$ rpki-client -vvf repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft File: D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft (raw, json) Hash identifier: RQZp+O1Cs2DdXy9DQ4BZSB95vGvzRVGPqtI7hEwegdA= Subject key identifier: 1F:42:5D:47:2E:A8:D9:23:BE:2D:68:F4:47:14:83:8F:35:7F:67:6D Authority key identifier: D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 Certificate issuer: /CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Certificate serial: 034B01AB6C16918AA00BFCF869B4530412408D59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft Manifest number: 01E6 Signing time: Thu 07 Aug 2025 05:51:11 +0000 Manifest this update: Thu 07 Aug 2025 05:46:11 +0000 Manifest next update: Sun 10 Aug 2025 06:01:11 +0000 Files and hashes: 1: D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl (hash: 45p3BvdC8nLOsewP5JI1ftPhQwQ69/ponaD8iMRcpS8=) 2: 3130332e3138362e3230342e302f32342d3234203d3e20313439373233.roa (hash: 6UhOGV8DI7PfyTejWhCSmpLpe0trLgn56lREPd3WDVA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 06:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:4b:01:ab:6c:16:91:8a:a0:0b:fc:f8:69:b4:53:04:12:40:8d:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Validity Not Before: Aug 7 05:46:11 2025 GMT Not After : Aug 10 06:01:11 2025 GMT Subject: CN=1F425D472EA8D923BE2D68F44714838F357F676D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d6:df:9b:bb:f4:16:cd:e8:e9:47:7d:bd:6d: 7e:2f:47:07:0b:6d:69:22:6f:f9:1c:fe:ea:f8:f9: b5:dd:95:d7:fb:4c:a1:0f:bc:d0:0d:6d:0b:cc:f1: 7f:77:d6:5d:68:bc:fc:b3:5a:e8:be:69:7a:2e:04: 69:a0:ad:63:2c:65:8b:94:c3:77:a1:d7:9a:2e:94: 15:01:2e:c0:80:83:a6:05:25:ec:09:42:cb:8c:27: 6a:66:dd:33:56:84:78:62:c9:9b:e3:4a:2a:e8:7c: 5f:fc:2c:3c:c0:87:b3:b0:41:78:af:4b:db:f8:19: 1c:e2:3f:35:36:72:ba:42:ec:6b:92:62:4c:2e:86: 02:a3:b7:0b:a6:70:d3:b7:3d:e3:cd:54:d9:76:a9: 64:b5:8b:a2:f9:c5:c0:71:31:3d:2f:e4:42:8e:1d: cf:1b:da:68:19:a8:72:82:a9:1d:d9:31:ea:d5:21: 2c:56:1e:17:ca:a7:56:86:0f:fa:de:40:be:c3:5e: 3f:62:ad:e5:26:58:69:f3:8e:44:34:08:e1:b4:7c: 7a:3a:84:72:79:bf:3b:cc:36:ec:28:17:8d:21:b8: 71:e3:48:b1:de:c2:29:11:c2:45:28:bb:c0:f5:65: 09:59:df:10:2b:bd:5b:ff:1b:cd:37:ad:46:24:d9: e7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:42:5D:47:2E:A8:D9:23:BE:2D:68:F4:47:14:83:8F:35:7F:67:6D X509v3 Authority Key Identifier: keyid:D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:4d:85:fd:b7:cf:89:1c:9d:e1:8a:a6:bf:ea:a2:31:4d:14: 23:90:91:62:46:39:f5:d6:61:97:36:c2:a6:05:78:73:f6:84: b4:d8:34:4e:d3:75:6a:14:3d:42:6f:4e:2b:2d:04:c4:ba:aa: 9e:ad:26:96:f8:cf:80:95:57:aa:87:b0:e7:0c:97:e4:0b:61: c0:e7:ef:31:43:3b:32:a8:a4:d3:84:95:fa:b0:e4:06:97:a4: af:89:6e:79:44:64:1e:84:0b:c1:29:6c:a5:14:b1:a5:27:00: 16:be:17:f8:58:c5:1d:c3:0e:f6:b8:3e:6c:44:c6:a2:ff:62: a3:8b:42:f9:0c:4e:dc:b0:f9:bd:a6:a2:da:24:54:ee:f1:f3: f8:ec:78:50:d9:fc:c7:90:07:ec:61:6c:d3:eb:f3:ca:c5:00: b9:8a:bb:07:18:36:08:da:db:c7:e6:88:62:35:53:9c:87:7c: 05:4a:32:ea:49:1c:76:25:11:78:f2:13:2c:65:1c:cf:06:31: b1:29:a7:a9:e1:93:a6:62:42:ef:43:ca:69:31:d8:88:81:ba: e1:5e:60:64:f1:14:68:16:b8:d7:bf:40:41:cd:6d:5f:e5:4d: 8d:6a:52:15:51:6e:23:60:3f:28:81:ce:bd:5c:81:3c:75:c1: 92:02:56:a1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUA0sBq2wWkYqgC/z4abRTBBJAjVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAx RUMyNkREMTAeFw0yNTA4MDcwNTQ2MTFaFw0yNTA4MTAwNjAxMTFaMDMxMTAvBgNV BAMTKDFGNDI1RDQ3MkVBOEQ5MjNCRTJENjhGNDQ3MTQ4MzhGMzU3RjY3NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ1t+bu/QWzejpR329bX4vRwcL bWkib/kc/ur4+bXdldf7TKEPvNANbQvM8X931l1ovPyzWui+aXouBGmgrWMsZYuU w3eh15oulBUBLsCAg6YFJewJQsuMJ2pm3TNWhHhiyZvjSirofF/8LDzAh7OwQXiv S9v4GRziPzU2crpC7GuSYkwuhgKjtwumcNO3PePNVNl2qWS1i6L5xcBxMT0v5EKO Hc8b2mgZqHKCqR3ZMerVISxWHhfKp1aGD/reQL7DXj9ireUmWGnzjkQ0COG0fHo6 hHJ5vzvMNuwoF40huHHjSLHewikRwkUou8D1ZQlZ3xArvVv/G803rUYk2ecHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUH0JdRy6o2SO+LWj0RxSDjzV/Z20wHwYDVR0j BBgwFoAU1BccTAaXWkMJ/Fny00DWgB7CbdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzY4MGQwZC1lMjQwLTRhYWYtYmMyMy0yODIzNTkzNzMyODkvMC9ENDE3MUM0QzA2 OTc1QTQzMDlGQzU5RjJEMzQwRDY4MDFFQzI2REQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAxRUMy NkREMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDc2ODBkMGQtZTI0MC00YWFmLWJj MjMtMjgyMzU5MzczMjg5LzAvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2 ODAxRUMyNkREMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFZNhf23z4kcneGKpr/qojFNFCOQkWJGOfXW YZc2wqYFeHP2hLTYNE7TdWoUPUJvTistBMS6qp6tJpb4z4CVV6qHsOcMl+QLYcDn 7zFDOzKopNOElfqw5AaXpK+JbnlEZB6EC8EpbKUUsaUnABa+F/hYxR3DDva4PmxE xqL/YqOLQvkMTtyw+b2motokVO7x8/jseFDZ/MeQB+xhbNPr88rFALmKuwcYNgja 28fmiGI1U5yHfAVKMupJHHYlEXjyEyxlHM8GMbEpp6nhk6ZiQu9Dymkx2IiBuuFe YGTxFGgWuNe/QEHNbV/lTY1qUhVRbiNgPyiBzr1cgTx1wZICVqE= -----END CERTIFICATE-----Generated at Thu Aug 7 07:37:41 2025 by rpki-client