$ rpki-client -vvf repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft File: 4B35C20AD3085CF1B9FAEA049AD742539E090205.mft (raw, json) Hash identifier: YrPT0XegQTNZHruw04bqJh9Ab+tReyU/JSKsRT+Zc+c= Subject key identifier: 76:8E:17:16:7E:E1:71:81:91:D0:29:B2:ED:97:21:35:5E:8D:C5:D8 Authority key identifier: 4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 Certificate issuer: /CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Certificate serial: 1504A818EBFA4F5BB0FE4FB52AE2A942766BFDCD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft Manifest number: 023C Signing time: Fri 06 Jun 2025 05:31:09 +0000 Manifest this update: Fri 06 Jun 2025 05:26:09 +0000 Manifest next update: Mon 09 Jun 2025 10:12:09 +0000 Files and hashes: 1: 3130332e3137392e36342e302f32332d3233203d3e20313439333335.roa (hash: lOzsBAzFryNZCB+/jSigc4I1GSMJcpM/tHVhQtqL83s=) 2: 4B35C20AD3085CF1B9FAEA049AD742539E090205.crl (hash: f5TbdHSItsKI38mckYY5Ewum1iIDaUd29nbeo5mlSKU=) 3: 3130332e3137392e36342e302f32342d3234203d3e20313439333335.roa (hash: V8A5qvlja2NYXpcRnbKxugWJ4eOJeRmdBpf3sJh4ueQ=) 4: 3130332e3137392e36352e302f32342d3234203d3e20313439333335.roa (hash: JkbWHivPhJsD3g1oehsQXHSkUe1IApwcb1eZRN7L4oQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 10:12:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:04:a8:18:eb:fa:4f:5b:b0:fe:4f:b5:2a:e2:a9:42:76:6b:fd:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Validity Not Before: Jun 6 05:26:09 2025 GMT Not After : Jun 9 10:12:09 2025 GMT Subject: CN=768E17167EE1718191D029B2ED9721355E8DC5D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:78:a8:d4:3e:8b:18:68:f0:58:e5:6f:f3:f3: 2f:75:1b:f5:be:01:6c:d0:81:38:70:85:89:bd:12: e0:15:04:c2:5a:43:cf:6e:62:5d:3c:90:92:e8:8e: d4:30:36:74:44:80:38:67:ad:fc:3c:9d:af:e0:b4: d3:87:46:52:e1:fd:bd:d5:bd:cf:70:31:ed:d6:e1: ba:87:4c:d0:be:e2:1c:7a:94:b8:07:88:a3:2a:2d: 4e:72:95:d0:54:26:c7:88:9a:30:3c:5b:fb:e0:41: ef:bc:55:a5:2e:bc:b3:0a:99:8e:74:58:93:4a:95: d6:59:73:d2:17:8e:f9:20:82:fb:a1:3e:b2:b7:f6: ee:52:3f:38:48:73:19:83:e2:29:3f:59:9c:ef:8b: 30:e0:96:31:43:24:93:54:04:9d:37:96:4d:2f:25: 4c:db:33:25:9c:42:bc:c3:c2:ed:61:b0:ad:d2:65: 98:18:d5:92:dc:bf:e0:fd:81:53:12:0a:dc:5f:88: 59:cd:f2:66:11:2f:12:95:08:5d:b9:d6:36:62:91: 1e:95:ec:a7:30:e6:6a:31:35:85:50:b1:2a:cb:d1: 73:ba:d6:6f:c7:82:e0:1d:ef:c0:eb:72:77:1b:fd: 54:0f:bd:68:84:8c:4d:7c:ff:04:cc:c8:f7:2c:85: b5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:8E:17:16:7E:E1:71:81:91:D0:29:B2:ED:97:21:35:5E:8D:C5:D8 X509v3 Authority Key Identifier: keyid:4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:74:1f:39:0f:1b:47:62:86:a6:31:a3:c8:6b:aa:0b:a0:26: be:69:62:af:af:dd:87:ab:7b:f5:ae:78:1d:78:42:f1:43:41: d0:23:aa:a2:1c:76:43:59:7e:4f:7d:9a:cb:65:0a:05:01:86: b4:f4:34:ee:db:e3:eb:56:6a:f3:11:46:74:a2:7f:87:7c:c6: d2:20:a0:e3:81:2e:f0:70:65:70:97:d7:78:e9:17:76:97:50: 6c:eb:f1:1c:69:07:08:9e:5f:f2:8d:99:92:95:00:c2:a0:08: ca:01:1a:02:ff:86:75:6e:41:14:9f:9a:9f:60:1a:d1:ee:e0: 76:26:f2:cc:cc:a0:8f:20:77:93:06:19:05:62:ef:c4:40:eb: 5b:82:f6:aa:a9:4f:0a:54:63:27:89:e8:af:0e:b3:5a:8a:33: c2:e5:4a:b9:dc:f7:43:15:71:6f:99:8c:0c:ab:40:b6:9c:60: b8:37:26:64:d2:57:ab:f7:a8:aa:3f:99:c2:84:3f:9d:5e:45: 34:4a:57:5c:58:32:17:f8:5d:52:41:50:cf:6f:92:c1:2e:89: 4a:1d:30:13:fc:eb:24:e7:7b:ea:4b:d5:ad:12:6d:59:42:66: 85:a4:02:16:d6:b7:53:8c:ac:d7:8d:9a:de:ea:39:62:15:06: 54:9b:92:b1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFQSoGOv6T1uw/k+1KuKpQnZr/c0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5 RTA5MDIwNTAeFw0yNTA2MDYwNTI2MDlaFw0yNTA2MDkxMDEyMDlaMDMxMTAvBgNV BAMTKDc2OEUxNzE2N0VFMTcxODE5MUQwMjlCMkVEOTcyMTM1NUU4REM1RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmeKjUPosYaPBY5W/z8y91G/W+ AWzQgThwhYm9EuAVBMJaQ89uYl08kJLojtQwNnREgDhnrfw8na/gtNOHRlLh/b3V vc9wMe3W4bqHTNC+4hx6lLgHiKMqLU5yldBUJseImjA8W/vgQe+8VaUuvLMKmY50 WJNKldZZc9IXjvkggvuhPrK39u5SPzhIcxmD4ik/WZzvizDgljFDJJNUBJ03lk0v JUzbMyWcQrzDwu1hsK3SZZgY1ZLcv+D9gVMSCtxfiFnN8mYRLxKVCF251jZikR6V 7Kcw5moxNYVQsSrL0XO61m/HguAd78Drcncb/VQPvWiEjE18/wTMyPcshbUrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdo4XFn7hcYGR0Cmy7ZchNV6NxdgwHwYDVR0j BBgwFoAUSzXCCtMIXPG5+uoEmtdCU54JAgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NzdkZTAxMy05YjU2LTQ5ZmYtOGI3OS0zNjY3YTM0NWNiOGQvMC80QjM1QzIwQUQz MDg1Q0YxQjlGQUVBMDQ5QUQ3NDI1MzlFMDkwMjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5RTA5 MDIwNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzc3ZGUwMTMtOWI1Ni00OWZmLThi NzktMzY2N2EzNDVjYjhkLzAvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQy NTM5RTA5MDIwNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI50HzkPG0dihqYxo8hrqgugJr5pYq+v3Yer e/WueB14QvFDQdAjqqIcdkNZfk99mstlCgUBhrT0NO7b4+tWavMRRnSif4d8xtIg oOOBLvBwZXCX13jpF3aXUGzr8RxpBwieX/KNmZKVAMKgCMoBGgL/hnVuQRSfmp9g GtHu4HYm8szMoI8gd5MGGQVi78RA61uC9qqpTwpUYyeJ6K8Os1qKM8LlSrnc90MV cW+ZjAyrQLacYLg3JmTSV6v3qKo/mcKEP51eRTRKV1xYMhf4XVJBUM9vksEuiUod MBP86yTne+pL1a0SbVlCZoWkAhbWt1OMrNeNmt7qOWIVBlSbkrE= -----END CERTIFICATE-----Generated at Sun Jun 8 00:48:27 2025 by rpki-client