$ rpki-client -vvf repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft File: 5DF7F909917C4DA09D7486E2B70323E7972B7675.mft (raw, json) Hash identifier: QsUm78+FMAllb+E0xwTQ5y6SmMW1+Y2pmQIkPcl3BDc= Subject key identifier: E4:DC:90:6B:A9:8F:02:B0:51:23:5A:BA:48:37:94:71:05:E1:AE:0D Authority key identifier: 5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 Certificate issuer: /CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Certificate serial: 666BFD279BE6EE71B36E04E76267F0DBB8A769A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft Manifest number: 01FC Signing time: Sun 29 Jun 2025 00:11:43 +0000 Manifest this update: Sun 29 Jun 2025 00:06:43 +0000 Manifest next update: Wed 02 Jul 2025 09:18:43 +0000 Files and hashes: 1: 3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa (hash: uTV9a8fdyT6ZmJ8NRNVsn4KQvmLK6xkJNJmzdYWe1pQ=) 2: 5DF7F909917C4DA09D7486E2B70323E7972B7675.crl (hash: XYum8MRA/UGZOHgxWRflf8SW09UzcPLgJ7Qrkhi3UkE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:6b:fd:27:9b:e6:ee:71:b3:6e:04:e7:62:67:f0:db:b8:a7:69:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Validity Not Before: Jun 29 00:06:43 2025 GMT Not After : Jul 2 09:18:43 2025 GMT Subject: CN=E4DC906BA98F02B051235ABA4837947105E1AE0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9b:8f:15:b1:47:e7:e2:59:ed:88:bb:c0:90: 2b:e3:d9:90:ba:84:a2:11:a3:f4:4e:ea:19:ad:40: 2c:4b:df:4d:64:69:70:26:44:12:df:18:c8:72:60: 72:58:23:24:2f:32:ae:1e:3e:3b:f9:9b:19:55:52: 92:a0:94:66:54:77:2f:f4:3b:1a:6c:46:38:a0:b3: 6d:3a:22:27:59:9a:b1:60:a2:3e:51:2f:14:45:60: ad:b2:32:69:88:20:0e:1b:9c:5e:f5:94:96:49:dd: 1e:1c:68:1e:c9:7e:62:e5:4e:79:64:11:52:cc:1b: 06:59:70:9e:26:a6:c9:16:b5:de:61:42:ab:a6:db: 75:89:97:81:9c:25:24:2a:ef:bd:21:95:fa:ff:0e: 70:75:ab:fb:d9:93:d1:e5:36:4a:b3:31:99:0f:b0: 74:76:07:c2:f7:39:90:ba:12:c0:dc:0b:aa:66:5f: 38:d4:4b:a4:42:63:0e:ad:a5:fb:14:ed:89:4a:f4: ce:8e:81:af:da:00:f2:f0:ef:cb:2e:7b:c8:09:03: 33:05:e6:39:07:db:be:b7:19:a7:a7:1b:82:93:6e: d6:bf:7e:3f:7a:01:2b:88:32:9e:79:7b:e9:f9:d1: f9:07:12:9a:7e:9f:47:32:64:c2:6a:ee:91:63:1e: 75:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:DC:90:6B:A9:8F:02:B0:51:23:5A:BA:48:37:94:71:05:E1:AE:0D X509v3 Authority Key Identifier: keyid:5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ca:be:eb:a9:dc:e1:58:17:be:85:3f:9a:69:fb:7b:60:de:99: 81:02:5b:c4:e3:6a:a1:e9:df:ca:a9:52:7f:82:fe:a9:43:55: cc:c4:cb:14:dc:55:3c:35:c9:e4:90:54:bd:5a:01:73:51:88: e8:20:f4:0e:0d:ea:de:ab:83:f1:e1:39:de:ab:f0:e1:87:d7: 90:1f:99:2d:c5:cf:fe:e2:4a:5e:d2:b3:50:d9:60:69:1f:8e: df:a8:b8:fa:b6:3d:ad:f6:d0:45:40:88:da:6f:61:7f:83:9d: 36:6a:8b:e6:a1:b9:a7:98:83:66:48:85:f2:f5:a3:2e:cf:3a: 21:13:ff:a1:be:a5:d7:2f:8a:56:b7:28:c9:38:43:1b:2d:bb: 41:aa:a3:59:95:d0:7e:52:ee:d5:85:fb:fe:37:75:3e:4c:26: a5:a9:84:da:d3:cd:26:12:a9:44:52:cb:95:c2:44:3c:7c:78: 52:b1:02:d3:1c:6a:7e:1a:d5:1d:8f:d3:79:02:25:c2:b1:42: 89:29:c9:b8:fd:1e:5d:d9:8b:9a:f9:9f:1d:a5:7b:38:2e:1e: 95:61:17:d2:b4:04:40:9f:5f:49:bd:82:80:5c:5c:e0:84:fa: 6c:c6:54:6c:de:a1:63:d3:2d:16:55:4c:10:f1:9a:12:cc:b3: f7:92:08:17 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZmv9J5vm7nGzbgTnYmfw27inaaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5 NzJCNzY3NTAeFw0yNTA2MjkwMDA2NDNaFw0yNTA3MDIwOTE4NDNaMDMxMTAvBgNV BAMTKEU0REM5MDZCQTk4RjAyQjA1MTIzNUFCQTQ4Mzc5NDcxMDVFMUFFMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVm48VsUfn4lntiLvAkCvj2ZC6 hKIRo/RO6hmtQCxL301kaXAmRBLfGMhyYHJYIyQvMq4ePjv5mxlVUpKglGZUdy/0 OxpsRjigs206IidZmrFgoj5RLxRFYK2yMmmIIA4bnF71lJZJ3R4caB7JfmLlTnlk EVLMGwZZcJ4mpskWtd5hQqum23WJl4GcJSQq770hlfr/DnB1q/vZk9HlNkqzMZkP sHR2B8L3OZC6EsDcC6pmXzjUS6RCYw6tpfsU7YlK9M6Oga/aAPLw78sue8gJAzMF 5jkH2763GaenG4KTbta/fj96ASuIMp55e+n50fkHEpp+n0cyZMJq7pFjHnV/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5NyQa6mPArBRI1q6SDeUcQXhrg0wHwYDVR0j BBgwFoAUXff5CZF8TaCddIbitwMj55crdnUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2I2NGMzZS1iMTNkLTQyN2EtYjk4Mi00Mzk0MDczZTVjZjUvMC81REY3RjkwOTkx N0M0REEwOUQ3NDg2RTJCNzAzMjNFNzk3MkI3Njc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5NzJC NzY3NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDdiNjRjM2UtYjEzZC00MjdhLWI5 ODItNDM5NDA3M2U1Y2Y1LzAvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIz RTc5NzJCNzY3NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMq+66nc4VgXvoU/mmn7e2DemYECW8TjaqHp 38qpUn+C/qlDVczEyxTcVTw1yeSQVL1aAXNRiOgg9A4N6t6rg/HhOd6r8OGH15Af mS3Fz/7iSl7Ss1DZYGkfjt+ouPq2Pa320EVAiNpvYX+DnTZqi+ahuaeYg2ZIhfL1 oy7POiET/6G+pdcvila3KMk4Qxstu0Gqo1mV0H5S7tWF+/43dT5MJqWphNrTzSYS qURSy5XCRDx8eFKxAtMcan4a1R2P03kCJcKxQokpybj9Hl3Zi5r5nx2lezguHpVh F9K0BECfX0m9goBcXOCE+mzGVGzeoWPTLRZVTBDxmhLMs/eSCBc= -----END CERTIFICATE-----Generated at Sun Jun 29 18:10:16 2025 by rpki-client