$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft File: D85F6D41E807D8825356A681A7518FA27664A965.mft (raw, json) Hash identifier: qnwlHMdKLeHvz9peTcjRmiA8Ii07sHaTFDObr4ZpeOU= Subject key identifier: 11:A1:7E:42:71:39:DB:6F:1D:5B:0B:C3:C8:3C:93:DA:38:80:1A:68 Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 648F5C3CA104716950FCD9D3B39C8E5E1CC245F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft Manifest number: 015F Signing time: Sat 09 Aug 2025 06:12:19 +0000 Manifest this update: Sat 09 Aug 2025 06:07:19 +0000 Manifest next update: Tue 12 Aug 2025 17:23:19 +0000 Files and hashes: 1: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (hash: 2X5KoMU/cWrAj0o88iqREF+W66XbV79s9jtdMfDvn84=) 2: 323430373a396363303a3a2f33322d3332203d3e20313431393833.roa (hash: X3XCCURHmUEWOKsujokS9KRQ2ATuG6WfjZ6Xo/ilPmk=) 3: 3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa (hash: mLhBYPkwACBbxlJsTnV03pPrOs7jfGDROaGC1YIb24I=) 4: D85F6D41E807D8825356A681A7518FA27664A965.crl (hash: 4tGOy/4fRLhxd0c/Xm+zNIWfkUzawRDwqGCdBqX6MIs=) 5: 3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa (hash: hFj4Uh0PGeOBka7Cx4rmARhSt9TGPmz98D01cPT+PF4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 17:23:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:8f:5c:3c:a1:04:71:69:50:fc:d9:d3:b3:9c:8e:5e:1c:c2:45:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Aug 9 06:07:19 2025 GMT Not After : Aug 12 17:23:19 2025 GMT Subject: CN=11A17E427139DB6F1D5B0BC3C83C93DA38801A68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:16:2d:74:b1:7b:46:a1:7a:b6:85:4e:60:4c: ae:0f:a2:0f:c6:de:f9:b3:b4:ef:75:12:08:13:5c: c7:97:6c:41:ea:0e:b4:0e:fe:9e:72:77:61:54:18: ed:17:75:51:d7:36:c3:45:32:87:c9:17:e5:e1:5f: 76:51:79:e6:e8:3a:3a:e5:72:bf:2e:4e:7b:5f:f4: 49:28:2e:05:5f:fc:f4:68:fd:a7:97:a8:a9:f7:53: b3:fb:d0:5b:87:0f:e9:97:e2:43:32:56:3a:68:ad: cc:5e:70:ac:42:84:ac:a0:7d:e6:08:3d:76:c7:08: f6:4d:2d:79:b7:42:80:11:06:aa:68:7e:7a:6e:2d: 70:ed:c4:d6:bb:30:18:a2:08:e1:83:1d:9f:39:b1: f2:ba:97:23:5a:d5:8c:77:c1:9a:9d:e7:ae:67:46: 8e:f1:e1:e4:57:8d:0f:cc:14:7a:4e:8b:e7:17:98: ad:7e:8a:fd:6b:cd:66:83:af:26:27:c4:ba:d6:f5: 67:20:85:c6:1e:b8:44:f8:3d:86:4f:60:6c:8b:38: 9e:63:e9:e5:93:6e:f0:bf:ed:87:6b:71:e9:d1:7b: 6c:ee:6e:a9:ca:a5:83:5b:cb:5f:ec:0c:57:ed:27: a9:48:71:c7:42:11:37:4c:1c:f0:8e:5f:d6:6a:da: 36:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:A1:7E:42:71:39:DB:6F:1D:5B:0B:C3:C8:3C:93:DA:38:80:1A:68 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:52:a8:80:01:ba:15:0e:98:79:f2:73:34:29:5e:ed:69:e8: ce:52:9b:2b:ac:e9:ba:a9:28:09:51:fa:a7:42:ea:ae:52:2b: a2:46:fe:40:37:ec:74:e5:e9:45:65:27:d2:78:bf:54:ca:e1: 6b:b6:a7:97:ee:c9:3f:25:bd:01:ce:e5:7b:1c:9f:1c:95:ea: f9:44:99:c9:31:8a:ac:33:8a:88:0c:e2:8e:81:ec:53:62:31: 34:7d:2d:c6:0b:2c:5a:93:b7:12:e2:b8:73:34:cf:e1:e2:f8: 30:dc:f2:1f:a9:aa:6d:b9:84:24:23:53:70:14:89:fc:ed:63: 7e:b7:55:30:f4:a8:8f:0d:e2:55:db:2c:ca:9e:9e:b1:5f:df: 42:60:34:5d:2d:e8:0e:6f:ac:ef:fc:b7:f5:6c:46:51:d7:43: b0:34:e0:93:7b:a1:27:9b:31:e1:5a:b2:2f:2c:32:e9:ae:d1: 76:ea:5e:8c:ca:d9:80:d3:b7:12:98:46:77:2b:e2:b1:81:01: 45:eb:fc:e5:e6:b6:84:e5:71:ca:91:0f:a2:73:d9:00:66:e7: 3d:ef:52:2b:c6:6e:01:bf:1c:1c:2b:df:e9:91:62:e2:43:bb: 9f:55:45:e1:ab:1f:ac:b6:3a:b4:87:d9:66:c7:ec:b5:a2:8d: 09:48:9d:ac -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZI9cPKEEcWlQ/NnTs5yOXhzCRfQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNTA4MDkwNjA3MTlaFw0yNTA4MTIxNzIzMTlaMDMxMTAvBgNV BAMTKDExQTE3RTQyNzEzOURCNkYxRDVCMEJDM0M4M0M5M0RBMzg4MDFBNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Fi10sXtGoXq2hU5gTK4Pog/G 3vmztO91EggTXMeXbEHqDrQO/p5yd2FUGO0XdVHXNsNFMofJF+XhX3ZReeboOjrl cr8uTntf9EkoLgVf/PRo/aeXqKn3U7P70FuHD+mX4kMyVjporcxecKxChKygfeYI PXbHCPZNLXm3QoARBqpofnpuLXDtxNa7MBiiCOGDHZ85sfK6lyNa1Yx3wZqd565n Ro7x4eRXjQ/MFHpOi+cXmK1+iv1rzWaDryYnxLrW9WcghcYeuET4PYZPYGyLOJ5j 6eWTbvC/7YdrcenRe2zubqnKpYNby1/sDFftJ6lIccdCETdMHPCOX9Zq2ja1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEaF+QnE5228dWwvDyDyT2jiAGmgwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZiZWRmM2EtZDdkMS00OWE2LTkz ZWQtYjI3N2YxZjdhNmViLzAvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThG QTI3NjY0QTk2NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK1SqIABuhUOmHnyczQpXu1p6M5Smyus6bqp KAlR+qdC6q5SK6JG/kA37HTl6UVlJ9J4v1TK4Wu2p5fuyT8lvQHO5XscnxyV6vlE mckxiqwziogM4o6B7FNiMTR9LcYLLFqTtxLiuHM0z+Hi+DDc8h+pqm25hCQjU3AU ifztY363VTD0qI8N4lXbLMqenrFf30JgNF0t6A5vrO/8t/VsRlHXQ7A04JN7oSeb MeFasi8sMumu0XbqXozK2YDTtxKYRncr4rGBAUXr/OXmtoTlccqRD6Jz2QBm5z3v UivGbgG/HBwr3+mRYuJDu59VReGrH6y2OrSH2WbH7LWijQlInaw= -----END CERTIFICATE-----Generated at Mon Aug 11 07:24:06 2025 by rpki-client