$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft File: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft (raw, json) Hash identifier: EPgHKimq9PJTo2FZCdH57erBWfD9EmMsgnsiNFAic7Q= Subject key identifier: 27:04:31:C2:2B:F1:B4:82:4D:F3:05:B8:75:99:2B:0B:FF:B1:76:87 Authority key identifier: D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB Certificate issuer: /CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Certificate serial: 2536541793AECD54AB46FE4905748F6AC073D6B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft Manifest number: 020A Signing time: Wed 04 Jun 2025 22:51:58 +0000 Manifest this update: Wed 04 Jun 2025 22:46:58 +0000 Manifest next update: Sun 08 Jun 2025 08:09:58 +0000 Files and hashes: 1: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl (hash: d0ntHnVwip671WLwviplxHX+AfWEevMI0pjW5JHLQms=) 2: 3130332e3138332e3235302e302f32332d3234203d3e2034383030.roa (hash: Ytn4J3L//ntkx3dIdir2Ut4ptmhaS3TkbsBspKupuTk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 08:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:36:54:17:93:ae:cd:54:ab:46:fe:49:05:74:8f:6a:c0:73:d6:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Validity Not Before: Jun 4 22:46:58 2025 GMT Not After : Jun 8 08:09:58 2025 GMT Subject: CN=270431C22BF1B4824DF305B875992B0BFFB17687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9d:b4:30:a7:3c:01:93:88:30:1e:95:ba:6a: 2a:e3:e2:cc:ee:22:4e:a8:7d:4a:08:0e:01:11:02: 4a:2f:73:b7:a5:85:fe:04:5c:bb:37:a9:85:1b:c4: c5:d2:ba:50:a8:0c:78:5d:8e:ac:e5:81:a2:46:b9: db:58:73:ba:f0:c7:74:db:17:72:2b:ee:b7:20:68: cc:65:d6:68:f4:fc:b0:a3:60:1f:f9:12:ac:a9:26: 8b:90:a8:8d:b6:ba:84:e6:d5:81:c6:5e:95:01:46: f6:ea:9d:7f:7e:36:ca:f1:64:e7:42:d6:b3:4a:6e: 17:d7:26:94:75:ea:e0:93:5d:69:52:31:7c:84:46: 9b:32:4d:0a:20:d2:06:b7:51:78:ce:b8:a5:60:31: 57:6f:65:9c:72:07:50:79:78:84:d6:9e:78:8a:f1: dd:bf:14:c7:54:d2:fa:1f:02:1c:41:71:c8:45:ad: e8:dd:7c:d2:28:3b:57:ee:1d:7b:fa:80:0e:26:16: 1c:01:b4:46:60:46:b0:58:c1:44:a6:ce:13:a5:a6: 81:40:75:69:f6:5c:48:e8:50:6f:a1:a1:3c:b6:09: 0e:c5:3b:aa:a7:bf:98:74:eb:74:4c:c5:7c:aa:7a: 1d:c2:30:20:50:97:f0:db:19:df:ee:55:80:3b:ed: 1b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:04:31:C2:2B:F1:B4:82:4D:F3:05:B8:75:99:2B:0B:FF:B1:76:87 X509v3 Authority Key Identifier: keyid:D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:cb:36:88:21:2d:e2:61:08:36:f0:b9:08:8a:d5:86:97:a5: eb:10:eb:77:42:05:1c:1d:a2:b5:92:9c:f0:31:77:a8:2a:49: ad:89:36:df:d3:79:82:61:b1:66:7a:8f:43:e9:00:ba:60:41: 11:05:c9:f6:20:e6:49:69:e9:aa:2c:8b:ce:33:34:b0:f9:db: b3:97:84:a9:1f:64:0d:58:b0:18:01:a8:5c:27:4f:b8:50:34: 0d:93:9c:96:11:bf:f2:e8:4a:a6:6e:fc:7f:b4:f8:29:e0:9c: 91:2d:8b:6a:16:e8:1f:0a:dc:10:e3:7c:a0:6a:99:c7:36:22: 71:d5:70:80:47:b4:9e:97:6b:7e:69:ca:66:5e:2f:1e:67:01: 0b:8a:dc:bf:c0:67:13:13:09:70:67:fb:19:74:1a:69:69:a5: 05:4e:e6:73:5e:f6:54:7b:18:35:b5:f0:8f:f8:d8:ab:4e:4a: e6:be:81:10:d6:01:65:aa:ac:06:96:13:62:7e:84:7a:0c:8d: 34:fb:b7:00:de:af:ae:4b:67:59:69:e3:19:20:a7:21:e0:08: d0:25:5f:96:6b:b2:35:48:c3:37:f1:f5:8a:80:3a:0f:66:4e: 16:2f:83:68:db:5f:43:26:1f:1a:89:73:ef:d5:25:2a:33:57: e2:74:64:99 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJTZUF5OuzVSrRv5JBXSPasBz1rUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1 MTdDOEZEQjAeFw0yNTA2MDQyMjQ2NThaFw0yNTA2MDgwODA5NThaMDMxMTAvBgNV BAMTKDI3MDQzMUMyMkJGMUI0ODI0REYzMDVCODc1OTkyQjBCRkZCMTc2ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFnbQwpzwBk4gwHpW6airj4szu Ik6ofUoIDgERAkovc7elhf4EXLs3qYUbxMXSulCoDHhdjqzlgaJGudtYc7rwx3Tb F3Ir7rcgaMxl1mj0/LCjYB/5EqypJouQqI22uoTm1YHGXpUBRvbqnX9+NsrxZOdC 1rNKbhfXJpR16uCTXWlSMXyERpsyTQog0ga3UXjOuKVgMVdvZZxyB1B5eITWnniK 8d2/FMdU0vofAhxBcchFrejdfNIoO1fuHXv6gA4mFhwBtEZgRrBYwUSmzhOlpoFA dWn2XEjoUG+hoTy2CQ7FO6qnv5h063RMxXyqeh3CMCBQl/DbGd/uVYA77RvjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJwQxwivxtIJN8wW4dZkrC/+xdocwHwYDVR0j BBgwFoAU2dBzDbUSlf7FvUgM3UK16FF8j9swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyYjhiMy1kZWM4LTQxY2YtYTE2ZC1lMTE3MTU2MWQ3MjUvMC9EOUQwNzMwREI1 MTI5NUZFQzVCRDQ4MENERDQyQjVFODUxN0M4RkRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1MTdD OEZEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmI4YjMtZGVjOC00MWNmLWEx NmQtZTExNzE1NjFkNzI1LzAvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1 RTg1MTdDOEZEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB/LNoghLeJhCDbwuQiK1YaXpesQ63dCBRwd orWSnPAxd6gqSa2JNt/TeYJhsWZ6j0PpALpgQREFyfYg5klp6aosi84zNLD527OX hKkfZA1YsBgBqFwnT7hQNA2TnJYRv/LoSqZu/H+0+CngnJEti2oW6B8K3BDjfKBq mcc2InHVcIBHtJ6Xa35pymZeLx5nAQuK3L/AZxMTCXBn+xl0GmlppQVO5nNe9lR7 GDW18I/42KtOSua+gRDWAWWqrAaWE2J+hHoMjTT7twDer65LZ1lp4xkgpyHgCNAl X5ZrsjVIwzfx9YqAOg9mThYvg2jbX0MmHxqJc+/VJSozV+J0ZJk= -----END CERTIFICATE-----Generated at Thu Jun 5 18:09:45 2025 by rpki-client