$ rpki-client -vvf repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft File: 952177DE616DE181FF461A8481C060AD744E2603.mft (raw, json) Hash identifier: 1goG6EWTvil/yn71mc0iiRQyWp6x+pNT6ITEq3NkynQ= Subject key identifier: CF:87:30:61:F0:B3:E4:89:C3:C7:B5:CA:D3:5D:D0:E4:C6:72:0F:DC Authority key identifier: 95:21:77:DE:61:6D:E1:81:FF:46:1A:84:81:C0:60:AD:74:4E:26:03 Certificate issuer: /CN=952177DE616DE181FF461A8481C060AD744E2603 Certificate serial: 47799CFAA0CAF615FBF0F13E8B7E62D7D807C464 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft Manifest number: A0 Signing time: Tue 01 Jul 2025 02:10:40 +0000 Manifest this update: Tue 01 Jul 2025 02:05:40 +0000 Manifest next update: Fri 04 Jul 2025 11:01:40 +0000 Files and hashes: 1: 3135372e31352e3137342e302f32342d3234203d3e20313532333739.roa (hash: keRrjXE2aFv5lood59DLSEKDpD72rCKDg82GWlf1ewQ=) 2: 952177DE616DE181FF461A8481C060AD744E2603.crl (hash: C08x9Ludjr+nEnLPc0IRVG6WJWBaSCVZ1g8dAKfcFPc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.crl rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 11:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:79:9c:fa:a0:ca:f6:15:fb:f0:f1:3e:8b:7e:62:d7:d8:07:c4:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=952177DE616DE181FF461A8481C060AD744E2603 Validity Not Before: Jul 1 02:05:40 2025 GMT Not After : Jul 4 11:01:40 2025 GMT Subject: CN=CF873061F0B3E489C3C7B5CAD35DD0E4C6720FDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:58:33:25:7a:0c:9c:2f:08:c1:c0:98:67:34: e1:29:33:4c:b6:2a:b9:73:40:84:6b:99:68:36:41: b5:dc:53:bb:ed:67:08:91:de:ba:3c:54:94:9d:27: 7c:20:a9:81:d9:8e:13:0f:8d:d9:39:b7:5f:6c:4d: dd:91:8b:ad:92:2f:17:e6:16:5b:d2:67:c3:a7:c3: 4a:e3:15:a3:20:6f:43:2f:65:1d:ed:b3:4a:6e:dc: e0:03:83:0a:90:b4:95:f2:e2:f0:99:f1:6c:e4:1f: fb:e5:ae:9f:36:24:c4:7f:fb:4b:b1:3b:df:57:e4: 7d:5f:f5:a3:77:20:36:8e:c3:2f:54:00:bd:4b:4a: 9f:73:3c:c0:75:ec:98:14:e1:ea:a1:f4:29:d0:e5: 7d:9f:78:65:90:84:f5:1a:b0:f3:fa:c5:2d:a0:45: f3:64:b0:1f:a7:00:f0:1d:38:9c:38:0f:78:24:3f: 00:f7:83:ac:c7:55:92:2c:44:ae:ed:55:0c:f0:ba: d9:ab:b5:5e:ba:3e:53:04:59:fa:10:ff:32:3a:7a: a6:38:74:af:02:64:81:32:47:84:0f:1a:8c:6f:62: 9b:eb:64:46:92:ae:c8:2c:4c:c9:79:8d:f8:ad:91: be:f9:e6:2b:40:52:86:3c:f0:6a:48:22:ea:82:d5: ac:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:87:30:61:F0:B3:E4:89:C3:C7:B5:CA:D3:5D:D0:E4:C6:72:0F:DC X509v3 Authority Key Identifier: keyid:95:21:77:DE:61:6D:E1:81:FF:46:1A:84:81:C0:60:AD:74:4E:26:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:3f:0a:cb:81:78:b4:dc:1f:07:bd:e8:4c:0d:93:63:f5:e4: 12:ce:d1:cd:b0:e5:4a:0a:84:ce:70:50:a0:d1:22:2b:e1:73: e7:5f:48:1b:c6:ca:99:92:ea:b1:2b:3b:b3:db:11:b4:b3:a3: 41:b5:9b:82:d2:55:14:7d:d1:3d:f2:dd:59:d7:b3:81:5c:50: 5a:c8:8c:11:59:1b:79:80:36:9c:95:3f:86:8f:58:34:4b:fd: 0d:98:c7:2f:0d:d1:83:ff:2b:bb:7d:82:b4:c2:5f:5f:9b:a8: f3:36:e8:8d:34:f2:67:3d:5e:0c:31:8d:24:cf:75:60:64:2c: ec:7c:9b:73:21:9c:85:fd:0e:bf:5f:47:1b:f3:bc:3b:de:87: da:c6:29:1f:d2:89:02:f2:30:49:1f:ac:0c:9e:be:b4:52:f3: 43:19:06:55:4d:42:32:3d:fe:45:3e:7c:9e:1f:d3:5e:8e:84: 46:db:05:a1:b4:3e:ea:b2:95:f8:a1:9b:81:01:67:e3:46:6f: e1:ed:63:ce:df:2f:fc:6a:2d:03:01:15:ed:57:e3:1f:18:e5: 81:9d:f7:b6:57:17:67:ce:bc:04:5d:02:3a:8f:5b:eb:80:4b: 8e:85:68:23:3e:eb:85:05:0f:67:74:d2:af:13:7b:8b:66:ca: c4:2c:4b:f7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUR3mc+qDK9hX78PE+i35i19gHxGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYwQUQ3 NDRFMjYwMzAeFw0yNTA3MDEwMjA1NDBaFw0yNTA3MDQxMTAxNDBaMDMxMTAvBgNV BAMTKENGODczMDYxRjBCM0U0ODlDM0M3QjVDQUQzNUREMEU0QzY3MjBGREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfWDMlegycLwjBwJhnNOEpM0y2 KrlzQIRrmWg2QbXcU7vtZwiR3ro8VJSdJ3wgqYHZjhMPjdk5t19sTd2Ri62SLxfm FlvSZ8Onw0rjFaMgb0MvZR3ts0pu3OADgwqQtJXy4vCZ8WzkH/vlrp82JMR/+0ux O99X5H1f9aN3IDaOwy9UAL1LSp9zPMB17JgU4eqh9CnQ5X2feGWQhPUasPP6xS2g RfNksB+nAPAdOJw4D3gkPwD3g6zHVZIsRK7tVQzwutmrtV66PlMEWfoQ/zI6eqY4 dK8CZIEyR4QPGoxvYpvrZEaSrsgsTMl5jfitkb755itAUoY88GpIIuqC1axlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUz4cwYfCz5InDx7XK013Q5MZyD9wwHwYDVR0j BBgwFoAUlSF33mFt4YH/RhqEgcBgrXROJgMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YjAwMjk5Mi1hY2IyLTRmNzctOTk3ZC0zMjE3ZWFkOTliYjUvMC85NTIxNzdERTYx NkRFMTgxRkY0NjFBODQ4MUMwNjBBRDc0NEUyNjAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYwQUQ3NDRF MjYwMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWIwMDI5OTItYWNiMi00Zjc3LTk5 N2QtMzIxN2VhZDk5YmI1LzAvOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYw QUQ3NDRFMjYwMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE0/CsuBeLTcHwe96EwNk2P15BLO0c2w5UoK hM5wUKDRIivhc+dfSBvGypmS6rErO7PbEbSzo0G1m4LSVRR90T3y3VnXs4FcUFrI jBFZG3mANpyVP4aPWDRL/Q2Yxy8N0YP/K7t9grTCX1+bqPM26I008mc9XgwxjSTP dWBkLOx8m3MhnIX9Dr9fRxvzvDveh9rGKR/SiQLyMEkfrAyevrRS80MZBlVNQjI9 /kU+fJ4f016OhEbbBaG0Puqylfihm4EBZ+NGb+HtY87fL/xqLQMBFe1X4x8Y5YGd 97ZXF2fOvARdAjqPW+uAS46FaCM+64UFD2d00q8Te4tmysQsS/c= -----END CERTIFICATE-----Generated at Wed Jul 2 04:23:31 2025 by rpki-client