$ rpki-client -vvf repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft File: 26425B70294F98035D38788E597A4A6CEB9C9CE5.mft (raw, json) Hash identifier: 3VpF9X9JIn7gxLN+Rn/IK4O0XbBTytMsD6Vw3zzgfbc= Subject key identifier: DF:C5:3D:E4:6D:25:BF:80:33:72:BD:3F:31:83:8F:9B:EA:C8:6E:F8 Authority key identifier: 26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 Certificate issuer: /CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Certificate serial: 5E7FDEBAF4C917E81094AE2943927818ED9A483E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft Manifest number: 04DB Signing time: Fri 06 Jun 2025 03:30:01 +0000 Manifest this update: Fri 06 Jun 2025 03:25:01 +0000 Manifest next update: Mon 09 Jun 2025 09:02:01 +0000 Files and hashes: 1: 26425B70294F98035D38788E597A4A6CEB9C9CE5.crl (hash: t09HFHWjdOv3aFi/Tw5ZbQ9rZVfJejCYsKGeAsGY3fQ=) 2: 35382e3134352e3137322e302f32342d3234203d3e203436303534.roa (hash: GllxH/PgbP6S2bfFvEpAEeVFKqOz04XhxUteJc/lpd0=) 3: 35382e3134352e3136382e302f32312d3231203d3e203436303534.roa (hash: m+q7ZgpD2GbDgHvxK3Mi9rcFamM0AOK41baaZkFJd+o=) 4: 35382e3134352e3136382e302f32342d3234203d3e203436303534.roa (hash: N6AEmETFQ4NGMx3FYjWNV2pifT99NOMKn0cAzmtwEPs=) 5: 35382e3134352e3137312e302f32342d3234203d3e203436303534.roa (hash: pPJorPhtoURcHfFuZaHPY1347QHf/vc9r8CP1wzserg=) 6: 35382e3134352e3136392e302f32342d3234203d3e203436303534.roa (hash: FphOhbOvD7rhQc2k+v+l+2rQkAehuLUzPlPUYQrzCzw=) 7: 35382e3134352e3137332e302f32342d3234203d3e203436303534.roa (hash: OH7ZCJTwnLCxXMNsgmtlP1c6T2EBORCMxpBSErbjzUQ=) 8: 35382e3134352e3137352e302f32342d3234203d3e203436303534.roa (hash: sSjIG0LDeS5saZQ8C2CVyK81s+5ejD72CH0is00YDY4=) 9: 35382e3134352e3137302e302f32342d3234203d3e203436303534.roa (hash: Hb5P0TDeMBn1cOFH2oq3loUzifYWvfep94RtX5Q9BTY=) 10: 35382e3134352e3137342e302f32342d3234203d3e203436303534.roa (hash: JNMmXBJmRLeZ0v7hbRMvuNCKgvK7sZzrdM1QwWkvKok=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 09:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:7f:de:ba:f4:c9:17:e8:10:94:ae:29:43:92:78:18:ed:9a:48:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Validity Not Before: Jun 6 03:25:01 2025 GMT Not After : Jun 9 09:02:01 2025 GMT Subject: CN=DFC53DE46D25BF803372BD3F31838F9BEAC86EF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:74:27:59:ac:e7:23:4a:64:31:0d:6a:fe:23: 25:9d:a8:fc:b5:17:9a:f8:65:89:1a:ac:31:af:ff: 56:20:89:c1:3f:e2:d5:f2:13:84:12:48:97:5d:9e: ad:1a:ef:90:41:a5:f2:1c:aa:66:02:30:34:8f:0a: 3a:18:ba:a6:bd:7d:95:42:df:59:b3:a5:13:0b:10: fd:bc:58:6a:16:8b:02:75:83:6f:0c:dc:a2:d3:0f: ad:e8:89:a4:9d:fb:2d:1e:f4:d6:cc:5d:80:52:84: 24:75:5f:6b:f8:1d:67:ae:bd:8f:6d:99:22:42:a4: f8:26:dc:05:17:60:9c:8b:6a:b6:e5:6d:fb:c3:a4: 7e:e7:78:f1:31:69:e5:58:0e:d9:55:85:41:f1:57: dd:0a:c2:00:9e:9e:27:eb:16:d8:ed:2b:eb:06:be: 82:57:7a:f9:c3:4d:aa:cf:6a:84:ea:2a:90:67:e3: 7f:71:1c:52:c5:e7:56:a5:d0:8c:aa:0c:46:80:c5: 2d:a0:d4:0e:a8:e3:7d:17:b4:a9:0d:4a:21:fb:07: 1a:25:b2:0a:fe:a1:a0:d9:12:a2:75:6b:6b:c4:3c: 26:ef:d3:69:ee:3a:36:4e:6b:93:49:6d:d8:1d:ba: 88:6b:b4:a6:09:9f:c0:4c:65:a5:b8:88:95:34:94: 0e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:C5:3D:E4:6D:25:BF:80:33:72:BD:3F:31:83:8F:9B:EA:C8:6E:F8 X509v3 Authority Key Identifier: keyid:26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:61:a1:3c:78:54:fd:a9:1d:a7:2a:a1:2d:c5:3a:1f:72:34: 98:b3:0d:76:dd:2a:4c:42:79:17:49:81:90:e3:be:60:bf:07: bf:9d:63:ce:8b:34:a0:b8:bf:fc:5a:13:a0:86:ae:9c:89:bf: 2d:9b:f7:17:47:13:c1:36:a5:e7:8d:ab:e2:49:fb:5a:44:3b: 39:97:9c:92:c3:8f:c0:08:00:d2:60:53:09:24:07:47:0f:54: 04:a4:76:3e:57:81:e6:ba:28:32:80:49:17:b7:2b:3c:fa:e0: 8b:8c:83:ad:14:c4:60:c7:19:56:b7:3b:fa:1e:f4:bd:eb:b1: b8:64:1a:cd:f6:11:93:f9:30:05:36:c1:cf:0e:c0:10:71:44: 68:48:94:38:f1:2a:8d:90:4d:42:2d:a8:a8:0d:f0:a9:17:1e: 47:2a:da:79:77:f4:96:97:31:1e:e6:2b:9b:e4:ae:9d:da:de: b9:7f:62:09:86:ca:ad:2a:33:31:29:47:68:0f:4d:9a:72:f3: e0:a6:d1:b5:ef:e3:60:bd:50:32:55:53:ec:54:43:30:48:5a: ed:7f:6e:e1:8c:9d:ae:93:5d:5d:ed:0e:e6:a8:9b:51:bb:bf: 88:65:07:d3:82:cc:2a:25:0e:2a:6b:59:5a:88:16:d8:f5:41: 18:af:ea:0d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXn/euvTJF+gQlK4pQ5J4GO2aSD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNF QjlDOUNFNTAeFw0yNTA2MDYwMzI1MDFaFw0yNTA2MDkwOTAyMDFaMDMxMTAvBgNV BAMTKERGQzUzREU0NkQyNUJGODAzMzcyQkQzRjMxODM4RjlCRUFDODZFRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgdCdZrOcjSmQxDWr+IyWdqPy1 F5r4ZYkarDGv/1YgicE/4tXyE4QSSJddnq0a75BBpfIcqmYCMDSPCjoYuqa9fZVC 31mzpRMLEP28WGoWiwJ1g28M3KLTD63oiaSd+y0e9NbMXYBShCR1X2v4HWeuvY9t mSJCpPgm3AUXYJyLarblbfvDpH7nePExaeVYDtlVhUHxV90KwgCenifrFtjtK+sG voJXevnDTarPaoTqKpBn439xHFLF51al0IyqDEaAxS2g1A6o430XtKkNSiH7Bxol sgr+oaDZEqJ1a2vEPCbv02nuOjZOa5NJbdgduohrtKYJn8BMZaW4iJU0lA7ZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU38U95G0lv4Azcr0/MYOPm+rIbvgwHwYDVR0j BBgwFoAUJkJbcClPmANdOHiOWXpKbOucnOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2YzMDkzNi1jNzUwLTQzM2ItOWMyYS04ZmY1ZjM4ZTYzZDQvMC8yNjQyNUI3MDI5 NEY5ODAzNUQzODc4OEU1OTdBNEE2Q0VCOUM5Q0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNFQjlD OUNFNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2NmMzA5MzYtYzc1MC00MzNiLTlj MmEtOGZmNWYzOGU2M2Q0LzAvMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRB NkNFQjlDOUNFNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKlhoTx4VP2pHacqoS3FOh9yNJizDXbdKkxC eRdJgZDjvmC/B7+dY86LNKC4v/xaE6CGrpyJvy2b9xdHE8E2peeNq+JJ+1pEOzmX nJLDj8AIANJgUwkkB0cPVASkdj5Xgea6KDKASRe3Kzz64IuMg60UxGDHGVa3O/oe 9L3rsbhkGs32EZP5MAU2wc8OwBBxRGhIlDjxKo2QTUItqKgN8KkXHkcq2nl39JaX MR7mK5vkrp3a3rl/YgmGyq0qMzEpR2gPTZpy8+Cm0bXv42C9UDJVU+xUQzBIWu1/ buGMna6TXV3tDuaom1G7v4hlB9OCzColDiprWVqIFtj1QRiv6g0= -----END CERTIFICATE-----Generated at Sat Jun 7 12:30:55 2025 by rpki-client