$ rpki-client -vvf repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft File: CA978B7ACEF55A251B74721E04A034CA3601A88B.mft (raw, json) Hash identifier: /2w+5jtLmWuSIesTcR65zidhGjp9FZoFtB0gLKSfBDQ= Subject key identifier: EF:48:A2:F8:96:C0:2C:37:56:05:F4:2C:F3:36:C8:A3:8C:25:EA:B9 Authority key identifier: CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B Certificate issuer: /CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Certificate serial: 22E44A39B457E2659C539A8F28C46F76174A85A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft Manifest number: 0102 Signing time: Sun 29 Jun 2025 13:21:24 +0000 Manifest this update: Sun 29 Jun 2025 13:16:24 +0000 Manifest next update: Wed 02 Jul 2025 20:13:24 +0000 Files and hashes: 1: CA978B7ACEF55A251B74721E04A034CA3601A88B.crl (hash: HEIqctoTUaobHJ4jjpYtjghXoz1hhRcqOiifIcr45Rc=) 2: 3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa (hash: qSzxrfqd29Pg9HOqmUjPO7crmnWP/zs2luJUdYRC76s=) 3: 3130332e38332e3233362e302f32342d3234203d3e20313530353430.roa (hash: IHqcErbm/jh+8G9ITpkeHubYhwRm77oQuURliUYMdFs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 20:13:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:e4:4a:39:b4:57:e2:65:9c:53:9a:8f:28:c4:6f:76:17:4a:85:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Validity Not Before: Jun 29 13:16:24 2025 GMT Not After : Jul 2 20:13:24 2025 GMT Subject: CN=EF48A2F896C02C375605F42CF336C8A38C25EAB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:f7:b4:5f:44:64:a5:fb:2d:1a:8b:38:51:de: 03:c1:bf:f3:b6:04:a5:8c:1a:54:61:c9:20:61:7e: 40:ea:ea:26:b5:65:6b:09:dd:e4:18:53:b2:15:7d: 97:1c:0f:33:e5:8b:ca:1c:df:22:8c:84:24:c0:ad: 35:1e:27:d8:ad:77:7e:95:a7:c0:e0:62:b1:6c:85: de:a0:6f:c7:ec:d5:b4:cc:2b:e9:8f:c1:eb:a4:e8: ff:1a:b6:6c:e5:44:b6:0d:c3:66:85:b1:04:07:6e: cb:06:16:26:cf:61:e1:cd:70:45:b4:d0:91:b0:00: aa:9a:3e:b4:ca:04:17:9c:74:91:fe:55:d4:8a:48: c8:ad:67:8a:1e:78:8a:3d:82:5f:92:30:b8:ce:49: 18:0c:ad:98:28:96:a3:ef:e5:17:3c:e8:71:bb:ba: 9e:19:6e:93:5e:71:cc:b5:09:58:47:3f:f8:32:92: a8:da:80:cb:2d:63:85:62:ff:b6:d1:d0:7b:fa:75: 52:50:01:db:a9:30:57:e3:2a:1a:42:d0:86:47:db: 60:ee:ef:3d:7e:93:0d:1e:c3:93:bf:0e:64:e5:c6: e9:d8:1e:51:52:cf:fd:c5:36:6c:1a:a0:ea:07:69: 8a:b7:ba:c0:02:03:f8:21:4f:2c:ff:0d:00:0c:66: 1b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:48:A2:F8:96:C0:2C:37:56:05:F4:2C:F3:36:C8:A3:8C:25:EA:B9 X509v3 Authority Key Identifier: keyid:CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:c4:7d:ee:01:f6:c0:d3:f5:82:a6:36:75:ec:01:6c:df:16: aa:d9:be:36:aa:16:ad:85:3a:7e:18:4b:64:5a:54:55:9b:60: 23:12:4d:9c:a7:64:8b:eb:a5:c9:45:a1:a1:4a:4c:3c:8c:7c: 99:db:51:75:43:39:e8:35:b5:89:ab:1d:c7:8f:c0:d8:25:a2: 3c:29:09:d5:0f:24:d7:2d:24:c5:0f:bd:89:fd:39:78:49:5a: 12:f6:7b:d1:78:cf:bc:41:aa:6c:94:23:7e:f6:a3:05:fe:af: f7:6c:1f:35:6f:b6:1c:85:01:49:a0:5d:22:49:73:6b:92:b3: b6:6a:bb:2c:1b:6f:a5:65:56:25:da:83:57:be:cc:40:49:3d: 37:64:65:c6:d0:bf:c2:c1:83:c4:e6:69:cb:a2:88:dc:93:ff: 08:7b:0f:81:54:5b:2f:16:48:51:29:af:39:1f:ee:61:82:7a: 87:7f:94:cd:b9:a4:2d:cf:4d:c8:08:ac:02:e1:97:0b:ff:3b: 2e:34:c5:08:5a:e6:7d:60:79:1e:39:93:2d:9b:ca:25:ff:c5: 73:6e:fe:e5:a8:9b:cc:85:ab:91:4c:8b:fb:4a:e7:a0:c8:c2: 78:3f:ec:01:da:ae:85:a8:1c:59:16:ef:8a:0a:94:c8:68:87: 03:fc:5a:83 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIuRKObRX4mWcU5qPKMRvdhdKhaUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0Ez NjAxQTg4QjAeFw0yNTA2MjkxMzE2MjRaFw0yNTA3MDIyMDEzMjRaMDMxMTAvBgNV BAMTKEVGNDhBMkY4OTZDMDJDMzc1NjA1RjQyQ0YzMzZDOEEzOEMyNUVBQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCR97RfRGSl+y0aizhR3gPBv/O2 BKWMGlRhySBhfkDq6ia1ZWsJ3eQYU7IVfZccDzPli8oc3yKMhCTArTUeJ9itd36V p8DgYrFshd6gb8fs1bTMK+mPweuk6P8atmzlRLYNw2aFsQQHbssGFibPYeHNcEW0 0JGwAKqaPrTKBBecdJH+VdSKSMitZ4oeeIo9gl+SMLjOSRgMrZgolqPv5Rc86HG7 up4ZbpNeccy1CVhHP/gykqjagMstY4Vi/7bR0Hv6dVJQAdupMFfjKhpC0IZH22Du 7z1+kw0ew5O/DmTlxunYHlFSz/3FNmwaoOoHaYq3usACA/ghTyz/DQAMZhuFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU70ii+JbALDdWBfQs8zbIo4wl6rkwHwYDVR0j BBgwFoAUypeLes71WiUbdHIeBKA0yjYBqIswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmEzY2ZmNy0yYWExLTQ0ZGYtOTE0Yy1mMTkxODRmNmYzYjEvMC9DQTk3OEI3QUNF RjU1QTI1MUI3NDcyMUUwNEEwMzRDQTM2MDFBODhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0EzNjAx QTg4Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmZhM2NmZjctMmFhMS00NGRmLTkx NGMtZjE5MTg0ZjZmM2IxLzAvQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0 Q0EzNjAxQTg4Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG7Efe4B9sDT9YKmNnXsAWzfFqrZvjaqFq2F On4YS2RaVFWbYCMSTZynZIvrpclFoaFKTDyMfJnbUXVDOeg1tYmrHcePwNglojwp CdUPJNctJMUPvYn9OXhJWhL2e9F4z7xBqmyUI372owX+r/dsHzVvthyFAUmgXSJJ c2uSs7Zquywbb6VlViXag1e+zEBJPTdkZcbQv8LBg8TmacuiiNyT/wh7D4FUWy8W SFEprzkf7mGCeod/lM25pC3PTcgIrALhlwv/Oy40xQha5n1geR45ky2byiX/xXNu /uWom8yFq5FMi/tK56DIwng/7AHaroWoHFkW74oKlMhohwP8WoM= -----END CERTIFICATE-----Generated at Mon Jun 30 07:27:47 2025 by rpki-client