$ rpki-client -vvf repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft File: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft (raw, json) Hash identifier: qRIu5OVi9DWENPsvfI+3MKdtWTb8n88IJFmdrwpykvI= Subject key identifier: C6:98:B5:5A:A3:39:28:92:14:CA:A6:5D:9D:3B:41:87:8D:35:99:FB Authority key identifier: C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 Certificate issuer: /CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Certificate serial: 6D8F1D5729BBBECB6D75DB295CA6BF2B47DEC8FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft Manifest number: 0326 Signing time: Wed 04 Jun 2025 15:41:51 +0000 Manifest this update: Wed 04 Jun 2025 15:36:51 +0000 Manifest next update: Sun 08 Jun 2025 02:34:51 +0000 Files and hashes: 1: 3130332e3136312e37322e302f32342d3234203d3e203538333738.roa (hash: WHyXZiHm1tFrwAXrz4brauNseb8V8ZMQneoiM0eZr/g=) 2: 3130332e3136312e37332e302f32342d3234203d3e203538333738.roa (hash: N58UqlFMp748Khi3FbSfGS0G+XtsfGGuqPSO+3bYMNA=) 3: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl (hash: xo1urAmsvABvpA6FwIJznkUYDNfvxLl1SCeNpLcJjU4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 02:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:8f:1d:57:29:bb:be:cb:6d:75:db:29:5c:a6:bf:2b:47:de:c8:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Validity Not Before: Jun 4 15:36:51 2025 GMT Not After : Jun 8 02:34:51 2025 GMT Subject: CN=C698B55AA339289214CAA65D9D3B41878D3599FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5c:c1:40:d2:3d:9b:5d:e7:ee:e9:8e:85:be: 0a:8f:c9:9e:f4:a6:8a:0c:b9:0f:da:9a:fb:66:77: 46:c0:ee:d8:dd:93:70:98:fd:44:56:fc:e7:00:9c: 68:02:54:45:73:fa:3d:2f:11:c9:97:d4:bc:73:42: 2c:af:fa:07:1d:0c:4f:6a:12:08:3f:77:cf:a2:06: 4e:40:55:84:3b:dc:91:54:18:4e:cc:a4:47:77:c3: c4:fb:d3:4d:4d:10:3c:bf:2e:32:d6:3e:9d:29:bb: e0:7b:3f:ab:99:89:e9:99:58:b9:72:47:2b:3f:0a: 08:46:56:88:40:84:32:be:76:de:f3:d2:48:6e:23: cb:49:5d:f9:b8:e0:66:c7:c7:95:94:71:0f:4b:2d: e3:ae:69:1e:75:e5:d6:8d:1c:24:34:79:ec:00:85: d6:43:32:97:47:2e:35:b7:0d:14:19:c8:bb:1a:cf: 92:57:e7:0b:b0:f8:06:0f:cf:aa:ce:f0:84:39:1c: ae:53:67:ad:80:b8:08:11:be:20:87:e0:b7:d1:de: ec:66:a2:5e:74:86:42:47:4d:d9:c3:ce:93:86:7a: e4:6d:a7:4e:56:ad:36:3f:05:bd:fd:8e:70:e2:40: e3:3c:7a:c5:a5:82:a2:3f:ba:65:bc:4e:52:e2:6d: 7d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:98:B5:5A:A3:39:28:92:14:CA:A6:5D:9D:3B:41:87:8D:35:99:FB X509v3 Authority Key Identifier: keyid:C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:01:98:21:b3:e6:70:54:17:34:ff:45:39:74:1e:fb:4b:f9: 8d:03:04:37:ef:ca:7e:a2:ba:b2:4b:fd:94:d7:da:14:b3:52: cd:a7:b1:8c:e5:6a:c0:c7:ae:b1:4a:a0:2e:02:a0:e1:a0:e0: 66:71:37:2e:87:c6:50:05:6a:fc:96:09:b8:62:3a:2a:7f:4b: 0d:49:ad:55:c8:88:64:5c:25:ee:9c:d2:88:e7:62:41:4a:35: 81:21:83:17:2c:a1:84:b7:9a:bc:a4:b0:2e:23:46:a3:69:c3: a8:d4:64:dd:90:3b:94:3f:cd:54:dc:0a:60:a3:02:2f:50:88: 1f:88:79:1b:96:c6:87:0a:cc:22:30:c2:cb:3b:15:e7:24:6f: 29:ea:74:f9:67:ac:22:c1:f1:c9:14:d8:a8:d0:3a:7f:05:ab: 35:52:82:f5:8c:fb:48:33:16:9f:21:db:c2:23:e9:99:ff:8b: 4e:ee:a7:14:3c:1f:c7:c5:c8:b8:da:82:0a:aa:4d:10:87:81: b8:64:4c:95:f7:bb:aa:86:12:f4:d8:38:d5:60:39:7a:fd:e4: d4:d2:0c:91:f3:b6:84:e4:73:ce:08:e9:4a:81:fb:40:77:b5: 36:36:b1:a9:d6:35:b8:aa:4c:af:08:62:32:92:ca:32:fc:b8: 28:a8:35:51 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbY8dVym7vsttddspXKa/K0feyPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4 MTgxOTZGNDAeFw0yNTA2MDQxNTM2NTFaFw0yNTA2MDgwMjM0NTFaMDMxMTAvBgNV BAMTKEM2OThCNTVBQTMzOTI4OTIxNENBQTY1RDlEM0I0MTg3OEQzNTk5RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPXMFA0j2bXefu6Y6FvgqPyZ70 pooMuQ/amvtmd0bA7tjdk3CY/URW/OcAnGgCVEVz+j0vEcmX1LxzQiyv+gcdDE9q Egg/d8+iBk5AVYQ73JFUGE7MpEd3w8T7001NEDy/LjLWPp0pu+B7P6uZiemZWLly Rys/CghGVohAhDK+dt7z0khuI8tJXfm44GbHx5WUcQ9LLeOuaR515daNHCQ0eewA hdZDMpdHLjW3DRQZyLsaz5JX5wuw+AYPz6rO8IQ5HK5TZ62AuAgRviCH4LfR3uxm ol50hkJHTdnDzpOGeuRtp05WrTY/Bb39jnDiQOM8esWlgqI/umW8TlLibX2nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxpi1WqM5KJIUyqZdnTtBh401mfswHwYDVR0j BBgwFoAUwg3TevDvPKBV39+PP10Y8IGBlvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWJlN2FkOC1lMTVjLTQwMTQtYmZiMy1iZTY5YjdkNWRlODgvMC9DMjBERDM3QUYw RUYzQ0EwNTVERkRGOEYzRjVEMThGMDgxODE5NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4MTgx OTZGNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWViZTdhZDgtZTE1Yy00MDE0LWJm YjMtYmU2OWI3ZDVkZTg4LzAvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4 RjA4MTgxOTZGNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACQBmCGz5nBUFzT/RTl0HvtL+Y0DBDfvyn6i urJL/ZTX2hSzUs2nsYzlasDHrrFKoC4CoOGg4GZxNy6HxlAFavyWCbhiOip/Sw1J rVXIiGRcJe6c0ojnYkFKNYEhgxcsoYS3mryksC4jRqNpw6jUZN2QO5Q/zVTcCmCj Ai9QiB+IeRuWxocKzCIwwss7FeckbynqdPlnrCLB8ckU2KjQOn8FqzVSgvWM+0gz Fp8h28Ij6Zn/i07upxQ8H8fFyLjaggqqTRCHgbhkTJX3u6qGEvTYONVgOXr95NTS DJHztoTkc84I6UqB+0B3tTY2sanWNbiqTK8IYjKSyjL8uCioNVE= -----END CERTIFICATE-----Generated at Thu Jun 5 18:11:39 2025 by rpki-client