$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: BlwoCchH6T24AVqpWXIHL20HArPWD+qJmjyRpJad6Ok= Subject key identifier: 7C:DE:EB:42:E3:F4:69:17:CD:69:EE:EB:71:F3:02:92:E0:17:DB:E6 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 5B5641F86D1AC8854C94621920447B4C8EA1D72D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 04E6 Signing time: Tue 03 Jun 2025 15:42:38 +0000 Manifest this update: Tue 03 Jun 2025 15:37:38 +0000 Manifest next update: Sat 07 Jun 2025 03:19:38 +0000 Files and hashes: 1: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: HyMWadhCrBlbrvw7eV4dA67xhQ9znG8zfhfFTeZs2rs=) 2: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: LMlg0YtMMAZTGP6EzKXImD6a6ZjUtLMQ+VabkB5A5lc=) 3: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: 1cZaLW2bYSVuCFR3p6/QnCg+KIF2tEt9ZDlyjUYN2tI=) 4: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: poVJoDIgdq+9IOaKXFfNNA+yvHPk4SyyRDGNY9hYG5M=) 5: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: 9pt7JLtOWMCBsJXp8H1J28V9N/OUvx5VflNai/uQZgc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:56:41:f8:6d:1a:c8:85:4c:94:62:19:20:44:7b:4c:8e:a1:d7:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Jun 3 15:37:38 2025 GMT Not After : Jun 7 03:19:38 2025 GMT Subject: CN=7CDEEB42E3F46917CD69EEEB71F30292E017DBE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3c:24:59:db:80:63:fd:96:93:e7:b9:86:3d: a3:d0:84:74:54:28:43:52:84:b8:a9:19:2c:4c:28: c7:54:5e:2e:61:ed:f1:38:0a:9b:83:a1:a4:59:8a: f3:cd:5b:9b:14:86:73:39:ca:c8:99:3d:dc:0b:82: f9:9f:e7:75:99:32:0b:ae:2d:f7:cf:4b:49:fd:e3: d7:92:05:2d:29:1b:94:38:52:9a:73:94:e3:e7:69: 02:62:fb:0b:14:45:7a:23:18:66:63:a2:cf:58:3a: d9:d2:e9:b1:b9:32:0c:ed:3f:51:27:59:82:a7:48: 7e:20:c6:5c:8b:54:36:3c:db:10:3f:73:68:3d:24: b8:f5:ff:39:a7:8c:0a:4b:01:55:30:41:20:71:31: 8a:77:e3:6e:74:1a:76:2a:09:85:a8:37:e2:91:7f: 51:5f:40:a6:7e:36:95:f5:4c:8b:e0:1f:a5:8d:19: dc:39:ac:12:ee:9e:4e:84:2f:11:69:06:a6:9c:21: c7:06:15:ad:dd:04:34:c0:02:2c:a5:d9:8a:6b:b3: 88:e7:13:96:26:e2:2b:28:1d:e8:5c:75:11:e5:16: 77:26:1f:49:b8:f6:33:4e:bf:0a:cd:48:2a:0a:0d: 25:08:e9:ed:b8:d7:50:c0:11:80:04:a2:f1:d6:d5: d2:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:DE:EB:42:E3:F4:69:17:CD:69:EE:EB:71:F3:02:92:E0:17:DB:E6 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:e4:d8:84:a7:b8:47:e8:e7:49:f4:2f:16:12:01:04:4a:3f: 52:a6:28:66:00:ed:fa:4c:95:98:98:d8:a6:a0:0b:97:ea:27: 56:86:cf:50:02:bc:2e:dc:0f:5b:08:3f:64:48:72:71:2c:fb: 23:57:3d:e6:5c:f1:30:18:63:d7:b0:0e:11:6a:0b:ef:29:f5: 61:b4:28:db:7f:79:28:ea:85:71:84:10:02:5d:0a:79:52:f1: 13:b9:3e:70:d3:25:c0:94:12:85:b2:30:f3:ff:47:e0:ab:0a: 01:90:54:5f:92:60:6b:9a:bf:84:3e:eb:b1:8e:43:a7:9f:51: 07:37:1e:98:aa:2e:f5:0b:5f:cb:48:24:44:92:54:ba:ff:58: b4:54:5d:44:37:1c:47:44:10:ca:92:1d:fe:c8:bd:3b:88:a9: 27:8f:02:cd:25:d6:d0:ee:50:b4:9e:cb:63:76:5a:5e:5e:bb: 3d:8a:9c:c2:d8:17:ab:f3:39:51:ab:55:1a:d0:08:bc:bc:4e: fc:57:c3:d7:ca:45:3a:3a:2b:18:16:9d:f8:cd:c0:c1:56:cb: 70:25:d8:1a:d2:0b:7a:bd:31:81:38:5f:67:53:af:76:31:e5: 82:3f:3d:c7:6b:22:01:60:b5:0f:0a:a3:c6:6e:11:bb:13:0e: bd:14:63:89 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUW1ZB+G0ayIVMlGIZIER7TI6h1y0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNTA2MDMxNTM3MzhaFw0yNTA2MDcwMzE5MzhaMDMxMTAvBgNV BAMTKDdDREVFQjQyRTNGNDY5MTdDRDY5RUVFQjcxRjMwMjkyRTAxN0RCRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAPCRZ24Bj/ZaT57mGPaPQhHRU KENShLipGSxMKMdUXi5h7fE4CpuDoaRZivPNW5sUhnM5ysiZPdwLgvmf53WZMguu LffPS0n949eSBS0pG5Q4UppzlOPnaQJi+wsURXojGGZjos9YOtnS6bG5MgztP1En WYKnSH4gxlyLVDY82xA/c2g9JLj1/zmnjApLAVUwQSBxMYp34250GnYqCYWoN+KR f1FfQKZ+NpX1TIvgH6WNGdw5rBLunk6ELxFpBqacIccGFa3dBDTAAiyl2Yprs4jn E5Ym4isoHehcdRHlFncmH0m49jNOvwrNSCoKDSUI6e2411DAEYAEovHW1dJ9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUfN7rQuP0aRfNae7rcfMCkuAX2+YwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEHk2ISnuEfo50n0LxYSAQRKP1KmKGYA7fpM lZiY2KagC5fqJ1aGz1ACvC7cD1sIP2RIcnEs+yNXPeZc8TAYY9ewDhFqC+8p9WG0 KNt/eSjqhXGEEAJdCnlS8RO5PnDTJcCUEoWyMPP/R+CrCgGQVF+SYGuav4Q+67GO Q6efUQc3HpiqLvULX8tIJESSVLr/WLRUXUQ3HEdEEMqSHf7IvTuIqSePAs0l1tDu ULSey2N2Wl5euz2KnMLYF6vzOVGrVRrQCLy8TvxXw9fKRTo6KxgWnfjNwMFWy3Al 2BrSC3q9MYE4X2dTr3Yx5YI/PcdrIgFgtQ8Ko8ZuEbsTDr0UY4k= -----END CERTIFICATE-----Generated at Thu Jun 5 18:16:27 2025 by rpki-client