$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft File: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft (raw, json) Hash identifier: bawbBsQfWh1+aAny67GZ85h4XLHPzV5LfzUpIpYz6RI= Subject key identifier: 10:33:D8:6D:41:82:A8:5B:52:4B:31:F7:9B:1D:CC:53:00:9B:C9:55 Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 4CDE18B5BA689C5C4084A2022FBAA764B726A193 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft Manifest number: 04F7 Signing time: Sat 28 Jun 2025 09:21:18 +0000 Manifest this update: Sat 28 Jun 2025 09:16:18 +0000 Manifest next update: Tue 01 Jul 2025 15:47:18 +0000 Files and hashes: 1: 3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa (hash: Gss2BFwCvkYMrYmTDPR8XZwGfdbzMzVTFBRvuPZp/uA=) 2: 3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa (hash: lX6yK5ZXngZW7ELU3wR8WQZxB1PZNhMXdAdxnRkfpzY=) 3: 3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa (hash: OjdsG/TdDn+RUWERJayMK04SkHQ7zRmm5hb518X40Eo=) 4: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl (hash: H3/LNEPzSCczwWjPOvOUZaSsvN2PHfdelxLOaKCXZoM=) 5: 323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa (hash: CwXU9VaKpcKaIL0+cwM5Fjr5bkAAawnd7hCNC9U00Bg=) 6: 3130332e3233352e37352e302f32342d3234203d3e20313335343434.roa (hash: lz/aRA5xwGbvGMSgXL70n8EEkKYV5RNTgznI5gnec7Q=) 7: 3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa (hash: e9uiS3KNGlZ+EQjSXY4m6NwJ9lRr8aifmafZU96mQ7k=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 15:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:de:18:b5:ba:68:9c:5c:40:84:a2:02:2f:ba:a7:64:b7:26:a1:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Jun 28 09:16:18 2025 GMT Not After : Jul 1 15:47:18 2025 GMT Subject: CN=1033D86D4182A85B524B31F79B1DCC53009BC955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a9:7c:db:38:31:1a:cf:25:62:d7:ae:74:bf: 9d:40:db:37:3f:7a:42:2c:b5:b6:37:ad:a6:84:28: a7:e9:d9:0e:5d:b0:e7:8d:e9:79:a4:26:89:5e:89: b8:40:f9:02:da:0f:d2:ae:d1:2f:d0:b8:4f:46:a2: 51:ce:d0:ff:2e:9f:6d:5e:b0:1e:31:43:7c:b6:a1: 5d:ca:8b:a4:31:5e:06:9b:cb:b6:92:ac:23:6b:97: 66:79:87:96:45:4c:d4:99:09:66:dd:bf:29:d0:78: 31:f6:65:c3:16:f5:f6:ab:63:06:04:f2:cc:31:8d: 35:8c:eb:b9:58:c9:03:f9:39:f6:33:7c:ef:24:43: ac:5c:15:c2:22:91:b4:78:30:01:ac:7d:21:12:06: 7e:48:53:56:1c:e8:47:f8:41:40:d9:7d:95:72:3e: 43:19:6a:4f:c6:1c:dd:e8:df:9e:fe:88:3d:80:24: 75:6e:5b:43:5d:96:58:59:94:21:fe:00:87:63:03: cc:90:a5:cb:b7:4a:35:61:93:58:34:a5:0c:49:0a: bf:6f:02:6b:4d:57:35:4e:73:d7:21:6a:e8:b0:5c: 3f:5c:65:a4:a6:45:f1:f4:31:9a:95:7a:71:67:e9: 83:ae:9f:c8:25:da:3c:f2:f9:6b:4d:4f:f2:86:95: e4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:33:D8:6D:41:82:A8:5B:52:4B:31:F7:9B:1D:CC:53:00:9B:C9:55 X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:ca:32:9b:3d:d0:f0:d4:83:6a:4e:4c:f1:a0:03:d4:b7:5b: a2:45:b7:1a:e5:af:eb:fd:62:ec:96:d8:e8:64:d2:8d:f5:9c: e6:ea:34:23:c8:8a:05:14:02:3c:ec:5e:fb:12:79:bd:b6:7e: 2d:33:db:55:29:79:95:96:e2:ea:1b:93:0b:5d:0a:9f:74:f3: 27:8d:7a:2c:86:ed:35:2c:98:68:d1:97:2d:1f:2b:6d:39:64: c1:0f:55:16:0f:16:78:46:f7:f0:4f:4e:ad:0c:02:b1:63:f9: bd:ca:d0:3c:24:73:d5:a2:c4:28:10:45:b3:45:81:d6:b3:59: b0:6f:d9:9c:74:e3:cf:ef:a4:00:c4:b1:cc:dd:9b:32:fc:f7: af:1c:bc:ff:91:65:0b:ae:f7:4d:19:4c:18:67:ab:56:0a:e0: ce:ed:bb:c0:87:cb:b1:87:00:e4:52:36:16:4c:5f:37:aa:17: 36:b5:ad:95:96:53:02:ef:c7:9e:f0:88:6c:c5:23:e5:59:ec: 03:80:8b:99:23:fe:fe:bb:44:7d:91:b7:7a:99:c5:bb:94:fd: 10:f4:74:95:ef:51:dc:fd:c5:5b:ab:47:65:0b:d1:59:0d:65: 70:79:a1:65:5c:f4:3d:ab:a4:6b:06:95:4c:22:a1:18:cd:40: 36:f8:8d:2b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTN4YtbponFxAhKICL7qnZLcmoZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNTA2MjgwOTE2MThaFw0yNTA3MDExNTQ3MThaMDMxMTAvBgNV BAMTKDEwMzNEODZENDE4MkE4NUI1MjRCMzFGNzlCMURDQzUzMDA5QkM5NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0qXzbODEazyVi1650v51A2zc/ ekIstbY3raaEKKfp2Q5dsOeN6XmkJoleibhA+QLaD9Ku0S/QuE9GolHO0P8un21e sB4xQ3y2oV3Ki6QxXgaby7aSrCNrl2Z5h5ZFTNSZCWbdvynQeDH2ZcMW9farYwYE 8swxjTWM67lYyQP5OfYzfO8kQ6xcFcIikbR4MAGsfSESBn5IU1Yc6Ef4QUDZfZVy PkMZak/GHN3o357+iD2AJHVuW0NdllhZlCH+AIdjA8yQpcu3SjVhk1g0pQxJCr9v AmtNVzVOc9chauiwXD9cZaSmRfH0MZqVenFn6YOun8gl2jzy+WtNT/KGleTDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEDPYbUGCqFtSSzH3mx3MUwCbyVUwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjFhNzdhZGQtYTQ5YS00YzhmLWE3 MzUtZWY5NmMzM2FiMjlmLzAvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2 QTE4NkNGNTgyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIHKMps90PDUg2pOTPGgA9S3W6JFtxrlr+v9 YuyW2Ohk0o31nObqNCPIigUUAjzsXvsSeb22fi0z21UpeZWW4uobkwtdCp908yeN eiyG7TUsmGjRly0fK205ZMEPVRYPFnhG9/BPTq0MArFj+b3K0Dwkc9WixCgQRbNF gdazWbBv2Zx048/vpADEsczdmzL8968cvP+RZQuu900ZTBhnq1YK4M7tu8CHy7GH AORSNhZMXzeqFza1rZWWUwLvx57wiGzFI+VZ7AOAi5kj/v67RH2Rt3qZxbuU/RD0 dJXvUdz9xVurR2UL0VkNZXB5oWVc9D2rpGsGlUwioRjNQDb4jSs= -----END CERTIFICATE-----Generated at Sun Jun 29 21:56:28 2025 by rpki-client