$ rpki-client -vvf repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft File: 10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft (raw, json) Hash identifier: adrlQ70GkBUUvXpWGx+7x2DDlR10dp5ATZUBMTNHCJ0= Subject key identifier: 20:CA:9B:D6:85:E7:26:7E:D1:7B:39:CD:A2:8D:1E:4D:40:89:26:ED Authority key identifier: 10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B Certificate issuer: /CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Certificate serial: 52B57CCB6537328DD40D7C5B7F19CC5060BBC271 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft Manifest number: 72 Signing time: Sun 29 Jun 2025 07:51:36 +0000 Manifest this update: Sun 29 Jun 2025 07:46:36 +0000 Manifest next update: Wed 02 Jul 2025 08:58:36 +0000 Files and hashes: 1: 3130332e3137312e3235342e302f32342d3234203d3e20313432333939.roa (hash: EfPoQqtxgLuobpoazcJOzehsaHb5tIneq6Zek5DzcaE=) 2: 10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl (hash: aycDGuiM1mU7nMWU+OPUMoD8Wsmq9UvaXkpmClIdwKI=) 3: 3130332e3137312e3235352e302f32342d3234203d3e20313432333939.roa (hash: J4isEyK1ySJtCWVpvhGVyfTYrZDUM8aentftYxqK7KA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 08:58:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:b5:7c:cb:65:37:32:8d:d4:0d:7c:5b:7f:19:cc:50:60:bb:c2:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Validity Not Before: Jun 29 07:46:36 2025 GMT Not After : Jul 2 08:58:36 2025 GMT Subject: CN=20CA9BD685E7267ED17B39CDA28D1E4D408926ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ca:a2:32:81:ea:bf:08:a3:32:3d:f4:56:c2: df:a5:1d:53:b5:6e:83:1e:1a:cc:cf:be:58:a4:19: 20:08:a1:ce:b6:f7:f2:0b:ea:7a:6f:08:7a:ed:38: 17:60:d4:4e:e1:fb:93:af:6a:c2:d0:b0:ef:85:ed: b1:4e:f7:79:aa:71:9a:ad:34:13:86:9d:96:28:7e: 26:82:ab:b3:e1:c9:75:bd:0b:ca:e5:e8:16:e6:e8: 61:06:04:47:68:3c:a1:cc:53:04:0a:8b:40:4c:4b: 7e:9d:e1:b4:61:78:3b:ec:4b:8e:03:7e:d3:90:e1: 70:9a:28:3a:6b:bb:48:9d:8c:cd:9d:18:bd:9d:88: 4f:79:7a:9b:25:cf:27:2e:aa:81:37:6b:a3:37:e8: 05:6d:38:5f:ba:79:62:20:13:37:63:e2:44:43:b1: 44:f7:d1:b4:fd:22:6f:7b:1d:1e:a3:1b:07:8e:d5: b6:ec:d9:03:c7:98:20:9b:96:21:29:49:c1:41:53: e8:3c:99:d4:3e:66:9b:29:c2:02:c9:1f:7b:48:5d: 83:82:98:1b:0f:78:27:34:ea:30:f5:bd:9b:e1:12: 86:d4:34:e9:03:59:9e:6c:c8:91:ec:29:72:a4:20: 69:28:84:43:0c:c8:9e:87:92:cc:db:66:40:7b:dc: fa:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:CA:9B:D6:85:E7:26:7E:D1:7B:39:CD:A2:8D:1E:4D:40:89:26:ED X509v3 Authority Key Identifier: keyid:10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:13:84:2f:91:3e:d7:1c:33:89:0f:b0:b7:78:be:1c:f5:25: 69:e3:42:87:ff:0f:53:08:a6:05:06:f5:48:3a:08:30:c4:5b: 7f:57:59:cf:89:cd:74:2c:9a:e5:f7:af:e7:2a:f9:7f:24:f9: f0:a4:5a:f8:f6:86:e8:e0:a8:5c:87:a6:1c:49:55:41:f6:9a: f3:ca:6e:33:70:f4:1b:32:17:e4:18:b4:65:26:ee:c8:0a:09: 1b:02:97:92:57:88:3c:ba:52:8b:c9:51:83:4b:3c:56:07:81: d9:53:21:73:f5:e7:8c:60:ea:ac:54:c7:fd:34:26:c6:0d:eb: 55:94:54:3a:d5:25:74:e6:f8:a3:63:bd:63:e9:ef:2e:19:fa: 05:f5:b0:84:d5:b3:2d:b5:a3:ff:29:32:b5:f6:90:f5:58:84: af:79:df:13:b8:db:f1:90:f2:a8:84:1f:98:3f:83:cb:ac:fc: 5c:e0:8b:16:5c:44:7d:d0:16:19:ef:0b:dd:08:92:e8:74:67: 67:a8:3d:c7:f4:d2:4d:2c:d6:e2:24:be:bb:f6:8c:90:96:40: 1f:27:77:e1:c3:c7:de:bb:af:6d:b7:f2:fa:5a:c3:e0:7c:71: 37:df:0b:86:1e:5c:11:50:a0:60:16:ac:ed:2f:d7:52:77:6b: a6:4b:e9:72 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUrV8y2U3Mo3UDXxbfxnMUGC7wnEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0 Q0ZBMzE3QjAeFw0yNTA2MjkwNzQ2MzZaFw0yNTA3MDIwODU4MzZaMDMxMTAvBgNV BAMTKDIwQ0E5QkQ2ODVFNzI2N0VEMTdCMzlDREEyOEQxRTRENDA4OTI2RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8yqIygeq/CKMyPfRWwt+lHVO1 boMeGszPvlikGSAIoc629/IL6npvCHrtOBdg1E7h+5OvasLQsO+F7bFO93mqcZqt NBOGnZYofiaCq7PhyXW9C8rl6Bbm6GEGBEdoPKHMUwQKi0BMS36d4bRheDvsS44D ftOQ4XCaKDpru0idjM2dGL2diE95epslzycuqoE3a6M36AVtOF+6eWIgEzdj4kRD sUT30bT9Im97HR6jGweO1bbs2QPHmCCbliEpScFBU+g8mdQ+ZpspwgLJH3tIXYOC mBsPeCc06jD1vZvhEobUNOkDWZ5syJHsKXKkIGkohEMMyJ6HkszbZkB73Pr7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIMqb1oXnJn7ReznNoo0eTUCJJu0wHwYDVR0j BBgwFoAUENNTbz0L9/eszopoUF7AMUz6MXswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjAxYzk2Ny05OWQwLTRjMjEtOTY0Mi04N2FkYTY3MTU1YzgvMC8xMEQzNTM2RjNE MEJGN0Y3QUNDRThBNjg1MDVFQzAzMTRDRkEzMTdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0Q0ZB MzE3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2IwMWM5NjctOTlkMC00YzIxLTk2 NDItODdhZGE2NzE1NWM4LzAvMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMw MzE0Q0ZBMzE3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG8ThC+RPtccM4kPsLd4vhz1JWnjQof/D1MI pgUG9Ug6CDDEW39XWc+JzXQsmuX3r+cq+X8k+fCkWvj2hujgqFyHphxJVUH2mvPK bjNw9BsyF+QYtGUm7sgKCRsCl5JXiDy6UovJUYNLPFYHgdlTIXP154xg6qxUx/00 JsYN61WUVDrVJXTm+KNjvWPp7y4Z+gX1sITVsy21o/8pMrX2kPVYhK953xO42/GQ 8qiEH5g/g8us/FzgixZcRH3QFhnvC90Ikuh0Z2eoPcf00k0s1uIkvrv2jJCWQB8n d+HDx967r2238vpaw+B8cTffC4YeXBFQoGAWrO0v11J3a6ZL6XI= -----END CERTIFICATE-----Generated at Mon Jun 30 18:59:32 2025 by rpki-client