$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft File: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft (raw, json) Hash identifier: 0wfjcqHpEzUEoVqOt1XNrw1YeAfGxPqWCzss1GPbN84= Subject key identifier: FF:82:6C:F2:75:7F:9D:1A:FC:27:44:D6:9A:6C:94:0D:21:6C:F8:5D Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 18AE1F76C95078814191B06F7F00275BF8795B5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft Manifest number: 0198 Signing time: Sun 29 Jun 2025 20:21:22 +0000 Manifest this update: Sun 29 Jun 2025 20:16:22 +0000 Manifest next update: Thu 03 Jul 2025 04:39:22 +0000 Files and hashes: 1: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (hash: 1GaxlmyMBH5Av+K+s7DcySXoa/4RweD6yLZx8aQoKzc=) 2: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl (hash: l2E6TKd+a+EmCKn9lqgkIPGWNPOf0DgSrG8VwAD+DQs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 04:39:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:ae:1f:76:c9:50:78:81:41:91:b0:6f:7f:00:27:5b:f8:79:5b:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: Jun 29 20:16:22 2025 GMT Not After : Jul 3 04:39:22 2025 GMT Subject: CN=FF826CF2757F9D1AFC2744D69A6C940D216CF85D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:32:d6:e0:cd:31:5b:ef:25:52:7a:7e:b9:b1: ce:46:c4:0d:c9:f5:06:bd:ff:07:58:a6:fa:81:72: f4:38:da:00:b8:e6:da:59:33:44:83:9a:4a:3b:e1: d1:20:ed:7e:48:e5:e9:e8:02:21:e3:3a:cb:c6:92: 78:02:b5:d4:8b:a0:4f:30:de:d8:23:69:e9:c5:54: 54:2e:b1:ee:8c:ba:55:42:8a:cf:3e:91:ca:b8:d0: e0:b8:69:14:e1:a1:17:52:7b:a3:3b:4c:1c:07:8d: 01:1b:4d:4e:ed:40:db:e6:7e:81:74:39:4d:89:6c: 95:0f:82:31:2a:06:db:3c:51:81:55:18:4d:9d:b0: b7:c9:c0:40:d6:88:76:da:d0:6e:20:70:27:6c:ba: 28:89:37:3f:dc:a4:a1:c1:7b:c0:36:42:fa:fc:4d: 91:a2:bb:58:ee:6e:c6:06:ae:6b:db:b0:98:d0:5a: 28:73:8b:38:d0:e3:2a:27:70:2f:c6:f6:5e:ed:a2: db:25:2f:49:7e:73:78:f6:2e:71:d4:fc:52:53:f0: 0d:4b:ef:ee:8b:dc:00:53:9f:65:3a:4c:d3:0f:fc: 14:7a:f6:73:6d:54:22:07:aa:61:5d:3c:2a:b2:4d: f3:9e:12:3d:81:6e:86:3e:c7:c7:1d:20:9e:55:1e: e6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:82:6C:F2:75:7F:9D:1A:FC:27:44:D6:9A:6C:94:0D:21:6C:F8:5D X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:d1:ee:05:f9:10:3b:30:92:d2:14:0b:ba:ea:23:9d:27:64: a7:b4:07:70:c8:c4:43:a4:7d:09:24:4d:b5:5a:fb:c3:df:6f: 7d:bd:a0:50:0a:c2:3b:7a:0f:ef:f6:f9:cb:a8:62:d2:6d:30: 52:40:ec:d9:22:75:f7:50:9c:f4:30:b0:09:e4:2b:79:64:ff: 53:d7:35:3b:87:66:d9:82:61:e2:4a:94:80:ac:dc:a5:04:3f: 29:06:02:79:1e:9f:80:fd:c2:ab:c2:90:f3:db:a3:8c:4a:59: ef:17:e3:be:fc:c2:08:9e:0c:91:61:3c:25:4c:b7:f6:ab:9e: c7:7c:ee:c9:b5:a8:1d:61:74:bc:b7:9c:a9:59:e0:78:c9:51: 91:bb:90:6b:94:3e:f2:64:f8:41:a5:78:62:76:7d:73:40:b5: 60:7e:f7:88:be:bd:17:04:a6:81:21:33:7d:7a:80:66:85:a3: a4:a0:7b:12:fb:4e:8e:e9:5d:b2:60:df:b9:50:3a:11:45:8c: bc:af:e7:6e:40:2a:bf:99:ac:92:14:75:7f:ba:7f:2a:c4:35: 1f:db:c1:f7:c6:4b:14:4c:b3:8d:97:c1:68:fb:9a:3c:91:5b: e7:fa:eb:35:8c:a7:e5:67:70:44:a1:2e:5a:90:c2:4e:57:71: 5a:5d:d0:db -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGK4fdslQeIFBkbBvfwAnW/h5W18wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yNTA2MjkyMDE2MjJaFw0yNTA3MDMwNDM5MjJaMDMxMTAvBgNV BAMTKEZGODI2Q0YyNzU3RjlEMUFGQzI3NDRENjlBNkM5NDBEMjE2Q0Y4NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0MtbgzTFb7yVSen65sc5GxA3J 9Qa9/wdYpvqBcvQ42gC45tpZM0SDmko74dEg7X5I5enoAiHjOsvGkngCtdSLoE8w 3tgjaenFVFQuse6MulVCis8+kcq40OC4aRThoRdSe6M7TBwHjQEbTU7tQNvmfoF0 OU2JbJUPgjEqBts8UYFVGE2dsLfJwEDWiHba0G4gcCdsuiiJNz/cpKHBe8A2Qvr8 TZGiu1jubsYGrmvbsJjQWihzizjQ4yoncC/G9l7totslL0l+c3j2LnHU/FJT8A1L 7+6L3ABTn2U6TNMP/BR69nNtVCIHqmFdPCqyTfOeEj2BboY+x8cdIJ5VHubdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/4Js8nV/nRr8J0TWmmyUDSFs+F0wHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTY2YThmMjgtOWEwMy00Mzc2LWI2 MTItMzFmNWFkMWMxZWQ2LzAvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4 MTc1RUMzODcxRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABfR7gX5EDswktIUC7rqI50nZKe0B3DIxEOk fQkkTbVa+8Pfb329oFAKwjt6D+/2+cuoYtJtMFJA7NkidfdQnPQwsAnkK3lk/1PX NTuHZtmCYeJKlICs3KUEPykGAnken4D9wqvCkPPbo4xKWe8X4778wgieDJFhPCVM t/arnsd87sm1qB1hdLy3nKlZ4HjJUZG7kGuUPvJk+EGleGJ2fXNAtWB+94i+vRcE poEhM316gGaFo6SgexL7To7pXbJg37lQOhFFjLyv525AKr+ZrJIUdX+6fyrENR/b wffGSxRMs42XwWj7mjyRW+f66zWMp+VncEShLlqQwk5XcVpd0Ns= -----END CERTIFICATE-----Generated at Mon Jun 30 07:40:31 2025 by rpki-client