$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft File: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft (raw, json) Hash identifier: cKoAuu32uihmq/EENtiaI0g1OzcEh2YNOpy3uynQjak= Subject key identifier: 77:22:EE:4B:6F:84:A3:5C:90:F3:60:F1:91:4E:A1:B8:46:30:AC:5A Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Certificate serial: 14D8074DBF862822296CB95F00E933623F34D15B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft Manifest number: 0261 Signing time: Tue 03 Jun 2025 03:20:54 +0000 Manifest this update: Tue 03 Jun 2025 03:15:54 +0000 Manifest next update: Fri 06 Jun 2025 06:27:54 +0000 Files and hashes: 1: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl (hash: W7ICUINQTS3yu+xiZw+o3ZUUHAXm6Tp/bkXG8oX6O+I=) 2: 3130332e3137392e36362e302f32332d3234203d3e20313531303030.roa (hash: 3ytI4WNdkarTA98AKzILbdHeDtsgun+xePSvAI/3j/w=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 06:27:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:d8:07:4d:bf:86:28:22:29:6c:b9:5f:00:e9:33:62:3f:34:d1:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Validity Not Before: Jun 3 03:15:54 2025 GMT Not After : Jun 6 06:27:54 2025 GMT Subject: CN=7722EE4B6F84A35C90F360F1914EA1B84630AC5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c4:52:ee:3a:96:17:87:9d:c4:d5:0a:3f:41: 24:b5:ae:a6:4d:63:6d:ad:b7:67:15:85:b6:4f:87: cc:05:e8:50:df:0c:48:62:eb:2d:52:95:de:dc:2c: 16:cd:89:95:85:81:5e:7b:64:70:d0:29:f4:e0:ef: 96:ae:07:55:a6:02:15:fb:b3:52:c2:8f:6b:eb:a8: 0e:b9:0b:42:91:df:bc:72:4f:56:c9:48:40:3d:4d: ee:2a:d8:46:0c:d3:de:4c:a0:fa:cb:da:aa:b7:3f: 52:71:a1:6d:42:6a:91:87:52:e6:e5:42:ea:05:b6: 3f:6d:f9:26:57:77:08:29:18:26:50:51:94:41:ea: 2e:6c:ad:0a:e8:67:33:66:cd:c6:e9:ce:74:a6:77: 5c:f2:73:d2:e1:21:79:65:29:81:47:09:0d:29:48: a3:84:96:4a:08:43:98:64:6b:a8:c7:1d:dc:62:5b: 05:27:6b:ef:e2:dc:22:3d:d7:6d:cb:4f:79:52:dd: 89:29:f0:4c:e6:e9:96:98:a6:24:c9:47:e1:a1:66: 9b:ea:9e:f7:7e:0f:b4:27:28:29:76:98:8b:d4:dc: 98:44:34:95:82:ba:f9:93:25:c9:55:2a:1d:e0:be: db:93:e0:47:f0:0e:26:fd:54:8a:b0:fb:1f:aa:e1: 7f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:22:EE:4B:6F:84:A3:5C:90:F3:60:F1:91:4E:A1:B8:46:30:AC:5A X509v3 Authority Key Identifier: keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:ae:32:e0:22:fa:35:bd:a3:ca:10:f1:fe:a0:de:78:d1:8c: 41:a6:80:34:d2:13:35:91:4f:89:f9:48:37:0e:08:d6:cd:52: 0e:52:74:15:0e:14:4b:73:30:7f:fc:73:2c:d0:0f:50:7a:a2: bc:b5:f7:8b:60:ff:d6:6b:de:4f:9d:bc:45:38:48:18:98:44: 79:df:a9:74:c3:78:1e:1f:b1:2c:57:4d:e0:80:40:20:77:39: ac:d8:20:38:99:6a:1a:05:1a:dc:19:d0:67:86:b5:86:08:1a: 43:95:e7:77:d3:79:e2:06:63:9b:2c:82:6c:c5:3f:6c:c7:70: bd:2c:76:7f:ca:ab:6a:9b:1a:aa:e4:8a:5a:64:a1:2e:06:eb: fe:0b:a7:78:8a:71:95:35:ad:5a:b8:78:9c:2b:ed:64:e8:57: a2:55:7b:bb:c7:bc:14:d7:d3:ac:99:38:d8:84:74:e0:20:8d: af:7f:fc:71:28:63:17:06:dd:e6:49:70:8a:00:a6:83:01:1b: 9a:ec:25:24:aa:39:8d:a6:0f:03:fb:c8:e1:8c:9e:b3:6f:ce: 01:1c:57:c1:a5:cb:4a:af:8c:21:93:93:1b:56:d6:27:e0:70: 80:99:1e:d5:a0:33:49:34:63:99:90:36:86:f6:cd:4c:ac:0e: 4d:54:35:c7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFNgHTb+GKCIpbLlfAOkzYj800VswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRF RUFDQTI3MDAeFw0yNTA2MDMwMzE1NTRaFw0yNTA2MDYwNjI3NTRaMDMxMTAvBgNV BAMTKDc3MjJFRTRCNkY4NEEzNUM5MEYzNjBGMTkxNEVBMUI4NDYzMEFDNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJxFLuOpYXh53E1Qo/QSS1rqZN Y22tt2cVhbZPh8wF6FDfDEhi6y1Sld7cLBbNiZWFgV57ZHDQKfTg75auB1WmAhX7 s1LCj2vrqA65C0KR37xyT1bJSEA9Te4q2EYM095MoPrL2qq3P1JxoW1CapGHUubl QuoFtj9t+SZXdwgpGCZQUZRB6i5srQroZzNmzcbpznSmd1zyc9LhIXllKYFHCQ0p SKOElkoIQ5hka6jHHdxiWwUna+/i3CI9123LT3lS3Ykp8Ezm6ZaYpiTJR+GhZpvq nvd+D7QnKCl2mIvU3JhENJWCuvmTJclVKh3gvtuT4EfwDib9VIqw+x+q4X8jAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdyLuS2+Eo1yQ82DxkU6huEYwrFowHwYDVR0j BBgwFoAUW9NBptRq9Sz/I6XR4liUlO6sonAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMC81QkQzNDFBNkQ0 NkFGNTJDRkYyM0E1RDFFMjU4OTQ5NEVFQUNBMjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRFRUFD QTI3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UxMjc0M2QtZDU2ZC00YTc3LTkw ZTItYzUyZTZkZmUwNmMyLzAvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0 OTRFRUFDQTI3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADauMuAi+jW9o8oQ8f6g3njRjEGmgDTSEzWR T4n5SDcOCNbNUg5SdBUOFEtzMH/8cyzQD1B6ory194tg/9Zr3k+dvEU4SBiYRHnf qXTDeB4fsSxXTeCAQCB3OazYIDiZahoFGtwZ0GeGtYYIGkOV53fTeeIGY5ssgmzF P2zHcL0sdn/Kq2qbGqrkilpkoS4G6/4Lp3iKcZU1rVq4eJwr7WToV6JVe7vHvBTX 06yZONiEdOAgja9//HEoYxcG3eZJcIoApoMBG5rsJSSqOY2mDwP7yOGMnrNvzgEc V8Gly0qvjCGTkxtW1ifgcICZHtWgM0k0Y5mQNob2zUysDk1UNcc= -----END CERTIFICATE-----Generated at Tue Jun 3 23:41:57 2025 by rpki-client