$ rpki-client -vvf repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft File: 588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft (raw, json) Hash identifier: hBSoG7Aesmsd69YKDi/w0Y9Z8R2K25XxQ3oxy0yFJqk= Subject key identifier: D7:1B:A0:3B:2D:29:B8:5A:90:4A:7A:E3:2A:B9:1E:7C:6B:CD:6F:F3 Authority key identifier: 58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69 Certificate issuer: /CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069 Certificate serial: 4B5CA3D456B4293282D22F09F87319F8A99E5D3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft Manifest number: 8F Signing time: Fri 06 Jun 2025 23:11:47 +0000 Manifest this update: Fri 06 Jun 2025 23:06:47 +0000 Manifest next update: Tue 10 Jun 2025 02:48:47 +0000 Files and hashes: 1: 3136302e32322e31332e302f32342d3234203d3e20313532373935.roa (hash: 4zrjWTGjIfmRVD7KoG+5XB5sYDfQiVJOsTHraO00txU=) 2: 588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl (hash: tmK0qV0WuMr5Z2tnzOWjPGeCqHTeFhcNQHc3fA0XYZk=) 3: 3136302e32322e31322e302f32342d3234203d3e20313532373935.roa (hash: c7u9a3tNo+sinKbXEOZIkxb5lpQ3V3xHWxLJ0wK62sQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:48:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:5c:a3:d4:56:b4:29:32:82:d2:2f:09:f8:73:19:f8:a9:9e:5d:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069 Validity Not Before: Jun 6 23:06:47 2025 GMT Not After : Jun 10 02:48:47 2025 GMT Subject: CN=D71BA03B2D29B85A904A7AE32AB91E7C6BCD6FF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4e:20:f3:d9:1f:d7:2c:b3:22:ba:df:f8:3f: 82:48:4e:38:82:dd:99:aa:94:33:00:65:b7:92:98: bf:f2:04:2e:37:cf:da:88:12:77:c9:d0:b5:7c:95: c0:21:d1:f2:90:e4:8d:40:2d:65:03:d6:48:04:f7: 9d:f9:65:0e:52:3a:b5:84:84:2f:01:4e:28:10:21: 0b:65:ac:1f:16:4d:f6:7b:ba:b3:bd:7c:a9:24:d9: 4d:80:a7:4e:c6:10:64:ac:b5:33:c6:d3:36:99:59: e0:7d:23:72:47:71:8e:05:d1:73:04:90:db:8d:a1: e3:3a:bd:22:03:3d:18:b6:2d:95:de:22:b4:6c:a1: ed:c2:e8:e3:e9:3e:ed:a6:46:31:81:c1:f5:47:0e: 78:d2:87:b5:b1:9d:34:8a:3c:15:3e:2a:72:4f:7d: 46:e6:27:5c:64:a5:44:be:03:10:e7:55:cf:42:9d: 93:87:15:63:ce:2e:b4:d0:71:fc:ae:4f:c2:d2:ef: 5e:83:84:5a:d9:7f:bd:0a:8b:30:5b:2d:17:b4:b7: 9c:52:49:40:02:69:5d:72:3c:4e:fd:38:c4:23:e2: 33:94:97:fa:b4:94:12:6c:7b:ea:ac:91:e9:8a:9c: c3:35:0b:be:13:20:03:28:fb:b0:f4:a7:a4:81:da: bd:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:1B:A0:3B:2D:29:B8:5A:90:4A:7A:E3:2A:B9:1E:7C:6B:CD:6F:F3 X509v3 Authority Key Identifier: keyid:58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:70:71:37:8a:e8:bc:dc:38:39:8f:69:e8:f8:38:13:a9:45: 16:f3:9b:9c:1c:4e:29:44:a2:fa:e3:4f:1d:00:90:b0:55:22: 75:ea:17:bc:62:d6:d1:76:b4:d0:95:9c:1c:b3:fb:2f:85:2e: 7e:a2:e3:cf:56:e6:28:02:62:c5:7b:27:2b:dc:b2:5f:c7:c7: cc:a1:95:97:31:fa:f8:d8:a2:ad:4a:36:ec:21:dc:c1:29:6d: d3:e0:f0:cf:71:14:78:c0:d3:f2:8d:fd:c6:3e:7f:31:0a:cf: ac:8d:8e:74:7e:08:1f:ec:3a:7f:0c:dd:80:f0:fb:40:89:b1: 70:6f:a2:71:5c:28:58:f1:68:4e:4d:ca:59:60:dd:fd:3f:cd: 02:53:a7:b4:87:99:30:46:16:5a:26:ec:87:ca:e9:a4:a7:c6: af:b6:64:a3:5a:c6:a4:e0:62:94:98:db:c7:5b:30:3c:49:29: df:8a:67:c2:fa:16:88:b5:75:e3:03:83:f9:77:83:8a:79:5d: e0:08:2a:b7:72:e9:1b:45:50:c4:67:50:4f:75:8d:35:9b:91: 4d:5c:5f:61:5c:b5:7f:ca:65:75:a1:91:29:8d:0b:df:4a:b2: 96:84:01:b9:74:de:3a:3b:a6:fb:6b:4b:56:46:b0:ea:6b:1d: 84:30:a2:5f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUS1yj1Fa0KTKC0i8J+HMZ+KmeXT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0NjdF MEU0RDA2OTAeFw0yNTA2MDYyMzA2NDdaFw0yNTA2MTAwMjQ4NDdaMDMxMTAvBgNV BAMTKEQ3MUJBMDNCMkQyOUI4NUE5MDRBN0FFMzJBQjkxRTdDNkJDRDZGRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7TiDz2R/XLLMiut/4P4JITjiC 3ZmqlDMAZbeSmL/yBC43z9qIEnfJ0LV8lcAh0fKQ5I1ALWUD1kgE9535ZQ5SOrWE hC8BTigQIQtlrB8WTfZ7urO9fKkk2U2Ap07GEGSstTPG0zaZWeB9I3JHcY4F0XME kNuNoeM6vSIDPRi2LZXeIrRsoe3C6OPpPu2mRjGBwfVHDnjSh7WxnTSKPBU+KnJP fUbmJ1xkpUS+AxDnVc9CnZOHFWPOLrTQcfyuT8LS716DhFrZf70KizBbLRe0t5xS SUACaV1yPE79OMQj4jOUl/q0lBJse+qskemKnMM1C74TIAMo+7D0p6SB2r0HAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1xugOy0puFqQSnrjKrkefGvNb/MwHwYDVR0j BBgwFoAUWI3Q/OS8JDzJxtaK4E6EZ+Dk0GkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MTk5ZTU0MS0xODYxLTRkNmEtOGUyOC1iMDI4NDU4NjE0OTYvMC81ODhERDBGQ0U0 QkMyNDNDQzlDNkQ2OEFFMDRFODQ2N0UwRTREMDY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0NjdFMEU0 RDA2OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDE5OWU1NDEtMTg2MS00ZDZhLThl MjgtYjAyODQ1ODYxNDk2LzAvNTg4REQwRkNFNEJDMjQzQ0M5QzZENjhBRTA0RTg0 NjdFMEU0RDA2OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFhwcTeK6LzcODmPaej4OBOpRRbzm5wcTilE ovrjTx0AkLBVInXqF7xi1tF2tNCVnByz+y+FLn6i489W5igCYsV7Jyvcsl/Hx8yh lZcx+vjYoq1KNuwh3MEpbdPg8M9xFHjA0/KN/cY+fzEKz6yNjnR+CB/sOn8M3YDw +0CJsXBvonFcKFjxaE5Nyllg3f0/zQJTp7SHmTBGFlom7IfK6aSnxq+2ZKNaxqTg YpSY28dbMDxJKd+KZ8L6Foi1deMDg/l3g4p5XeAIKrdy6RtFUMRnUE91jTWbkU1c X2FctX/KZXWhkSmNC99KspaEAbl03jo7pvtrS1ZGsOprHYQwol8= -----END CERTIFICATE-----Generated at Mon Jun 9 02:26:30 2025 by rpki-client