$ rpki-client -vvf repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft File: 0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft (raw, json) Hash identifier: jDuxfljiPB6oFjVqrAINyZrII5514nl6zwlAB+o4PJU= Subject key identifier: BA:36:2D:CB:AF:C5:97:36:B4:6A:95:2E:F1:F2:E2:2C:5E:82:10:20 Authority key identifier: 0C:E1:E1:11:46:E2:51:D0:CD:52:BD:83:7A:1A:0A:CD:B7:E0:BA:0C Certificate issuer: /CN=0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C Certificate serial: 1AA269C3D9F81DACBCE04699B7CA0E90A50B4995 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft Manifest number: 0117 Signing time: Fri 27 Jun 2025 18:51:44 +0000 Manifest this update: Fri 27 Jun 2025 18:46:44 +0000 Manifest next update: Tue 01 Jul 2025 02:45:44 +0000 Files and hashes: 1: 3130332e3139302e3131322e302f32342d3234203d3e20313439393037.roa (hash: zSZcK2ezC0OwcIoirCwbw8lg34i7IQmCM/PoAclIbTc=) 2: 0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl (hash: jui8nV03q++1Ezqcggovk6UD5N9+HNTBfzlabjzp4hM=) 3: 3130332e3139302e3131322e302f32332d3234203d3e20313439393037.roa (hash: /ZMRp/k5nyna7+OV16C6wftA6bpNJZQ65/zvr/LPUR4=) 4: 323030313a6466303a663963303a3a2f34382d3438203d3e20313439393037.roa (hash: /A4c0t6Y98cg2lIq++5SQTiV0ECjCxcXz8yePuUy48U=) 5: 3130332e3139302e3131332e302f32342d3234203d3e20313439393037.roa (hash: 6BP6Wg9K2CydFqVw55iYNyq05rAdRjLr1zk9t4b5GKw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 02:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:a2:69:c3:d9:f8:1d:ac:bc:e0:46:99:b7:ca:0e:90:a5:0b:49:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C Validity Not Before: Jun 27 18:46:44 2025 GMT Not After : Jul 1 02:45:44 2025 GMT Subject: CN=BA362DCBAFC59736B46A952EF1F2E22C5E821020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:73:c2:c5:d7:6b:ba:3f:f4:e0:2e:3f:ba:24: 61:2c:50:5f:48:ec:0c:f3:ef:d0:ff:ea:55:97:22: a7:5b:89:0a:a9:9b:49:23:3f:6f:40:68:17:4f:07: 42:48:39:5e:fe:e0:73:3e:78:4c:a1:7d:44:8f:80: 86:30:b6:c4:43:c9:07:24:3a:fc:91:87:8b:a5:e1: 11:2c:6b:de:e4:fb:52:9e:63:82:20:76:38:56:66: 83:16:30:a1:3d:4b:f2:2e:b3:c3:a1:f7:25:79:80: 1b:f8:d8:70:34:05:21:d4:71:1a:62:bf:0f:00:15: 1f:e1:d3:99:c5:97:4a:de:93:46:68:6e:ea:56:7f: d3:91:74:dc:4d:fb:35:a6:51:f3:8f:17:06:4b:23: cf:09:57:2f:fc:d2:fa:8b:91:88:40:a5:7f:07:19: 3c:2e:bd:1e:63:62:00:46:2c:64:21:95:bc:ba:2f: 06:89:31:13:36:50:48:fd:f0:95:4d:75:4e:ee:38: 0c:f8:d3:da:71:c2:e2:6e:d1:b0:1a:8a:40:ba:99: 71:8d:a7:7a:72:6e:e3:13:fe:3c:c7:23:af:78:cb: e4:5c:b7:61:19:02:f7:72:95:c0:c5:15:5f:a4:c1: 81:7a:57:a4:68:33:cb:a0:f8:75:b0:87:ba:ff:af: e4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:36:2D:CB:AF:C5:97:36:B4:6A:95:2E:F1:F2:E2:2C:5E:82:10:20 X509v3 Authority Key Identifier: keyid:0C:E1:E1:11:46:E2:51:D0:CD:52:BD:83:7A:1A:0A:CD:B7:E0:BA:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:c7:37:9c:8f:3b:70:ed:2e:39:85:f4:c2:3a:c2:42:b6:e9: 0c:97:29:5f:e9:95:6c:0d:82:a7:1d:0c:2a:90:8d:66:cb:f3: cf:4b:03:cf:92:97:a1:5d:e6:96:aa:97:d1:d7:3b:b0:20:72: cf:fa:7d:e8:e9:f8:8a:08:33:4e:57:90:f6:0e:f8:5e:0f:3a: 9c:2c:b8:d7:ec:45:79:04:51:06:8e:76:0f:85:21:5e:4f:0e: fa:b8:b7:9c:bb:fe:04:ea:0b:8f:bb:7c:0a:cd:1e:02:fb:30: aa:50:df:22:0e:c8:d2:47:9b:36:a5:24:c6:b5:df:6f:56:e7: fb:a9:60:64:3f:62:3f:99:bb:96:32:1e:5a:b0:d5:7b:0e:a3: 00:d4:c2:8f:91:36:64:49:54:23:3b:0c:55:16:01:b9:60:21: 65:03:bb:d0:a6:c6:35:8d:71:9b:c5:03:24:e6:0a:ea:29:ae: 2c:51:f8:eb:3a:b1:12:6a:f1:e1:72:9c:f4:ec:99:b5:69:5b: df:e8:90:df:54:9c:fe:ea:ff:8d:be:04:a1:0f:13:82:84:ea: b4:1e:e6:0f:00:d8:ef:b7:77:27:63:6d:68:9f:52:c9:aa:ba: 7d:1e:2f:96:36:ac:8d:e0:59:91:75:2e:ff:34:dc:89:a2:88: 68:7a:19:12 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGqJpw9n4Hay84EaZt8oOkKULSZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBBQ0RC N0UwQkEwQzAeFw0yNTA2MjcxODQ2NDRaFw0yNTA3MDEwMjQ1NDRaMDMxMTAvBgNV BAMTKEJBMzYyRENCQUZDNTk3MzZCNDZBOTUyRUYxRjJFMjJDNUU4MjEwMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4c8LF12u6P/TgLj+6JGEsUF9I 7Azz79D/6lWXIqdbiQqpm0kjP29AaBdPB0JIOV7+4HM+eEyhfUSPgIYwtsRDyQck OvyRh4ul4REsa97k+1KeY4IgdjhWZoMWMKE9S/Ius8Oh9yV5gBv42HA0BSHUcRpi vw8AFR/h05nFl0rek0ZobupWf9ORdNxN+zWmUfOPFwZLI88JVy/80vqLkYhApX8H GTwuvR5jYgBGLGQhlby6LwaJMRM2UEj98JVNdU7uOAz409pxwuJu0bAaikC6mXGN p3pybuMT/jzHI694y+Rct2EZAvdylcDFFV+kwYF6V6RoM8ug+HWwh7r/r+TDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUujYty6/Flza0apUu8fLiLF6CECAwHwYDVR0j BBgwFoAUDOHhEUbiUdDNUr2DehoKzbfgugwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDUxNmE3YS00MTk1LTQ0YjMtYTI0ZS1jZjhlZDU3OGQ3OTEvMC8wQ0UxRTExMTQ2 RTI1MUQwQ0Q1MkJEODM3QTFBMEFDREI3RTBCQTBDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBBQ0RCN0Uw QkEwQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjA1MTZhN2EtNDE5NS00NGIzLWEy NGUtY2Y4ZWQ1NzhkNzkxLzAvMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBB Q0RCN0UwQkEwQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFTHN5yPO3DtLjmF9MI6wkK26QyXKV/plWwN gqcdDCqQjWbL889LA8+Sl6Fd5paql9HXO7Agcs/6fejp+IoIM05XkPYO+F4POpws uNfsRXkEUQaOdg+FIV5PDvq4t5y7/gTqC4+7fArNHgL7MKpQ3yIOyNJHmzalJMa1 329W5/upYGQ/Yj+Zu5YyHlqw1XsOowDUwo+RNmRJVCM7DFUWAblgIWUDu9CmxjWN cZvFAyTmCuoprixR+Os6sRJq8eFynPTsmbVpW9/okN9UnP7q/42+BKEPE4KE6rQe 5g8A2O+3dydjbWifUsmqun0eL5Y2rI3gWZF1Lv803ImiiGh6GRI= -----END CERTIFICATE-----Generated at Mon Jun 30 00:38:02 2025 by rpki-client