$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft File: 3308A0FBD29F359AD61CAA389208E1D74CC28164.mft (raw, json) Hash identifier: 6CKLDDg9+KhAtxq2GnfQRqg2/LnWyNQBMFsCueiwrsE= Subject key identifier: DD:66:3E:36:BF:88:92:4E:C5:3A:2F:EC:DF:CA:D5:80:6B:8E:05:CC Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 38FAB47F4B039CD1D1533578B254D373055D9458 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft Manifest number: C7 Signing time: Tue 01 Jul 2025 01:12:12 +0000 Manifest this update: Tue 01 Jul 2025 01:07:12 +0000 Manifest next update: Fri 04 Jul 2025 01:22:12 +0000 Files and hashes: 1: 3132312e3130312e3139312e302f32342d3234203d3e203338373835.roa (hash: EV9DFisiiygvSyZKF0tZ0Lxf1X12CCisGawptespLsI=) 2: 3132312e3130312e3138342e302f32342d3234203d3e203338373835.roa (hash: cpQ+yGOPRMcycDguY5pOMH22P4g6dN/h+7VVRFd0gvs=) 3: 3132312e3130312e3138382e302f32342d3234203d3e203338373835.roa (hash: jVBeyFMPWkiATlRCTVFrCw8EykcpuEgYVgn4T3UPT6M=) 4: 3132312e3130312e3138352e302f32342d3234203d3e203338373835.roa (hash: azmIwktH3vpajsF8gQt8znOMbH0C7Vn9MDVUjZva6CY=) 5: 3132312e3130312e3138392e302f32342d3234203d3e203338373835.roa (hash: Csz/yUZ7Lzvn/nuu4THB9U+el9Pek+D7VdsMj61HX6w=) 6: 3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa (hash: ldyK2huQ95pUCINHnT0U5z7ALHHC4dFAFsmJktUnRJw=) 7: 3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa (hash: db2ZBDbPQBZ+1fLhUcrVMNSFZdZMKLIQU1qfyXpKY5M=) 8: 3308A0FBD29F359AD61CAA389208E1D74CC28164.crl (hash: n7+Jye8eQU0vONYTzxEZJHVfTlyWcG6mw5HX5KWkQjc=) 9: 3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa (hash: Hv2jdXQUlOnlnToQUuoVlZDHe+biYftXfxb3LM1GOc0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 01:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:fa:b4:7f:4b:03:9c:d1:d1:53:35:78:b2:54:d3:73:05:5d:94:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: Jul 1 01:07:12 2025 GMT Not After : Jul 4 01:22:12 2025 GMT Subject: CN=DD663E36BF88924EC53A2FECDFCAD5806B8E05CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cc:24:c0:c4:5e:66:45:3d:19:00:6a:08:38: ad:78:a2:ab:ed:80:4b:b3:60:2b:e5:40:d0:73:c8: 68:ac:7f:81:cf:10:98:5e:c5:01:f8:b8:b2:ae:28: 5f:a3:66:ed:f7:75:c0:77:c6:39:d1:ff:32:23:c4: b4:a7:b7:1f:de:f6:3b:fc:f9:9f:99:00:62:f0:0b: 44:e3:96:e3:fb:07:b5:fe:d4:da:14:30:87:43:fb: 40:89:20:40:12:26:b9:33:61:45:96:e2:69:ea:94: 3f:96:46:ad:cb:a7:30:ba:6b:5c:65:b7:3c:20:7f: b7:36:03:08:a4:b4:aa:75:2b:1c:ae:c1:f1:1e:9f: 49:8d:ce:28:9b:fe:14:e8:c8:9b:41:38:d1:e7:e8: fd:00:ec:db:3e:f2:08:6a:37:d2:d9:97:5e:90:51: 04:1e:3b:36:d7:86:22:b1:9f:2a:3f:af:f6:e7:78: cc:08:9b:6b:58:46:fe:27:89:ef:14:1f:ed:15:61: ad:3c:ce:20:cf:8c:8a:e9:02:71:bc:dd:a7:26:20: dd:c2:7c:93:33:72:ba:29:76:97:f2:86:28:b2:b0: b5:78:ae:e4:bf:c7:da:cb:d4:7b:5a:0b:ef:00:b0: 2d:11:98:6b:d2:07:97:31:06:26:61:78:cf:1f:41: 15:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:66:3E:36:BF:88:92:4E:C5:3A:2F:EC:DF:CA:D5:80:6B:8E:05:CC X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:e4:a2:36:95:3d:46:a9:7a:26:c8:9f:c2:04:c3:66:b0:4d: 09:37:d3:96:24:9c:6f:da:22:cc:e3:5e:c2:35:79:ee:1b:0d: 07:68:e3:aa:8a:76:c5:e0:1c:d4:bc:f6:fc:7b:9c:7c:82:4e: ef:b0:12:e6:27:8c:14:6c:2b:3a:4a:48:78:d5:0a:d8:9d:3a: cd:18:c4:0c:f1:18:6c:27:20:b3:de:37:4d:b1:17:f0:7d:cd: f1:a3:3f:71:92:ab:f1:03:7f:c0:9f:4f:0d:bf:47:6c:05:23: 96:b9:69:48:b4:fc:a8:fd:2d:de:1d:b0:7e:2f:f9:7e:85:b8: 22:3b:61:df:9b:6d:64:f3:98:a9:d2:c0:e8:d1:5e:54:0b:51: e7:9e:54:4d:23:af:c6:47:0c:2d:3d:14:e6:95:dd:56:a5:43: e5:19:ba:ba:b2:63:35:2f:47:3f:cb:0b:1f:84:7f:54:94:67: 97:e9:81:68:d6:2a:55:f6:00:57:6c:1b:c4:0c:a2:ce:03:4b: a7:59:29:9e:0d:8e:0e:47:96:60:ac:0d:6f:87:ee:ad:79:a6: 6b:3a:da:82:f3:86:f5:1b:1e:9d:10:76:13:c1:72:22:1e:cf: bb:b1:b9:57:ae:22:f8:22:ca:0d:26:ad:0b:9e:41:08:36:a0: 84:5d:19:91 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOPq0f0sDnNHRUzV4slTTcwVdlFgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNTA3MDEwMTA3MTJaFw0yNTA3MDQwMTIyMTJaMDMxMTAvBgNV BAMTKERENjYzRTM2QkY4ODkyNEVDNTNBMkZFQ0RGQ0FENTgwNkI4RTA1Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2zCTAxF5mRT0ZAGoIOK14oqvt gEuzYCvlQNBzyGisf4HPEJhexQH4uLKuKF+jZu33dcB3xjnR/zIjxLSntx/e9jv8 +Z+ZAGLwC0TjluP7B7X+1NoUMIdD+0CJIEASJrkzYUWW4mnqlD+WRq3LpzC6a1xl tzwgf7c2AwiktKp1KxyuwfEen0mNziib/hToyJtBONHn6P0A7Ns+8ghqN9LZl16Q UQQeOzbXhiKxnyo/r/bneMwIm2tYRv4nie8UH+0VYa08ziDPjIrpAnG83acmIN3C fJMzcropdpfyhiiysLV4ruS/x9rL1HtaC+8AsC0RmGvSB5cxBiZheM8fQRW5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3WY+Nr+Ikk7FOi/s38rVgGuOBcwwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTU3MmRmYmUtNGNhMC00YTQ2LTgw MzctNDk2OGVkOTdjYWRjLzAvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUx RDc0Q0MyODE2NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA7kojaVPUapeibIn8IEw2awTQk305YknG/a IszjXsI1ee4bDQdo46qKdsXgHNS89vx7nHyCTu+wEuYnjBRsKzpKSHjVCtidOs0Y xAzxGGwnILPeN02xF/B9zfGjP3GSq/EDf8CfTw2/R2wFI5a5aUi0/Kj9Ld4dsH4v +X6FuCI7Yd+bbWTzmKnSwOjRXlQLUeeeVE0jr8ZHDC09FOaV3ValQ+UZurqyYzUv Rz/LCx+Ef1SUZ5fpgWjWKlX2AFdsG8QMos4DS6dZKZ4Njg5HlmCsDW+H7q15pms6 2oLzhvUbHp0QdhPBciIez7uxuVeuIvgiyg0mrQueQQg2oIRdGZE= -----END CERTIFICATE-----Generated at Wed Jul 2 04:14:54 2025 by rpki-client