$ rpki-client -vvf repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft File: 871B4235DFC56C482416E7BBA192562092FFE055.mft (raw, json) Hash identifier: j38ebbJo2veK1hh00Z1GD6Hfe765la6CJGgIWNoL3T8= Subject key identifier: 5E:AD:CA:5B:E1:95:46:DB:4F:70:6C:A1:4E:A5:36:32:54:72:38:B6 Authority key identifier: 87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 Certificate issuer: /CN=871B4235DFC56C482416E7BBA192562092FFE055 Certificate serial: 5A3CE71EDF64B35BDA5469079C3F11FA3A75E8F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft Manifest number: C6 Signing time: Thu 05 Jun 2025 10:12:08 +0000 Manifest this update: Thu 05 Jun 2025 10:07:08 +0000 Manifest next update: Sun 08 Jun 2025 17:05:08 +0000 Files and hashes: 1: 3135372e32302e39322e302f32332d3234203d3e20313532343037.roa (hash: dOMygz5zltbqlA4IY/6P2zi8X+0Vf9OQi3HjL4HaSVo=) 2: 871B4235DFC56C482416E7BBA192562092FFE055.crl (hash: 8sDv2bLqPf9RX8fOVbbgi3IYShEt4AhyAzgTB+wsBTM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 17:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:3c:e7:1e:df:64:b3:5b:da:54:69:07:9c:3f:11:fa:3a:75:e8:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=871B4235DFC56C482416E7BBA192562092FFE055 Validity Not Before: Jun 5 10:07:08 2025 GMT Not After : Jun 8 17:05:08 2025 GMT Subject: CN=5EADCA5BE19546DB4F706CA14EA53632547238B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:79:d7:af:f7:27:ff:1f:7a:3a:21:1c:96:b7: 59:9f:c3:6c:2b:30:54:85:4f:55:e0:94:21:8f:38: 24:4e:a2:b4:fc:5e:08:d2:e5:ec:c5:ef:8a:83:5b: f5:7a:82:29:9c:e2:06:f7:a9:ba:7b:8f:65:e7:df: df:00:8c:03:0c:94:d8:04:69:33:f2:0a:55:d4:82: 9c:45:2d:3a:13:83:6b:b7:45:75:32:1c:a1:42:c5: ae:b2:99:97:c5:72:a4:e3:d6:2d:f2:ff:b8:26:80: 17:ff:98:f6:15:0c:1b:f6:92:e3:6b:08:3e:98:10: a7:6a:70:40:b0:8e:c1:7e:46:6a:34:8f:a0:20:30: 95:c6:87:c3:8d:af:73:78:b9:03:93:c5:ff:99:92: 4c:24:32:7d:7f:c2:b0:b2:d8:da:b1:d7:8b:a1:5b: 66:a5:6a:60:13:ba:f3:4f:73:34:63:93:59:98:46: bf:c6:fe:f5:dd:30:a7:56:a9:f3:d6:fd:1b:0f:f0: da:9d:52:56:2e:50:93:d8:14:b4:ed:81:bd:6d:60: 55:75:a6:51:7c:a2:61:14:a0:29:83:50:84:ef:fb: 84:47:bd:54:3e:f5:9d:8a:c0:87:b4:cf:96:8d:af: 47:83:13:40:9e:45:cc:e7:e4:11:7e:fa:5f:97:10: b1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:AD:CA:5B:E1:95:46:DB:4F:70:6C:A1:4E:A5:36:32:54:72:38:B6 X509v3 Authority Key Identifier: keyid:87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:9b:6d:f9:8d:c6:f5:c8:12:f2:6d:5f:13:77:07:86:e4:68: b6:f3:e8:84:9f:44:22:f3:da:a6:29:1e:4e:3f:be:8d:c8:aa: 45:5e:71:91:2c:06:58:df:14:fc:71:62:05:5a:43:da:56:b5: 1f:7e:06:e5:14:c9:01:bd:ae:39:27:d1:bd:ae:eb:fb:b5:58: 5a:49:57:4f:35:be:e1:11:56:6d:62:19:2c:2d:9a:4f:92:8b: ad:5c:43:d7:5e:b0:77:59:40:c8:30:97:7c:d9:25:a5:bb:42: c1:e6:5c:4f:56:0b:ed:63:4b:29:24:5c:e7:e0:ea:f6:b7:9d: 81:4f:14:bf:18:b4:e2:ad:3e:53:b7:be:5e:73:eb:46:60:cb: b7:e6:cb:79:13:27:84:7f:52:c8:1f:58:1b:b1:9a:79:b5:5b: 23:02:99:b9:4d:50:6f:d8:aa:65:4f:5a:82:b9:8a:6d:7f:36: f5:53:b6:45:62:bf:4d:fe:e0:4a:26:10:6c:28:32:8b:9b:25: c9:e8:ad:3c:82:e2:22:56:60:44:31:af:a6:2e:8e:57:5a:cc: 35:56:1d:fe:a2:bd:72:de:e7:ec:6c:11:3e:78:b5:da:bb:ba: 50:0c:f0:10:df:d6:ce:59:7f:19:a5:28:38:1a:1f:21:7d:80: 26:a6:47:94 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWjznHt9ks1vaVGkHnD8R+jp16PQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5 MkZGRTA1NTAeFw0yNTA2MDUxMDA3MDhaFw0yNTA2MDgxNzA1MDhaMDMxMTAvBgNV BAMTKDVFQURDQTVCRTE5NTQ2REI0RjcwNkNBMTRFQTUzNjMyNTQ3MjM4QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRedev9yf/H3o6IRyWt1mfw2wr MFSFT1XglCGPOCROorT8XgjS5ezF74qDW/V6gimc4gb3qbp7j2Xn398AjAMMlNgE aTPyClXUgpxFLToTg2u3RXUyHKFCxa6ymZfFcqTj1i3y/7gmgBf/mPYVDBv2kuNr CD6YEKdqcECwjsF+Rmo0j6AgMJXGh8ONr3N4uQOTxf+ZkkwkMn1/wrCy2Nqx14uh W2alamATuvNPczRjk1mYRr/G/vXdMKdWqfPW/RsP8NqdUlYuUJPYFLTtgb1tYFV1 plF8omEUoCmDUITv+4RHvVQ+9Z2KwIe0z5aNr0eDE0CeRczn5BF++l+XELEfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXq3KW+GVRttPcGyhTqU2MlRyOLYwHwYDVR0j BBgwFoAUhxtCNd/FbEgkFue7oZJWIJL/4FUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YTg5NmZkYy01NjM4LTQxZDItOGE5OS02OGNlODE2YmQzY2YvMC84NzFCNDIzNURG QzU2QzQ4MjQxNkU3QkJBMTkyNTYyMDkyRkZFMDU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5MkZG RTA1NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmE4OTZmZGMtNTYzOC00MWQyLThh OTktNjhjZTgxNmJkM2NmLzAvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2 MjA5MkZGRTA1NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACmbbfmNxvXIEvJtXxN3B4bkaLbz6ISfRCLz 2qYpHk4/vo3IqkVecZEsBljfFPxxYgVaQ9pWtR9+BuUUyQG9rjkn0b2u6/u1WFpJ V081vuERVm1iGSwtmk+Si61cQ9desHdZQMgwl3zZJaW7QsHmXE9WC+1jSykkXOfg 6va3nYFPFL8YtOKtPlO3vl5z60Zgy7fmy3kTJ4R/UsgfWBuxmnm1WyMCmblNUG/Y qmVPWoK5im1/NvVTtkViv03+4EomEGwoMoubJcnorTyC4iJWYEQxr6YujldazDVW Hf6ivXLe5+xsET54tdq7ulAM8BDf1s5ZfxmlKDgaHyF9gCamR5Q= -----END CERTIFICATE-----Generated at Sat Jun 7 04:04:50 2025 by rpki-client