$ rpki-client -vvf repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft File: DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft (raw, json) Hash identifier: xdgmKnWYM9qUBEo95dIqoHpOsw62GK1ngmzbB94idSc= Subject key identifier: D7:4F:54:60:8A:6A:5C:04:31:5B:49:B3:2E:3F:90:56:3C:42:84:82 Authority key identifier: DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 Certificate issuer: /CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Certificate serial: 3E3F25C8E6B43A84194D38D0C85A3B4CC20C6117 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft Manifest number: AE Signing time: Wed 06 Aug 2025 17:51:49 +0000 Manifest this update: Wed 06 Aug 2025 17:46:49 +0000 Manifest next update: Sun 10 Aug 2025 04:14:49 +0000 Files and hashes: 1: 323030313a6466323a623263303a3a2f34382d3438203d3e20313530393538.roa (hash: pkgFynGQ9jkHeIrXOyJUjg6uu6vSpzsXT9qLBW8x194=) 2: DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl (hash: rXNnJKeA7B5wzCq6+KGj5o8khhNqmEcdVMUrnv1A9KY=) 3: 3130332e38312e3131302e302f32332d3234203d3e20313530393538.roa (hash: 2/cotGNcJ8/pTH7ezN1hAoiTKcYjyf0D6A4DNtUiVcI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 04:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:3f:25:c8:e6:b4:3a:84:19:4d:38:d0:c8:5a:3b:4c:c2:0c:61:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Validity Not Before: Aug 6 17:46:49 2025 GMT Not After : Aug 10 04:14:49 2025 GMT Subject: CN=D74F54608A6A5C04315B49B32E3F90563C428482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:35:55:54:a3:1d:43:01:89:eb:e8:45:8a:39: 01:a7:fb:c8:56:24:ab:d0:27:ee:b7:fb:37:e8:13: 47:3e:b5:ba:9c:49:3c:38:36:9c:bd:f3:ea:4a:99: 69:7f:10:d9:c7:2e:e5:e7:df:f9:dc:71:13:7e:16: b6:44:2f:bb:0d:dc:3f:e9:1e:c0:07:97:ab:a7:67: 71:40:d8:64:a5:f6:f4:ff:4e:2c:08:6d:27:9b:42: d4:da:fb:3e:c9:61:d7:1f:4f:f8:4e:c2:ef:96:9a: c5:bf:50:8e:5a:7e:12:e5:7a:bb:ce:04:7a:75:b3: b4:1f:78:46:02:fc:b8:fe:a0:10:91:f5:db:cb:18: d6:6b:cf:01:fc:a4:b9:bb:5b:fa:4c:64:40:09:76: 4b:4e:40:9f:cd:b1:a5:52:27:75:dd:2b:af:30:8e: 76:f3:31:8c:17:00:ab:61:9e:ba:9e:c1:72:0c:53: d1:37:3f:74:00:79:2d:b5:ca:58:36:dd:c3:fa:09: c0:8b:30:f9:9a:39:db:ef:c0:d7:79:03:44:97:e7: 1e:10:fa:3c:bf:ba:2c:34:d9:32:32:44:0d:13:12: 96:4a:b7:f7:91:35:04:33:34:d7:f5:46:ec:b2:bb: ac:f3:89:c7:dc:12:40:f3:a2:c7:24:e2:7f:f4:4b: 55:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:4F:54:60:8A:6A:5C:04:31:5B:49:B3:2E:3F:90:56:3C:42:84:82 X509v3 Authority Key Identifier: keyid:DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cd:61:37:d0:f1:a1:80:f5:98:10:35:02:55:7b:e1:af:28:35: 54:11:0d:ae:5a:82:c0:75:b5:8c:ac:9d:b1:96:b6:8b:41:56: 67:dc:9a:87:49:de:28:4a:b9:cd:d1:9e:05:ca:3e:38:af:1b: bd:3d:c2:46:c2:43:8f:ea:80:ba:01:12:0d:e7:ac:73:e4:d0: 74:37:db:3a:74:94:5e:9f:c7:e2:ec:4e:9e:62:80:1a:93:57: 9f:ca:15:2b:8a:c2:30:0d:83:7d:e6:db:2f:20:49:56:2d:4c: 2d:b0:df:5c:ea:1b:b9:f7:20:26:1c:54:9e:68:27:48:e2:37: bd:48:6d:50:e3:f5:9c:1a:5c:81:bc:ef:46:3d:d4:36:a2:0e: 6c:24:7d:93:60:57:26:d1:02:78:ff:7b:d4:7a:7a:6d:78:79: 06:28:e4:14:ee:c7:b3:dc:8c:9b:d8:1c:16:b7:40:73:f5:04: ec:5e:fe:03:32:45:7c:59:80:f7:4f:7e:b6:58:bf:91:71:7d: b6:5d:a4:34:f8:e9:cc:1f:16:8f:93:ea:7b:b6:25:90:da:e9: ea:e3:62:92:2b:d9:b1:71:46:54:0a:a9:40:97:3d:6e:f6:85: 32:c8:93:dd:43:55:b9:05:45:d8:08:ac:87:cc:ac:49:85:12: 4a:bd:36:65 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPj8lyOa0OoQZTTjQyFo7TMIMYRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYw RDJDNDYyMzAeFw0yNTA4MDYxNzQ2NDlaFw0yNTA4MTAwNDE0NDlaMDMxMTAvBgNV BAMTKEQ3NEY1NDYwOEE2QTVDMDQzMTVCNDlCMzJFM0Y5MDU2M0M0Mjg0ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRNVVUox1DAYnr6EWKOQGn+8hW JKvQJ+63+zfoE0c+tbqcSTw4Npy98+pKmWl/ENnHLuXn3/nccRN+FrZEL7sN3D/p HsAHl6unZ3FA2GSl9vT/TiwIbSebQtTa+z7JYdcfT/hOwu+WmsW/UI5afhLlervO BHp1s7QfeEYC/Lj+oBCR9dvLGNZrzwH8pLm7W/pMZEAJdktOQJ/NsaVSJ3XdK68w jnbzMYwXAKthnrqewXIMU9E3P3QAeS21ylg23cP6CcCLMPmaOdvvwNd5A0SX5x4Q +jy/uiw02TIyRA0TEpZKt/eRNQQzNNf1Ruyyu6zzicfcEkDzosck4n/0S1U5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU109UYIpqXAQxW0mzLj+QVjxChIIwHwYDVR0j BBgwFoAU2nN+i7njUZ8Z5gjcPoOfNg0sRiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjBiY2RjMy0wZmVhLTQ3NDctOTkwNy02NTY0ODZiYWU4ZGEvMC9EQTczN0U4QkI5 RTM1MTlGMTlFNjA4REMzRTgzOUYzNjBEMkM0NjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYwRDJD NDYyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMGYwYmNkYzMtMGZlYS00NzQ3LTk5 MDctNjU2NDg2YmFlOGRhLzAvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlG MzYwRDJDNDYyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAM1hN9DxoYD1mBA1AlV74a8oNVQRDa5agsB1 tYysnbGWtotBVmfcmodJ3ihKuc3RngXKPjivG709wkbCQ4/qgLoBEg3nrHPk0HQ3 2zp0lF6fx+LsTp5igBqTV5/KFSuKwjANg33m2y8gSVYtTC2w31zqG7n3ICYcVJ5o J0jiN71IbVDj9ZwaXIG870Y91DaiDmwkfZNgVybRAnj/e9R6em14eQYo5BTux7Pc jJvYHBa3QHP1BOxe/gMyRXxZgPdPfrZYv5FxfbZdpDT46cwfFo+T6nu2JZDa6erj YpIr2bFxRlQKqUCXPW72hTLIk91DVbkFRdgIrIfMrEmFEkq9NmU= -----END CERTIFICATE-----Generated at Fri Aug 8 12:48:01 2025 by rpki-client