$ rpki-client -vvf repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft File: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft (raw, json) Hash identifier: WmzrwCbjf1CRxghEtENwfELniKun9hH2xfBnDuv/5oc= Subject key identifier: C6:F2:75:89:12:B8:FD:26:6A:FF:14:05:5F:5A:ED:09:C5:72:27:62 Authority key identifier: 3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 Certificate issuer: /CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Certificate serial: 3BC43923B900E14F2B01A96028555C7117CCFF26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft Manifest number: 01AF Signing time: Sun 29 Jun 2025 03:41:42 +0000 Manifest this update: Sun 29 Jun 2025 03:36:42 +0000 Manifest next update: Wed 02 Jul 2025 14:19:42 +0000 Files and hashes: 1: 3130332e33302e3139332e302f32342d3234203d3e20313530323537.roa (hash: FkjuZkviekb7VaMyMmuCMchrVU1yZ527lgE1cprIhiU=) 2: 3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa (hash: ZsYKQLKtHkVTslRdGYlW0kXwJ9gapNRm2k1uNrTnTX0=) 3: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl (hash: pkRHz2PouZSa1oi9APUMOHEiSLFQuGSM+FcfvdeqOXg=) 4: 3130332e33302e3139322e302f32332d3233203d3e20313530323537.roa (hash: c6BbZqskhId1bW3l6aSuRQLjcbQNOmGBaOGbC28FTXg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 14:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c4:39:23:b9:00:e1:4f:2b:01:a9:60:28:55:5c:71:17:cc:ff:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Validity Not Before: Jun 29 03:36:42 2025 GMT Not After : Jul 2 14:19:42 2025 GMT Subject: CN=C6F2758912B8FD266AFF14055F5AED09C5722762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:90:07:b6:a0:02:31:71:f8:16:ab:4c:23:63: f0:54:97:2c:a1:22:c9:6d:da:93:92:4e:7f:b9:9e: 09:a1:db:ea:6d:56:71:7a:e7:d3:ce:d4:6e:00:67: 93:7a:65:b7:12:e4:8b:46:85:76:1e:4e:0b:11:e2: df:64:4e:46:21:de:ed:35:5a:e3:2d:15:d4:29:f0: 2e:5d:ba:3f:8e:e6:55:f8:4c:be:77:67:fa:32:1c: d6:75:33:65:b2:f6:ae:8b:e4:5a:77:b3:ba:f0:9d: eb:91:83:cf:bf:04:55:4f:0e:f1:a3:9f:dc:fb:c9: 7a:eb:f0:81:9f:4f:6a:d2:7b:cb:5e:ee:5d:bf:f4: de:d2:dc:62:7d:c9:57:13:57:06:53:6e:18:fc:f6: c0:f5:c5:11:8c:43:79:51:71:de:61:2c:1a:31:c0: 29:df:8f:22:a9:f2:0a:6a:da:9a:b6:e1:bf:1e:1d: 6d:f2:bd:21:39:54:3e:2e:5f:90:39:38:1f:e6:32: 6a:45:4a:01:77:7a:b6:c4:e9:63:ff:63:ec:fe:bb: 87:80:a7:47:80:2d:05:75:56:8f:ba:cd:e8:a3:7b: 74:7d:48:61:ed:48:2d:a5:d3:c1:a4:d7:1f:2a:a1: 00:21:d8:aa:87:f7:27:e5:2d:1f:00:d4:e1:c9:35: 1b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:F2:75:89:12:B8:FD:26:6A:FF:14:05:5F:5A:ED:09:C5:72:27:62 X509v3 Authority Key Identifier: keyid:3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:2b:fa:de:0f:cc:7a:00:c3:8a:85:8e:3f:3e:c8:24:8e:07: 1e:c0:20:ef:dd:b5:4e:35:14:a1:dc:e7:4c:57:c4:82:81:fc: 62:c5:d6:a6:44:90:a5:b5:51:05:66:ac:af:75:34:1b:f1:32: c8:01:74:85:48:fc:1a:12:a4:4e:6c:8a:23:46:11:41:ca:cb: e5:dd:97:76:0d:73:7e:31:d6:40:b8:f6:92:01:1f:a6:3a:3a: f0:0c:b7:5d:66:2b:b0:f6:9e:6b:01:0e:5f:11:61:86:cd:03: 17:f9:78:ed:4c:cc:75:f6:ee:7f:d4:9c:a2:df:64:cc:f2:52: 3d:c2:7c:a6:23:38:a3:c1:07:c1:4c:b2:b2:9d:04:a7:7e:7c: aa:76:60:86:4a:93:77:93:11:07:55:7a:4c:b9:0d:7b:2f:dd: 19:a4:d7:3b:ab:4d:bd:ae:5b:ba:79:cd:58:22:a1:02:ce:e2: 01:df:a0:43:bf:79:f8:9c:4d:51:31:76:8b:dd:62:d3:07:a6: 9a:e9:6f:e9:6d:1f:8d:81:cd:97:f9:63:44:bc:45:6b:04:de: 1a:98:9b:7f:22:47:8e:8b:0c:8d:9c:fd:54:71:7d:83:91:1e: 06:c2:28:aa:27:36:af:ab:56:73:a6:3d:f4:34:28:d0:aa:01: cc:b6:4c:91 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUO8Q5I7kA4U8rAalgKFVccRfM/yYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVC NkMyMUM3NzAeFw0yNTA2MjkwMzM2NDJaFw0yNTA3MDIxNDE5NDJaMDMxMTAvBgNV BAMTKEM2RjI3NTg5MTJCOEZEMjY2QUZGMTQwNTVGNUFFRDA5QzU3MjI3NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBkAe2oAIxcfgWq0wjY/BUlyyh Islt2pOSTn+5ngmh2+ptVnF659PO1G4AZ5N6ZbcS5ItGhXYeTgsR4t9kTkYh3u01 WuMtFdQp8C5duj+O5lX4TL53Z/oyHNZ1M2Wy9q6L5Fp3s7rwneuRg8+/BFVPDvGj n9z7yXrr8IGfT2rSe8te7l2/9N7S3GJ9yVcTVwZTbhj89sD1xRGMQ3lRcd5hLBox wCnfjyKp8gpq2pq24b8eHW3yvSE5VD4uX5A5OB/mMmpFSgF3erbE6WP/Y+z+u4eA p0eALQV1Vo+6zeije3R9SGHtSC2l08Gk1x8qoQAh2KqH9yflLR8A1OHJNRutAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxvJ1iRK4/SZq/xQFX1rtCcVyJ2IwHwYDVR0j BBgwFoAUPSBSK1GuqkH1lJDi1Vw23rbCHHcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZTYxZTVhZS1lNDVmLTRlZTMtOGY2Yi03Y2I1OWQ2MTc4M2IvMC8zRDIwNTIyQjUx QUVBQTQxRjU5NDkwRTJENTVDMzZERUI2QzIxQzc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVCNkMy MUM3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWU2MWU1YWUtZTQ1Zi00ZWUzLThm NmItN2NiNTlkNjE3ODNiLzAvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2 REVCNkMyMUM3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIQr+t4PzHoAw4qFjj8+yCSOBx7AIO/dtU41 FKHc50xXxIKB/GLF1qZEkKW1UQVmrK91NBvxMsgBdIVI/BoSpE5siiNGEUHKy+Xd l3YNc34x1kC49pIBH6Y6OvAMt11mK7D2nmsBDl8RYYbNAxf5eO1MzHX27n/UnKLf ZMzyUj3CfKYjOKPBB8FMsrKdBKd+fKp2YIZKk3eTEQdVeky5DXsv3Rmk1zurTb2u W7p5zVgioQLO4gHfoEO/eficTVExdovdYtMHpprpb+ltH42BzZf5Y0S8RWsE3hqY m38iR46LDI2c/VRxfYORHgbCKKonNq+rVnOmPfQ0KNCqAcy2TJE= -----END CERTIFICATE-----Generated at Mon Jun 30 16:40:08 2025 by rpki-client