$ rpki-client -vvf repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft File: 2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft (raw, json) Hash identifier: 4I1pOvjxDIcW9KBxqqBacrdsqkQtUvFY68J+mxRdASM= Subject key identifier: 74:50:A7:92:34:BE:4F:1A:DE:1B:85:57:AD:3A:3C:EC:6D:60:25:23 Authority key identifier: 2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 Certificate issuer: /CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Certificate serial: 7182C6EB81E403413988320F9616DE8B467BB5A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft Manifest number: 63 Signing time: Sat 07 Jun 2025 02:51:50 +0000 Manifest this update: Sat 07 Jun 2025 02:46:50 +0000 Manifest next update: Tue 10 Jun 2025 11:55:50 +0000 Files and hashes: 1: 2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl (hash: tpwr0ciFLq+n9b2Do6kY1LiRJCrH8qkl01giQXo+B4A=) 2: 3130332e3232352e31372e302f32342d3234203d3e20313532303632.roa (hash: P8QCMdvNkcGuA4F0hmx15JmIaSEyGRAUfWjBJiusufQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 11:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:82:c6:eb:81:e4:03:41:39:88:32:0f:96:16:de:8b:46:7b:b5:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Validity Not Before: Jun 7 02:46:50 2025 GMT Not After : Jun 10 11:55:50 2025 GMT Subject: CN=7450A79234BE4F1ADE1B8557AD3A3CEC6D602523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c8:62:3e:ba:79:ff:b6:ed:ad:62:33:fd:18: 40:30:50:da:c4:d5:4e:6b:ed:b1:63:8d:d5:25:de: 08:4d:e0:e9:ce:b4:30:d9:43:dc:51:f9:60:89:24: 90:30:f7:53:a2:fc:16:f8:06:cb:b6:b5:cb:e0:29: 52:40:66:2e:07:fb:9a:de:7d:e0:c4:7e:b3:f8:43: f9:72:4d:41:74:1d:01:ed:99:83:91:3d:f2:80:4a: 3a:58:16:a6:11:4c:cc:ee:29:d2:a9:75:c8:49:a0: e0:a1:62:c8:70:10:29:27:58:19:0e:e2:47:bb:be: 33:1e:53:ff:d1:90:ef:ce:b8:70:43:a5:95:f7:75: 92:03:45:c6:5c:ea:df:0b:6e:a9:b5:b0:3e:f2:0b: f7:c4:ea:9c:67:ce:cf:bc:aa:33:1e:17:25:38:3e: ad:63:97:18:59:a9:65:49:be:86:65:f1:38:cf:4d: 79:17:e0:2c:93:bd:14:80:d8:48:4b:44:31:91:72: cb:44:97:fc:89:5d:e9:5a:bd:11:6a:e1:59:04:eb: 78:25:14:51:cf:c2:58:fd:8a:b9:df:7e:cf:42:76: 4e:61:15:ff:05:97:c3:2f:7a:5d:b7:51:92:94:b6: 63:f3:9b:94:f4:9d:5e:ad:17:2b:6a:a9:0e:a3:be: be:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:50:A7:92:34:BE:4F:1A:DE:1B:85:57:AD:3A:3C:EC:6D:60:25:23 X509v3 Authority Key Identifier: keyid:2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:bc:a3:65:98:fe:15:91:a4:ee:49:20:12:be:67:c4:58:40: bb:8d:54:9a:2b:5b:83:dc:f2:b6:be:f1:3a:60:73:0e:af:7f: 2d:c0:bd:5e:ab:69:be:02:52:49:3f:5f:5d:58:e3:37:4d:f7: d2:31:64:47:10:c9:0d:ad:96:c6:cb:73:4a:82:15:56:0d:5d: cc:64:f4:dd:5c:07:1b:0a:29:de:92:33:0b:9e:d0:e9:24:f4: d2:74:b5:2d:df:00:8d:3c:36:eb:d4:99:d1:58:6d:39:38:49: 0e:80:fa:fd:6c:29:20:56:7a:dd:d5:a1:1c:f8:a3:07:e5:7b: 81:8a:12:81:fd:cf:61:eb:e6:fb:76:db:db:94:0b:ae:dc:f2: ce:97:a3:bf:f1:29:29:27:50:86:14:86:ad:73:39:1e:24:5a: 71:63:c9:34:83:f1:ac:07:88:dc:1e:3f:db:ec:e4:fb:5a:ac: 6d:c6:7e:f5:c4:d9:13:70:99:6a:10:d5:08:fd:92:c4:ae:af: 93:fe:96:8d:fe:7b:99:5c:72:9e:5b:0a:6f:97:ca:9f:06:19: 59:de:32:f7:ca:11:2d:76:d4:03:9d:b1:47:79:a3:67:20:aa: 86:82:89:6a:2c:ae:1c:b6:b6:13:12:38:69:da:53:26:05:d5: aa:37:97:66 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcYLG64HkA0E5iDIPlhbei0Z7taIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDEx MUZERjNCMDAeFw0yNTA2MDcwMjQ2NTBaFw0yNTA2MTAxMTU1NTBaMDMxMTAvBgNV BAMTKDc0NTBBNzkyMzRCRTRGMUFERTFCODU1N0FEM0EzQ0VDNkQ2MDI1MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4yGI+unn/tu2tYjP9GEAwUNrE 1U5r7bFjjdUl3ghN4OnOtDDZQ9xR+WCJJJAw91Oi/Bb4Bsu2tcvgKVJAZi4H+5re feDEfrP4Q/lyTUF0HQHtmYORPfKASjpYFqYRTMzuKdKpdchJoOChYshwECknWBkO 4ke7vjMeU//RkO/OuHBDpZX3dZIDRcZc6t8Lbqm1sD7yC/fE6pxnzs+8qjMeFyU4 Pq1jlxhZqWVJvoZl8TjPTXkX4CyTvRSA2EhLRDGRcstEl/yJXelavRFq4VkE63gl FFHPwlj9irnffs9Cdk5hFf8Fl8Mvel23UZKUtmPzm5T0nV6tFytqqQ6jvr6DAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdFCnkjS+TxreG4VXrTo87G1gJSMwHwYDVR0j BBgwFoAUKw09cKAntTx60hf+IsoO0RH987AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzcyZDNmNS1kZDUzLTRiNzQtOTQ3Yy02YmI1MTBmNGY1MDMvMC8yQjBEM0Q3MEEw MjdCNTNDN0FEMjE3RkUyMkNBMEVEMTExRkRGM0IwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDExMUZE RjNCMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWM3MmQzZjUtZGQ1My00Yjc0LTk0 N2MtNmJiNTEwZjRmNTAzLzAvMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBF RDExMUZERjNCMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFm8o2WY/hWRpO5JIBK+Z8RYQLuNVJorW4Pc 8ra+8Tpgcw6vfy3AvV6rab4CUkk/X11Y4zdN99IxZEcQyQ2tlsbLc0qCFVYNXcxk 9N1cBxsKKd6SMwue0Okk9NJ0tS3fAI08NuvUmdFYbTk4SQ6A+v1sKSBWet3VoRz4 owfle4GKEoH9z2Hr5vt229uUC67c8s6Xo7/xKSknUIYUhq1zOR4kWnFjyTSD8awH iNweP9vs5PtarG3GfvXE2RNwmWoQ1Qj9ksSur5P+lo3+e5lccp5bCm+Xyp8GGVne MvfKES121AOdsUd5o2cgqoaCiWosrhy2thMSOGnaUyYF1ao3l2Y= -----END CERTIFICATE-----Generated at Sun Jun 8 01:37:00 2025 by rpki-client