$ rpki-client -vvf repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft File: D4DD8244BC2EB2B187B4181226714505DF8F4452.mft (raw, json) Hash identifier: /aIdL2yPhCA4NkuQkwLZhe/yyDVNCZRlu6AOE28AyAs= Subject key identifier: 5C:14:7C:24:2D:9A:07:C0:53:E8:41:2D:9F:89:36:C1:ED:47:1C:4E Authority key identifier: D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 Certificate issuer: /CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Certificate serial: 42ACB1465F90F36A29682EFDB7575C68B8ADB294 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft Manifest number: 01DA Signing time: Sun 29 Jun 2025 15:31:09 +0000 Manifest this update: Sun 29 Jun 2025 15:26:09 +0000 Manifest next update: Thu 03 Jul 2025 00:59:09 +0000 Files and hashes: 1: 3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa (hash: WbsQ68Cu40oqUa2yh2wFEKvkhfxO2KVKndxoFM4DO5k=) 2: D4DD8244BC2EB2B187B4181226714505DF8F4452.crl (hash: dmL+6l+B2fno6JS9MqyfrPw2qy/zHikMRoKR3il4kho=) 3: 3130332e3137302e3138362e302f32342d3234203d3e20313432333635.roa (hash: OXRZ526Vg7TmkLT93n/Qe4MisAG7vaUJuVBZqKmzdzU=) 4: 3130332e3137302e3138362e302f32332d3234203d3e20313432333635.roa (hash: wbDj2qVwWojdiwUQq1leoVbmSXtniu4/S6z44a48QLw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 00:59:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:ac:b1:46:5f:90:f3:6a:29:68:2e:fd:b7:57:5c:68:b8:ad:b2:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Validity Not Before: Jun 29 15:26:09 2025 GMT Not After : Jul 3 00:59:09 2025 GMT Subject: CN=5C147C242D9A07C053E8412D9F8936C1ED471C4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2f:ed:1a:f3:21:62:1c:57:31:8e:54:ed:07: 9c:f4:d4:88:83:63:f0:85:01:67:76:16:27:bb:27: 98:55:38:97:b5:35:47:c7:0d:3c:1a:aa:bc:1f:da: 37:0b:10:59:99:25:13:e8:73:6f:2a:52:b2:7a:ce: d3:38:a8:ee:52:55:db:c7:f3:16:29:be:9c:0b:3a: 86:a9:43:fb:e0:e4:47:80:c3:fa:71:ab:bf:9b:a0: f9:e0:02:9a:9a:0f:2d:db:32:16:86:ea:32:1f:4e: 9a:ff:44:c2:9a:66:26:27:ad:bb:e9:d1:05:e7:dd: d4:5f:f2:b5:8d:ce:2c:08:be:84:a1:79:f0:68:f4: 70:1a:65:8b:1b:be:79:5c:a2:d6:23:77:85:97:67: 13:de:2f:c1:a8:f3:64:fc:4c:66:b0:f2:f0:09:34: d5:2a:2c:7b:02:30:bc:40:db:55:a8:85:73:da:0b: 4b:0b:ea:a6:d8:e0:11:05:9d:8b:53:48:5f:b2:82: 63:db:ce:b7:cc:db:26:51:1c:85:18:89:e1:ba:be: 59:87:b5:f8:69:83:39:83:76:08:54:19:1d:b6:ab: 4d:14:fc:3a:01:be:97:94:5b:d7:a0:3b:6a:ca:95: f4:36:7e:83:88:fb:22:21:5e:8a:27:80:d9:c6:1a: 56:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:14:7C:24:2D:9A:07:C0:53:E8:41:2D:9F:89:36:C1:ED:47:1C:4E X509v3 Authority Key Identifier: keyid:D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:19:aa:c2:fb:cb:ec:28:fb:f8:4b:a6:ab:1a:ad:ce:2c:dc: b4:38:c1:c6:2e:64:e1:3c:9a:9d:e6:34:63:ca:b1:6d:d0:1b: 86:ce:ce:84:1f:ca:bf:86:00:1b:a7:55:40:30:75:75:21:32: b2:a3:d5:4c:ab:26:fc:8f:2b:0d:ff:2f:9d:18:ff:f5:4b:d5: 93:69:2d:9e:35:26:a9:e6:b1:66:55:4b:ee:95:2c:31:4f:a1: f8:6c:b4:08:32:a4:ef:f0:90:73:29:b4:bd:e7:48:8b:06:90: 6f:83:c1:a2:c3:70:45:d7:7f:0f:ad:9b:5c:c4:85:e8:16:32: 97:92:65:14:6b:d9:b7:33:60:e8:eb:08:d4:ef:c4:05:f7:27: 2e:c7:8a:9d:0d:36:9f:b6:8e:9e:14:55:82:bc:eb:ff:dd:39: c7:5c:ce:e9:7e:cc:9d:0c:69:bf:d4:de:c1:26:cc:8d:67:03: 81:18:68:41:50:73:bc:94:ce:4d:4e:5b:fd:25:26:bf:f5:f9: aa:d3:d3:cd:a0:80:03:d2:48:47:81:bf:aa:9d:34:a6:75:ee: 77:ca:d3:2b:c3:04:3e:d7:9a:07:74:51:0f:21:cf:a3:6a:35: 9f:81:0f:bd:31:4a:55:71:e8:e1:11:2d:b4:cd:5c:58:83:a0: f6:28:f8:6a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQqyxRl+Q82opaC79t1dcaLitspQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVE RjhGNDQ1MjAeFw0yNTA2MjkxNTI2MDlaFw0yNTA3MDMwMDU5MDlaMDMxMTAvBgNV BAMTKDVDMTQ3QzI0MkQ5QTA3QzA1M0U4NDEyRDlGODkzNkMxRUQ0NzFDNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAL+0a8yFiHFcxjlTtB5z01IiD Y/CFAWd2Fie7J5hVOJe1NUfHDTwaqrwf2jcLEFmZJRPoc28qUrJ6ztM4qO5SVdvH 8xYpvpwLOoapQ/vg5EeAw/pxq7+boPngApqaDy3bMhaG6jIfTpr/RMKaZiYnrbvp 0QXn3dRf8rWNziwIvoShefBo9HAaZYsbvnlcotYjd4WXZxPeL8Go82T8TGaw8vAJ NNUqLHsCMLxA21WohXPaC0sL6qbY4BEFnYtTSF+ygmPbzrfM2yZRHIUYieG6vlmH tfhpgzmDdghUGR22q00U/DoBvpeUW9egO2rKlfQ2foOI+yIhXoongNnGGlbHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXBR8JC2aB8BT6EEtn4k2we1HHE4wHwYDVR0j BBgwFoAU1N2CRLwusrGHtBgSJnFFBd+PRFIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWYwZjQyMy0zYmVkLTQ5MzgtOWY4OS0xNWU2MjY5YmRkY2EvMC9ENEREODI0NEJD MkVCMkIxODdCNDE4MTIyNjcxNDUwNURGOEY0NDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVERjhG NDQ1Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWFmMGY0MjMtM2JlZC00OTM4LTlm ODktMTVlNjI2OWJkZGNhLzAvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1 MDVERjhGNDQ1Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAUZqsL7y+wo+/hLpqsarc4s3LQ4wcYuZOE8 mp3mNGPKsW3QG4bOzoQfyr+GABunVUAwdXUhMrKj1UyrJvyPKw3/L50Y//VL1ZNp LZ41JqnmsWZVS+6VLDFPofhstAgypO/wkHMptL3nSIsGkG+DwaLDcEXXfw+tm1zE hegWMpeSZRRr2bczYOjrCNTvxAX3Jy7Hip0NNp+2jp4UVYK86//dOcdczul+zJ0M ab/U3sEmzI1nA4EYaEFQc7yUzk1OW/0lJr/1+arT082ggAPSSEeBv6qdNKZ17nfK 0yvDBD7Xmgd0UQ8hz6NqNZ+BD70xSlVx6OERLbTNXFiDoPYo+Go= -----END CERTIFICATE-----Generated at Tue Jul 1 21:35:11 2025 by rpki-client