$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft File: 295CEF87CDB74B1A43287E630C3FE568272D2F33.mft (raw, json) Hash identifier: 4kTQexWr4ZwZSCLp57s7f3PlAKAkejtqUa9EzrSE81U= Subject key identifier: 44:EE:01:28:6A:F2:EF:79:74:09:55:27:A1:9A:6C:F2:BE:72:5A:17 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 1F3AA0FAA4A06C737A28FCB3C0C2D2DE4D86D7A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft Manifest number: 04E5 Signing time: Fri 06 Jun 2025 07:31:40 +0000 Manifest this update: Fri 06 Jun 2025 07:26:40 +0000 Manifest next update: Mon 09 Jun 2025 09:29:40 +0000 Files and hashes: 1: 34332e3232352e3138342e302f32322d3234203d3e2039343232.roa (hash: 6l4eA4hgKKdV7HePb7GT4qkO7B2rOBXkYrSr+9u6X7c=) 2: 3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa (hash: S3vWYnYF+l4dhX20RDpIzaZuA3umTZ3b74Itz4An65E=) 3: 3232332e3133302e32302e302f32332d3234203d3e20313338313238.roa (hash: 4XaAtrPhzGDBzDHWlHXMB0whCb6rytr+C1+HuznU5f0=) 4: 3230322e34332e3232382e302f32322d3234203d3e2039343232.roa (hash: pPyEloQMF0TdeYTY5eM6CCjgFQy8xkkymm+/u9Rl4Cw=) 5: 295CEF87CDB74B1A43287E630C3FE568272D2F33.crl (hash: LTdjx8lUJQl/yCaCA/4TOCILUC1X1vbs9JrRVX8oc7c=) 6: 3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa (hash: 73W8GLSa6I8P01k3aFdjjpvb756Sn1uc1jeTJZ00bq4=) 7: 3232332e3133302e32322e302f32332d3234203d3e2039343232.roa (hash: 7z/4k9uh8qc3CYPaIfLqUwfu/s9Fgtg25t7b4ka8UOQ=) 8: 3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa (hash: PMWu4w2Q+6FhMFUf3/IiRjbR53qP/H9SS7SsSz4BOlo=) 9: 3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa (hash: 0qgtJcGFp2PSnsHTLVJD3e7NXsCz70cPkWqnqoXUWi0=) 10: 3130362e302e34382e302f32322d3234203d3e2039343232.roa (hash: ECzNZR+t4Bdt6LAAlKcBfTJvufVHsod6z7EXxaTCQXQ=) 11: 3130332e3234362e302e302f32322d3234203d3e2039343232.roa (hash: nhGmrbnsJZJKbXEVM2224rOUYqSyOnxXP3J6DVLRP58=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 09:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:3a:a0:fa:a4:a0:6c:73:7a:28:fc:b3:c0:c2:d2:de:4d:86:d7:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jun 6 07:26:40 2025 GMT Not After : Jun 9 09:29:40 2025 GMT Subject: CN=44EE01286AF2EF7974095527A19A6CF2BE725A17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2d:72:ce:aa:1e:a7:58:c8:14:6a:06:49:33: 3d:51:d6:b2:7f:bc:0c:6f:a4:82:6c:40:82:54:bd: f0:4f:41:25:4b:bd:5b:6c:5b:96:9a:2c:5c:0b:64: 60:b0:25:2f:2e:ed:b8:8c:af:bd:43:bc:ee:a6:c1: c5:09:b5:7e:73:50:8a:a5:5b:3a:ff:fa:f6:57:c6: 83:9d:dd:8c:01:6b:96:9f:91:f3:d2:e6:d1:94:58: 53:dd:a8:17:05:a0:fb:c2:87:1d:14:4c:36:08:07: b5:2b:3a:11:7d:74:26:58:3a:db:87:ad:51:b0:62: df:fa:7e:ac:38:67:bc:0a:a9:70:4b:f9:19:b5:34: b7:29:1a:df:13:5c:70:84:44:1a:94:c2:f9:9b:e8: b8:23:73:ca:8d:15:72:21:e3:49:e3:50:08:b6:8d: cf:28:ed:3e:a3:dd:e8:98:f5:01:13:e2:9c:61:2b: 49:24:5a:d5:f2:56:6e:37:49:e5:8e:c4:86:2f:77: 7b:1b:c9:4f:f6:65:e5:e8:85:47:4e:10:1d:5b:df: 30:fc:f3:da:fa:ff:64:39:69:8e:00:b3:ee:8e:42: d4:06:ce:6b:6c:76:49:28:d7:c6:f7:87:91:51:5e: ce:57:d7:c3:25:a1:c6:2d:85:bd:49:c3:d8:7a:e4: aa:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:EE:01:28:6A:F2:EF:79:74:09:55:27:A1:9A:6C:F2:BE:72:5A:17 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:32:21:e6:aa:50:b5:88:76:7b:57:6f:01:ed:df:b9:51:8c: 8c:f7:94:e0:b1:b3:0b:b7:73:4e:55:19:a3:82:85:98:c2:d8: 01:af:b5:8f:a6:4e:95:a6:da:ee:03:51:60:7f:3a:23:06:96: f0:84:17:fb:7f:c5:bf:0f:c6:49:f9:10:4e:7e:a9:79:15:d6: cc:38:ed:e3:ca:a9:63:45:2f:69:0f:fd:32:bc:77:97:61:1d: 6b:38:99:84:97:bd:4a:4a:b6:27:6f:41:6d:33:a8:c5:d6:c9: 6e:71:44:87:fb:47:aa:81:88:f1:0d:23:f8:66:c9:96:28:13: 46:26:2b:a1:b4:44:b1:b9:7d:8a:f2:09:9e:c5:d7:ba:80:e7: b0:62:20:a4:91:e7:cd:26:2e:6a:4e:5c:e5:d9:62:ae:5e:1f: a9:eb:13:a0:e3:76:24:ef:83:46:bf:cf:f9:f8:f1:46:fd:55: 1c:5f:81:ce:7b:5e:da:6f:75:ee:94:fa:f5:b9:e5:dc:5a:6f: bd:b6:e6:24:2a:13:8e:8a:aa:fe:42:a1:42:8c:2b:cf:29:f3: 52:cf:f1:f0:94:e3:d1:7d:a1:8f:e5:1b:78:a6:41:d6:bc:d2: 42:6e:82:6f:f4:b0:1a:19:5d:71:88:ba:34:86:32:f5:d5:6c: 86:f0:15:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHzqg+qSgbHN6KPyzwMLS3k2G16IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA2MDYwNzI2NDBaFw0yNTA2MDkwOTI5NDBaMDMxMTAvBgNV BAMTKDQ0RUUwMTI4NkFGMkVGNzk3NDA5NTUyN0ExOUE2Q0YyQkU3MjVBMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDILXLOqh6nWMgUagZJMz1R1rJ/ vAxvpIJsQIJUvfBPQSVLvVtsW5aaLFwLZGCwJS8u7biMr71DvO6mwcUJtX5zUIql Wzr/+vZXxoOd3YwBa5afkfPS5tGUWFPdqBcFoPvChx0UTDYIB7UrOhF9dCZYOtuH rVGwYt/6fqw4Z7wKqXBL+Rm1NLcpGt8TXHCERBqUwvmb6Lgjc8qNFXIh40njUAi2 jc8o7T6j3eiY9QET4pxhK0kkWtXyVm43SeWOxIYvd3sbyU/2ZeXohUdOEB1b3zD8 89r6/2Q5aY4As+6OQtQGzmtsdkko18b3h5FRXs5X18MlocYthb1Jw9h65KqPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURO4BKGry73l0CVUnoZps8r5yWhcwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTg3ZDc5YmEtZmI1NS00OWE1LTk2 N2ItMWVkYzc0OWQwMTI4LzAvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1 NjgyNzJEMkYzMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAAyIeaqULWIdntXbwHt37lRjIz3lOCxswu3 c05VGaOChZjC2AGvtY+mTpWm2u4DUWB/OiMGlvCEF/t/xb8Pxkn5EE5+qXkV1sw4 7ePKqWNFL2kP/TK8d5dhHWs4mYSXvUpKtidvQW0zqMXWyW5xRIf7R6qBiPENI/hm yZYoE0YmK6G0RLG5fYryCZ7F17qA57BiIKSR580mLmpOXOXZYq5eH6nrE6DjdiTv g0a/z/n48Ub9VRxfgc57Xtpvde6U+vW55dxab7225iQqE46Kqv5CoUKMK88p81LP 8fCU49F9oY/lG3imQda80kJugm/0sBoZXXGIujSGMvXVbIbwFew= -----END CERTIFICATE-----Generated at Fri Jun 6 17:06:16 2025 by rpki-client