$ rpki-client -vvf repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft File: A2F125E1CDB95BA2AF5636AF284A399496555F38.mft (raw, json) Hash identifier: TpFnKIVNPVLFmaNmgtxDsvtlQiwGq6hpcAi/hXmq5+I= Subject key identifier: 17:3A:F3:38:43:82:99:AD:0E:96:0D:53:6B:7D:2C:65:BF:26:0D:B1 Authority key identifier: A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 Certificate issuer: /CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Certificate serial: 078E4877796683E91165A1CBBB2D3AEE9502626B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft Manifest number: 01D2 Signing time: Sun 29 Jun 2025 06:41:52 +0000 Manifest this update: Sun 29 Jun 2025 06:36:52 +0000 Manifest next update: Wed 02 Jul 2025 08:22:52 +0000 Files and hashes: 1: A2F125E1CDB95BA2AF5636AF284A399496555F38.crl (hash: nkL958lzsPCu8KzGAEuP9Hl/KQgDE9O7eUa0Nq8B3Hc=) 2: 3130332e3139312e3231382e302f32342d3234203d3e20313439393330.roa (hash: zLfKDuc3jNTwhPewKCkQdrraOM+o8tM8JoTok2PPCpE=) 3: 3130332e3139312e3231382e302f32332d3234203d3e20313439393330.roa (hash: k7X14J+QdS7MEz6uDJt6u3xkxSH91jVPDLJqXdryTNc=) 4: 3130332e3139312e3231392e302f32342d3234203d3e20313439393330.roa (hash: /BAWrcQPac6z7r0Aw+CQfRooZAASQixIkDdl1c+PelY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 08:22:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:8e:48:77:79:66:83:e9:11:65:a1:cb:bb:2d:3a:ee:95:02:62:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Validity Not Before: Jun 29 06:36:52 2025 GMT Not After : Jul 2 08:22:52 2025 GMT Subject: CN=173AF338438299AD0E960D536B7D2C65BF260DB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ef:98:11:a8:53:43:24:b9:33:d2:dc:31:a3: c2:22:e7:7b:ab:ec:15:a4:f8:cf:6b:f3:03:3a:d4: 08:95:4d:76:7e:88:69:93:61:af:90:63:96:f5:f0: cc:e3:36:03:c8:49:f1:e1:aa:22:10:b6:40:b4:a6: 1e:76:19:50:fd:73:24:cd:12:1d:54:83:3a:42:c7: fe:60:b6:0d:e8:ae:f7:d2:47:f5:a9:1f:89:70:7a: 4e:d9:c3:7d:fc:27:9c:4c:98:1c:44:eb:a2:de:b9: ff:d9:d2:04:ce:e0:06:25:be:c6:55:6c:52:3c:56: a9:50:8b:63:1d:d4:89:02:54:cd:ed:b4:71:94:43: cd:41:bf:99:dd:e4:b7:6e:02:43:85:c3:e6:34:9f: 9b:00:f7:f5:64:27:04:7c:76:6d:e2:1e:31:e4:2b: b9:d7:88:86:ea:a3:f3:6a:9d:01:b6:d2:67:b6:fb: 0c:bb:b7:66:48:35:4a:b0:2b:e5:f7:15:75:ba:fa: ae:b6:9a:01:5a:37:14:55:2e:55:73:1f:6c:21:55: c6:b0:3b:21:65:36:f8:97:81:ce:5f:93:a1:b8:46: 46:66:4d:7e:5e:97:33:d1:2c:be:9e:29:f3:de:ed: 95:0b:84:59:e7:fa:9d:52:02:76:7f:5e:a8:2f:9a: 53:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3A:F3:38:43:82:99:AD:0E:96:0D:53:6B:7D:2C:65:BF:26:0D:B1 X509v3 Authority Key Identifier: keyid:A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:b2:fd:59:05:39:5b:85:e5:83:e6:53:94:d3:3f:69:34:1c: 38:60:97:7c:7c:57:3e:8c:89:32:25:ba:b8:be:6a:85:a6:5d: 3c:a3:82:15:6f:46:e7:d1:54:fe:24:ed:cd:98:20:1f:a2:0b: 77:54:74:51:39:08:a8:b7:48:18:64:09:0b:92:80:40:91:20: 5e:ce:4c:97:41:e5:e6:1f:b7:58:56:d4:d3:e7:ae:12:f3:a3: 48:fa:ed:38:82:6e:80:76:cb:cc:55:4d:a6:c3:c9:32:bc:70: 84:0b:63:c0:30:44:b0:87:b7:ef:b5:7f:a2:3c:49:5d:e8:9b: 6b:bd:4d:ce:d3:69:43:18:25:fa:87:2c:e2:95:42:a3:c8:66: 4e:ae:fa:d0:c6:5a:4f:5e:b7:53:52:ec:19:d6:ab:6d:51:de: ba:4c:cf:5d:35:47:30:33:56:b3:56:67:eb:a1:16:b2:92:bb: aa:66:71:f3:4e:3c:5d:14:e0:34:1a:1f:ff:aa:8c:33:4a:9b: 9e:6c:d0:8f:b8:63:26:bd:9a:9f:9a:4c:82:58:29:2b:08:d1: ab:10:06:fe:fe:de:6a:90:45:e1:b7:1c:c2:6a:80:ff:3d:7c: d7:ec:cb:eb:59:46:45:64:bc:6f:e6:93:7c:61:b6:3c:08:c5: 68:c5:2c:72 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUB45Id3lmg+kRZaHLuy067pUCYmswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5 NjU1NUYzODAeFw0yNTA2MjkwNjM2NTJaFw0yNTA3MDIwODIyNTJaMDMxMTAvBgNV BAMTKDE3M0FGMzM4NDM4Mjk5QUQwRTk2MEQ1MzZCN0QyQzY1QkYyNjBEQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs75gRqFNDJLkz0twxo8Ii53ur 7BWk+M9r8wM61AiVTXZ+iGmTYa+QY5b18MzjNgPISfHhqiIQtkC0ph52GVD9cyTN Eh1UgzpCx/5gtg3orvfSR/WpH4lwek7Zw338J5xMmBxE66Leuf/Z0gTO4AYlvsZV bFI8VqlQi2Md1IkCVM3ttHGUQ81Bv5nd5LduAkOFw+Y0n5sA9/VkJwR8dm3iHjHk K7nXiIbqo/NqnQG20me2+wy7t2ZINUqwK+X3FXW6+q62mgFaNxRVLlVzH2whVcaw OyFlNviXgc5fk6G4RkZmTX5elzPRLL6eKfPe7ZULhFnn+p1SAnZ/XqgvmlPLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFzrzOEOCma0Olg1Ta30sZb8mDbEwHwYDVR0j BBgwFoAUovEl4c25W6KvVjavKEo5lJZVXzgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzM3MGQyNC1hNjU2LTQzMzYtODQyYi05YmQ1ZGNhMmI0MGEvMC9BMkYxMjVFMUNE Qjk1QkEyQUY1NjM2QUYyODRBMzk5NDk2NTU1RjM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5NjU1 NUYzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjMzNzBkMjQtYTY1Ni00MzM2LTg0 MmItOWJkNWRjYTJiNDBhLzAvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5 OTQ5NjU1NUYzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADSy/VkFOVuF5YPmU5TTP2k0HDhgl3x8Vz6M iTIluri+aoWmXTyjghVvRufRVP4k7c2YIB+iC3dUdFE5CKi3SBhkCQuSgECRIF7O TJdB5eYft1hW1NPnrhLzo0j67TiCboB2y8xVTabDyTK8cIQLY8AwRLCHt++1f6I8 SV3om2u9Tc7TaUMYJfqHLOKVQqPIZk6u+tDGWk9et1NS7BnWq21R3rpMz101RzAz VrNWZ+uhFrKSu6pmcfNOPF0U4DQaH/+qjDNKm55s0I+4Yya9mp+aTIJYKSsI0asQ Bv7+3mqQReG3HMJqgP89fNfsy+tZRkVkvG/mk3xhtjwIxWjFLHI= -----END CERTIFICATE-----Generated at Mon Jun 30 13:14:59 2025 by rpki-client