$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft File: 1952B074D19D5AB562D7EE537AD3059EA097353B.mft (raw, json) Hash identifier: pkSU3Nbd8O2YHitDfPfZA0nzxDoOWWVeu1GIgQ0nvok= Subject key identifier: 2F:D2:51:EA:C2:5D:C3:05:B2:3A:56:9E:9A:1B:CD:90:3E:36:F5:DA Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B Certificate serial: 3BAA8F2B0EF298A571AA0A3B3EC70A3D70AD3F6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft Manifest number: 01E4 Signing time: Tue 01 Jul 2025 00:51:31 +0000 Manifest this update: Tue 01 Jul 2025 00:46:31 +0000 Manifest next update: Fri 04 Jul 2025 11:58:31 +0000 Files and hashes: 1: 323430363a616563303a313a3a2f34382d3438203d3e20313431363735.roa (hash: EFHYC7XhG7MQGG+p71C9PeqM87F/0AnjgXarEbD+y4E=) 2: 3130332e3135382e32362e302f32342d3234203d3e20313431363735.roa (hash: ykRWiMSaAsP4Z39Whyu3kvlehUT+9RaQnqBPMyF4FR0=) 3: 323430363a616563303a323a3a2f34382d3438203d3e20313431363735.roa (hash: sJCm2ee/pkpEqZ3CTb0n1XRlqsVPP4kAsamQV7lnrGA=) 4: 1952B074D19D5AB562D7EE537AD3059EA097353B.crl (hash: tdJLcvhLkYFrfve+M9Fl38iGU7ehDkQQki/uLz57ric=) 5: 323430363a616563303a3a2f34382d3438203d3e20313431363735.roa (hash: AS7ErBWYOh3ltpqaacXCmV2CVPom+cE/4rFVdqtAK+c=) 6: 3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa (hash: 83g1exgFqaTQKU38X1D6x0BtWT5D2KATwMghhQSp0Hg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 11:58:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:aa:8f:2b:0e:f2:98:a5:71:aa:0a:3b:3e:c7:0a:3d:70:ad:3f:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Validity Not Before: Jul 1 00:46:31 2025 GMT Not After : Jul 4 11:58:31 2025 GMT Subject: CN=2FD251EAC25DC305B23A569E9A1BCD903E36F5DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5e:65:10:c3:a1:71:c1:1f:10:56:c3:e5:ed: 79:80:53:74:1e:49:1f:b1:a2:ce:88:02:7b:e9:01: 42:10:17:9e:a9:12:7a:ad:8c:d3:32:9d:25:3a:fb: b5:39:69:23:73:ce:0c:dc:3d:59:17:a5:2c:32:a6: 30:7d:3a:4e:03:e4:28:14:6f:50:bc:94:8f:3e:49: c3:d7:14:da:9f:ec:22:e0:49:3f:1e:03:4a:5a:74: 15:b3:ba:07:b9:88:24:ce:7a:fe:25:07:b4:c8:a3: 34:eb:01:63:97:3b:73:d2:00:96:61:12:fe:a9:c7: 9f:35:b1:57:98:ed:b7:50:e1:0a:c5:29:9e:77:c0: eb:43:b9:06:95:a9:02:e5:bd:9e:15:65:b8:0b:a5: ce:70:16:af:78:7e:fb:10:8b:2a:02:c2:ed:6e:d6: 7b:fc:40:66:f3:5c:8c:69:91:a2:7c:7b:5d:f8:58: 7c:e2:13:2c:5e:3e:86:27:e7:12:e9:f8:27:d9:a4: dd:b2:91:96:0b:02:d7:06:28:32:92:da:58:7d:2d: af:67:fc:4f:d3:28:07:f1:72:43:5e:39:09:72:a0: 29:54:23:9e:48:46:17:79:9b:82:de:81:97:bb:3d: d6:ba:18:8f:d4:aa:27:07:a9:33:47:51:3a:02:ef: 0e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:D2:51:EA:C2:5D:C3:05:B2:3A:56:9E:9A:1B:CD:90:3E:36:F5:DA X509v3 Authority Key Identifier: keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:e6:6a:14:e9:d0:6b:02:1e:04:b3:ff:3b:31:3a:d7:73:77: c0:c0:4a:8a:fd:d9:aa:c3:9f:33:c1:09:ee:9a:58:26:d9:44: b5:b0:33:c5:77:72:33:45:26:a8:2a:54:78:95:4a:9d:c5:d6: a4:be:d9:f6:36:59:90:c8:80:37:86:f9:f8:8a:02:9e:0f:a5: 54:12:8e:ee:ab:f4:51:57:99:de:a9:0e:f6:b7:1a:da:fc:34: d1:d0:64:b7:ba:d9:d8:c9:c1:9b:74:e9:f5:41:3e:3b:ce:03: 46:f2:5a:28:b0:99:60:43:4c:ee:6b:27:f3:c0:2b:a3:e6:69: 87:c5:ca:3e:05:bf:fe:ec:16:44:16:a6:78:8b:b9:61:b0:5d: a8:ce:9b:7b:fd:3b:3c:9d:4b:f7:4c:3b:5f:94:e6:ac:61:ef: 00:a1:4f:ff:e9:be:73:93:8b:12:01:7c:25:85:58:15:33:80: ee:18:3c:86:ad:f9:db:6b:16:bf:5a:dc:44:5f:1f:9d:5c:c2: ed:44:9f:a8:56:1d:81:48:78:15:01:e6:c6:3e:13:ff:da:e0: 65:c7:65:7a:df:71:a4:98:c2:1b:bc:76:a2:02:4c:e1:95:f3: a3:c2:f8:88:6e:81:59:80:9b:89:7f:d3:e1:07:1e:13:c6:d2: 6a:e0:b8:79 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUO6qPKw7ymKVxqgo7PscKPXCtP2owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVB MDk3MzUzQjAeFw0yNTA3MDEwMDQ2MzFaFw0yNTA3MDQxMTU4MzFaMDMxMTAvBgNV BAMTKDJGRDI1MUVBQzI1REMzMDVCMjNBNTY5RTlBMUJDRDkwM0UzNkY1REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/XmUQw6FxwR8QVsPl7XmAU3Qe SR+xos6IAnvpAUIQF56pEnqtjNMynSU6+7U5aSNzzgzcPVkXpSwypjB9Ok4D5CgU b1C8lI8+ScPXFNqf7CLgST8eA0padBWzuge5iCTOev4lB7TIozTrAWOXO3PSAJZh Ev6px581sVeY7bdQ4QrFKZ53wOtDuQaVqQLlvZ4VZbgLpc5wFq94fvsQiyoCwu1u 1nv8QGbzXIxpkaJ8e134WHziEyxePoYn5xLp+CfZpN2ykZYLAtcGKDKS2lh9La9n /E/TKAfxckNeOQlyoClUI55IRhd5m4LegZe7Pda6GI/UqicHqTNHUToC7w61AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUL9JR6sJdwwWyOlaemhvNkD429dowHwYDVR0j BBgwFoAUGVKwdNGdWrVi1+5TetMFnqCXNTswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMC8xOTUyQjA3NEQx OUQ1QUI1NjJEN0VFNTM3QUQzMDU5RUEwOTczNTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVBMDk3 MzUzQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDRmMmMwMjUtMWQ3Ni00YTM2LTgx NjAtYTllOGFmZTM1NzlmLzAvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1 OUVBMDk3MzUzQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHPmahTp0GsCHgSz/zsxOtdzd8DASor92arD nzPBCe6aWCbZRLWwM8V3cjNFJqgqVHiVSp3F1qS+2fY2WZDIgDeG+fiKAp4PpVQS ju6r9FFXmd6pDva3Gtr8NNHQZLe62djJwZt06fVBPjvOA0byWiiwmWBDTO5rJ/PA K6PmaYfFyj4Fv/7sFkQWpniLuWGwXajOm3v9OzydS/dMO1+U5qxh7wChT//pvnOT ixIBfCWFWBUzgO4YPIat+dtrFr9a3ERfH51cwu1En6hWHYFIeBUB5sY+E//a4GXH ZXrfcaSYwhu8dqICTOGV86PC+IhugVmAm4l/0+EHHhPG0mrguHk= -----END CERTIFICATE-----Generated at Tue Jul 1 11:51:55 2025 by rpki-client