$ rpki-client -vvf repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.mft File: 2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.mft (raw, json) Hash identifier: gSrQEs9BYiZrIX4v97+8x9GQ4buAgs3uYg3Z8jNsS2g= Subject key identifier: 0B:F7:75:2D:60:E8:2A:55:63:04:D0:E8:93:E6:9E:01:5C:8D:A1:7C Authority key identifier: 25:15:D4:BF:9E:F7:AA:E5:AE:BC:22:F5:2C:17:FF:17:DC:D6:FD:C2 Certificate issuer: /CN=2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2 Certificate serial: 4600570E6E17130F8EF80122560F9C1E5BC8A46D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.mft Manifest number: B9 Signing time: Sun 29 Jun 2025 05:21:33 +0000 Manifest this update: Sun 29 Jun 2025 05:16:33 +0000 Manifest next update: Wed 02 Jul 2025 10:36:33 +0000 Files and hashes: 1: 2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.crl (hash: HTSRYPxCTOsWJsV2sKRLH+ifh/kkm7s76xXEnP1dALs=) 2: 3136302e31392e38352e302f32342d3234203d3e20313532373534.roa (hash: 93YYxDDq8+f/Khx/2GnLN/kmjkNijzZ2VSNum/bWLqg=) 3: 3136302e31392e38342e302f32342d3234203d3e20313532373534.roa (hash: THBM8LqDnCB9g6mrX4v3sCaW9RltHiaa0G5I3swxXAw=) 4: 3136302e31392e38342e302f32332d3233203d3e20313532373534.roa (hash: 5HetFGZszR8N+jVJsMmxP9KoRUdy7YyfVMX9PkmHTvY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.crl rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 10:36:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:00:57:0e:6e:17:13:0f:8e:f8:01:22:56:0f:9c:1e:5b:c8:a4:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2 Validity Not Before: Jun 29 05:16:33 2025 GMT Not After : Jul 2 10:36:33 2025 GMT Subject: CN=0BF7752D60E82A556304D0E893E69E015C8DA17C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:00:3d:f8:36:83:95:70:53:2a:f5:45:47:5f: e5:33:38:60:a2:ac:e6:07:86:5d:3c:6f:1c:63:13: cb:e8:68:f7:1a:66:e6:0f:e2:b2:77:9a:22:19:79: 8b:55:0b:d6:2c:38:ff:5a:9e:45:86:bb:ac:09:5e: 42:b4:78:db:e7:60:e2:cd:5e:7b:67:f2:5a:46:6d: ad:d1:40:c8:1a:a2:2f:63:93:f2:29:98:47:bc:8f: b7:9f:5a:0c:5a:60:41:ae:7f:c2:d2:80:bd:d4:33: 71:18:4a:60:07:a6:bb:1c:d0:57:d8:6a:12:d8:9f: 45:f3:2d:02:8d:50:b1:53:64:a5:8f:a0:80:2a:77: af:f6:fb:42:9e:97:3f:1e:7f:6c:8f:52:ee:eb:5c: d7:d2:02:2d:98:fc:ca:70:8e:07:f2:94:1c:70:4c: 13:d7:31:ba:0f:14:a9:77:1d:5e:c0:89:e5:a8:cb: 4a:08:5d:93:90:11:22:28:9e:da:e6:5b:86:ab:2b: 03:c4:dd:00:b8:66:eb:2f:4c:98:d1:1a:67:4e:03: 55:cb:cb:3f:ff:eb:cd:7f:db:15:ca:46:25:96:d1: 52:a3:6a:61:c0:af:78:45:99:97:6b:94:22:70:ad: 75:e4:41:1e:04:a6:b0:a7:65:c6:a0:a3:e6:90:1a: e9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F7:75:2D:60:E8:2A:55:63:04:D0:E8:93:E6:9E:01:5C:8D:A1:7C X509v3 Authority Key Identifier: keyid:25:15:D4:BF:9E:F7:AA:E5:AE:BC:22:F5:2C:17:FF:17:DC:D6:FD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:87:39:56:07:b5:c7:99:20:50:18:e0:14:db:fe:25:80:a1: b2:75:9c:ba:11:76:d2:a3:7d:44:d8:0e:70:31:e4:48:56:53: cf:50:c8:74:a1:8b:13:eb:cc:9d:78:4c:23:72:db:bd:04:e5: a7:75:f6:2e:c4:f2:67:e4:2a:ea:29:ee:68:3e:bb:4a:07:c4: 9b:c4:68:17:d7:32:1d:cd:20:0d:9d:17:99:01:e4:65:88:22: cd:32:0e:5a:2d:14:21:51:d8:e1:ee:88:53:30:d1:be:4b:a4: b9:ac:e1:ea:5f:28:f1:5b:6a:a3:5f:5e:90:f6:7f:d6:34:e3: 40:ec:76:79:f9:36:c3:4e:ea:cc:f8:51:81:d1:be:3a:a8:3f: c4:f9:8e:b7:a0:b9:83:4c:d4:e2:ce:7b:24:78:d1:8d:1d:2c: e1:71:0d:eb:ad:f8:be:d5:30:01:e9:82:2e:d9:31:c8:7b:d4: ab:08:7c:bc:98:99:f3:74:47:39:f2:b2:7e:3c:12:07:5f:d8: 81:4d:1b:bd:ba:7f:4f:c1:e1:0b:7d:a3:f1:b4:02:76:f6:a1: a5:5a:05:9c:87:ff:64:30:16:82:b9:8d:40:69:ac:be:e6:48: d3:7f:a0:aa:1d:d6:f6:b0:03:8a:12:54:5e:70:88:16:e1:fd: 2d:30:1b:7b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURgBXDm4XEw+O+AEiVg+cHlvIpG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUxNUQ0QkY5RUY3QUFFNUFFQkMyMkY1MkMxN0ZGMTdE Q0Q2RkRDMjAeFw0yNTA2MjkwNTE2MzNaFw0yNTA3MDIxMDM2MzNaMDMxMTAvBgNV BAMTKDBCRjc3NTJENjBFODJBNTU2MzA0RDBFODkzRTY5RTAxNUM4REExN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8AD34NoOVcFMq9UVHX+UzOGCi rOYHhl08bxxjE8voaPcaZuYP4rJ3miIZeYtVC9YsOP9ankWGu6wJXkK0eNvnYOLN Xntn8lpGba3RQMgaoi9jk/IpmEe8j7efWgxaYEGuf8LSgL3UM3EYSmAHprsc0FfY ahLYn0XzLQKNULFTZKWPoIAqd6/2+0Kelz8ef2yPUu7rXNfSAi2Y/MpwjgfylBxw TBPXMboPFKl3HV7AieWoy0oIXZOQESIontrmW4arKwPE3QC4ZusvTJjRGmdOA1XL yz//681/2xXKRiWW0VKjamHAr3hFmZdrlCJwrXXkQR4EprCnZcago+aQGumtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUC/d1LWDoKlVjBNDok+aeAVyNoXwwHwYDVR0j BBgwFoAUJRXUv573quWuvCL1LBf/F9zW/cIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTA5OGYwMC1hMGEwLTRiNWMtOWU4My02MDY3MzcxMjhjYjEvMC8yNTE1RDRCRjlF RjdBQUU1QUVCQzIyRjUyQzE3RkYxN0RDRDZGREMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjUxNUQ0QkY5RUY3QUFFNUFFQkMyMkY1MkMxN0ZGMTdEQ0Q2 RkRDMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmEwOThmMDAtYTBhMC00YjVjLTll ODMtNjA2NzM3MTI4Y2IxLzAvMjUxNUQ0QkY5RUY3QUFFNUFFQkMyMkY1MkMxN0ZG MTdEQ0Q2RkRDMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF+HOVYHtceZIFAY4BTb/iWAobJ1nLoRdtKj fUTYDnAx5EhWU89QyHShixPrzJ14TCNy270E5ad19i7E8mfkKuop7mg+u0oHxJvE aBfXMh3NIA2dF5kB5GWIIs0yDlotFCFR2OHuiFMw0b5LpLms4epfKPFbaqNfXpD2 f9Y040Dsdnn5NsNO6sz4UYHRvjqoP8T5jreguYNM1OLOeyR40Y0dLOFxDeut+L7V MAHpgi7ZMch71KsIfLyYmfN0Rznysn48Egdf2IFNG726f0/B4Qt9o/G0Anb2oaVa BZyH/2QwFoK5jUBprL7mSNN/oKod1vawA4oSVF5wiBbh/S0wG3s= -----END CERTIFICATE-----Generated at Mon Jun 30 04:00:55 2025 by rpki-client