$ rpki-client -vvf repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft File: 33D26363FA5B5B53C17981915CBADB375AE27253.mft (raw, json) Hash identifier: 620hozybEunTMz5PcMPiYbSDNG5Oqtj2Hqp2VTiq4/Y= Subject key identifier: 4C:D6:D3:0F:D4:1D:3C:CE:24:87:94:97:5F:8F:4B:D9:32:40:83:56 Authority key identifier: 33:D2:63:63:FA:5B:5B:53:C1:79:81:91:5C:BA:DB:37:5A:E2:72:53 Certificate issuer: /CN=33D26363FA5B5B53C17981915CBADB375AE27253 Certificate serial: 16615F67C1F130F94ACDA1843E192E665DB9E352 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D26363FA5B5B53C17981915CBADB375AE27253.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft Manifest number: 53 Signing time: Fri 06 Jun 2025 10:41:24 +0000 Manifest this update: Fri 06 Jun 2025 10:36:24 +0000 Manifest next update: Mon 09 Jun 2025 12:21:24 +0000 Files and hashes: 1: 33D26363FA5B5B53C17981915CBADB375AE27253.crl (hash: +uKWV8kdh8+buxcRnbfA5qwvgZQ4eqSZyawOA0jxRF8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.crl rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D26363FA5B5B53C17981915CBADB375AE27253.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:61:5f:67:c1:f1:30:f9:4a:cd:a1:84:3e:19:2e:66:5d:b9:e3:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33D26363FA5B5B53C17981915CBADB375AE27253 Validity Not Before: Jun 6 10:36:24 2025 GMT Not After : Jun 9 12:21:24 2025 GMT Subject: CN=4CD6D30FD41D3CCE248794975F8F4BD932408356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:04:28:3c:1d:07:c1:bb:79:30:41:89:26:4d: 65:0e:04:20:f5:67:9a:b6:72:f1:5c:b0:78:02:aa: d4:8e:b2:0e:36:6f:50:26:a1:14:23:3a:d5:82:d6: 25:b8:57:1e:59:48:b1:04:95:6e:c2:ab:22:23:81: 79:64:d1:a3:b2:a8:d3:6f:84:9a:ef:39:74:43:b9: 32:54:e4:cd:b6:b6:9d:02:7a:ae:98:04:e5:87:50: fd:fa:69:1d:52:2e:0f:c9:77:7c:89:9c:35:fa:56: 7f:80:76:a9:49:44:30:b2:68:83:c6:13:d5:4d:ed: 45:52:65:06:cc:fb:c8:c9:5a:a7:f9:83:9e:c7:ad: f8:05:aa:6e:67:d9:eb:e1:4d:b2:01:18:26:77:f1: 6e:a4:f4:14:3c:20:65:c9:b5:85:fe:47:cb:16:7d: 37:94:53:60:e2:64:bb:15:8a:07:d2:65:9f:fe:23: 58:3b:06:a3:fc:61:1c:34:8d:48:b2:19:a4:50:0d: be:e6:bb:43:97:32:e9:0a:2e:4f:ca:76:93:5f:ef: 3f:a9:43:a8:61:95:6d:dc:44:2d:b0:7c:30:8b:ba: 79:41:29:b8:05:f9:80:5b:25:13:f6:ed:b7:28:a9: 2e:11:1b:19:ec:5a:53:fd:d9:50:2a:32:72:49:74: 60:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D6:D3:0F:D4:1D:3C:CE:24:87:94:97:5F:8F:4B:D9:32:40:83:56 X509v3 Authority Key Identifier: keyid:33:D2:63:63:FA:5B:5B:53:C1:79:81:91:5C:BA:DB:37:5A:E2:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D26363FA5B5B53C17981915CBADB375AE27253.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:da:43:ff:bd:50:e1:11:98:30:77:ad:08:e3:8b:22:c9:32: 72:db:e2:2c:28:42:0f:db:29:3b:4c:e5:45:c7:99:70:bb:4b: 5d:3e:1d:7c:c1:75:26:dc:58:6b:8f:b9:94:f2:ab:4e:c5:59: 12:90:fa:5a:6d:a8:ad:f5:dd:7d:d0:07:16:f5:9b:b2:cf:0e: 86:12:8d:79:eb:40:9e:47:92:c0:5a:84:95:9c:7f:56:b7:1e: ba:1f:09:72:81:8b:ba:7b:04:42:ad:d7:af:86:ba:5a:6a:86: ab:79:b8:28:89:84:c9:24:ce:ce:90:ff:06:f0:ce:99:00:89: b2:5a:6b:a8:4b:07:5f:b9:c8:bc:a9:18:9c:88:a4:58:d6:db: f6:85:40:e6:cd:39:b6:2b:5f:d8:8d:aa:cb:e3:ac:9a:10:62: b7:ab:3e:14:cf:6d:fd:e6:f9:d6:00:0b:c7:c7:91:cf:57:de: 70:8d:27:32:bf:7f:d0:50:11:28:ff:e0:41:e9:32:eb:46:8b: 1a:a6:f3:55:fa:c8:93:12:65:ae:a5:45:da:0a:9c:e9:38:b8: b6:1a:a2:83:43:bb:29:11:79:b6:64:2b:b5:e9:b9:e8:9a:1e: 47:54:14:09:9b:c7:bc:d8:d9:9e:a6:cb:d0:15:ad:d3:8b:cb: e6:d8:ac:93 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFmFfZ8HxMPlKzaGEPhkuZl2541IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNEMjYzNjNGQTVCNUI1M0MxNzk4MTkxNUNCQURCMzc1 QUUyNzI1MzAeFw0yNTA2MDYxMDM2MjRaFw0yNTA2MDkxMjIxMjRaMDMxMTAvBgNV BAMTKDRDRDZEMzBGRDQxRDNDQ0UyNDg3OTQ5NzVGOEY0QkQ5MzI0MDgzNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfBCg8HQfBu3kwQYkmTWUOBCD1 Z5q2cvFcsHgCqtSOsg42b1AmoRQjOtWC1iW4Vx5ZSLEElW7CqyIjgXlk0aOyqNNv hJrvOXRDuTJU5M22tp0Ceq6YBOWHUP36aR1SLg/Jd3yJnDX6Vn+AdqlJRDCyaIPG E9VN7UVSZQbM+8jJWqf5g57HrfgFqm5n2evhTbIBGCZ38W6k9BQ8IGXJtYX+R8sW fTeUU2DiZLsVigfSZZ/+I1g7BqP8YRw0jUiyGaRQDb7mu0OXMukKLk/KdpNf7z+p Q6hhlW3cRC2wfDCLunlBKbgF+YBbJRP27bcoqS4RGxnsWlP92VAqMnJJdGBTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTNbTD9QdPM4kh5SXX49L2TJAg1YwHwYDVR0j BBgwFoAUM9JjY/pbW1PBeYGRXLrbN1riclMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YzU4ZmI3Yy02N2I4LTRiY2UtOTZkOS1iZTkxMmUzZjczZGQvMS8zM0QyNjM2M0ZB NUI1QjUzQzE3OTgxOTE1Q0JBREIzNzVBRTI3MjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNEMjYzNjNGQTVCNUI1M0MxNzk4MTkxNUNCQURCMzc1QUUy NzI1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGM1OGZiN2MtNjdiOC00YmNlLTk2 ZDktYmU5MTJlM2Y3M2RkLzEvMzNEMjYzNjNGQTVCNUI1M0MxNzk4MTkxNUNCQURC Mzc1QUUyNzI1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHPaQ/+9UOERmDB3rQjjiyLJMnLb4iwoQg/b KTtM5UXHmXC7S10+HXzBdSbcWGuPuZTyq07FWRKQ+lptqK313X3QBxb1m7LPDoYS jXnrQJ5HksBahJWcf1a3HrofCXKBi7p7BEKt16+Gulpqhqt5uCiJhMkkzs6Q/wbw zpkAibJaa6hLB1+5yLypGJyIpFjW2/aFQObNObYrX9iNqsvjrJoQYrerPhTPbf3m +dYAC8fHkc9X3nCNJzK/f9BQESj/4EHpMutGixqm81X6yJMSZa6lRdoKnOk4uLYa ooNDuykRebZkK7XpueiaHkdUFAmbx7zY2Z6my9AVrdOLy+bYrJM= -----END CERTIFICATE-----Generated at Sun Jun 8 01:51:41 2025 by rpki-client