$ rpki-client -vvf repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft File: 2B90BB17E78B62C15179029C6583E42BD7E18277.mft (raw, json) Hash identifier: aAhAGrfJBb2if2Tpgo42KaUcc3Vmr+e9dytSGAT1Uqg= Subject key identifier: 8A:13:93:A9:CD:44:CE:DF:8B:92:C5:1D:94:39:67:1D:DB:2B:6B:26 Authority key identifier: 2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 Certificate issuer: /CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Certificate serial: 710281EEBC539434A154075FD51411963453239F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft Manifest number: 61 Signing time: Tue 01 Jul 2025 07:50:36 +0000 Manifest this update: Tue 01 Jul 2025 07:45:36 +0000 Manifest next update: Fri 04 Jul 2025 11:26:36 +0000 Files and hashes: 1: 2B90BB17E78B62C15179029C6583E42BD7E18277.crl (hash: jklMFZIjoS/xhiiYsGpsEwNy+ejQxm3akyBM2IsHRTg=) 2: 3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa (hash: xGHUucKhH5kmQ+65YZMYfuYlyW3kJ8ie5abut/yqhlk=) 3: 3130332e38302e3231342e302f32332d3233203d3e20313533303932.roa (hash: kTHvzmqB/2veUohEP9ZdbxC595Rgd4EACGX8AypsPpY=) 4: 3130332e38302e3231352e302f32342d3234203d3e20313533303932.roa (hash: 4Y5Ddm6yUymC+qHSs8fVActMjjMDZEcHLdC59v78BoQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 11:26:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:02:81:ee:bc:53:94:34:a1:54:07:5f:d5:14:11:96:34:53:23:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Validity Not Before: Jul 1 07:45:36 2025 GMT Not After : Jul 4 11:26:36 2025 GMT Subject: CN=8A1393A9CD44CEDF8B92C51D9439671DDB2B6B26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3f:fe:df:32:21:08:5f:9b:6f:e3:d6:b5:47: 87:b9:2d:c9:ee:6a:54:fd:90:7b:e9:c7:a8:c5:2e: 27:85:ea:28:10:87:21:ad:57:83:a7:d2:06:d4:f8: 24:6d:5b:8d:ab:d2:78:f2:77:3c:fd:d9:ab:f6:c9: 68:ed:d5:32:67:f9:16:83:44:53:91:48:93:a4:4a: a3:ff:82:37:41:89:b3:ba:32:06:c2:3e:65:57:b3: 84:27:9e:6b:47:49:99:91:59:ee:1e:9a:b8:d3:e3: 56:eb:99:b8:08:9c:9b:3d:18:b1:31:51:0a:fe:db: ed:da:e5:1c:9a:6d:f6:c7:0d:9f:c9:8c:ec:cc:11: 87:ef:32:30:c5:ed:b7:08:9f:46:cd:fa:80:de:5c: f7:dd:39:77:fa:66:23:f3:a7:c2:07:7a:57:ac:a8: d0:e6:d6:f4:2b:7f:bb:69:1c:2a:57:ba:a2:ea:de: 47:ce:41:c5:26:f4:21:fa:2e:fd:f5:19:fb:85:75: 83:53:95:17:15:91:c3:3a:94:8f:0e:33:e5:e3:e9: ff:1c:f6:7f:7f:07:1e:c8:71:9f:89:34:af:7f:f4: 96:73:a2:55:27:1b:17:4e:ea:8a:4e:5e:89:59:f4: 9b:e9:03:a3:57:c0:cc:05:11:c7:b9:ca:f6:f7:d7: 7c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:13:93:A9:CD:44:CE:DF:8B:92:C5:1D:94:39:67:1D:DB:2B:6B:26 X509v3 Authority Key Identifier: keyid:2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:98:d8:21:fc:ce:c1:91:4d:b8:1d:b0:b5:5c:1c:3b:c6:d1: 28:cc:72:be:38:d8:82:1f:a1:9d:2f:33:cf:fa:c7:38:98:26: a1:99:10:16:1e:db:6c:a8:7e:60:c1:5a:f8:a6:bd:0b:f3:5e: b1:89:d9:9c:79:e3:80:c4:31:89:9b:1a:36:62:4a:00:ad:22: d0:c0:3f:b0:cc:70:3b:03:33:97:8a:72:af:7f:a5:b0:35:ec: 11:36:41:11:b2:ab:c8:dd:1d:e1:22:8e:cf:02:24:a2:0f:d3: 69:40:df:fa:1d:c7:de:4d:33:f8:a4:77:24:a7:c9:e1:1f:0b: f2:bb:a7:2c:5e:3d:ce:aa:1d:85:ce:9e:b1:9c:98:e0:3b:c4: e1:a2:27:f2:ac:24:ce:41:3c:c2:b9:9a:03:a6:b7:15:05:4c: 4f:ca:80:83:1f:2e:7e:85:84:b1:38:10:f0:ff:2c:4d:7f:7b: 30:b4:ed:e1:64:00:43:8a:6d:80:90:4a:2d:26:ab:7b:22:5d: 6f:ef:a9:db:ea:37:b3:95:75:af:04:13:d8:25:1b:b2:d2:85: 00:da:8f:88:af:60:92:03:73:21:bd:39:94:02:37:42:81:e2: 35:1c:14:32:33:7d:df:80:97:dc:89:37:14:04:46:3a:92:35: 65:c1:49:5d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcQKB7rxTlDShVAdf1RQRljRTI58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJE N0UxODI3NzAeFw0yNTA3MDEwNzQ1MzZaFw0yNTA3MDQxMTI2MzZaMDMxMTAvBgNV BAMTKDhBMTM5M0E5Q0Q0NENFREY4QjkyQzUxRDk0Mzk2NzFEREIyQjZCMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5P/7fMiEIX5tv49a1R4e5Lcnu alT9kHvpx6jFLieF6igQhyGtV4On0gbU+CRtW42r0njydzz92av2yWjt1TJn+RaD RFORSJOkSqP/gjdBibO6MgbCPmVXs4QnnmtHSZmRWe4emrjT41brmbgInJs9GLEx UQr+2+3a5RyabfbHDZ/JjOzMEYfvMjDF7bcIn0bN+oDeXPfdOXf6ZiPzp8IHeles qNDm1vQrf7tpHCpXuqLq3kfOQcUm9CH6Lv31GfuFdYNTlRcVkcM6lI8OM+Xj6f8c 9n9/Bx7IcZ+JNK9/9JZzolUnGxdO6opOXolZ9JvpA6NXwMwFEce5yvb313wpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUihOTqc1Ezt+LksUdlDlnHdsrayYwHwYDVR0j BBgwFoAUK5C7F+eLYsFReQKcZYPkK9fhgncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVhNWU2ZC05MWVlLTQ0OTctYjQxNy04ZDMyZjY1M2U0YjAvMC8yQjkwQkIxN0U3 OEI2MkMxNTE3OTAyOUM2NTgzRTQyQkQ3RTE4Mjc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJEN0Ux ODI3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGU1YTVlNmQtOTFlZS00NDk3LWI0 MTctOGQzMmY2NTNlNGIwLzAvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0 MkJEN0UxODI3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE2Y2CH8zsGRTbgdsLVcHDvG0SjMcr442IIf oZ0vM8/6xziYJqGZEBYe22yofmDBWvimvQvzXrGJ2Zx544DEMYmbGjZiSgCtItDA P7DMcDsDM5eKcq9/pbA17BE2QRGyq8jdHeEijs8CJKIP02lA3/odx95NM/ikdySn yeEfC/K7pyxePc6qHYXOnrGcmOA7xOGiJ/KsJM5BPMK5mgOmtxUFTE/KgIMfLn6F hLE4EPD/LE1/ezC07eFkAEOKbYCQSi0mq3siXW/vqdvqN7OVda8EE9glG7LShQDa j4ivYJIDcyG9OZQCN0KB4jUcFDIzfd+Al9yJNxQERjqSNWXBSV0= -----END CERTIFICATE-----Generated at Tue Jul 1 18:05:33 2025 by rpki-client