$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: ontKtOT7hUIjhU32ghCNRiiRcg0Gev233H6Put+sf7o= Subject key identifier: 46:2F:10:BA:85:CC:B7:34:10:A2:7A:53:A8:E9:9F:13:6E:43:80:F7 Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 6ED1769EC12DE6EEE31D843EB91EBBA6980789F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: 97 Signing time: Fri 06 Jun 2025 02:00:50 +0000 Manifest this update: Fri 06 Jun 2025 01:55:50 +0000 Manifest next update: Mon 09 Jun 2025 04:36:50 +0000 Files and hashes: 1: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: 5TysUWdf//ijZZADQg/kyk1hPl8L9rMcShCWekWYvss=) 2: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: gDICGXEcTN4DqUyQWPRYSnbQpJMqXtGk57IR56IdGTc=) 3: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI=) 4: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: Jit+uJIEyqjGrv7HRmDwiYsYuySfB8Lk478TOnlXVFM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:36:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:d1:76:9e:c1:2d:e6:ee:e3:1d:84:3e:b9:1e:bb:a6:98:07:89:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Jun 6 01:55:50 2025 GMT Not After : Jun 9 04:36:50 2025 GMT Subject: CN=462F10BA85CCB73410A27A53A8E99F136E4380F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:de:bf:1b:81:c0:18:6c:fd:a1:3b:73:2e:2c: 0d:56:ec:da:ee:6c:a7:e5:eb:2b:e0:c2:9c:f3:b0: 19:55:67:2d:16:c9:e2:8c:e8:80:c3:e4:8f:ca:2e: e8:de:3b:f3:21:96:7c:15:31:88:1a:ce:09:70:35: 9f:55:e5:ae:1d:41:5c:1f:86:2f:f6:51:cc:72:d6: 49:33:b0:05:4a:c8:0f:47:52:2c:23:9b:a1:ca:51: 2e:be:e3:da:d1:f2:a1:73:ad:5c:34:53:69:d4:b8: b4:8b:74:6c:7b:da:07:5a:1b:ea:e2:9d:39:c2:98: 31:56:6d:f0:da:ae:a8:1c:d4:27:64:7f:2a:81:46: 0a:8e:57:af:da:c4:25:0a:19:b3:3e:0b:f4:98:c9: ad:78:bd:ae:48:08:b5:1b:74:2b:bd:1c:ea:cb:1d: 83:b9:05:4c:87:6f:de:83:02:f1:22:62:2a:1b:e2: a9:f2:98:a1:8a:c2:a5:13:5c:8f:66:2f:3c:3b:25: 5b:50:e8:39:02:ec:79:bb:f5:34:c9:37:7e:5b:f4: 3b:32:31:cb:25:26:08:2b:f7:ff:99:68:b2:33:ac: 32:67:92:ac:f2:cb:74:e2:93:53:ed:59:99:cc:20: 00:55:37:6d:e0:81:31:4b:23:01:6c:71:95:57:be: 7a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:2F:10:BA:85:CC:B7:34:10:A2:7A:53:A8:E9:9F:13:6E:43:80:F7 X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:b5:ab:c6:00:23:91:51:4c:da:9f:7a:d5:9e:2e:5d:57:e6: a0:73:26:6b:cd:0e:b2:1f:7f:99:27:c7:17:20:92:24:a0:4f: 09:d8:ec:b3:b7:81:36:ca:50:a5:e8:d5:f4:f9:3b:c5:d7:cd: 12:12:0d:14:aa:7e:13:b7:42:26:56:29:a0:d7:40:9d:12:3e: d4:8c:cf:45:c2:73:b5:5e:2f:66:a1:a6:10:f5:97:c9:e7:87: 6f:3e:5f:d5:08:4a:b7:4e:74:df:01:67:5b:5c:1e:14:ff:de: 5d:22:e5:1e:f1:5b:3a:b5:57:5a:a2:63:3a:cb:92:99:0d:21: 44:28:78:39:d0:e5:f6:03:ea:b1:dc:2e:2c:74:f8:f6:40:64: d4:4f:03:80:c4:a7:df:2f:32:4a:6f:de:3e:b0:64:7f:ad:e4: 89:19:a8:31:dd:6d:a3:c8:4c:e7:ef:25:26:a1:c5:8c:d0:28: 36:0f:e7:19:1d:89:bc:5c:91:82:7c:a1:b0:b5:bd:a1:24:73: 29:91:3b:22:2d:62:17:6c:96:e9:82:ee:fc:52:a1:6d:e9:ec: 13:6e:49:de:8a:dd:cc:0c:ce:af:f8:2f:6c:81:27:02:d0:20: 4e:1a:d1:23:b2:35:d7:58:c5:45:f0:b1:1e:d9:90:a0:a3:4e: 7f:f3:37:ef -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbtF2nsEt5u7jHYQ+uR67ppgHifAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNTA2MDYwMTU1NTBaFw0yNTA2MDkwNDM2NTBaMDMxMTAvBgNV BAMTKDQ2MkYxMEJBODVDQ0I3MzQxMEEyN0E1M0E4RTk5RjEzNkU0MzgwRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa3r8bgcAYbP2hO3MuLA1W7Nru bKfl6yvgwpzzsBlVZy0WyeKM6IDD5I/KLujeO/MhlnwVMYgazglwNZ9V5a4dQVwf hi/2Ucxy1kkzsAVKyA9HUiwjm6HKUS6+49rR8qFzrVw0U2nUuLSLdGx72gdaG+ri nTnCmDFWbfDarqgc1CdkfyqBRgqOV6/axCUKGbM+C/SYya14va5ICLUbdCu9HOrL HYO5BUyHb96DAvEiYiob4qnymKGKwqUTXI9mLzw7JVtQ6DkC7Hm79TTJN35b9Dsy McslJggr9/+ZaLIzrDJnkqzyy3Tik1PtWZnMIABVN23ggTFLIwFscZVXvnpJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURi8QuoXMtzQQonpTqOmfE25DgPcwHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC+1q8YAI5FRTNqfetWeLl1X5qBzJmvNDrIf f5knxxcgkiSgTwnY7LO3gTbKUKXo1fT5O8XXzRISDRSqfhO3QiZWKaDXQJ0SPtSM z0XCc7VeL2ahphD1l8nnh28+X9UISrdOdN8BZ1tcHhT/3l0i5R7xWzq1V1qiYzrL kpkNIUQoeDnQ5fYD6rHcLix0+PZAZNRPA4DEp98vMkpv3j6wZH+t5IkZqDHdbaPI TOfvJSahxYzQKDYP5xkdibxckYJ8obC1vaEkcymROyItYhdslumC7vxSoW3p7BNu Sd6K3cwMzq/4L2yBJwLQIE4a0SOyNddYxUXwsR7ZkKCjTn/zN+8= -----END CERTIFICATE-----Generated at Sat Jun 7 04:06:38 2025 by rpki-client