$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: kcFFcqoT3eWtrb5KYlNJmUUn7as853AAiOsJYPMUMt8= Subject key identifier: 26:6F:7B:15:EA:F4:B7:52:BC:6F:7D:46:04:92:B4:C1:B5:F5:20:59 Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 1E337E8C21CC9084194B357CA550A34BC193F503 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: F2 Signing time: Tue 01 Jul 2025 10:01:48 +0000 Manifest this update: Tue 01 Jul 2025 09:56:48 +0000 Manifest next update: Fri 04 Jul 2025 10:43:48 +0000 Files and hashes: 1: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xeW9Q+jrWgb1kNw9Ck6owBJ7nXg3E26nbn0fhXlo6qI=) 2: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: LodowULXBTS+iAOLL0KihwLpfoVbVtUp9Zq9CnoiI/o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 10:43:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:33:7e:8c:21:cc:90:84:19:4b:35:7c:a5:50:a3:4b:c1:93:f5:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Jul 1 09:56:48 2025 GMT Not After : Jul 4 10:43:48 2025 GMT Subject: CN=266F7B15EAF4B752BC6F7D460492B4C1B5F52059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9d:5f:b6:63:5f:a5:56:0c:1e:09:78:2c:19: a5:62:ec:17:98:88:39:1e:03:cc:5c:94:ee:30:b7: 92:ce:73:3c:06:c6:d2:44:5b:a7:30:bc:28:a4:67: 77:bf:0e:93:3b:1d:0d:09:36:bf:32:87:5b:7c:3f: 4f:0e:c0:a8:92:ea:53:ef:91:9c:5f:f7:e4:65:f6: 4b:0d:22:37:14:89:87:78:7b:ed:44:0c:fb:6c:6f: 3e:74:d1:a7:99:75:71:fc:b0:55:ca:ff:72:b2:34: ef:c0:ec:48:b6:fb:c0:0d:2c:2e:d3:ab:5b:1c:bf: 09:f1:72:51:f1:c7:b5:56:92:e9:8c:04:cf:23:3b: d5:5e:01:67:21:78:f6:ea:db:1d:20:9e:ed:8c:90: ff:7f:7c:ac:da:d1:b6:64:9f:96:01:f3:06:ca:ac: 9a:d3:da:ae:3f:93:02:0c:a2:b5:50:5f:c3:c0:9b: 7f:1b:39:4d:da:61:7b:18:2d:e3:a0:5d:70:a4:4d: b7:71:29:70:d5:5e:4e:23:1a:97:9c:c8:8f:46:54: d0:b2:dc:f9:e0:f3:8b:0e:7f:88:b6:6b:01:4e:1e: d9:6c:28:6d:eb:10:cd:da:4a:cb:92:91:cd:59:ad: d7:1a:37:79:45:f8:a4:1f:a5:7b:5d:01:74:f2:4b: b3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:6F:7B:15:EA:F4:B7:52:BC:6F:7D:46:04:92:B4:C1:B5:F5:20:59 X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:7a:2b:f5:70:31:1e:9b:14:60:f4:76:f0:3a:30:0f:61:5d: 3e:0d:66:2c:92:b5:64:60:5f:b4:91:1c:79:c8:3a:b0:f5:bb: 3a:d5:c2:3f:46:4c:3b:3a:b3:ad:ea:12:e8:51:a5:8b:38:8e: 85:20:ad:14:cd:b1:d7:30:7a:23:90:9d:55:aa:a6:ab:9c:c0: 5e:9c:5e:ae:ef:92:aa:fd:d2:94:7c:fc:ef:f7:2d:48:87:9b: 15:5b:a9:55:5a:a5:59:16:e2:77:1c:ba:6a:f7:14:c7:0c:ab: 77:db:05:63:87:37:a3:99:b2:cf:5c:6a:c1:df:c3:fe:2d:f1: 8c:e4:9d:42:44:c1:f5:bc:6e:9c:00:0c:6b:fd:47:b7:d0:e3: a3:cc:31:dc:7a:5e:02:b2:12:58:0f:3f:62:c9:38:31:94:61: 05:dd:f1:02:fb:bd:6c:c3:05:6a:d4:20:0b:89:9c:66:b3:3d: bf:d4:a3:ab:eb:eb:90:5a:2d:c8:22:8a:27:f3:95:24:86:7c: 40:c3:91:0f:47:46:26:25:70:dd:46:3c:cd:82:24:6e:af:9e: 84:fa:04:dc:d7:41:fd:ac:33:c2:ba:19:65:d7:7e:eb:8b:46: bc:6b:d8:d9:78:b8:54:94:2e:7e:1d:c4:d7:e4:65:27:d0:03: 7d:b7:b8:4b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHjN+jCHMkIQZSzV8pVCjS8GT9QMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNTA3MDEwOTU2NDhaFw0yNTA3MDQxMDQzNDhaMDMxMTAvBgNV BAMTKDI2NkY3QjE1RUFGNEI3NTJCQzZGN0Q0NjA0OTJCNEMxQjVGNTIwNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhnV+2Y1+lVgweCXgsGaVi7BeY iDkeA8xclO4wt5LOczwGxtJEW6cwvCikZ3e/DpM7HQ0JNr8yh1t8P08OwKiS6lPv kZxf9+Rl9ksNIjcUiYd4e+1EDPtsbz500aeZdXH8sFXK/3KyNO/A7Ei2+8ANLC7T q1scvwnxclHxx7VWkumMBM8jO9VeAWchePbq2x0gnu2MkP9/fKza0bZkn5YB8wbK rJrT2q4/kwIMorVQX8PAm38bOU3aYXsYLeOgXXCkTbdxKXDVXk4jGpecyI9GVNCy 3Png84sOf4i2awFOHtlsKG3rEM3aSsuSkc1ZrdcaN3lF+KQfpXtdAXTyS7ObAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJm97Fer0t1K8b31GBJK0wbX1IFkwHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ56K/VwMR6bFGD0dvA6MA9hXT4NZiyStWRg X7SRHHnIOrD1uzrVwj9GTDs6s63qEuhRpYs4joUgrRTNsdcweiOQnVWqpqucwF6c Xq7vkqr90pR8/O/3LUiHmxVbqVVapVkW4nccumr3FMcMq3fbBWOHN6OZss9casHf w/4t8YzknUJEwfW8bpwADGv9R7fQ46PMMdx6XgKyElgPP2LJODGUYQXd8QL7vWzD BWrUIAuJnGazPb/Uo6vr65BaLcgiiifzlSSGfEDDkQ9HRiYlcN1GPM2CJG6vnoT6 BNzXQf2sM8K6GWXXfuuLRrxr2Nl4uFSULn4dxNfkZSfQA323uEs= -----END CERTIFICATE-----Generated at Tue Jul 1 13:05:59 2025 by rpki-client