$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft File: 21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json) Hash identifier: kUz4EafLH1fig4K55GdfhpwqT4l6p6njlkcT+dPiOms= Subject key identifier: E0:D6:5C:57:45:0D:73:8B:6E:A7:48:86:09:25:02:64:65:F8:54:8C Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 46B76AAA83F814B72AFC96AB2BB0B868184A23B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft Manifest number: 04A3 Signing time: Mon 30 Jun 2025 11:10:59 +0000 Manifest this update: Mon 30 Jun 2025 11:05:59 +0000 Manifest next update: Thu 03 Jul 2025 15:49:59 +0000 Files and hashes: 1: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: tHnhz2fXgWgEfW6z3dXjly3dIc/tabCc3mbpjCRITLI=) 2: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: OnBB+AVgOO2yluvkbnT8cnywdpmmnyLp0O1UDMPsJsk=) 3: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: RhfOeKNZ4j1KvALyW4SxaRw/kBv+Dgu0smuwmiknx1Y=) 4: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: 7blkTXyq3RKCIws921Czw5yMKl/tVjEFOw3lq63q9I8=) 5: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: Smb7HmzUf0UyLsjEJtoRvm3jALFW5SuffGaYfUAtD2s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 15:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:b7:6a:aa:83:f8:14:b7:2a:fc:96:ab:2b:b0:b8:68:18:4a:23:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Jun 30 11:05:59 2025 GMT Not After : Jul 3 15:49:59 2025 GMT Subject: CN=E0D65C57450D738B6EA748860925026465F8548C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:94:c2:1c:3c:64:a7:0f:af:1e:5e:c5:08:21: aa:eb:ce:28:cd:20:9f:c9:1b:8b:32:2a:13:d0:8c: 2e:b6:5f:84:46:64:34:aa:fd:a8:d5:97:c2:cc:28: ae:d0:be:da:db:ee:0e:55:6b:7a:29:5c:ca:31:bb: 15:4d:c3:d8:cc:d8:06:f6:68:97:70:ca:27:4f:19: db:2c:75:f6:e9:66:ef:b3:39:20:33:f2:c3:49:6b: e5:8f:b9:7e:ad:29:6d:eb:5a:5c:11:f6:dc:47:97: 06:95:b7:4b:ba:1a:17:22:92:2c:51:02:56:fb:83: 8d:87:f8:0c:de:5e:c0:88:22:16:f5:12:3a:30:80: f1:d7:9e:57:12:55:af:cf:98:0b:a0:52:02:f0:60: 2c:0c:24:b5:83:df:fd:16:16:89:0d:ad:23:a5:f9: df:cf:c0:7c:50:3b:6b:e7:4b:5e:2a:c1:8d:53:ac: b6:e7:50:5d:6c:dc:30:cf:64:77:81:c2:7d:47:1d: a1:be:67:0b:79:d0:d9:78:4e:3a:e2:05:33:f5:84: 8a:6a:94:7f:52:2f:b6:fa:c2:7d:e0:3f:e1:b3:82: 9f:2b:cb:0c:5e:c0:1c:e7:f3:e1:eb:2d:98:35:dc: 05:81:a5:91:5d:f7:3b:59:97:bc:49:00:18:0c:06: 3d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:D6:5C:57:45:0D:73:8B:6E:A7:48:86:09:25:02:64:65:F8:54:8C X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:9b:e8:9e:72:cb:67:f9:2a:6d:db:1b:7f:a7:7a:e6:02:cb: bf:14:86:93:27:3b:41:d7:98:33:04:e4:b1:57:f4:83:ed:1b: 03:f0:84:0a:a3:7f:a4:ca:aa:15:d7:97:db:d3:9b:4b:1d:75: df:b4:de:da:74:d4:5d:86:91:c9:68:d7:ab:67:83:68:20:7a: 17:f0:df:76:a8:08:bb:7e:dc:90:2a:d8:b4:ac:3e:d2:91:a4: 0e:62:65:ac:07:06:71:a5:93:6d:47:ff:8a:bf:40:a9:d6:d1: 08:98:51:13:46:c7:37:38:17:f0:ce:3b:df:73:59:1b:78:47: 29:5e:96:38:3c:c2:25:d1:4e:d0:91:68:a9:89:ce:f6:f3:76: ce:df:cd:62:2e:4b:e7:d2:be:02:1d:69:99:b1:e4:8d:ae:60: 9f:dd:c7:44:8d:53:b1:ef:6a:53:83:4b:ab:a0:77:3b:05:76: 1f:b4:07:f7:82:91:f9:84:41:2f:04:78:ef:b0:0a:76:f0:68: ea:23:b8:78:40:aa:0a:18:9b:dc:f8:d1:55:5d:4d:b1:9e:b4: c1:c0:78:cb:62:e9:32:b7:2a:c5:03:19:9f:03:da:3c:88:9b: 33:89:ef:dd:9a:64:e0:ca:38:46:42:51:9a:71:d4:9c:c5:79: 16:72:da:31 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURrdqqoP4FLcq/JarK7C4aBhKI7AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNTA2MzAxMTA1NTlaFw0yNTA3MDMxNTQ5NTlaMDMxMTAvBgNV BAMTKEUwRDY1QzU3NDUwRDczOEI2RUE3NDg4NjA5MjUwMjY0NjVGODU0OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSlMIcPGSnD68eXsUIIarrzijN IJ/JG4syKhPQjC62X4RGZDSq/ajVl8LMKK7Qvtrb7g5Va3opXMoxuxVNw9jM2Ab2 aJdwyidPGdssdfbpZu+zOSAz8sNJa+WPuX6tKW3rWlwR9txHlwaVt0u6GhcikixR Alb7g42H+AzeXsCIIhb1EjowgPHXnlcSVa/PmAugUgLwYCwMJLWD3/0WFokNrSOl +d/PwHxQO2vnS14qwY1TrLbnUF1s3DDPZHeBwn1HHaG+Zwt50Nl4TjriBTP1hIpq lH9SL7b6wn3gP+Gzgp8rywxewBzn8+HrLZg13AWBpZFd9ztZl7xJABgMBj2rAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4NZcV0UNc4tup0iGCSUCZGX4VIwwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmRhYmMwYmEtOTIyMi00YzQ1LTgz NDItZWI4NjQzYzQ5NjdkLzAvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5Qzgz NjNERDAwOTExQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEab6J5yy2f5Km3bG3+neuYCy78UhpMnO0HX mDME5LFX9IPtGwPwhAqjf6TKqhXXl9vTm0sddd+03tp01F2Gkclo16tng2ggehfw 33aoCLt+3JAq2LSsPtKRpA5iZawHBnGlk21H/4q/QKnW0QiYURNGxzc4F/DOO99z WRt4Ryleljg8wiXRTtCRaKmJzvbzds7fzWIuS+fSvgIdaZmx5I2uYJ/dx0SNU7Hv alODS6ugdzsFdh+0B/eCkfmEQS8EeO+wCnbwaOojuHhAqgoYm9z40VVdTbGetMHA eMti6TK3KsUDGZ8D2jyImzOJ792aZODKOEZCUZpx1JzFeRZy2jE= -----END CERTIFICATE-----Generated at Mon Jun 30 19:31:48 2025 by rpki-client