$ rpki-client -vvf repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft File: 21F5E152BA3E25561EA4D2E2986546412F44F15B.mft (raw, json) Hash identifier: Z7oQVJIqUwIrIrGcgA04Ybj2lL87bImrki4Pkm1EAeo= Subject key identifier: F2:13:2A:E8:B5:2A:BF:CF:F8:15:FC:CA:61:1E:81:E0:AD:F6:5A:8F Authority key identifier: 21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B Certificate issuer: /CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Certificate serial: 69B1855CD0AB035C0DD896DCE51A6B536AFCF11F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft Manifest number: 73 Signing time: Sun 29 Jun 2025 16:21:50 +0000 Manifest this update: Sun 29 Jun 2025 16:16:50 +0000 Manifest next update: Wed 02 Jul 2025 21:53:50 +0000 Files and hashes: 1: 3130332e3130362e37362e302f32342d3234203d3e203436303233.roa (hash: rou4lQQn7ojgWvv4wv09Ssy99ZSAyWazNJbw+IJaxNs=) 2: 3130332e3130362e37362e302f32332d3233203d3e203436303233.roa (hash: cL7ZL6RvGqaM5lLXVnNe5p70LEzT1elnw9tJI0VweII=) 3: 21F5E152BA3E25561EA4D2E2986546412F44F15B.crl (hash: kgfodZxGYfTuFxOKxGrxG6GYscPY1GjEHbErkMKBVzQ=) 4: 3130332e3130362e37392e302f32342d3234203d3e203436303233.roa (hash: +JichmiRgdBO5Ls93QqucE3C6EV+z6Am+M+Wk0rjli0=) 5: 3130332e3130362e37362e302f32322d3232203d3e203436303233.roa (hash: 2GYoGVGasxR8uDpvI7BrmDmU9LmzA4rGOfrvv4FSPFU=) 6: 3130332e3130362e37372e302f32342d3234203d3e203436303233.roa (hash: iziNbMfSG5lJ/Wc6NMmyz4JELED2OvK44piqUsCFc7c=) 7: 3130332e3130362e37382e302f32342d3234203d3e203436303233.roa (hash: FSBT4Cl2oIA3FZ2v8CwqLAvZnqhyh2xxPvGzfautFn8=) 8: 3130332e3130362e37382e302f32332d3233203d3e203436303233.roa (hash: eJ9GbsoPpuqjf9GV+xkr8k7F5h0W8otETbBjey1b6zQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:b1:85:5c:d0:ab:03:5c:0d:d8:96:dc:e5:1a:6b:53:6a:fc:f1:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Validity Not Before: Jun 29 16:16:50 2025 GMT Not After : Jul 2 21:53:50 2025 GMT Subject: CN=F2132AE8B52ABFCFF815FCCA611E81E0ADF65A8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7d:2e:fe:38:0b:d8:01:e9:ad:e4:6b:84:af: b2:1c:b8:0a:88:e5:4a:d6:23:df:8f:28:55:d1:23: 2a:c9:f3:75:e4:a6:95:ff:b0:d4:dc:04:69:65:82: 33:15:64:49:d0:95:77:2c:c6:b1:50:20:ec:cb:4e: 9e:e7:7d:d4:37:24:84:e1:f5:82:31:56:1b:38:bc: 08:0b:58:94:23:92:b5:85:40:2d:9c:63:bb:0e:52: cb:2f:fb:ba:1b:dc:53:c5:32:3d:3e:45:2e:67:fe: d7:1a:55:93:fc:8b:b3:63:84:0c:88:cb:f1:17:6e: fa:89:55:5c:82:12:cc:e8:3d:a0:b6:24:cc:ec:d8: ad:30:c3:bd:fc:0b:78:c8:d9:4e:20:ca:79:a0:0e: 70:8b:60:59:00:0a:18:6a:dd:c0:21:c8:c0:ef:16: 15:87:ad:73:26:57:3b:87:d2:69:dc:7b:36:71:fa: 3f:af:7c:b2:f4:49:68:26:81:32:3d:6c:44:55:2b: 82:47:f9:bc:6f:54:29:26:96:b7:2a:06:90:58:00: 6c:d3:e5:9d:3d:84:61:86:17:5e:af:7d:f9:54:88: 4e:b5:4c:3c:34:8c:01:0c:e4:2c:eb:56:48:79:e3: d3:df:27:b3:2c:ce:64:33:3a:a4:51:9f:fb:3a:b5: 39:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:13:2A:E8:B5:2A:BF:CF:F8:15:FC:CA:61:1E:81:E0:AD:F6:5A:8F X509v3 Authority Key Identifier: keyid:21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:90:14:e1:25:43:5c:b9:c1:69:21:15:9d:68:68:97:79:58: db:e0:31:04:00:1f:14:77:15:c2:83:0c:34:2b:69:27:58:26: 57:5d:49:48:3a:b1:00:90:40:56:98:0f:6d:d9:e0:61:b6:9b: aa:63:88:87:60:ed:9b:fb:34:af:a3:2a:61:31:9c:30:1b:0d: 5c:f7:00:84:77:b7:a5:da:0e:d5:ac:5f:24:f5:9f:92:5a:a8: 79:ab:f8:e2:90:01:d8:2e:5c:63:56:e9:9a:82:53:bf:41:d2: ca:24:fc:bb:b2:a6:3c:3c:8b:5a:d7:33:f2:1c:6b:f3:a4:21: 79:8e:d8:2f:a5:c8:ce:44:a7:4b:a1:3a:56:d8:5b:48:cd:cc: 90:4e:86:5a:28:4a:84:59:7f:6c:6b:6f:d2:30:97:71:db:66: c0:03:f8:7e:9b:20:e8:fd:58:f4:11:c3:ff:63:c8:da:25:4a: c7:ef:6b:72:94:a2:a0:b6:4e:ad:75:8a:13:10:fe:7d:c1:6b: dd:29:2c:a6:c1:a8:83:d7:d3:56:09:88:a6:39:48:40:45:87: e3:14:a4:d7:4d:df:da:51:33:42:60:09:7d:7e:a9:d4:dc:9a: cd:9a:ab:9b:a2:ab:92:6e:b9:36:4e:97:73:d3:d4:59:45:22: c8:aa:3a:8d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUabGFXNCrA1wN2Jbc5RprU2r88R8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEy RjQ0RjE1QjAeFw0yNTA2MjkxNjE2NTBaFw0yNTA3MDIyMTUzNTBaMDMxMTAvBgNV BAMTKEYyMTMyQUU4QjUyQUJGQ0ZGODE1RkNDQTYxMUU4MUUwQURGNjVBOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6fS7+OAvYAemt5GuEr7IcuAqI 5UrWI9+PKFXRIyrJ83XkppX/sNTcBGllgjMVZEnQlXcsxrFQIOzLTp7nfdQ3JITh 9YIxVhs4vAgLWJQjkrWFQC2cY7sOUssv+7ob3FPFMj0+RS5n/tcaVZP8i7NjhAyI y/EXbvqJVVyCEszoPaC2JMzs2K0ww738C3jI2U4gynmgDnCLYFkAChhq3cAhyMDv FhWHrXMmVzuH0mncezZx+j+vfLL0SWgmgTI9bERVK4JH+bxvVCkmlrcqBpBYAGzT 5Z09hGGGF16vfflUiE61TDw0jAEM5CzrVkh549PfJ7MszmQzOqRRn/s6tTlnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8hMq6LUqv8/4FfzKYR6B4K32Wo8wHwYDVR0j BBgwFoAUIfXhUro+JVYepNLimGVGQS9E8VswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j M2RkNjEzNS01NDhjLTQ4ODEtYWY3OC05M2FmOWYyYTI1MTYvMC8yMUY1RTE1MkJB M0UyNTU2MUVBNEQyRTI5ODY1NDY0MTJGNDRGMTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEyRjQ0 RjE1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzNkZDYxMzUtNTQ4Yy00ODgxLWFm NzgtOTNhZjlmMmEyNTE2LzAvMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2 NDEyRjQ0RjE1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJSQFOElQ1y5wWkhFZ1oaJd5WNvgMQQAHxR3 FcKDDDQraSdYJlddSUg6sQCQQFaYD23Z4GG2m6pjiIdg7Zv7NK+jKmExnDAbDVz3 AIR3t6XaDtWsXyT1n5JaqHmr+OKQAdguXGNW6ZqCU79B0sok/Luypjw8i1rXM/Ic a/OkIXmO2C+lyM5Ep0uhOlbYW0jNzJBOhlooSoRZf2xrb9Iwl3HbZsAD+H6bIOj9 WPQRw/9jyNolSsfva3KUoqC2Tq11ihMQ/n3Ba90pLKbBqIPX01YJiKY5SEBFh+MU pNdN39pRM0JgCX1+qdTcms2aq5uiq5JuuTZOl3PT1FlFIsiqOo0= -----END CERTIFICATE-----Generated at Sun Jun 29 18:26:46 2025 by rpki-client