$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft File: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft (raw, json) Hash identifier: 5eufoH4kc/eaIgIy5/jjMMJZOn0Ndy5hlekiEitGA5Q= Subject key identifier: 43:8A:17:8B:BB:77:E8:61:9A:FB:80:62:84:32:A3:A4:F9:A8:E4:C0 Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 6A1C40786EF11CEEA73109F59E4C5637AA41902C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft Manifest number: 0476 Signing time: Sun 29 Jun 2025 17:41:14 +0000 Manifest this update: Sun 29 Jun 2025 17:36:14 +0000 Manifest next update: Wed 02 Jul 2025 23:49:14 +0000 Files and hashes: 1: 3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa (hash: FejRYWwdsuj+4j3TDWSOjALgozWd2vs6Lc0w2q44EY8=) 2: 3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa (hash: Miiyo70b9UEsqSD6s3MKnk488M/yLQdFrFnluWJWC9w=) 3: 3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa (hash: XyH2IkcIEuDvVJJGBcIvIdi7tMCNJuIdQc60W8BGrOU=) 4: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl (hash: XCMUuLaMSSr/RTw/iIS8LnmZrunTF/PlAU7nCF2eIYc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:1c:40:78:6e:f1:1c:ee:a7:31:09:f5:9e:4c:56:37:aa:41:90:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: Jun 29 17:36:14 2025 GMT Not After : Jul 2 23:49:14 2025 GMT Subject: CN=438A178BBB77E8619AFB80628432A3A4F9A8E4C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b6:89:f5:8d:e6:a6:48:df:b2:86:ef:96:e5: 1f:18:8b:3e:b1:db:63:25:fb:03:15:59:70:7f:8b: 11:b1:61:dd:80:f7:c4:52:20:e4:ec:72:54:ad:7d: e6:f0:a0:3e:3e:14:01:00:a7:51:ae:cc:07:d4:0b: c6:63:38:49:99:97:bd:e3:ec:8e:a5:8d:6f:e4:d5: 82:c4:c2:96:2d:15:32:b9:26:95:75:0a:72:0c:af: 95:b6:e5:f3:b9:67:03:9f:00:71:e5:4e:fb:3d:c2: cf:3a:0a:8d:95:c4:56:fb:39:55:3b:4e:59:a2:30: 97:4c:b0:56:57:1e:2a:b9:f8:ba:e0:ca:01:fb:53: 8a:e4:f6:f4:0a:a0:90:98:2c:30:55:9c:04:2f:c3: 48:79:26:96:66:1c:4d:be:77:28:2d:63:63:71:55: 1e:8e:6f:b0:76:7a:58:32:da:ab:0f:9e:fb:ce:b2: 7a:0f:3f:14:b7:24:56:98:14:aa:a9:91:91:80:44: 09:ed:94:b1:21:9f:2f:24:61:be:db:df:2f:75:d6: 43:4f:d4:8d:b9:7a:9d:c8:93:0a:90:14:00:ce:d6: 49:3a:8b:57:24:c1:1b:42:9b:14:ef:68:c3:59:03: 78:cc:f5:37:78:00:7d:e2:1a:39:94:dd:bb:24:14: c9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:8A:17:8B:BB:77:E8:61:9A:FB:80:62:84:32:A3:A4:F9:A8:E4:C0 X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c4:91:2a:16:76:c5:cc:5e:32:a1:2c:13:d6:a7:5c:e6:e1:91: 9d:15:f6:ff:d5:8e:12:7c:ec:3c:80:2e:35:33:66:94:38:c7: b8:a7:95:65:38:c8:4f:3a:16:3a:11:0e:ff:eb:cc:54:75:de: e6:9a:4d:b6:ed:20:84:76:e5:f8:f7:e7:9c:7a:25:fb:9d:d2: 5d:d6:90:5f:35:b9:f8:b9:70:94:6e:3b:93:bc:5d:c0:e4:67: 1b:5e:9f:6e:7a:f0:6e:50:51:fe:68:a9:9a:23:b4:e4:d1:97: cd:f4:88:6a:6c:a7:92:6e:b4:bf:92:35:8a:ec:6b:47:7a:13: c3:82:6e:35:8e:e9:bc:e6:e3:09:b0:d0:2b:e5:76:73:f8:1a: 0b:fa:d2:e9:4d:dd:17:5e:a6:b1:f0:fb:e7:b2:23:09:37:9d: 70:90:b5:c5:eb:54:a8:c1:0c:52:40:41:17:ba:5f:4d:9e:f0: f4:8e:28:dc:e5:91:61:09:c3:e7:af:e2:e7:5f:2f:53:a7:b7: 73:ca:9a:55:ce:88:bc:02:64:30:f9:16:13:58:b3:22:0d:37: c0:9d:bb:65:ac:84:85:ca:19:8a:a3:98:fb:96:bf:8a:e5:f1: b7:9e:3a:fc:28:00:27:22:17:e7:30:cd:9d:42:77:4c:59:41: fe:9f:89:f2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUahxAeG7xHO6nMQn1nkxWN6pBkCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yNTA2MjkxNzM2MTRaFw0yNTA3MDIyMzQ5MTRaMDMxMTAvBgNV BAMTKDQzOEExNzhCQkI3N0U4NjE5QUZCODA2Mjg0MzJBM0E0RjlBOEU0QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRton1jeamSN+yhu+W5R8Yiz6x 22Ml+wMVWXB/ixGxYd2A98RSIOTsclStfebwoD4+FAEAp1GuzAfUC8ZjOEmZl73j 7I6ljW/k1YLEwpYtFTK5JpV1CnIMr5W25fO5ZwOfAHHlTvs9ws86Co2VxFb7OVU7 TlmiMJdMsFZXHiq5+LrgygH7U4rk9vQKoJCYLDBVnAQvw0h5JpZmHE2+dygtY2Nx VR6Ob7B2elgy2qsPnvvOsnoPPxS3JFaYFKqpkZGARAntlLEhny8kYb7b3y911kNP 1I25ep3IkwqQFADO1kk6i1ckwRtCmxTvaMNZA3jM9Td4AH3iGjmU3bskFMmDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQ4oXi7t36GGa+4BihDKjpPmo5MAwHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjNiYWJmMGItMTEwMS00YWE5LWE0 ZGYtNTI3MTQ5MzRkYjdjLzAvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYz M0RBNTVGMjA3Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMSRKhZ2xcxeMqEsE9anXObhkZ0V9v/VjhJ8 7DyALjUzZpQ4x7inlWU4yE86FjoRDv/rzFR13uaaTbbtIIR25fj355x6Jfud0l3W kF81ufi5cJRuO5O8XcDkZxten2568G5QUf5oqZojtOTRl830iGpsp5JutL+SNYrs a0d6E8OCbjWO6bzm4wmw0CvldnP4Ggv60ulN3RdeprHw++eyIwk3nXCQtcXrVKjB DFJAQRe6X02e8PSOKNzlkWEJw+ev4udfL1Ont3PKmlXOiLwCZDD5FhNYsyINN8Cd u2WshIXKGYqjmPuWv4rl8beeOvwoACciF+cwzZ1Cd0xZQf6fifI= -----END CERTIFICATE-----Generated at Sun Jun 29 19:20:49 2025 by rpki-client