$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: tSQn6sJSVX5S+P275V1B7281QQAtGEUuiwkflRgSfpM= Subject key identifier: EA:53:27:16:9A:38:F5:E6:3D:B2:CD:93:7C:AB:C2:F1:60:25:6E:C5 Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 4D7A7A3BFE52E58B6B16B83B6268E8B83F55F08D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: A1 Signing time: Sat 28 Jun 2025 10:41:05 +0000 Manifest this update: Sat 28 Jun 2025 10:36:05 +0000 Manifest next update: Tue 01 Jul 2025 16:21:05 +0000 Files and hashes: 1: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI=) 2: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: Jit+uJIEyqjGrv7HRmDwiYsYuySfB8Lk478TOnlXVFM=) 3: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: 5TysUWdf//ijZZADQg/kyk1hPl8L9rMcShCWekWYvss=) 4: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: w8Y8yFs0yCw8tsyCLr6OGyBJm3tJmZqiRNynX9al9Zw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 16:21:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:7a:7a:3b:fe:52:e5:8b:6b:16:b8:3b:62:68:e8:b8:3f:55:f0:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Jun 28 10:36:05 2025 GMT Not After : Jul 1 16:21:05 2025 GMT Subject: CN=EA5327169A38F5E63DB2CD937CABC2F160256EC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2a:7e:b5:04:a6:51:f4:77:25:45:3e:c4:50: 4d:ef:81:63:d5:ec:89:fe:47:ff:5a:46:f7:b8:54: 69:61:54:43:82:08:98:c7:31:4a:72:2e:4c:72:34: 3f:a0:26:0d:c6:8f:db:7a:97:9c:7a:2b:2d:34:0d: a6:43:a9:d9:3d:f4:b1:eb:4a:4c:53:21:84:4a:a9: 47:14:d9:b9:86:79:d9:93:13:79:29:7b:2d:81:70: f5:11:70:70:c8:cf:8c:7d:63:51:95:56:ed:fe:2d: 11:8b:88:61:9a:8b:39:75:f2:b4:05:04:f2:6e:a5: 88:c9:7d:28:f6:3b:65:56:36:89:f3:10:3d:dc:ee: d5:e9:9c:39:1d:95:b3:1a:93:db:f6:06:b3:56:86: 79:3e:ba:da:cf:be:89:38:b0:2c:80:02:74:42:de: f9:3e:61:fb:20:0e:96:0e:45:c3:e4:ab:b2:31:a6: 62:d2:c4:f7:f2:9c:25:02:97:f7:a8:d0:ad:10:0c: dc:0b:90:c6:8b:5b:2a:20:16:5c:b3:af:63:1c:9a: 4a:b3:d4:fe:fb:b9:b5:92:ae:2e:10:7d:bd:f6:5a: ed:34:f3:7d:d7:8e:53:d9:cb:b0:e5:98:ae:aa:8f: cb:e5:6a:27:e1:8a:7e:f9:7c:05:99:2d:17:e5:39: 61:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:53:27:16:9A:38:F5:E6:3D:B2:CD:93:7C:AB:C2:F1:60:25:6E:C5 X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:06:02:c4:0d:f7:65:9f:e3:ee:2b:01:fb:e7:5e:a2:74:6c: c2:1e:3f:e9:97:e7:05:a2:9a:7d:e1:11:92:d8:c0:c6:52:e5: 68:d8:5d:e6:6f:de:f2:16:47:21:2d:65:67:1c:ce:57:ef:99: 99:37:5c:0f:f8:05:38:e9:f4:34:2b:a0:8e:85:42:d5:6b:c8: 88:52:d1:5f:a5:f2:57:46:8f:5d:03:96:25:bc:08:ea:d8:32: a8:49:a5:9a:94:76:5c:79:73:42:7d:23:5f:d6:94:87:b2:e8: b2:6d:35:53:23:bc:85:aa:1f:18:db:51:06:3e:e8:d7:d4:16: 63:f3:94:c0:39:61:e3:0f:10:84:97:c6:fb:bc:e5:21:33:90: dc:e6:b5:8a:06:b4:cb:db:e2:2c:a6:7d:4b:7e:69:7c:5b:2b: 56:57:cb:1f:47:7e:94:32:f4:94:8d:01:e1:c5:75:f2:2a:ab: f9:0b:b5:7f:76:ae:09:2d:09:e7:ca:2e:53:bc:6b:7a:bb:28: 7e:84:8b:eb:72:8e:3d:13:2e:f2:17:48:0b:78:bc:12:40:87: 1b:03:89:35:05:29:ce:75:a3:61:c8:ac:c3:26:e9:fc:ca:d0: b7:30:ed:4b:1f:5c:35:03:91:79:a3:5d:96:17:d3:f4:f4:1c: db:e2:b8:df -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTXp6O/5S5YtrFrg7YmjouD9V8I0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNTA2MjgxMDM2MDVaFw0yNTA3MDExNjIxMDVaMDMxMTAvBgNV BAMTKEVBNTMyNzE2OUEzOEY1RTYzREIyQ0Q5MzdDQUJDMkYxNjAyNTZFQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMKn61BKZR9HclRT7EUE3vgWPV 7In+R/9aRve4VGlhVEOCCJjHMUpyLkxyND+gJg3Gj9t6l5x6Ky00DaZDqdk99LHr SkxTIYRKqUcU2bmGedmTE3kpey2BcPURcHDIz4x9Y1GVVu3+LRGLiGGaizl18rQF BPJupYjJfSj2O2VWNonzED3c7tXpnDkdlbMak9v2BrNWhnk+utrPvok4sCyAAnRC 3vk+YfsgDpYORcPkq7IxpmLSxPfynCUCl/eo0K0QDNwLkMaLWyogFlyzr2Mcmkqz 1P77ubWSri4Qfb32Wu00833XjlPZy7DlmK6qj8vlaifhin75fAWZLRflOWF9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6lMnFpo49eY9ss2TfKvC8WAlbsUwHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKsGAsQN92Wf4+4rAfvnXqJ0bMIeP+mX5wWi mn3hEZLYwMZS5WjYXeZv3vIWRyEtZWcczlfvmZk3XA/4BTjp9DQroI6FQtVryIhS 0V+l8ldGj10DliW8COrYMqhJpZqUdlx5c0J9I1/WlIey6LJtNVMjvIWqHxjbUQY+ 6NfUFmPzlMA5YeMPEISXxvu85SEzkNzmtYoGtMvb4iymfUt+aXxbK1ZXyx9HfpQy 9JSNAeHFdfIqq/kLtX92rgktCefKLlO8a3q7KH6Ei+tyjj0TLvIXSAt4vBJAhxsD iTUFKc51o2HIrMMm6fzK0Lcw7UsfXDUDkXmjXZYX0/T0HNviuN8= -----END CERTIFICATE-----Generated at Mon Jun 30 16:28:54 2025 by rpki-client