$ rpki-client -vvf repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft File: 71054E3C02E22D607A90FACC4DE7369B65367EBD.mft (raw, json) Hash identifier: Ss3yBilHs+1u7dtqNLVuTDn3a4SYCjvhOGfR4jzgqt4= Subject key identifier: 96:0F:47:D3:14:DA:2A:E0:18:09:7F:DA:E9:B6:AA:B6:47:54:FD:37 Authority key identifier: 71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD Certificate issuer: /CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Certificate serial: 3D761515EF9B92611EB7CCC63175C561F0541523 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft Manifest number: 0145 Signing time: Sun 20 Jul 2025 19:10:45 +0000 Manifest this update: Sun 20 Jul 2025 19:05:45 +0000 Manifest next update: Wed 23 Jul 2025 23:51:45 +0000 Files and hashes: 1: 71054E3C02E22D607A90FACC4DE7369B65367EBD.crl (hash: 6W1kbuS3uHI6hRvg8upOcwruH1UF5J2Bs2bnCWdJ09o=) 2: 3130332e32392e31302e302f32332d3234203d3e20313530323530.roa (hash: WJMrEDY6+yYCu4Iz5tUshsi6eLGdRGAnm2hsfXk5iwc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 23:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:76:15:15:ef:9b:92:61:1e:b7:cc:c6:31:75:c5:61:f0:54:15:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Validity Not Before: Jul 20 19:05:45 2025 GMT Not After : Jul 23 23:51:45 2025 GMT Subject: CN=960F47D314DA2AE018097FDAE9B6AAB64754FD37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2f:53:19:a0:eb:3d:e8:dd:07:1c:dc:90:2c: 77:45:b0:95:ba:f9:71:35:58:f1:85:e7:95:48:b6: 78:06:1d:59:3c:95:58:4d:d1:50:04:88:d3:aa:5a: ea:1c:88:d3:3b:5f:69:1b:24:89:93:b4:76:b2:cf: 81:e4:80:ae:00:8c:ec:04:e5:2e:3e:58:cb:9b:2d: af:cf:e4:55:b8:32:b2:a7:dc:d8:f2:85:d2:f4:4d: 50:41:5b:0e:a0:2b:b9:35:29:7a:8f:71:0b:22:65: a3:b6:a9:f7:92:2e:07:db:5d:3b:3a:bb:12:4d:ef: dd:64:fe:0a:82:14:4a:a4:41:82:31:73:08:60:b8: 90:a1:35:07:ab:30:d0:11:b9:86:f1:74:aa:97:70: 43:5f:6c:42:57:07:49:f6:ac:36:4d:e9:7a:f3:28: 71:f0:17:5a:14:7b:ae:15:a3:01:11:6e:45:12:d0: 07:b1:da:44:71:87:ae:4f:80:27:37:db:7a:6b:28: a9:3d:0b:58:4c:db:1b:d3:34:fc:08:2f:84:65:b4: cb:ed:48:19:65:fc:90:9f:b8:93:23:e6:39:48:11: 06:c3:3b:78:f6:fa:a4:8c:0f:0f:79:98:8b:e1:5e: 1a:e4:e5:a9:7c:d6:75:b9:5a:0d:89:ed:9b:6f:68: af:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:0F:47:D3:14:DA:2A:E0:18:09:7F:DA:E9:B6:AA:B6:47:54:FD:37 X509v3 Authority Key Identifier: keyid:71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:3c:73:f7:e0:38:c8:39:89:63:00:4d:ea:04:16:ab:0a:01: 13:63:f5:a1:90:da:06:a8:14:fe:e5:8e:e7:a1:18:7e:61:04: 12:7e:6e:7d:52:f4:84:b7:4b:aa:30:a9:89:a3:38:f7:67:72: 86:18:63:13:9d:d7:d8:69:df:f3:17:ea:77:c7:b6:1c:27:28: ee:cf:9b:51:ac:ef:29:58:72:51:9b:df:6c:31:29:bf:0e:e1: 8b:4f:8d:e3:73:52:ea:d6:c0:79:62:4c:44:09:d3:16:b8:d1: 62:9c:e1:35:54:13:50:b6:50:c7:40:40:eb:ea:d8:8a:84:9f: 5f:93:f3:35:c0:14:2b:ac:da:0f:2a:3e:f1:9b:d6:9f:61:48: 40:33:fc:d7:eb:e6:f4:52:6b:86:47:a6:52:77:7a:67:5b:e6: fa:83:93:bb:08:c9:c6:fc:2c:c9:95:17:95:f0:ba:88:00:f5: 88:5a:16:59:88:72:71:59:eb:f1:f8:dc:55:98:38:70:be:d3: a2:b6:44:b6:23:e4:c1:0b:42:9e:f8:30:e1:23:62:1d:98:53: 51:fe:41:1e:71:60:c6:dc:c4:29:27:4c:6d:e6:cf:27:4a:bb: 1b:b4:2c:66:e0:b1:7e:fe:73:03:57:5d:0f:4d:28:fb:fb:7d: 48:71:25:71 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPXYVFe+bkmEet8zGMXXFYfBUFSMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2 NTM2N0VCRDAeFw0yNTA3MjAxOTA1NDVaFw0yNTA3MjMyMzUxNDVaMDMxMTAvBgNV BAMTKDk2MEY0N0QzMTREQTJBRTAxODA5N0ZEQUU5QjZBQUI2NDc1NEZEMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8L1MZoOs96N0HHNyQLHdFsJW6 +XE1WPGF55VItngGHVk8lVhN0VAEiNOqWuociNM7X2kbJImTtHayz4HkgK4AjOwE 5S4+WMubLa/P5FW4MrKn3NjyhdL0TVBBWw6gK7k1KXqPcQsiZaO2qfeSLgfbXTs6 uxJN791k/gqCFEqkQYIxcwhguJChNQerMNARuYbxdKqXcENfbEJXB0n2rDZN6Xrz KHHwF1oUe64VowERbkUS0Aex2kRxh65PgCc323prKKk9C1hM2xvTNPwIL4RltMvt SBll/JCfuJMj5jlIEQbDO3j2+qSMDw95mIvhXhrk5al81nW5Wg2J7ZtvaK+9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlg9H0xTaKuAYCX/a6baqtkdU/TcwHwYDVR0j BBgwFoAUcQVOPALiLWB6kPrMTec2m2U2fr0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUzMmM2NS04MGJlLTRmZGUtODdkMC0zNmM1YmQyODhjZDgvMC83MTA1NEUzQzAy RTIyRDYwN0E5MEZBQ0M0REU3MzY5QjY1MzY3RUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2NTM2 N0VCRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWE1MzJjNjUtODBiZS00ZmRlLTg3 ZDAtMzZjNWJkMjg4Y2Q4LzAvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2 OUI2NTM2N0VCRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABw8c/fgOMg5iWMATeoEFqsKARNj9aGQ2gao FP7ljuehGH5hBBJ+bn1S9IS3S6owqYmjOPdncoYYYxOd19hp3/MX6nfHthwnKO7P m1Gs7ylYclGb32wxKb8O4YtPjeNzUurWwHliTEQJ0xa40WKc4TVUE1C2UMdAQOvq 2IqEn1+T8zXAFCus2g8qPvGb1p9hSEAz/Nfr5vRSa4ZHplJ3emdb5vqDk7sIycb8 LMmVF5XwuogA9YhaFlmIcnFZ6/H43FWYOHC+06K2RLYj5MELQp74MOEjYh2YU1H+ QR5xYMbcxCknTG3mzydKuxu0LGbgsX7+cwNXXQ9NKPv7fUhxJXE= -----END CERTIFICATE-----Generated at Tue Jul 22 04:20:35 2025 by rpki-client