$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: xRpvWoUnBWztMh83/ePdh4viOYYE3qPHw9qSeM+ijLQ= Subject key identifier: 82:18:36:0C:DE:93:A4:01:14:94:6B:1D:E4:4F:93:9A:2B:CD:3C:B1 Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 18D09FF2D3013FE0FF9521C1253F1DBC161E41E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: B2 Signing time: Sat 07 Jun 2025 04:31:03 +0000 Manifest this update: Sat 07 Jun 2025 04:26:03 +0000 Manifest next update: Tue 10 Jun 2025 05:05:03 +0000 Files and hashes: 1: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: IgQCNa2FbI8wK+0c53008/FWjKm1ifYgW93zIwxllp4=) 2: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: 20xyi7WGXkhpJhYMMa60rCEDcWMrrO4WibLNf+8UjDs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:05:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:d0:9f:f2:d3:01:3f:e0:ff:95:21:c1:25:3f:1d:bc:16:1e:41:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Jun 7 04:26:03 2025 GMT Not After : Jun 10 05:05:03 2025 GMT Subject: CN=8218360CDE93A40114946B1DE44F939A2BCD3CB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5f:1a:27:bb:08:20:e5:83:86:16:a6:8f:86: c7:3d:37:c5:4e:44:1b:f5:49:38:28:8a:f1:36:56: 52:6a:53:6e:ae:d6:63:19:6f:8a:cc:f6:bd:e3:f9: 18:5f:95:39:be:e6:e3:f9:4b:fd:c9:8b:fd:94:cf: 83:15:52:a8:b6:e2:0c:26:cb:56:c3:6d:f3:31:dc: 02:ed:d8:4d:b1:10:7a:b9:65:20:70:ce:4e:e5:3a: f1:b0:4a:7f:21:4f:fc:0e:e3:f4:a2:fe:1d:f4:a8: a3:b8:40:0b:cb:5a:f1:75:0a:e5:b7:e0:dc:e8:58: 05:3b:73:2e:59:0a:3a:e7:00:e4:2b:02:64:5d:7e: 59:27:d4:f6:a8:a3:aa:76:a5:73:65:c9:05:c7:1f: 57:06:cf:09:8c:d9:07:ab:c5:b9:86:2a:7b:c3:88: c0:0a:a2:ef:01:e1:0e:28:4e:ff:70:d2:bb:36:c3: 59:90:a5:e0:3f:66:a3:ef:91:e8:29:cf:ce:a2:92: ee:65:82:8e:69:a1:a7:5f:03:f5:dd:ec:d2:05:b5: ca:1c:1f:44:2a:04:01:46:f1:db:a7:18:c0:7d:b7: 51:ad:48:14:86:b2:0a:bb:f9:b5:81:fe:8a:4e:39: f4:73:75:54:7b:e6:01:5c:23:ca:64:38:70:b3:37: 9a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:18:36:0C:DE:93:A4:01:14:94:6B:1D:E4:4F:93:9A:2B:CD:3C:B1 X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:f9:f9:9d:60:08:f2:0e:ef:a1:3c:47:9c:5d:25:e9:24:40: 55:2e:c8:c3:c1:ba:07:e2:bc:a7:d3:20:9a:e0:41:10:d1:3f: 52:8a:0e:61:b0:39:cd:d8:d2:2e:57:0f:30:48:a6:86:d5:ba: fe:dc:80:f3:44:28:92:d1:fb:12:6a:38:4a:cb:57:93:56:82: 6a:e1:f5:3b:b5:30:fc:db:75:07:6c:2d:48:78:31:41:02:62: f8:df:0c:e0:96:e6:0e:2d:1b:00:7d:56:ea:fe:1d:ae:36:69: 4a:bd:f5:9f:6f:3c:2b:aa:55:22:f3:26:79:ae:db:52:35:fb: c8:77:fa:72:53:20:f7:17:7b:30:97:3e:3c:b1:19:bb:f3:36: b7:09:01:85:0d:a5:04:28:80:29:c2:fa:8c:3c:50:ef:cf:2e: 02:39:04:b6:7c:ea:3a:76:b6:6d:bb:57:06:6b:a0:50:5b:c2: 21:4f:65:08:34:10:67:31:4a:ea:f9:57:e8:92:bf:42:ab:f4: ed:f5:96:8d:af:60:6c:da:7c:1d:a7:ff:ba:4b:3b:21:28:ce: d5:87:83:1f:61:d8:4b:86:ea:4a:3b:9b:1b:3b:7f:4d:a0:4c: 7c:4c:75:03:21:b8:ae:2c:33:76:9b:5c:20:5a:9e:76:37:e8: d5:b0:55:8f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGNCf8tMBP+D/lSHBJT8dvBYeQeEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNTA2MDcwNDI2MDNaFw0yNTA2MTAwNTA1MDNaMDMxMTAvBgNV BAMTKDgyMTgzNjBDREU5M0E0MDExNDk0NkIxREU0NEY5MzlBMkJDRDNDQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmXxonuwgg5YOGFqaPhsc9N8VO RBv1STgoivE2VlJqU26u1mMZb4rM9r3j+RhflTm+5uP5S/3Ji/2Uz4MVUqi24gwm y1bDbfMx3ALt2E2xEHq5ZSBwzk7lOvGwSn8hT/wO4/Si/h30qKO4QAvLWvF1CuW3 4NzoWAU7cy5ZCjrnAOQrAmRdflkn1Paoo6p2pXNlyQXHH1cGzwmM2QerxbmGKnvD iMAKou8B4Q4oTv9w0rs2w1mQpeA/ZqPvkegpz86iku5lgo5poadfA/Xd7NIFtcoc H0QqBAFG8dunGMB9t1GtSBSGsgq7+bWB/opOOfRzdVR75gFcI8pkOHCzN5qxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUghg2DN6TpAEUlGsd5E+TmivNPLEwHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK/5+Z1gCPIO76E8R5xdJekkQFUuyMPBugfi vKfTIJrgQRDRP1KKDmGwOc3Y0i5XDzBIpobVuv7cgPNEKJLR+xJqOErLV5NWgmrh 9Tu1MPzbdQdsLUh4MUECYvjfDOCW5g4tGwB9Vur+Ha42aUq99Z9vPCuqVSLzJnmu 21I1+8h3+nJTIPcXezCXPjyxGbvzNrcJAYUNpQQogCnC+ow8UO/PLgI5BLZ86jp2 tm27VwZroFBbwiFPZQg0EGcxSur5V+iSv0Kr9O31lo2vYGzafB2n/7pLOyEoztWH gx9h2EuG6ko7mxs7f02gTHxMdQMhuK4sM3abXCBannY36NWwVY8= -----END CERTIFICATE-----Generated at Sun Jun 8 05:59:50 2025 by rpki-client