$ rpki-client -vvf repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft File: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft (raw, json) Hash identifier: ZvhTd37+0WK/Z5v88fnBfUTMdh8+tz2x8vQwVERDUU0= Subject key identifier: 62:E1:21:88:13:D3:2F:7B:5B:F3:02:EE:A0:35:C7:B2:D1:E8:93:09 Authority key identifier: 16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 Certificate issuer: /CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Certificate serial: 29B0F660CD957E12544BD8476E9A76D240CC0002 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft Manifest number: 0227 Signing time: Wed 23 Jul 2025 18:31:44 +0000 Manifest this update: Wed 23 Jul 2025 18:26:44 +0000 Manifest next update: Sun 27 Jul 2025 02:29:44 +0000 Files and hashes: 1: 3130332e3138302e3235302e302f32332d3234203d3e20313439333733.roa (hash: 6+aOTOrAxzWsWipZ2VbdRwlhEyJYsC/PS67oMR2JaEk=) 2: 3130332e3138302e3235312e302f32342d3234203d3e20313439333733.roa (hash: omQCe9i6UAQabn658NY546AFhSlSDQxwejMwWzEAolo=) 3: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl (hash: idaJg1B0NVZ2jjGJOl+SRvkw52b4lQCkJOmRjH4z1Ko=) 4: 3130332e3138302e3235302e302f32342d3234203d3e20313439333733.roa (hash: 132Kizc+R6ps/hT6AogJkCilm9HX7+ORPphZ8hVhLQ8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 02:29:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:b0:f6:60:cd:95:7e:12:54:4b:d8:47:6e:9a:76:d2:40:cc:00:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Validity Not Before: Jul 23 18:26:44 2025 GMT Not After : Jul 27 02:29:44 2025 GMT Subject: CN=62E1218813D32F7B5BF302EEA035C7B2D1E89309 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:da:35:96:d4:26:9e:2c:8a:19:ad:5b:96:71: 91:05:cf:20:fd:ac:90:8f:93:86:81:1b:2e:78:22: 81:6d:82:69:83:b7:ba:ec:1d:6c:a0:a9:cf:f6:29: 16:ce:e7:cd:68:c9:bb:c9:57:55:56:15:76:be:ed: 76:35:1f:54:26:1f:d4:84:5a:ec:20:2c:a6:ca:2a: 49:02:78:5c:16:45:32:d6:b6:59:62:f9:da:20:73: 0d:16:cd:29:b2:30:72:b5:e9:e1:74:7b:a0:9e:3b: 46:c4:51:44:63:6a:00:4c:fc:8e:9c:40:36:af:b6: 56:5d:05:20:c9:0b:cf:cf:be:da:d7:4a:07:f8:d5: 52:04:d5:88:99:3f:e9:e2:42:e2:15:89:d2:41:dc: 54:7d:8c:04:78:7d:3f:20:73:e5:9f:04:61:cc:00: 9b:79:85:56:e6:97:a2:3e:6b:1b:c6:e3:0b:75:86: ff:fc:b7:06:e8:ec:e0:8c:89:15:84:fa:05:53:01: 87:7b:8e:8d:3f:b0:fb:c5:c7:57:92:e3:bf:a4:eb: 13:7f:ed:6d:65:d1:04:cd:54:d9:8d:dd:91:55:01: 32:e5:33:3b:6b:67:4c:46:60:8a:5b:5f:7e:38:64: 5b:9a:bd:32:a7:eb:b3:2d:da:1b:da:9e:b5:69:e3: ec:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E1:21:88:13:D3:2F:7B:5B:F3:02:EE:A0:35:C7:B2:D1:E8:93:09 X509v3 Authority Key Identifier: keyid:16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:b1:1a:c3:cd:2e:3d:71:ab:37:8c:4f:22:54:bb:68:f7:a8: 19:be:43:e1:42:41:16:32:7a:72:e1:9f:79:f4:64:26:f4:1e: 5b:eb:ee:cc:e4:1f:ff:52:ad:7c:8b:c1:66:e0:e3:cb:7d:ea: 4d:4a:f6:ee:51:95:5e:d2:ff:04:10:e2:9a:c6:24:30:bc:dd: e1:91:b3:f0:ba:0d:28:f6:47:34:52:5e:3d:0f:d2:3c:37:25: fa:69:7d:f4:31:71:e5:df:1b:08:a4:4d:91:f0:d0:da:38:ed: 63:a8:99:ee:a6:2a:24:83:da:2a:ae:69:07:00:bc:4d:2a:7e: 04:f2:cd:26:68:fb:e3:67:0e:16:cb:9c:88:5a:30:59:00:e1: d8:12:32:5d:de:e2:0a:78:5c:cd:55:14:78:db:0f:ab:21:80: da:05:dd:6c:1f:34:55:be:a5:0a:11:da:d0:5c:8d:34:b4:10: 18:7c:de:4e:c0:0b:7e:1a:f7:b2:d8:c1:e0:87:75:d5:fd:7d: 04:fc:27:e6:ab:13:f0:d4:0a:d9:3e:04:f4:e9:66:08:e1:ca: 92:d2:31:02:08:18:ad:40:4d:84:88:5c:f6:4c:b8:86:57:5a: 90:36:bc:84:be:bc:51:6a:54:fa:bf:6f:d8:5f:33:3a:b4:e9: e1:ab:d1:e4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKbD2YM2VfhJUS9hHbpp20kDMAAIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdB MTBBMUUyMDAeFw0yNTA3MjMxODI2NDRaFw0yNTA3MjcwMjI5NDRaMDMxMTAvBgNV BAMTKDYyRTEyMTg4MTNEMzJGN0I1QkYzMDJFRUEwMzVDN0IyRDFFODkzMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC62jWW1CaeLIoZrVuWcZEFzyD9 rJCPk4aBGy54IoFtgmmDt7rsHWygqc/2KRbO581oybvJV1VWFXa+7XY1H1QmH9SE WuwgLKbKKkkCeFwWRTLWtlli+dogcw0WzSmyMHK16eF0e6CeO0bEUURjagBM/I6c QDavtlZdBSDJC8/PvtrXSgf41VIE1YiZP+niQuIVidJB3FR9jAR4fT8gc+WfBGHM AJt5hVbml6I+axvG4wt1hv/8twbo7OCMiRWE+gVTAYd7jo0/sPvFx1eS47+k6xN/ 7W1l0QTNVNmN3ZFVATLlMztrZ0xGYIpbX344ZFuavTKn67Mt2hvanrVp4+zxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYuEhiBPTL3tb8wLuoDXHstHokwkwHwYDVR0j BBgwFoAUFpcSeuKI9MA1A+0O2PCb16EKHiAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MjQ5ZDM4Ny03MGNmLTQwZTktODc1OS05Yjg2ZTBjNjUxMjgvMC8xNjk3MTI3QUUy ODhGNEMwMzUwM0VEMEVEOEYwOUJEN0ExMEExRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdBMTBB MUUyMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTI0OWQzODctNzBjZi00MGU5LTg3 NTktOWI4NmUwYzY1MTI4LzAvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlC RDdBMTBBMUUyMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGKxGsPNLj1xqzeMTyJUu2j3qBm+Q+FCQRYy enLhn3n0ZCb0Hlvr7szkH/9SrXyLwWbg48t96k1K9u5RlV7S/wQQ4prGJDC83eGR s/C6DSj2RzRSXj0P0jw3JfppffQxceXfGwikTZHw0No47WOome6mKiSD2iquaQcA vE0qfgTyzSZo++NnDhbLnIhaMFkA4dgSMl3e4gp4XM1VFHjbD6shgNoF3WwfNFW+ pQoR2tBcjTS0EBh83k7AC34a97LYweCHddX9fQT8J+arE/DUCtk+BPTpZgjhypLS MQIIGK1ATYSIXPZMuIZXWpA2vIS+vFFqVPq/b9hfMzq06eGr0eQ= -----END CERTIFICATE-----Generated at Thu Jul 24 12:06:24 2025 by rpki-client