$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft File: 4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft (raw, json) Hash identifier: GNpDA4GWEWmKY6DZVOaQX0uJc4bb19ZciPH1Vwszkvs= Subject key identifier: 79:E4:CD:04:11:11:91:F2:49:8C:EF:84:5F:15:FA:65:73:35:A7:C5 Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Certificate serial: 68A405099A0AC71FD36A225381F36EBAD01A1456 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft Manifest number: 7D Signing time: Wed 04 Jun 2025 18:11:54 +0000 Manifest this update: Wed 04 Jun 2025 18:06:54 +0000 Manifest next update: Sun 08 Jun 2025 05:18:54 +0000 Files and hashes: 1: 3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa (hash: TD2xB1HLXamIjjFpw2dotgVlnTzLq7PRhXP0sb7oneE=) 2: 3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa (hash: ABcl7hjRsw3Xa0yDPigEjdLuUfujbY1jm15mYQSG+s4=) 3: 323430353a356534303a3a2f33322d3332203d3e20313339343038.roa (hash: iiMZJOJE0I/AUErV1vyRCE+uPLpfCmgdzT+r6epJErs=) 4: 4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl (hash: yQvYw7jWkDGdU9lmmK9gwr2l5gz/MIOMylAH3jy/UAU=) 5: 3130332e3134332e3233332e302f32342d3234203d3e20313339343038.roa (hash: xB/XqJ5dJTYe2nf2B7toQua0M24fdekoYi8o2PugdP4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:a4:05:09:9a:0a:c7:1f:d3:6a:22:53:81:f3:6e:ba:d0:1a:14:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Validity Not Before: Jun 4 18:06:54 2025 GMT Not After : Jun 8 05:18:54 2025 GMT Subject: CN=79E4CD04111191F2498CEF845F15FA657335A7C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2c:6b:13:89:9e:a2:18:5b:c5:7f:6a:95:d3: e9:28:38:62:8a:b8:a2:f5:8b:2a:8d:a5:5d:56:70: 6f:b9:4e:fe:21:b7:46:d1:26:bb:cd:ea:3c:84:c4: c8:e3:63:e0:2c:a4:1b:f8:12:57:74:1e:64:ab:b6: 54:b0:d1:2c:2d:1b:d7:70:f8:e3:25:a3:51:43:71: b3:0e:76:53:bd:9a:dc:88:9c:43:e7:9e:32:c6:d7: 50:8b:53:07:6f:ef:9c:8e:85:a1:15:62:7b:d3:fd: 7a:9e:b1:68:eb:49:24:f1:ce:26:b9:20:4c:a3:f2: ce:ef:ef:b0:7a:8b:06:9d:37:cb:40:14:6f:89:0d: f9:03:e3:d5:34:63:3a:91:3b:95:e4:58:0c:15:65: ad:ea:f2:08:39:f3:7f:4a:70:4e:0f:57:fd:ad:44: bc:0b:40:5f:1d:45:f6:23:dd:83:f7:58:de:a9:0b: 17:1b:90:5b:d9:56:43:98:c1:d2:55:10:aa:d4:ae: 80:6c:78:2a:22:e5:6a:a9:84:b3:a9:25:d9:aa:b3: 4a:11:ed:3f:40:4f:a2:58:cc:19:f9:fa:91:c8:21: 0e:c0:56:2c:66:b3:e8:cc:8d:a4:13:b5:49:d8:bd: ee:0a:39:72:a1:1f:87:97:cc:69:a0:76:66:c2:08: 13:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:E4:CD:04:11:11:91:F2:49:8C:EF:84:5F:15:FA:65:73:35:A7:C5 X509v3 Authority Key Identifier: keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:5b:37:f7:56:ab:de:c4:c0:b4:a3:66:4c:ad:08:53:c9:6f: c4:d5:9e:bf:2f:ce:eb:37:04:19:be:d6:bc:e0:46:61:cd:56: e2:a2:1c:c3:f8:e3:24:c3:de:78:c0:59:e0:48:fd:03:b1:e4: d0:47:86:a8:7a:cd:a7:4d:ae:71:31:1b:ae:4a:aa:4a:80:76: f2:7b:bb:03:1f:f2:af:9c:68:e3:b3:33:f0:8e:87:df:13:ff: 80:1e:bb:a1:e5:39:4c:f2:86:31:f0:20:f8:75:e5:fc:76:02: 14:63:68:25:73:4f:20:c7:20:5b:2e:3e:04:41:b6:ed:c1:16: 42:ce:c7:89:9c:8f:35:b2:d7:f4:a1:28:4a:12:55:a2:09:30: 2b:73:ed:d6:6d:c8:98:9f:73:bd:df:da:fa:58:23:78:37:92: 30:1c:f8:01:49:3c:39:57:4a:63:da:d1:1c:b2:9a:4d:8d:c7: 37:15:55:47:02:8c:2f:ff:dc:75:87:ec:da:10:cb:79:1b:bc: c4:00:1a:63:2a:9e:52:47:47:a6:7f:48:42:fc:de:c7:89:c6: 64:c5:f8:a1:65:68:d6:8c:f2:fc:7b:3f:be:f3:d1:5c:c6:d1: 4e:49:f0:91:93:4e:f4:4b:64:1e:b8:cf:c9:d8:4c:b5:9b:5f: 4f:c8:a1:d4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaKQFCZoKxx/TaiJTgfNuutAaFFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQz NEM0OEFGMjAeFw0yNTA2MDQxODA2NTRaFw0yNTA2MDgwNTE4NTRaMDMxMTAvBgNV BAMTKDc5RTRDRDA0MTExMTkxRjI0OThDRUY4NDVGMTVGQTY1NzMzNUE3QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9LGsTiZ6iGFvFf2qV0+koOGKK uKL1iyqNpV1WcG+5Tv4ht0bRJrvN6jyExMjjY+AspBv4Eld0HmSrtlSw0SwtG9dw +OMlo1FDcbMOdlO9mtyInEPnnjLG11CLUwdv75yOhaEVYnvT/XqesWjrSSTxzia5 IEyj8s7v77B6iwadN8tAFG+JDfkD49U0YzqRO5XkWAwVZa3q8gg5839KcE4PV/2t RLwLQF8dRfYj3YP3WN6pCxcbkFvZVkOYwdJVEKrUroBseCoi5WqphLOpJdmqs0oR 7T9AT6JYzBn5+pHIIQ7AVixms+jMjaQTtUnYve4KOXKhH4eXzGmgdmbCCBPHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUeeTNBBERkfJJjO+EXxX6ZXM1p8UwHwYDVR0j BBgwFoAUREPkMjnT9blnTy9bWjdxFDTEivIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmM4YjNhOS00ZWZmLTQ2MGQtYjAxZC02YmE1ZDk5ZGFkYjkvMC80NDQzRTQzMjM5 RDNGNUI5Njc0RjJGNUI1QTM3NzExNDM0QzQ4QUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQzNEM0 OEFGMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDZjOGIzYTktNGVmZi00NjBkLWIw MWQtNmJhNWQ5OWRhZGI5LzAvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcx MTQzNEM0OEFGMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGpbN/dWq97EwLSjZkytCFPJb8TVnr8vzus3 BBm+1rzgRmHNVuKiHMP44yTD3njAWeBI/QOx5NBHhqh6zadNrnExG65KqkqAdvJ7 uwMf8q+caOOzM/COh98T/4Aeu6HlOUzyhjHwIPh15fx2AhRjaCVzTyDHIFsuPgRB tu3BFkLOx4mcjzWy1/ShKEoSVaIJMCtz7dZtyJifc73f2vpYI3g3kjAc+AFJPDlX SmPa0Ryymk2NxzcVVUcCjC//3HWH7NoQy3kbvMQAGmMqnlJHR6Z/SEL83seJxmTF +KFlaNaM8vx7P77z0VzG0U5J8JGTTvRLZB64z8nYTLWbX0/IodQ= -----END CERTIFICATE-----Generated at Thu Jun 5 18:22:35 2025 by rpki-client