$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft File: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft (raw, json) Hash identifier: w1yqCu83FvXpBXFdTluGA55DOkiJFe8LeZy8h914Ao8= Subject key identifier: 77:8D:EF:7A:62:5D:FA:E5:87:87:AE:93:25:D0:CC:5A:E4:BC:59:74 Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 78486E5B2C08B90098C89FED26ACD1E84406B64A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft Manifest number: 018D Signing time: Wed 04 Jun 2025 22:11:20 +0000 Manifest this update: Wed 04 Jun 2025 22:06:20 +0000 Manifest next update: Sun 08 Jun 2025 08:24:20 +0000 Files and hashes: 1: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (hash: 1GaxlmyMBH5Av+K+s7DcySXoa/4RweD6yLZx8aQoKzc=) 2: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl (hash: LpPpDI3dkC6tJb6niEvgEOLqYykedH6pdsZXvQUUJs0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 08:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:48:6e:5b:2c:08:b9:00:98:c8:9f:ed:26:ac:d1:e8:44:06:b6:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: Jun 4 22:06:20 2025 GMT Not After : Jun 8 08:24:20 2025 GMT Subject: CN=778DEF7A625DFAE58787AE9325D0CC5AE4BC5974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2b:25:76:0d:fd:5a:87:31:79:e2:43:72:0d: cc:69:d2:c6:83:0c:29:d3:b7:d3:54:4e:26:af:b1: 3a:ba:9c:a7:ed:86:2b:27:c4:ca:69:92:a0:bb:9c: c6:97:50:da:54:86:2a:4e:f9:4f:7a:cf:86:d4:61: b1:44:71:0f:d1:2a:34:b6:24:7c:58:62:3e:ba:7f: fe:a7:ce:4b:24:71:f5:70:67:c4:cb:0d:c5:da:aa: e5:66:46:b5:70:7b:7f:e6:58:26:54:d8:92:6e:a0: 9a:f9:4b:01:90:f4:cb:8a:29:3a:5b:c0:6e:72:04: cf:17:74:0b:42:3c:e4:89:20:0f:18:4a:fd:b8:cc: 48:40:b8:1f:8c:4c:95:a1:2c:1e:4e:43:41:89:3f: bb:c5:b0:3a:45:9c:fa:03:6c:53:ec:27:17:31:4d: a5:99:2b:ae:68:76:ea:23:1c:5d:99:e2:8b:03:7e: 83:4d:04:15:01:38:59:47:2f:7f:b6:ed:f2:8d:7f: da:23:32:c8:c1:19:4a:20:20:99:3b:01:f1:d6:29: 5b:34:ff:f7:3b:43:18:21:a1:34:73:ce:50:8e:b7: c1:23:65:78:5d:12:28:03:b3:67:d8:fc:7a:2e:e5: dc:34:8b:46:e7:33:68:f6:52:e4:b8:8a:02:53:ac: d0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:8D:EF:7A:62:5D:FA:E5:87:87:AE:93:25:D0:CC:5A:E4:BC:59:74 X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:7a:fa:96:54:b4:cd:4e:a6:d0:dd:c4:df:54:32:53:18:30: 71:ce:26:52:56:86:e5:92:de:41:49:59:ad:17:14:c8:d5:4f: 93:c0:1a:69:a0:81:ca:cd:92:7c:2d:8e:55:2f:d4:5b:90:4c: 39:16:d4:12:73:ce:ca:1a:73:7a:c3:b1:a1:4b:56:d0:e1:61: 44:2b:3f:ff:ff:37:55:96:c6:3d:fe:bb:f7:8b:03:e3:da:20: 01:00:73:db:88:37:28:3f:6d:80:59:f3:e9:bc:1a:37:94:74: 31:2f:12:71:e4:24:dd:e1:17:f5:be:77:30:5b:72:77:04:37: b8:fd:3a:30:41:d8:f8:e8:0b:eb:29:6c:01:b4:26:c6:5d:ff: 8a:03:3d:25:df:34:a3:0e:f6:0a:c7:e5:ad:89:a8:7e:90:ba: 0c:4d:b3:32:3c:ed:8b:2d:97:11:76:8b:4e:3b:98:59:97:65: 0d:a1:f2:91:5b:16:a9:6e:47:66:88:1e:35:8d:d4:0c:73:c8: 5c:43:c9:36:56:37:fc:f7:4b:e9:ad:da:43:36:42:8d:8d:f0: f6:74:75:48:86:e9:2f:48:7a:b4:23:3d:6e:2a:26:e7:4b:fc: a6:25:52:3b:5f:97:4d:47:a7:d0:32:19:ec:34:c5:0f:32:29: 92:fe:c0:c8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeEhuWywIuQCYyJ/tJqzR6EQGtkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yNTA2MDQyMjA2MjBaFw0yNTA2MDgwODI0MjBaMDMxMTAvBgNV BAMTKDc3OERFRjdBNjI1REZBRTU4Nzg3QUU5MzI1RDBDQzVBRTRCQzU5NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfKyV2Df1ahzF54kNyDcxp0saD DCnTt9NUTiavsTq6nKfthisnxMppkqC7nMaXUNpUhipO+U96z4bUYbFEcQ/RKjS2 JHxYYj66f/6nzkskcfVwZ8TLDcXaquVmRrVwe3/mWCZU2JJuoJr5SwGQ9MuKKTpb wG5yBM8XdAtCPOSJIA8YSv24zEhAuB+MTJWhLB5OQ0GJP7vFsDpFnPoDbFPsJxcx TaWZK65oduojHF2Z4osDfoNNBBUBOFlHL3+27fKNf9ojMsjBGUogIJk7AfHWKVs0 //c7QxghoTRzzlCOt8EjZXhdEigDs2fY/Hou5dw0i0bnM2j2UuS4igJTrNA9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUd43vemJd+uWHh66TJdDMWuS8WXQwHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTY2YThmMjgtOWEwMy00Mzc2LWI2 MTItMzFmNWFkMWMxZWQ2LzAvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4 MTc1RUMzODcxRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE56+pZUtM1OptDdxN9UMlMYMHHOJlJWhuWS 3kFJWa0XFMjVT5PAGmmggcrNknwtjlUv1FuQTDkW1BJzzsoac3rDsaFLVtDhYUQr P///N1WWxj3+u/eLA+PaIAEAc9uINyg/bYBZ8+m8GjeUdDEvEnHkJN3hF/W+dzBb cncEN7j9OjBB2PjoC+spbAG0JsZd/4oDPSXfNKMO9grH5a2JqH6QugxNszI87Yst lxF2i047mFmXZQ2h8pFbFqluR2aIHjWN1AxzyFxDyTZWN/z3S+mt2kM2Qo2N8PZ0 dUiG6S9IerQjPW4qJudL/KYlUjtfl01Hp9AyGew0xQ8yKZL+wMg= -----END CERTIFICATE-----Generated at Fri Jun 6 16:30:09 2025 by rpki-client