$ rpki-client -vvf repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.mft File: B891A45840F824B9F116CBEAA3574A68343F5538.mft (raw, json) Hash identifier: ojSeBiSnkoR1gBFZzy20VLP5hYeVXKtGrtUfJkft/ec= Subject key identifier: 82:39:17:AD:B8:5B:3A:87:1E:6C:C7:AA:4A:59:B4:E1:66:24:1C:89 Authority key identifier: B8:91:A4:58:40:F8:24:B9:F1:16:CB:EA:A3:57:4A:68:34:3F:55:38 Certificate issuer: /CN=B891A45840F824B9F116CBEAA3574A68343F5538 Certificate serial: 392E1C16C8D9718068880A484C95CAC5B6BA9773 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.mft Manifest number: 59 Signing time: Fri 27 Jun 2025 19:52:17 +0000 Manifest this update: Fri 27 Jun 2025 19:47:17 +0000 Manifest next update: Tue 01 Jul 2025 00:42:17 +0000 Files and hashes: 1: 3130332e32332e3131362e302f32332d3234203d3e203538333835.roa (hash: 5UewkM1pAbLnP65YZLTVxzSYU/L1g1J84e5HTrwnd3M=) 2: 3130332e3234362e3136392e302f32342d3234203d3e203538333835.roa (hash: 8meh4qssPriL64kBvXs5YtBumf6ArWnflJaVktjo3Fo=) 3: 3131302e39322e37342e302f32332d3234203d3e203538333835.roa (hash: XgxFmfrvLr/HS422k6dRWPfIUiiCoQbGouQtaJJQX4Y=) 4: B891A45840F824B9F116CBEAA3574A68343F5538.crl (hash: iZj6Nt8AMS02qRIZ8zX7mKTFkHxhO1AFg19naW3PNLA=) 5: 3130332e32382e3231382e302f32342d3234203d3e203538333835.roa (hash: cMJACG+wJYTKnGt0rpeqO/b7Kbn+Qvg12TrUivh9cCk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.crl rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 00:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:2e:1c:16:c8:d9:71:80:68:88:0a:48:4c:95:ca:c5:b6:ba:97:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B891A45840F824B9F116CBEAA3574A68343F5538 Validity Not Before: Jun 27 19:47:17 2025 GMT Not After : Jul 1 00:42:17 2025 GMT Subject: CN=823917ADB85B3A871E6CC7AA4A59B4E166241C89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:57:09:f2:6b:53:a3:a4:35:5f:cc:f9:ba:c1: 91:a4:d6:18:0a:77:1f:ce:32:1d:ad:56:7c:7b:e8: 14:a0:21:67:4b:65:37:10:cb:47:c4:a7:88:9b:dc: 8c:8f:14:85:ff:f2:18:5b:9f:93:3c:ba:d8:25:15: 35:a8:e6:b4:e5:73:f2:0a:ac:ea:e8:cd:0c:b9:53: b2:19:71:5a:52:28:dc:7b:f2:ec:68:31:95:5c:32: 99:c1:35:a1:e8:70:e0:78:37:af:3f:65:35:33:c4: bf:14:87:7c:43:97:28:24:86:a5:fe:7c:d2:da:6e: 32:bf:70:24:f4:4a:c3:9d:74:cd:bf:07:40:6c:62: e1:91:38:2b:5c:cc:6f:13:88:c6:32:54:e7:d7:f1: 8d:3d:58:76:a1:e6:ac:8d:45:38:57:9c:0e:ed:8b: a3:ab:42:4a:a4:52:cc:07:9a:31:89:dc:c8:c1:fa: c5:a1:7d:a9:16:5b:ef:be:bb:c8:8e:9b:64:2e:a3: 17:10:61:28:f4:87:c8:be:84:c5:d0:0f:ea:df:09: 99:22:0a:78:19:fd:1c:a8:ab:06:7f:0b:e2:da:37: 94:11:d1:b1:3f:90:68:1c:32:6d:fc:dc:8f:cd:76: b9:c3:a3:63:6f:69:e6:7c:10:5a:a7:0b:c9:35:ac: 22:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:39:17:AD:B8:5B:3A:87:1E:6C:C7:AA:4A:59:B4:E1:66:24:1C:89 X509v3 Authority Key Identifier: keyid:B8:91:A4:58:40:F8:24:B9:F1:16:CB:EA:A3:57:4A:68:34:3F:55:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:fb:76:11:42:71:c8:83:9a:77:93:18:36:29:be:8f:51:46: b7:93:fd:b0:64:41:29:54:6e:b7:f9:07:ca:c8:f9:a0:3a:b8: f6:9e:45:48:83:70:d6:f8:b4:6c:e7:14:17:b8:61:56:c9:8f: 49:2f:01:5c:99:ac:41:ec:b6:e1:9f:f3:cc:f4:31:33:8d:63: 31:a4:31:37:9b:f7:c9:f4:cf:05:5b:3a:ff:f7:b6:79:f2:2a: 71:6d:d7:82:4a:d6:e6:00:94:c9:e1:a8:6a:ce:58:d1:3d:3e: fc:c6:20:94:a6:ae:e3:9f:96:fe:39:48:ce:70:f4:0e:62:18: aa:71:1d:21:66:6e:76:fb:49:04:d0:e1:7a:ca:15:4e:cf:53: d5:0c:58:c5:2b:a9:16:f0:a8:f1:2c:a9:04:9a:77:83:15:0b: 31:6e:a7:94:d1:47:09:05:78:c1:c1:ea:30:1a:6c:ab:2f:44: c9:bf:34:bc:49:ea:03:2e:1c:18:84:91:c8:60:1a:0b:48:5c: b3:60:b6:d6:07:ed:28:21:b2:57:b9:13:3e:e1:fe:60:f8:37: f4:a6:cc:c0:dc:fe:9f:e3:ba:48:0a:93:25:3c:5a:24:fc:8c: d4:85:14:8c:03:36:2d:cc:1f:3f:a9:bd:73:e8:83:06:6f:4c: 7a:6f:ca:3a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOS4cFsjZcYBoiApITJXKxba6l3MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg5MUE0NTg0MEY4MjRCOUYxMTZDQkVBQTM1NzRBNjgz NDNGNTUzODAeFw0yNTA2MjcxOTQ3MTdaFw0yNTA3MDEwMDQyMTdaMDMxMTAvBgNV BAMTKDgyMzkxN0FEQjg1QjNBODcxRTZDQzdBQTRBNTlCNEUxNjYyNDFDODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcVwnya1OjpDVfzPm6wZGk1hgK dx/OMh2tVnx76BSgIWdLZTcQy0fEp4ib3IyPFIX/8hhbn5M8utglFTWo5rTlc/IK rOrozQy5U7IZcVpSKNx78uxoMZVcMpnBNaHocOB4N68/ZTUzxL8Uh3xDlygkhqX+ fNLabjK/cCT0SsOddM2/B0BsYuGROCtczG8TiMYyVOfX8Y09WHah5qyNRThXnA7t i6OrQkqkUswHmjGJ3MjB+sWhfakWW+++u8iOm2QuoxcQYSj0h8i+hMXQD+rfCZki CngZ/RyoqwZ/C+LaN5QR0bE/kGgcMm383I/NdrnDo2NvaeZ8EFqnC8k1rCJdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgjkXrbhbOocebMeqSlm04WYkHIkwHwYDVR0j BBgwFoAUuJGkWED4JLnxFsvqo1dKaDQ/VTgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MzkyNTM4OC0zNWM2LTQxZDctOWRjNC1kYjRkMTE4ZDEzNWEvMC9CODkxQTQ1ODQw RjgyNEI5RjExNkNCRUFBMzU3NEE2ODM0M0Y1NTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg5MUE0NTg0MEY4MjRCOUYxMTZDQkVBQTM1NzRBNjgzNDNG NTUzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDM5MjUzODgtMzVjNi00MWQ3LTlk YzQtZGI0ZDExOGQxMzVhLzAvQjg5MUE0NTg0MEY4MjRCOUYxMTZDQkVBQTM1NzRB NjgzNDNGNTUzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAb7dhFCcciDmneTGDYpvo9RRreT/bBkQSlU brf5B8rI+aA6uPaeRUiDcNb4tGznFBe4YVbJj0kvAVyZrEHstuGf88z0MTONYzGk MTeb98n0zwVbOv/3tnnyKnFt14JK1uYAlMnhqGrOWNE9PvzGIJSmruOflv45SM5w 9A5iGKpxHSFmbnb7SQTQ4XrKFU7PU9UMWMUrqRbwqPEsqQSad4MVCzFup5TRRwkF eMHB6jAabKsvRMm/NLxJ6gMuHBiEkchgGgtIXLNgttYH7Sghsle5Ez7h/mD4N/Sm zMDc/p/jukgKkyU8WiT8jNSFFIwDNi3MHz+pvXPogwZvTHpvyjo= -----END CERTIFICATE-----Generated at Sun Jun 29 18:49:16 2025 by rpki-client