$ rpki-client -vvf repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft File: 16889A9053AE7EB169CF822E9EE670A5C618F97E.mft (raw, json) Hash identifier: LRRuFDl7eHn2crM7iegq6U1Qw8hY0T+ULcC99KkiK2o= Subject key identifier: 6A:7D:7F:68:A9:17:EA:73:AC:B8:AA:F1:5B:6C:65:C4:7A:85:91:4D Authority key identifier: 16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E Certificate issuer: /CN=16889A9053AE7EB169CF822E9EE670A5C618F97E Certificate serial: 7534821F7E14E120EBDF648375D43B0504B6048C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft Manifest number: 010C Signing time: Thu 03 Jul 2025 05:11:09 +0000 Manifest this update: Thu 03 Jul 2025 05:06:09 +0000 Manifest next update: Sun 06 Jul 2025 06:18:09 +0000 Files and hashes: 1: 3130332e36372e38302e302f32332d3233203d3e20313532303031.roa (hash: dOd/WmcL1O2XqOSnpwsMSYP0+oN55Jz82rLt6CdY2eM=) 2: 16889A9053AE7EB169CF822E9EE670A5C618F97E.crl (hash: /40I3Tge2OfpbbcPJ0ssF8yFNKmghE7niRQ1rwk8JoQ=) 3: 3130332e36372e38312e302f32342d3234203d3e20313532303031.roa (hash: VUXxXSjdw/tewePYso0nLi7PuBiFv1hIb0UmgFSc+fg=) 4: 3130332e36372e38302e302f32342d3234203d3e20313532303031.roa (hash: km/J3O6wA+/+giyqpUHqvd0x617eyhN+dq0ZwqMW8PA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.crl rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 06:18:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:34:82:1f:7e:14:e1:20:eb:df:64:83:75:d4:3b:05:04:b6:04:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16889A9053AE7EB169CF822E9EE670A5C618F97E Validity Not Before: Jul 3 05:06:09 2025 GMT Not After : Jul 6 06:18:09 2025 GMT Subject: CN=6A7D7F68A917EA73ACB8AAF15B6C65C47A85914D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:be:da:6e:bb:2e:d0:32:2f:a1:15:13:57:38: 12:25:19:6d:d2:ea:60:c5:4b:5d:d2:36:4c:de:e1: 8a:16:4b:8e:ab:6a:11:4a:d5:a4:5a:80:32:1b:2f: b3:52:c5:7d:3a:ee:a4:d2:06:ac:62:ab:f0:82:af: 78:57:60:ba:2d:1b:22:71:2c:6a:32:6b:19:32:45: 6e:42:4f:40:e0:d8:87:36:52:a5:3c:26:ea:dd:54: a4:2e:7d:7a:27:e2:99:a3:f2:01:67:6e:33:4d:cf: 04:a2:ff:18:39:51:0a:ab:c8:42:96:e8:c7:51:7a: 3e:61:14:b9:c6:37:17:00:9a:ff:8f:f5:72:b0:0d: d5:ef:07:99:3e:a1:4f:16:7b:b8:47:00:16:81:0c: 56:0c:96:39:a6:35:b7:ba:b3:e7:fe:85:5d:e0:f2: f3:fc:83:d0:80:08:e7:c6:db:d7:eb:62:46:81:03: c2:9f:7b:6f:a8:de:aa:ce:dc:85:62:82:c6:b3:86: 25:b8:70:c6:b4:1d:9b:b8:f6:09:63:fe:85:13:71: 13:87:eb:50:cb:32:ff:50:62:fc:69:9c:1e:51:e2: 3e:1c:7f:1c:21:a8:76:47:65:1e:c5:68:fa:80:43: 70:d6:b4:97:bd:c4:fb:86:0b:37:d8:6a:fe:cc:f8: 35:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:7D:7F:68:A9:17:EA:73:AC:B8:AA:F1:5B:6C:65:C4:7A:85:91:4D X509v3 Authority Key Identifier: keyid:16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:33:26:6b:d2:bb:18:99:0f:fb:cf:1d:44:45:67:88:b2:46: a2:ce:42:62:74:ab:0d:09:a4:97:2f:77:36:fe:d2:ec:57:53: 02:03:89:e2:4c:2b:b0:a2:03:a7:6c:5b:e4:ce:9b:31:a7:fe: 3d:03:e5:8f:ba:99:01:2f:f2:3e:b0:38:0d:68:43:45:e1:6a: de:4b:70:d3:f0:9e:e3:5c:80:6f:03:e1:23:3c:f1:e4:d1:95: 2a:de:07:bf:15:48:b5:bd:a7:38:8d:6e:8c:2e:51:46:33:40: 69:0d:68:b9:aa:88:7b:2c:bb:b8:26:32:26:c6:20:c3:6c:b0: f1:75:ab:4b:26:ca:81:36:2a:25:e0:ff:ca:6e:e0:19:4c:90: 98:81:c9:e8:fa:df:26:0d:ca:f0:ed:b4:cc:ac:e1:8e:90:c0: 2c:66:bf:23:03:b4:43:23:a2:87:e9:d9:2c:51:3f:40:93:b5: 75:91:58:02:66:6b:72:f9:26:5f:89:41:0c:90:c5:72:24:a3: e6:11:d0:f4:c3:15:93:0d:a1:88:2e:09:dd:00:46:50:12:41: a1:0f:bc:c7:51:57:be:4d:be:a1:c4:c2:bf:49:47:08:08:30: 53:aa:56:15:f1:4b:2b:e6:67:2a:f6:ee:58:f3:97:18:6e:3b: 03:03:ca:66 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdTSCH34U4SDr32SDddQ7BQS2BIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcwQTVD NjE4Rjk3RTAeFw0yNTA3MDMwNTA2MDlaFw0yNTA3MDYwNjE4MDlaMDMxMTAvBgNV BAMTKDZBN0Q3RjY4QTkxN0VBNzNBQ0I4QUFGMTVCNkM2NUM0N0E4NTkxNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCivtpuuy7QMi+hFRNXOBIlGW3S 6mDFS13SNkze4YoWS46rahFK1aRagDIbL7NSxX067qTSBqxiq/CCr3hXYLotGyJx LGoyaxkyRW5CT0Dg2Ic2UqU8JurdVKQufXon4pmj8gFnbjNNzwSi/xg5UQqryEKW 6MdRej5hFLnGNxcAmv+P9XKwDdXvB5k+oU8We7hHABaBDFYMljmmNbe6s+f+hV3g 8vP8g9CACOfG29frYkaBA8Kfe2+o3qrO3IVigsazhiW4cMa0HZu49glj/oUTcROH 61DLMv9QYvxpnB5R4j4cfxwhqHZHZR7FaPqAQ3DWtJe9xPuGCzfYav7M+DX7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUan1/aKkX6nOsuKrxW2xlxHqFkU0wHwYDVR0j BBgwFoAUFoiakFOufrFpz4IunuZwpcYY+X4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTNmMmU5Yi0xMDY4LTRmYTktYmExZC01OWQwNzFhNDEyYTIvMC8xNjg4OUE5MDUz QUU3RUIxNjlDRjgyMkU5RUU2NzBBNUM2MThGOTdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcwQTVDNjE4 Rjk3RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGUzZjJlOWItMTA2OC00ZmE5LWJh MWQtNTlkMDcxYTQxMmEyLzAvMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcw QTVDNjE4Rjk3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJQzJmvSuxiZD/vPHURFZ4iyRqLOQmJ0qw0J pJcvdzb+0uxXUwIDieJMK7CiA6dsW+TOmzGn/j0D5Y+6mQEv8j6wOA1oQ0Xhat5L cNPwnuNcgG8D4SM88eTRlSreB78VSLW9pziNbowuUUYzQGkNaLmqiHssu7gmMibG IMNssPF1q0smyoE2KiXg/8pu4BlMkJiByej63yYNyvDttMys4Y6QwCxmvyMDtEMj oofp2SxRP0CTtXWRWAJma3L5Jl+JQQyQxXIko+YR0PTDFZMNoYguCd0ARlASQaEP vMdRV75NvqHEwr9JRwgIMFOqVhXxSyvmZyr27ljzlxhuOwMDymY= -----END CERTIFICATE-----Generated at Thu Jul 3 10:04:09 2025 by rpki-client