$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: rsGqoD06jw7DxufH5az7sU3IGmgdzLgpO3Ke0z4Kuz0= Subject key identifier: 80:69:0F:1B:0F:6C:F7:92:CA:E2:39:05:DA:40:51:91:9B:C0:C8:9A Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 4D00E3C3C5F1A94EC3FC873F5F1240FD8B1EC605 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 02BA Signing time: Fri 06 Jun 2025 10:50:53 +0000 Manifest this update: Fri 06 Jun 2025 10:45:53 +0000 Manifest next update: Mon 09 Jun 2025 14:12:53 +0000 Files and hashes: 1: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: ejo3/L+3kmLyjnvdSLMOsbUtjtQhrjGsr2lCCkclPu4=) 2: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: YAl9IH945cB6nzFZ+Qtu95xtcvqOant2/UNUilOSLzk=) 3: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: M2YANzaSdBuix0ZHjrRe8Sqi4/L+soSEiXc4/Qc51GA=) 4: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: +t40M702VFWJpOgJRkFuplSndiJmUCoSc6okBYwiNSY=) 5: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: Sr5rxwxyX//B5EAQxEl5R5AYvEEW7vDFWvwM/NlIUq4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:00:e3:c3:c5:f1:a9:4e:c3:fc:87:3f:5f:12:40:fd:8b:1e:c6:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Jun 6 10:45:53 2025 GMT Not After : Jun 9 14:12:53 2025 GMT Subject: CN=80690F1B0F6CF792CAE23905DA4051919BC0C89A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e3:20:da:68:18:17:0c:34:ac:47:92:41:51: 03:d1:cf:85:ce:a5:48:66:cc:e2:5d:2a:9c:f4:66: 81:58:a6:b0:d7:b0:11:28:9f:5f:9f:8c:d8:77:a9: 60:e1:8d:45:43:f3:9d:29:cb:52:90:96:45:2d:b5: eb:cb:ab:5e:5f:45:b6:90:58:4c:3f:f8:97:f3:c3: dc:b5:b9:17:c4:9a:98:23:94:31:5d:de:73:47:b4: 39:6a:5f:47:91:98:63:66:fa:3b:a0:80:1b:e2:26: c3:17:c6:ac:b4:ee:7a:7f:a3:5e:d9:9b:99:01:68: 77:b5:d0:a1:6e:a9:cf:4f:7a:54:a6:7c:e2:a4:5b: a2:ae:aa:08:0a:73:87:e9:a9:a6:f4:46:b9:bf:6c: 7f:cf:93:d0:32:05:ff:f9:2e:72:da:f2:4d:31:2b: d5:80:82:17:22:77:3f:c6:f7:07:76:77:9b:46:4a: d9:b1:d7:6e:a0:45:40:d7:b0:61:a3:d8:49:94:44: 62:93:ca:49:f8:8a:08:3d:17:23:81:10:7e:ba:0c: 97:35:c1:87:1a:50:29:d5:47:68:18:3d:9f:e6:89: 4b:32:49:de:49:ac:68:20:93:7f:1c:eb:80:53:60: 01:bf:65:da:04:00:dd:61:c9:35:4c:88:b8:64:dc: 98:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:69:0F:1B:0F:6C:F7:92:CA:E2:39:05:DA:40:51:91:9B:C0:C8:9A X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:d8:42:63:ce:bc:6c:24:76:54:12:df:83:4c:bd:f5:f6:33: c6:d2:41:98:f5:b8:50:7a:92:e3:8b:55:c3:27:c1:98:75:ce: e5:0c:6a:21:cc:79:b4:e2:ed:22:31:76:17:94:b4:2d:58:e2: 3b:ae:3f:84:a2:73:29:45:44:f0:e9:11:72:9b:05:ba:9b:ed: 5c:b2:36:69:5c:29:f9:8e:f4:0d:b1:44:4a:ba:55:b0:67:5c: 99:77:93:fd:46:f8:b2:37:59:12:b7:80:0b:ab:96:b2:cb:c1: ef:4c:23:88:f5:d6:76:c6:7a:87:ba:20:86:69:73:88:46:e5: b4:31:fd:a0:ea:fb:a0:a4:21:b7:15:df:94:cd:0f:ee:74:19: ed:e4:35:57:f1:81:59:62:45:6f:2b:96:72:0f:65:33:0b:43: e8:2b:af:0a:aa:fb:b8:08:6a:a2:4c:e0:ec:87:aa:4f:6a:af: f4:38:9b:a0:03:5e:0f:4f:97:b3:d0:8b:ef:e0:fc:e7:b0:b4: 87:95:f1:a4:a6:89:7d:6f:8e:ff:a8:5a:89:fd:45:94:0f:0b: 7a:95:68:07:e3:da:07:89:21:e4:cf:9d:e2:4d:52:b3:de:6e: 15:af:90:47:5e:15:7b:d0:07:3e:6d:08:1e:e5:86:4d:1e:c8: b7:7e:f2:93 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTQDjw8XxqU7D/Ic/XxJA/YsexgUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNTA2MDYxMDQ1NTNaFw0yNTA2MDkxNDEyNTNaMDMxMTAvBgNV BAMTKDgwNjkwRjFCMEY2Q0Y3OTJDQUUyMzkwNURBNDA1MTkxOUJDMEM4OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY4yDaaBgXDDSsR5JBUQPRz4XO pUhmzOJdKpz0ZoFYprDXsBEon1+fjNh3qWDhjUVD850py1KQlkUttevLq15fRbaQ WEw/+Jfzw9y1uRfEmpgjlDFd3nNHtDlqX0eRmGNm+juggBviJsMXxqy07np/o17Z m5kBaHe10KFuqc9PelSmfOKkW6KuqggKc4fpqab0Rrm/bH/Pk9AyBf/5LnLa8k0x K9WAghcidz/G9wd2d5tGStmx126gRUDXsGGj2EmURGKTykn4igg9FyOBEH66DJc1 wYcaUCnVR2gYPZ/miUsySd5JrGggk38c64BTYAG/ZdoEAN1hyTVMiLhk3Jj5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgGkPGw9s95LK4jkF2kBRkZvAyJowHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD7YQmPOvGwkdlQS34NMvfX2M8bSQZj1uFB6 kuOLVcMnwZh1zuUMaiHMebTi7SIxdheUtC1Y4juuP4SicylFRPDpEXKbBbqb7Vyy NmlcKfmO9A2xREq6VbBnXJl3k/1G+LI3WRK3gAurlrLLwe9MI4j11nbGeoe6IIZp c4hG5bQx/aDq+6CkIbcV35TND+50Ge3kNVfxgVliRW8rlnIPZTMLQ+grrwqq+7gI aqJM4OyHqk9qr/Q4m6ADXg9Pl7PQi+/g/OewtIeV8aSmiX1vjv+oWon9RZQPC3qV aAfj2geJIeTPneJNUrPebhWvkEdeFXvQBz5tCB7lhk0eyLd+8pM= -----END CERTIFICATE-----Generated at Sat Jun 7 05:05:27 2025 by rpki-client