$ rpki-client -vvf repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft File: 2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft (raw, json) Hash identifier: FZhBVpjssV7lDpjtPTsTR/twUa/aw0o9Itn287gE4ls= Subject key identifier: DA:67:08:E8:03:9B:27:E7:36:8F:6C:8E:BD:C8:EB:7C:E7:66:FC:D1 Authority key identifier: 2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 Certificate issuer: /CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Certificate serial: 32AAAFE6C2DD9D2B33A6B3BF3B805143BB395256 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft Manifest number: 04BC Signing time: Wed 02 Jul 2025 01:31:20 +0000 Manifest this update: Wed 02 Jul 2025 01:26:20 +0000 Manifest next update: Sat 05 Jul 2025 02:16:20 +0000 Files and hashes: 1: 3130332e3133372e33382e302f32332d3234203d3e20313338383232.roa (hash: mA/rP0hr8/EieVP2HKsGbfcjdkP2Kd8or4Jc67/Y7I0=) 2: 2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl (hash: ScMHz+O+DIxdPz2I4EICtxIDveKwHIbPsCT8AJtughQ=) 3: 323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa (hash: 8BcFapwe+X3BcAcYyUi0aKlB+9OoLNEUNoO57IgvOug=) 4: 323430343a613463303a3a2f33322d3438203d3e20313338383232.roa (hash: jd8RzIV4pb6xOSx8M2iJByCvMa7m6mddhFLRaUaFvoI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 02:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:aa:af:e6:c2:dd:9d:2b:33:a6:b3:bf:3b:80:51:43:bb:39:52:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Validity Not Before: Jul 2 01:26:20 2025 GMT Not After : Jul 5 02:16:20 2025 GMT Subject: CN=DA6708E8039B27E7368F6C8EBDC8EB7CE766FCD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4d:3d:43:12:c8:20:b6:cd:4f:bb:b0:85:a9: 09:b4:e5:7e:cf:ba:cc:bd:68:86:69:96:90:0e:25: 6b:a1:ab:70:6a:b7:b7:c2:46:bf:52:98:5b:9a:80: 59:97:d9:f5:e5:29:fd:ae:35:f6:61:9e:7e:1f:cd: 4e:85:7a:56:48:14:c2:36:32:0b:8f:dc:f3:e2:dc: 8d:45:e8:ec:1d:c1:a0:5f:34:05:ec:c9:c6:86:ae: 31:71:7c:78:19:43:55:f1:3e:e6:4f:93:aa:59:22: 80:e9:aa:4c:5d:fe:32:13:58:e9:fa:e4:40:9a:6c: 87:19:95:6a:92:7c:e7:0d:12:2e:88:22:3d:2c:d2: 00:a2:4e:ab:ca:c0:6b:84:94:99:ec:a3:00:cb:49: d5:19:64:94:60:7e:ca:03:96:2e:3d:75:54:cb:49: b3:00:84:fd:de:28:a2:e9:87:9c:6d:70:9a:a3:10: b6:d2:3d:c6:a8:55:ec:ec:80:e8:69:4a:a7:84:67: c0:ce:d9:d3:e5:8f:32:20:60:58:29:ea:3e:79:26: a5:64:56:77:d1:0a:4c:c5:36:38:44:c0:bb:3e:cb: fa:6e:d4:37:b6:4a:36:54:25:6d:59:bf:6e:38:eb: 2b:17:e5:8b:fe:91:05:78:28:8b:89:75:f3:35:0d: b2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:67:08:E8:03:9B:27:E7:36:8F:6C:8E:BD:C8:EB:7C:E7:66:FC:D1 X509v3 Authority Key Identifier: keyid:2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d1:52:62:34:5b:2f:e5:de:18:63:d8:0a:94:f5:ee:da:b1:fd: e1:fb:9b:fe:5c:30:5a:22:60:b5:51:d9:08:8a:bc:a8:34:f4: 65:bf:60:72:69:14:53:8b:92:9c:d1:1a:eb:88:2d:53:97:57: ee:7c:67:a0:8e:6d:89:5e:eb:2a:4b:19:8f:29:c6:d3:6e:1e: 4e:f4:45:af:27:5a:4e:61:8b:a3:f7:18:b1:ca:55:12:6e:10: 83:6a:f9:e4:82:33:eb:d6:de:f2:e2:c7:35:73:6d:64:5f:88: 40:cc:a8:18:ed:d9:ac:ca:30:2a:ce:06:8e:7c:e0:36:06:2d: 18:77:1d:7b:e1:ea:24:9d:9d:5c:11:da:54:6a:d2:b4:02:1e: ee:b3:15:4a:ff:c4:61:78:7c:c3:4a:28:79:bb:ce:7b:0d:fc: 1f:f7:cb:6f:94:24:31:83:b8:c7:dc:82:59:7b:f7:fd:e4:57: f7:1a:12:d8:03:82:d5:b7:ab:67:45:3d:f7:43:df:7c:b7:4a: f1:82:5a:80:d0:83:5d:d6:57:c8:9a:85:59:dc:1c:f8:ff:5e: 96:1d:3d:03:f8:85:84:7d:4b:a3:a4:5f:a9:da:47:3e:28:d8: 93:57:78:49:e4:cc:52:4a:a0:d2:16:c1:9f:69:42:8d:d1:ea: 9e:8a:fb:39 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMqqv5sLdnSszprO/O4BRQ7s5UlYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4 M0E2MzNENDAeFw0yNTA3MDIwMTI2MjBaFw0yNTA3MDUwMjE2MjBaMDMxMTAvBgNV BAMTKERBNjcwOEU4MDM5QjI3RTczNjhGNkM4RUJEQzhFQjdDRTc2NkZDRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+TT1DEsggts1Pu7CFqQm05X7P usy9aIZplpAOJWuhq3Bqt7fCRr9SmFuagFmX2fXlKf2uNfZhnn4fzU6FelZIFMI2 MguP3PPi3I1F6OwdwaBfNAXsycaGrjFxfHgZQ1XxPuZPk6pZIoDpqkxd/jITWOn6 5ECabIcZlWqSfOcNEi6IIj0s0gCiTqvKwGuElJnsowDLSdUZZJRgfsoDli49dVTL SbMAhP3eKKLph5xtcJqjELbSPcaoVezsgOhpSqeEZ8DO2dPljzIgYFgp6j55JqVk VnfRCkzFNjhEwLs+y/pu1De2SjZUJW1Zv2446ysX5Yv+kQV4KIuJdfM1DbLFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2mcI6AObJ+c2j2yOvcjrfOdm/NEwHwYDVR0j BBgwFoAULex9sqXJYs+lPVeN6n3IQ4OmM9QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l M2JiZjFkYS1lMzE3LTQ4ZWYtYWQ2ZC1mZThhOGJmMDg0MDAvMC8yREVDN0RCMkE1 Qzk2MkNGQTUzRDU3OERFQTdEQzg0MzgzQTYzM0Q0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4M0E2 MzNENC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTNiYmYxZGEtZTMxNy00OGVmLWFk NmQtZmU4YThiZjA4NDAwLzAvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4 NDM4M0E2MzNENC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANFSYjRbL+XeGGPYCpT17tqx/eH7m/5cMFoi YLVR2QiKvKg09GW/YHJpFFOLkpzRGuuILVOXV+58Z6CObYle6ypLGY8pxtNuHk70 Ra8nWk5hi6P3GLHKVRJuEINq+eSCM+vW3vLixzVzbWRfiEDMqBjt2azKMCrOBo58 4DYGLRh3HXvh6iSdnVwR2lRq0rQCHu6zFUr/xGF4fMNKKHm7znsN/B/3y2+UJDGD uMfcgll79/3kV/caEtgDgtW3q2dFPfdD33y3SvGCWoDQg13WV8iahVncHPj/XpYd PQP4hYR9S6OkX6naRz4o2JNXeEnkzFJKoNIWwZ9pQo3R6p6K+zk= -----END CERTIFICATE-----Generated at Thu Jul 3 03:46:05 2025 by rpki-client