$ rpki-client -vvf repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft File: 14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft (raw, json) Hash identifier: JafODUW94QgcKh7xpYh4nVd+ojDO3qBINFWrcm+Zs5w= Subject key identifier: C4:9E:D5:D9:54:BE:5E:1F:C2:52:75:78:E6:3B:8F:96:F0:26:DD:54 Authority key identifier: 14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B Certificate issuer: /CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Certificate serial: 481CB0E8F473E54DF3E468B8B012A1FCEF0F7F82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft Manifest number: 7A Signing time: Fri 06 Jun 2025 23:41:01 +0000 Manifest this update: Fri 06 Jun 2025 23:36:01 +0000 Manifest next update: Tue 10 Jun 2025 03:54:01 +0000 Files and hashes: 1: 14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl (hash: jxrkmsqOC0M94nOdX9pi7drjCDmIRyHj8gBY7LanA1Q=) 2: 3230322e34372e3137352e302f32342d3234203d3e20313532303333.roa (hash: dVzkaZwBc16NerGBbnPkInQRl7szohhHPD7ETdIV3jg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:1c:b0:e8:f4:73:e5:4d:f3:e4:68:b8:b0:12:a1:fc:ef:0f:7f:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Validity Not Before: Jun 6 23:36:01 2025 GMT Not After : Jun 10 03:54:01 2025 GMT Subject: CN=C49ED5D954BE5E1FC2527578E63B8F96F026DD54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:92:26:a3:ea:c0:f5:9f:85:f0:d4:6b:7d:a5: d2:dd:b8:01:06:9f:ff:96:a7:c0:d4:90:fc:32:1e: 1d:b5:f1:b1:81:48:fb:a2:9d:b8:bb:5a:26:79:de: 02:1a:5a:8b:8f:03:75:65:07:fa:ad:0c:24:af:87: 30:0c:ae:7c:f1:e6:f9:d2:f7:cf:92:1e:86:57:f2: 13:cd:59:b5:03:34:33:3e:f0:6d:0e:c3:f3:6c:0d: b0:67:a3:55:cf:4e:8e:6d:ba:67:6f:da:7a:4d:15: 3d:8d:c7:07:c6:c0:1b:ea:e9:fb:cf:83:9b:62:6b: 8b:64:55:6a:89:c3:7d:1e:5a:1b:c3:5b:30:81:fd: c8:24:9a:a1:12:37:e8:7a:21:64:9d:3b:44:db:3c: ce:14:83:cb:60:10:3b:37:dd:6b:e2:e8:9f:19:82: 84:2f:39:3d:8a:f3:ee:db:f8:3d:f0:fc:21:b9:a5: c7:8f:62:00:d5:0e:cb:59:9f:a7:05:89:49:85:90: 9e:64:b7:c4:f7:f2:8c:18:f7:4f:64:38:ce:ad:7a: 8e:db:7b:8f:e3:db:c1:a4:b7:8c:d8:15:2a:31:ad: b0:ee:76:2f:3d:62:07:19:bc:82:a5:f8:f6:24:39: 05:2b:b0:5b:0b:8e:14:3c:6b:10:8c:5d:70:0d:89: 0a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:9E:D5:D9:54:BE:5E:1F:C2:52:75:78:E6:3B:8F:96:F0:26:DD:54 X509v3 Authority Key Identifier: keyid:14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:b6:51:9d:38:90:54:b5:83:00:09:94:e5:5c:16:c4:de:88: 6b:ff:fa:1f:ab:08:c4:9b:f9:1c:4d:92:59:41:e6:94:42:4a: dc:67:12:2a:f5:59:fe:df:18:06:6a:d8:e4:ae:91:dd:d1:c2: 02:4c:46:d5:3f:1d:0c:8d:f5:b7:d9:87:27:97:22:56:d4:43: 55:1b:90:e8:ac:78:95:c4:d4:a0:c4:8f:fb:bc:b5:a7:ba:ef: 65:49:cd:3a:48:83:14:bc:95:2e:57:67:c8:90:20:96:a5:c6: 67:b9:56:12:6f:8d:a6:61:a8:77:5a:3a:ca:84:58:e9:b6:44: 31:39:aa:93:d6:71:ef:df:a3:bb:d2:6c:76:0f:91:f0:91:a8: fc:c7:da:cb:5e:16:c6:25:f8:0f:50:9e:64:df:ca:97:64:a0: 16:84:3a:f0:db:08:1a:6f:29:2a:9b:bd:cf:34:89:f1:8f:9c: 54:85:f5:f2:28:d8:9e:f3:17:d3:ef:be:c9:5c:aa:87:9c:cc: 51:e9:0e:d7:30:ea:df:9b:59:9a:00:4d:ed:96:af:ce:ac:02: f5:3c:63:61:91:69:1e:b4:5c:c6:29:28:6b:8b:f7:32:34:e4: 25:3c:22:a0:8c:54:b7:45:c0:e7:4f:a0:d6:1b:37:e6:a8:e9: 39:35:d0:52 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSByw6PRz5U3z5Gi4sBKh/O8Pf4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3 Nzk1N0UzQjAeFw0yNTA2MDYyMzM2MDFaFw0yNTA2MTAwMzU0MDFaMDMxMTAvBgNV BAMTKEM0OUVENUQ5NTRCRTVFMUZDMjUyNzU3OEU2M0I4Rjk2RjAyNkRENTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkkiaj6sD1n4Xw1Gt9pdLduAEG n/+Wp8DUkPwyHh218bGBSPuinbi7WiZ53gIaWouPA3VlB/qtDCSvhzAMrnzx5vnS 98+SHoZX8hPNWbUDNDM+8G0Ow/NsDbBno1XPTo5tumdv2npNFT2NxwfGwBvq6fvP g5tia4tkVWqJw30eWhvDWzCB/cgkmqESN+h6IWSdO0TbPM4Ug8tgEDs33Wvi6J8Z goQvOT2K8+7b+D3w/CG5pcePYgDVDstZn6cFiUmFkJ5kt8T38owY909kOM6teo7b e4/j28Gkt4zYFSoxrbDudi89YgcZvIKl+PYkOQUrsFsLjhQ8axCMXXANiQq/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxJ7V2VS+Xh/CUnV45juPlvAm3VQwHwYDVR0j BBgwFoAUFM+Z3vobknbr7mEYDfR3AXeVfjswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OTdmNTE2MS0wNzBmLTQzMzktYWY0ZS1iYzMzZmRmYjY3YjgvMC8xNENGOTlERUZB MUI5Mjc2RUJFRTYxMTgwREY0NzcwMTc3OTU3RTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3Nzk1 N0UzQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDk3ZjUxNjEtMDcwZi00MzM5LWFm NGUtYmMzM2ZkZmI2N2I4LzAvMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3 MDE3Nzk1N0UzQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF62UZ04kFS1gwAJlOVcFsTeiGv/+h+rCMSb +RxNkllB5pRCStxnEir1Wf7fGAZq2OSukd3RwgJMRtU/HQyN9bfZhyeXIlbUQ1Ub kOiseJXE1KDEj/u8tae672VJzTpIgxS8lS5XZ8iQIJalxme5VhJvjaZhqHdaOsqE WOm2RDE5qpPWce/fo7vSbHYPkfCRqPzH2steFsYl+A9QnmTfypdkoBaEOvDbCBpv KSqbvc80ifGPnFSF9fIo2J7zF9PvvslcqoeczFHpDtcw6t+bWZoATe2Wr86sAvU8 Y2GRaR60XMYpKGuL9zI05CU8IqCMVLdFwOdPoNYbN+ao6Tk10FI= -----END CERTIFICATE-----Generated at Sun Jun 8 02:00:42 2025 by rpki-client