$ rpki-client -vvf repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft File: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft (raw, json) Hash identifier: +x3O3+FO/E/tlJcOkRZw/4C21IDp4eLTDO29BwFlAqw= Subject key identifier: 46:73:EC:3F:22:45:69:88:27:59:3A:FD:37:FD:CB:37:3C:DF:B7:4E Authority key identifier: FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 Certificate issuer: /CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Certificate serial: 79D5C7A628C5E5AEDBB88F2214671CF47B941D32 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft Manifest number: C4 Signing time: Thu 05 Jun 2025 11:12:16 +0000 Manifest this update: Thu 05 Jun 2025 11:07:16 +0000 Manifest next update: Sun 08 Jun 2025 18:59:16 +0000 Files and hashes: 1: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl (hash: 70I6muxTgIuJp1XKOi71wkBl9Pzn9CwNZDyqLnG8p+8=) 2: 3135372e32302e3132362e302f32332d3234203d3e20313532343130.roa (hash: mIAtzNrfjeKiFzHKpCt4+yI3FhKtEfckYghfutbPb44=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 18:59:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:d5:c7:a6:28:c5:e5:ae:db:b8:8f:22:14:67:1c:f4:7b:94:1d:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Validity Not Before: Jun 5 11:07:16 2025 GMT Not After : Jun 8 18:59:16 2025 GMT Subject: CN=4673EC3F2245698827593AFD37FDCB373CDFB74E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a1:7b:67:3d:c6:73:78:5f:38:58:68:43:cb: 69:98:37:32:ca:bf:bf:e0:b9:30:86:8d:30:ba:e0: d7:a1:0f:39:53:c3:ba:34:35:38:45:c1:b5:30:a2: 8a:3b:d2:95:b5:99:c7:e7:87:6e:a8:68:1c:bf:9a: 3d:12:be:c8:04:71:0a:d9:a4:fc:20:59:9a:3a:0a: 60:4b:41:2f:fd:78:bb:1a:5a:ac:b7:85:8b:09:dc: ee:ca:d5:86:06:58:6f:f8:12:ca:7c:7e:21:c4:a9: 1e:6b:3d:f6:ab:53:a1:02:dd:d5:8a:e1:70:44:e6: b6:0c:6f:6e:63:0e:20:63:9c:03:e5:f1:51:68:c3: ce:dc:8b:6a:de:07:4a:ba:b7:ac:40:3d:33:2a:77: ef:30:f1:bc:73:95:4f:ae:c8:f1:89:67:2f:2e:d3: e8:78:cc:9d:81:e4:5d:3d:09:b7:8d:75:75:fa:a1: a6:43:ee:c9:a7:3a:56:43:5d:5a:db:08:07:25:d8: 70:fd:67:c6:33:14:b8:77:0a:54:37:fa:bc:43:5d: 4d:60:e4:1a:ac:cd:1c:be:dd:47:64:15:9f:0f:33: 9a:cd:3f:2c:15:08:04:91:42:7e:30:1f:f6:56:c0: ec:5c:5f:58:0b:a2:c8:f1:9a:bd:ce:3c:95:2e:aa: 5f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:73:EC:3F:22:45:69:88:27:59:3A:FD:37:FD:CB:37:3C:DF:B7:4E X509v3 Authority Key Identifier: keyid:FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:82:ee:e3:5a:a1:88:68:bd:ed:52:86:c7:f2:4d:68:83:6b: 38:91:d6:67:51:5b:ac:8b:4c:1b:60:43:60:ac:43:b5:93:34: 8f:aa:c2:04:5d:c0:4c:fe:f4:d6:aa:45:c8:ba:34:8d:1d:e1: 00:96:5b:f1:7f:e9:98:f5:6e:49:32:c2:45:71:6c:9a:aa:14: 1d:5d:eb:dc:33:b0:33:92:31:2c:37:f5:1f:f1:25:09:83:36: f2:ad:c9:e8:7f:ea:90:80:8e:c3:ea:c0:3f:6b:f0:0d:26:9f: 7f:1f:a4:09:37:fd:45:59:61:c2:36:13:c9:1c:03:67:85:a3: 30:8d:02:a3:0f:ba:78:e3:3d:e0:14:73:36:45:af:70:cd:1b: e1:d1:bb:b3:ca:31:a9:64:6e:17:95:7a:d0:86:41:2c:fb:fb: b7:9b:a2:c5:34:d1:e7:cc:f2:06:12:e3:77:2c:bf:bc:b9:79: 6b:fa:66:fe:ab:10:5d:ae:e9:8d:d3:80:6b:f4:c8:1c:60:79: c1:6b:8f:3c:f3:1b:a8:e9:01:5b:cd:9b:e0:29:6f:17:5b:2c: 2e:3c:cb:e2:9a:3f:16:8e:d6:c3:92:55:cc:25:af:bd:71:58: 0a:98:10:32:91:29:59:4a:02:97:62:3a:00:c7:58:a7:79:2f: 84:01:86:76 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUedXHpijF5a7buI8iFGcc9HuUHTIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1 RUEyRTYyMzAeFw0yNTA2MDUxMTA3MTZaFw0yNTA2MDgxODU5MTZaMDMxMTAvBgNV BAMTKDQ2NzNFQzNGMjI0NTY5ODgyNzU5M0FGRDM3RkRDQjM3M0NERkI3NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3oXtnPcZzeF84WGhDy2mYNzLK v7/guTCGjTC64NehDzlTw7o0NThFwbUwooo70pW1mcfnh26oaBy/mj0SvsgEcQrZ pPwgWZo6CmBLQS/9eLsaWqy3hYsJ3O7K1YYGWG/4Esp8fiHEqR5rPfarU6EC3dWK 4XBE5rYMb25jDiBjnAPl8VFow87ci2reB0q6t6xAPTMqd+8w8bxzlU+uyPGJZy8u 0+h4zJ2B5F09CbeNdXX6oaZD7smnOlZDXVrbCAcl2HD9Z8YzFLh3ClQ3+rxDXU1g 5BqszRy+3UdkFZ8PM5rNPywVCASRQn4wH/ZWwOxcX1gLosjxmr3OPJUuql9hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURnPsPyJFaYgnWTr9N/3LNzzft04wHwYDVR0j BBgwFoAU/XxaRKPKr3zRQM/RxhYiul6i5iMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MGY3OGJkNC1jMTliLTRkNDAtYWE1NC1lZDhkN2JjNzcyY2EvMC9GRDdDNUE0NEEz Q0FBRjdDRDE0MENGRDFDNjE2MjJCQTVFQTJFNjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1RUEy RTYyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTBmNzhiZDQtYzE5Yi00ZDQwLWFh NTQtZWQ4ZDdiYzc3MmNhLzAvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIy QkE1RUEyRTYyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIWC7uNaoYhove1ShsfyTWiDaziR1mdRW6yL TBtgQ2CsQ7WTNI+qwgRdwEz+9NaqRci6NI0d4QCWW/F/6Zj1bkkywkVxbJqqFB1d 69wzsDOSMSw39R/xJQmDNvKtyeh/6pCAjsPqwD9r8A0mn38fpAk3/UVZYcI2E8kc A2eFozCNAqMPunjjPeAUczZFr3DNG+HRu7PKMalkbheVetCGQSz7+7ebosU00efM 8gYS43csv7y5eWv6Zv6rEF2u6Y3TgGv0yBxgecFrjzzzG6jpAVvNm+ApbxdbLC48 y+KaPxaO1sOSVcwlr71xWAqYEDKRKVlKApdiOgDHWKd5L4QBhnY= -----END CERTIFICATE-----Generated at Sat Jun 7 04:11:55 2025 by rpki-client