$ rpki-client -vvf repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft File: 210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft (raw, json) Hash identifier: /mOt9AjEmVQlS3YDeBtALd062iM49IYZ+8NG9RmrY70= Subject key identifier: 97:85:2E:3E:73:31:1D:56:32:D5:4C:3D:82:D3:1B:91:EB:8F:14:8F Authority key identifier: 21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 Certificate issuer: /CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Certificate serial: 7636C4EB67DEF71F9FCA590A6A92FF1B0573B378 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft Manifest number: 01D7 Signing time: Fri 04 Jul 2025 21:51:19 +0000 Manifest this update: Fri 04 Jul 2025 21:46:19 +0000 Manifest next update: Tue 08 Jul 2025 06:58:19 +0000 Files and hashes: 1: 3130332e3139332e3136372e302f32342d3234203d3e20313530313835.roa (hash: GK6TjIFHP3OKYpdF9mQ2NlZ0xI3zyr1c1AWcP5mkKcw=) 2: 210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl (hash: Og7R02rZrJ57xFrDAT5RENFZDPVc75ngP6cH42PBQo4=) 3: 3130332e3139332e3136362e302f32342d3234203d3e20313530313835.roa (hash: jkr10nu1KheD3rFITjZKu8+8qzjxbIrM8OjPSducB+Q=) 4: 3130332e3139332e3136362e302f32332d3233203d3e20313530313835.roa (hash: 6gMRYCDTA91uCrSpOJHQwzXcDUzZZQ/fPopmQLU54uQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:36:c4:eb:67:de:f7:1f:9f:ca:59:0a:6a:92:ff:1b:05:73:b3:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Validity Not Before: Jul 4 21:46:19 2025 GMT Not After : Jul 8 06:58:19 2025 GMT Subject: CN=97852E3E73311D5632D54C3D82D31B91EB8F148F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:38:82:f4:c7:df:b6:ec:97:17:be:1c:93:e0: a5:40:ed:8d:bb:19:a3:38:0e:c6:91:df:b2:15:92: f1:9f:f5:ab:ee:f8:80:a3:50:02:b0:f2:45:42:03: 22:8e:99:5e:e5:64:d4:56:a4:d9:95:56:6b:f8:3d: 98:a1:67:f5:df:2c:6b:6b:1f:b8:bc:da:00:0e:f5: 9a:45:22:2b:89:7a:02:b7:e4:32:33:e3:20:87:51: 23:05:b5:53:9c:4a:06:2c:8c:d8:78:f2:67:dc:5f: 33:39:ed:ca:d5:9a:d2:8b:95:a7:f7:db:c4:95:bd: c7:39:92:50:b3:93:70:4b:b9:9e:64:95:d8:e6:76: d7:3e:74:9e:76:65:f9:e8:e7:0f:6e:38:a7:49:7d: 29:b3:55:09:19:d9:46:8a:46:6f:4a:87:3e:72:93: df:29:c2:df:5d:03:3b:1c:14:9a:f7:47:d9:61:99: 0f:69:20:dc:e1:38:60:20:0b:93:82:6c:2b:6a:9c: 26:5c:c1:43:55:6f:9f:5e:2e:bf:1d:a8:75:b4:01: 85:40:10:4d:6d:e9:b3:27:ec:96:9b:bb:e9:6f:75: 83:01:33:17:89:31:2d:6d:2f:b7:08:8b:47:ab:86: 6c:92:c5:17:54:71:8a:10:da:1d:be:e8:46:4a:d7: ea:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:85:2E:3E:73:31:1D:56:32:D5:4C:3D:82:D3:1B:91:EB:8F:14:8F X509v3 Authority Key Identifier: keyid:21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:34:f8:fe:d0:d1:c5:26:4d:85:12:1a:55:91:9c:49:12:4b: b7:34:ca:15:ab:1b:39:52:b2:0a:ff:64:5f:1e:a8:0a:b4:7b: 07:5e:85:70:2a:8a:0d:fc:df:c8:ba:7d:c8:4f:d3:78:51:0a: ba:0c:2a:60:ef:5f:e4:71:76:37:af:f3:5f:98:1e:9b:e4:5e: 6e:43:73:31:d5:c5:46:00:d1:1b:34:03:02:d9:84:fb:5b:39: d8:78:e9:ea:fa:f1:26:3c:31:e9:8c:5c:ee:2d:6d:61:de:4d: c3:59:5f:02:3f:9a:45:d8:cd:a1:45:59:3b:36:99:81:c7:f1: 66:1f:22:76:77:f0:71:d4:fc:80:6b:37:3b:15:f2:10:8b:b6: d9:7e:10:03:ba:19:57:8c:74:ad:a6:f1:96:55:b4:55:10:96: dc:50:9e:3a:ad:cc:e7:a4:15:49:82:ef:81:95:e1:1f:76:d6: 65:ff:b2:12:b0:b9:ae:07:2d:74:89:4a:80:d8:63:9f:5b:70: cf:6c:63:dd:93:33:56:b8:33:2f:77:ba:94:3c:eb:58:83:79: a9:97:97:74:6b:bb:07:4a:68:29:dd:5d:65:ab:dc:8c:dc:c8: 7c:b6:18:96:35:5b:b8:22:a6:76:18:75:a4:92:ed:63:93:b8: e5:78:bf:6f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdjbE62fe9x+fylkKapL/GwVzs3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJE QzlCODFBNzAeFw0yNTA3MDQyMTQ2MTlaFw0yNTA3MDgwNjU4MTlaMDMxMTAvBgNV BAMTKDk3ODUyRTNFNzMzMTFENTYzMkQ1NEMzRDgyRDMxQjkxRUI4RjE0OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVOIL0x9+27JcXvhyT4KVA7Y27 GaM4DsaR37IVkvGf9avu+ICjUAKw8kVCAyKOmV7lZNRWpNmVVmv4PZihZ/XfLGtr H7i82gAO9ZpFIiuJegK35DIz4yCHUSMFtVOcSgYsjNh48mfcXzM57crVmtKLlaf3 28SVvcc5klCzk3BLuZ5kldjmdtc+dJ52Zfno5w9uOKdJfSmzVQkZ2UaKRm9Khz5y k98pwt9dAzscFJr3R9lhmQ9pINzhOGAgC5OCbCtqnCZcwUNVb59eLr8dqHW0AYVA EE1t6bMn7Jabu+lvdYMBMxeJMS1tL7cIi0erhmySxRdUcYoQ2h2+6EZK1+qzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUl4UuPnMxHVYy1Uw9gtMbkeuPFI8wHwYDVR0j BBgwFoAUIQvnvVEvEi/WP+kFen8VItybgacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzAzNjk3NC04MTMxLTQ1YWYtOTRjZS1mNDliNDgxMWMxNzMvMC8yMTBCRTdCRDUx MkYxMjJGRDYzRkU5MDU3QTdGMTUyMkRDOUI4MUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJEQzlC ODFBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjcwMzY5NzQtODEzMS00NWFmLTk0 Y2UtZjQ5YjQ4MTFjMTczLzAvMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1 MjJEQzlCODFBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABI0+P7Q0cUmTYUSGlWRnEkSS7c0yhWrGzlS sgr/ZF8eqAq0ewdehXAqig3838i6fchP03hRCroMKmDvX+Rxdjev81+YHpvkXm5D czHVxUYA0Rs0AwLZhPtbOdh46er68SY8MemMXO4tbWHeTcNZXwI/mkXYzaFFWTs2 mYHH8WYfInZ38HHU/IBrNzsV8hCLttl+EAO6GVeMdK2m8ZZVtFUQltxQnjqtzOek FUmC74GV4R921mX/shKwua4HLXSJSoDYY59bcM9sY92TM1a4My93upQ861iDeamX l3RruwdKaCndXWWr3IzcyHy2GJY1W7gipnYYdaSS7WOTuOV4v28= -----END CERTIFICATE-----Generated at Sat Jul 5 21:08:02 2025 by rpki-client