA=) 4: 3130332e3138382e3235322e302f32332d3233203d3e20313439373337.roa (hash: SLcrpmMGhS+iLPHlXSc6GQF6hzriCb0znzXu+cnHQhI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:37:31:36:e0:1d:df:cb:b2:fd:25:b5:a9:0e:0c:61:bc:a2:0b:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Validity Not Before: Jun 29 06:17:01 2025 GMT Not After : Jul 2 10:20:01 2025 GMT Subject: CN=D6DC6CCEF6F362CF8B64EFFECD2343F5E46A18E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b9:2b:d2:eb:f4:38:98:a8:02:3f:f5:ec:bd: 90:f5:e4:23:b3:ad:ae:01:3f:37:59:c0:39:10:cc: 0d:d8:99:97:20:43:a6:aa:5d:ad:e5:27:57:b5:7b: 6f:c5:9c:45:dc:7d:e7:8a:c3:9b:5c:a1:e9:bc:f5: 7f:eb:fd:d5:fc:04:70:a5:a6:0c:b6:d2:b8:5c:05: 4f:f4:23:cf:c3:a8:2a:2c:86:a7:15:9b:7b:a8:28: f7:d7:28:be:c9:fb:7c:42:69:da:13:63:af:c9:5f: 76:3a:9f:38:47:01:7e:96:75:80:c3:7f:63:ae:d3: ec:b4:d4:ce:85:27:b2:13:b3:4b:92:a0:51:f7:9d: c5:30:33:1f:89:81:26:ca:54:72:74:57:7e:1b:fd: 42:87:b7:32:53:af:b0:10:ed:63:f4:41:02:a5:9e: 5a:21:ae:b6:fc:3b:8c:33:3c:37:b4:2a:0d:fd:a3: 3c:80:73:41:69:a9:b0:95:f2:7a:5a:2e:f0:d4:4c: cb:bf:e1:8e:a1:55:d9:3a:bf:2e:2d:f2:a7:87:9e: 0e:70:5e:f3:6f:33:f8:a3:a6:f8:4c:4e:da:01:c3: 10:84:03:52:01:74:8f:1b:80:e3:b7:ce:f6:c2:b7: 20:c6:a8:df:ce:27:fb:91:a4:71:a7:28:a7:94:4b: 14:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:DC:6C:CE:F6:F3:62:CF:8B:64:EF:FE:CD:23:43:F5:E4:6A:18:E3 X509v3 Authority Key Identifier: keyid:B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:d5:a7:3b:2d:63:ad:df:b9:f3:41:89:a3:2d:c5:0c:df:33: 5d:9e:0f:87:69:51:89:df:ae:bf:5b:77:35:53:8b:dd:88:cb: 9c:9a:a2:f9:ad:3b:93:65:c8:27:1b:90:29:f7:a8:d9:81:1a: 2a:12:0d:c5:ac:f6:d4:78:72:6f:c2:63:f4:02:a4:c8:93:c3: e5:3b:53:80:bb:63:75:a6:f0:9e:9e:dd:4d:f1:9c:64:1b:de: fe:3b:da:94:a9:bb:60:87:57:7f:a8:7b:67:8e:c2:3c:79:c1: e5:99:9b:ce:1b:e7:07:aa:28:9b:46:c4:66:7d:ab:99:7d:d5: 9f:86:da:99:2e:7f:63:7c:22:74:99:c2:74:53:c8:06:d3:88: 5c:2d:01:17:a5:5f:49:e4:da:fa:69:30:36:1f:54:37:0d:a6: a3:fb:c0:3c:19:bc:0a:6a:d2:23:7b:75:ca:08:f0:dc:8d:9a: 96:b4:7f:c0:8c:0e:ae:da:ad:c3:a1:24:10:75:e5:75:e0:1c: 78:9d:aa:8f:24:38:f7:9d:96:eb:f2:b9:ed:10:0d:4f:a2:f4: a6:20:c3:76:4e:e9:42:47:3b:8e:f7:aa:1d:d4:41:d0:b8:08: 3d:44:12:46:8a:45:a8:54:e2:45:8a:f2:42:4b:eb:64:14:98: 98:5a:d4:97 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGjcxNuAd38uy/SW1qQ4MYbyiC0QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5 ODI1NERCMjAeFw0yNTA2MjkwNjE3MDFaFw0yNTA3MDIxMDIwMDFaMDMxMTAvBgNV BAMTKEQ2REM2Q0NFRjZGMzYyQ0Y4QjY0RUZGRUNEMjM0M0Y1RTQ2QTE4RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuuSvS6/Q4mKgCP/XsvZD15COz ra4BPzdZwDkQzA3YmZcgQ6aqXa3lJ1e1e2/FnEXcfeeKw5tcoem89X/r/dX8BHCl pgy20rhcBU/0I8/DqCoshqcVm3uoKPfXKL7J+3xCadoTY6/JX3Y6nzhHAX6WdYDD f2Ou0+y01M6FJ7ITs0uSoFH3ncUwMx+JgSbKVHJ0V34b/UKHtzJTr7AQ7WP0QQKl nlohrrb8O4wzPDe0Kg39ozyAc0FpqbCV8npaLvDUTMu/4Y6hVdk6vy4t8qeHng5w XvNvM/ijpvhMTtoBwxCEA1IBdI8bgOO3zvbCtyDGqN/OJ/uRpHGnKKeUSxTTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1txszvbzYs+LZO/+zSND9eRqGOMwHwYDVR0j BBgwFoAUtel7cfr6JP+PorGjNVjYCpglTbIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWVkMDk4Yi00OWIxLTRmNTMtYjc1YS0yNzNlMTFjMjUxNDkvMC9CNUU5N0I3MUZB RkEyNEZGOEZBMkIxQTMzNTU4RDgwQTk4MjU0REIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5ODI1 NERCMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWFlZDA5OGItNDliMS00ZjUzLWI3 NWEtMjczZTExYzI1MTQ5LzAvQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4 MEE5ODI1NERCMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAATVpzstY63fufNBiaMtxQzfM12eD4dpUYnf rr9bdzVTi92Iy5yaovmtO5NlyCcbkCn3qNmBGioSDcWs9tR4cm/CY/QCpMiTw+U7 U4C7Y3Wm8J6e3U3xnGQb3v472pSpu2CHV3+oe2eOwjx5weWZm84b5weqKJtGxGZ9 q5l91Z+G2pkuf2N8InSZwnRTyAbTiFwtARelX0nk2vppMDYfVDcNpqP7wDwZvApq 0iN7dcoI8NyNmpa0f8CMDq7arcOhJBB15XXgHHidqo8kOPedluvyue0QDU+i9KYg w3ZO6UJHO473qh3UQdC4CD1EEkaKRahU4kWK8kJL62QUmJha1Jc= -----END CERTIFICATE-----Generated at Sun Jun 29 18:10:38 2025 by rpki-client