$ rpki-client -vvf repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft File: 7433AB64571BE1827F0BC97ED291976B6E3429FA.mft (raw, json) Hash identifier: 0VcBQom7d5undhNH/EUUEXtGXsZTEAGME7xOpAaQWsE= Subject key identifier: 84:A7:C4:EB:ED:1D:B1:DE:3F:1E:BE:5C:D4:77:D9:3A:4D:A5:74:69 Authority key identifier: 74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA Certificate issuer: /CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Certificate serial: 5C1E9AFF57DB0C75AA8412D460E41E340026C33B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft Manifest number: 0194 Signing time: Fri 08 Aug 2025 18:42:17 +0000 Manifest this update: Fri 08 Aug 2025 18:37:17 +0000 Manifest next update: Tue 12 Aug 2025 00:57:17 +0000 Files and hashes: 1: 3130332e37352e36322e302f32332d3234203d3e20313530353339.roa (hash: LDOqOfl8+d8Lz+/c+0knmLxGK2Kr8P4Ti1sIU0L3/wo=) 2: 7433AB64571BE1827F0BC97ED291976B6E3429FA.crl (hash: x0B+1q4MtgGmU4EeOR3v6kTHtOBkzK5IxS//Q9JdYCo=) 3: 3130332e37352e36332e302f32342d3234203d3e20313530353339.roa (hash: dt0M2E6hMVGXyd6wchuCJpbqgL7DjAEk9eGkYZfJTqo=) 4: 3130332e37352e36322e302f32342d3234203d3e20313530353339.roa (hash: Foo7ECvYM8eC5QdFLfci515Pz4pdcUotJYsrxOmUjnQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 00:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:1e:9a:ff:57:db:0c:75:aa:84:12:d4:60:e4:1e:34:00:26:c3:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Validity Not Before: Aug 8 18:37:17 2025 GMT Not After : Aug 12 00:57:17 2025 GMT Subject: CN=84A7C4EBED1DB1DE3F1EBE5CD477D93A4DA57469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4e:78:71:dc:61:6a:8c:71:3c:02:3e:2f:3f: b2:55:0a:74:be:ea:72:9a:88:ce:91:e5:96:3d:37: e2:a3:e8:1c:63:50:f9:26:11:99:30:3d:ef:42:ee: 0f:ce:49:cd:94:a5:d4:7d:e1:4a:80:6c:20:ac:34: bd:a9:cf:13:b7:7f:83:17:d4:43:ee:e8:c9:d5:36: 5d:98:18:d1:a6:10:33:fe:3f:9b:f1:25:82:e8:a7: b8:65:ab:7b:3c:1f:96:fd:70:90:6f:c6:4e:bc:71: 5c:49:bc:5c:81:8d:56:5c:3f:d2:fc:a1:e4:df:de: 7f:b4:a7:f3:82:e5:84:b2:c1:3a:2c:30:5d:9d:6e: 59:47:26:03:27:a5:b4:6b:3e:b2:4a:54:f4:8d:f7: d5:e3:17:4e:79:ad:64:ce:ca:7e:af:c1:dd:75:05: e6:87:dc:0a:a1:13:9c:37:a6:1d:f3:59:4c:80:fa: cf:26:25:2b:84:b8:77:af:a4:f1:10:2c:f5:d4:43: a9:97:c8:4d:f4:3f:56:a2:91:ad:d7:58:e3:aa:72: 4a:a3:ca:b1:33:09:ec:3f:3b:b0:58:ea:ae:bc:4a: f5:ce:e1:67:52:fd:f8:02:a8:82:c0:0d:c5:21:73: ef:05:ea:16:aa:d4:c8:c4:39:23:8f:04:30:ec:d4: 31:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:A7:C4:EB:ED:1D:B1:DE:3F:1E:BE:5C:D4:77:D9:3A:4D:A5:74:69 X509v3 Authority Key Identifier: keyid:74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:a3:f3:23:97:c6:72:e0:aa:09:bf:48:88:46:c4:0d:7e:b6: 4d:60:0a:8b:b9:85:ea:99:cb:2a:44:0e:ee:34:3a:88:c5:5e: 6c:5e:dc:76:c1:67:fd:17:f7:fe:eb:83:07:9f:1b:9f:9e:e0: 39:d6:19:8e:31:21:14:e4:52:54:31:26:e0:e4:64:c5:87:06: 7c:9d:07:45:f5:db:ce:ef:b7:cb:61:7d:d6:62:a3:8c:b2:60: 34:57:38:94:ae:ec:5d:1c:70:9f:02:07:1a:29:01:cc:06:47: 56:ed:81:1a:54:3e:b7:5f:fd:87:76:da:27:6f:90:78:e3:4c: 3f:65:ca:0e:5e:eb:ee:d4:f8:10:1a:5c:ae:96:55:86:9c:ba: f4:d2:01:fb:f4:06:c7:23:e5:0c:cb:30:a4:d6:57:88:d1:24: 4d:44:43:b6:2a:18:0e:86:96:3a:fb:ff:4d:f5:3b:e9:b6:8b: 77:30:c4:5f:79:96:98:82:f5:b2:06:a8:62:61:cd:2e:94:b6: a6:3c:22:76:73:f7:f9:41:d9:0b:cd:68:d3:f0:83:a7:7a:45: 0a:3e:ce:33:d1:a2:a3:59:07:db:f0:b6:31:9b:45:8d:39:bc: 9a:11:0d:3f:c5:27:d3:dd:d1:03:d2:c0:f9:8a:da:bf:18:ce: 1a:de:3f:8b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXB6a/1fbDHWqhBLUYOQeNAAmwzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2 RTM0MjlGQTAeFw0yNTA4MDgxODM3MTdaFw0yNTA4MTIwMDU3MTdaMDMxMTAvBgNV BAMTKDg0QTdDNEVCRUQxREIxREUzRjFFQkU1Q0Q0NzdEOTNBNERBNTc0NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvTnhx3GFqjHE8Aj4vP7JVCnS+ 6nKaiM6R5ZY9N+Kj6BxjUPkmEZkwPe9C7g/OSc2UpdR94UqAbCCsNL2pzxO3f4MX 1EPu6MnVNl2YGNGmEDP+P5vxJYLop7hlq3s8H5b9cJBvxk68cVxJvFyBjVZcP9L8 oeTf3n+0p/OC5YSywTosMF2dbllHJgMnpbRrPrJKVPSN99XjF055rWTOyn6vwd11 BeaH3AqhE5w3ph3zWUyA+s8mJSuEuHevpPEQLPXUQ6mXyE30P1aika3XWOOqckqj yrEzCew/O7BY6q68SvXO4WdS/fgCqILADcUhc+8F6haq1MjEOSOPBDDs1DG5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhKfE6+0dsd4/Hr5c1HfZOk2ldGkwHwYDVR0j BBgwFoAUdDOrZFcb4YJ/C8l+0pGXa240KfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2M4YTBjMy0zN2Y1LTQ2NjctYTQzMC02ZmExMTFkMzQzYWEvMC83NDMzQUI2NDU3 MUJFMTgyN0YwQkM5N0VEMjkxOTc2QjZFMzQyOUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2RTM0 MjlGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDdjOGEwYzMtMzdmNS00NjY3LWE0 MzAtNmZhMTExZDM0M2FhLzAvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3 NkI2RTM0MjlGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEKj8yOXxnLgqgm/SIhGxA1+tk1gCou5heqZ yypEDu40OojFXmxe3HbBZ/0X9/7rgwefG5+e4DnWGY4xIRTkUlQxJuDkZMWHBnyd B0X1287vt8thfdZio4yyYDRXOJSu7F0ccJ8CBxopAcwGR1btgRpUPrdf/Yd22idv kHjjTD9lyg5e6+7U+BAaXK6WVYacuvTSAfv0Bscj5QzLMKTWV4jRJE1EQ7YqGA6G ljr7/031O+m2i3cwxF95lpiC9bIGqGJhzS6UtqY8InZz9/lB2QvNaNPwg6d6RQo+ zjPRoqNZB9vwtjGbRY05vJoRDT/FJ9Pd0QPSwPmK2r8YzhreP4s= -----END CERTIFICATE-----Generated at Sat Aug 9 20:48:20 2025 by rpki-client