$ rpki-client -vvf repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft File: 8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft (raw, json) Hash identifier: V2LPnpcOnzIJ025aIp4dKkWrw3YeV1OyWDR3CJrRGWA= Subject key identifier: 18:2B:2C:44:8C:29:CA:88:2E:3C:69:7A:57:94:8D:60:EE:38:C7:2D Authority key identifier: 86:94:CD:BB:52:F4:AE:A8:9A:F4:6C:A5:BF:A5:A6:39:97:3D:73:02 Certificate issuer: /CN=8694CDBB52F4AEA89AF46CA5BFA5A639973D7302 Certificate serial: 63ACC99802B4DA39024E36384D9D3D777C55C108 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft Manifest number: 21 Signing time: Fri 06 Jun 2025 04:51:36 +0000 Manifest this update: Fri 06 Jun 2025 04:46:36 +0000 Manifest next update: Mon 09 Jun 2025 11:51:36 +0000 Files and hashes: 1: 8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl (hash: Te65fwX4PN5oMmSz1GgrvSgdjtPDiCPyk0Scm3iJ+fk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 11:51:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:ac:c9:98:02:b4:da:39:02:4e:36:38:4d:9d:3d:77:7c:55:c1:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8694CDBB52F4AEA89AF46CA5BFA5A639973D7302 Validity Not Before: Jun 6 04:46:36 2025 GMT Not After : Jun 9 11:51:36 2025 GMT Subject: CN=182B2C448C29CA882E3C697A57948D60EE38C72D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:19:95:4e:c5:4b:27:69:91:17:a4:c8:99:9b: 95:e7:e2:eb:ab:65:85:a6:03:66:ac:7a:61:ed:b3: 77:89:8d:cc:1d:8a:7d:7f:50:4a:2c:ec:eb:3c:c9: 11:cb:46:95:9b:cf:bc:78:3f:4d:1b:c4:d3:47:62: f6:b7:a2:39:b2:f1:7c:18:76:42:d3:f7:23:98:d3: 53:86:d9:6a:99:9e:48:8b:30:90:b5:98:36:eb:2d: 80:2e:3a:78:78:c3:d4:29:b3:43:ce:7a:b9:a2:91: 3d:e5:d2:e7:04:d3:6b:95:ae:db:02:c2:c9:b2:a6: 4b:e8:f7:df:7e:ec:4f:cc:41:b2:f3:a8:74:26:f6: 0b:a4:70:0a:d8:ba:9a:5f:dc:1c:0e:66:3a:64:ac: 26:39:de:cc:85:25:31:bc:16:a5:18:f8:35:6e:5a: a3:8b:43:75:08:75:bb:fc:ca:c9:b6:7a:6a:99:c7: 85:9c:d2:fc:c5:79:45:b8:25:7d:2a:d7:2c:d7:1c: 91:1e:1d:f0:52:ee:d2:43:ad:f4:cc:89:4d:27:f1: ee:19:44:72:0e:f1:67:b0:72:13:65:c5:5d:3c:60: 24:aa:ab:08:e8:c9:bc:ec:03:55:73:56:15:83:2e: 00:d9:12:52:56:6a:be:ef:3c:8c:e2:dc:07:9b:90: b3:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:2B:2C:44:8C:29:CA:88:2E:3C:69:7A:57:94:8D:60:EE:38:C7:2D X509v3 Authority Key Identifier: keyid:86:94:CD:BB:52:F4:AE:A8:9A:F4:6C:A5:BF:A5:A6:39:97:3D:73:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:58:e6:46:98:07:3e:16:02:f6:b8:d3:9b:d1:97:8b:aa:71: db:90:73:15:11:af:0f:ce:18:d8:11:fa:d3:eb:3e:fd:c3:07: 3e:b7:ba:f6:70:be:ab:41:25:a8:ee:d5:76:51:93:9a:0c:dc: cc:45:f0:0b:0a:c0:90:12:f0:94:b4:60:99:12:b6:89:af:ec: 8d:3c:8f:29:ba:a5:20:c6:b0:58:8e:6e:a1:b2:2f:9b:10:21: 7c:a0:fb:22:da:bc:cd:5e:4e:df:68:5a:cd:83:24:0f:59:d0: d3:ef:19:13:b5:0e:77:68:ba:35:df:6b:d4:b1:00:84:88:a4: 37:9e:47:01:dc:02:31:96:bf:ce:8e:73:f4:b2:67:a7:dd:95: 85:b6:5e:2a:84:53:5e:05:ae:45:b3:4f:6f:87:4a:89:9d:fe: dd:23:a6:f6:bd:2e:56:12:9a:81:17:7a:ae:89:f7:44:0a:ce: 67:4f:a9:07:3b:4d:fd:a4:41:c3:45:b3:15:66:c3:2b:8a:48: b0:41:88:14:9d:32:b6:a9:53:bb:ee:29:73:89:3a:dc:6d:e6: 9e:72:45:7b:de:68:db:da:b2:d3:af:e6:f6:e4:9b:41:4f:74: f5:03:1a:5c:40:90:a2:32:b9:ae:35:ad:e7:ae:70:30:b5:7d: ed:b4:92:77 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUY6zJmAK02jkCTjY4TZ09d3xVwQgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2Mzk5 NzNENzMwMjAeFw0yNTA2MDYwNDQ2MzZaFw0yNTA2MDkxMTUxMzZaMDMxMTAvBgNV BAMTKDE4MkIyQzQ0OEMyOUNBODgyRTNDNjk3QTU3OTQ4RDYwRUUzOEM3MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8GZVOxUsnaZEXpMiZm5Xn4uur ZYWmA2asemHts3eJjcwdin1/UEos7Os8yRHLRpWbz7x4P00bxNNHYva3ojmy8XwY dkLT9yOY01OG2WqZnkiLMJC1mDbrLYAuOnh4w9Qps0POermikT3l0ucE02uVrtsC wsmypkvo999+7E/MQbLzqHQm9gukcArYuppf3BwOZjpkrCY53syFJTG8FqUY+DVu WqOLQ3UIdbv8ysm2emqZx4Wc0vzFeUW4JX0q1yzXHJEeHfBS7tJDrfTMiU0n8e4Z RHIO8WewchNlxV08YCSqqwjoybzsA1VzVhWDLgDZElJWar7vPIzi3AebkLMDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGCssRIwpyoguPGl6V5SNYO44xy0wHwYDVR0j BBgwFoAUhpTNu1L0rqia9Gylv6WmOZc9cwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k Y2YwMGY4YS01Y2JkLTQ2MGYtYmZjNi1iZDg5NDJiNjUzN2MvMC84Njk0Q0RCQjUy RjRBRUE4OUFGNDZDQTVCRkE1QTYzOTk3M0Q3MzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2Mzk5NzNE NzMwMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGNmMDBmOGEtNWNiZC00NjBmLWJm YzYtYmQ4OTQyYjY1MzdjLzAvODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2 Mzk5NzNENzMwMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALNY5kaYBz4WAva405vRl4uqcduQcxURrw/O GNgR+tPrPv3DBz63uvZwvqtBJaju1XZRk5oM3MxF8AsKwJAS8JS0YJkStomv7I08 jym6pSDGsFiObqGyL5sQIXyg+yLavM1eTt9oWs2DJA9Z0NPvGRO1DndoujXfa9Sx AISIpDeeRwHcAjGWv86Oc/SyZ6fdlYW2XiqEU14FrkWzT2+HSomd/t0jpva9LlYS moEXeq6J90QKzmdPqQc7Tf2kQcNFsxVmwyuKSLBBiBSdMrapU7vuKXOJOtxt5p5y RXveaNvastOv5vbkm0FPdPUDGlxAkKIyua41reeucDC1fe20knc= -----END CERTIFICATE-----Generated at Fri Jun 6 16:53:53 2025 by rpki-client