$ rpki-client -vvf repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft File: 2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft (raw, json) Hash identifier: 9q26FgF+qsDYJ8JzhCerdrMis+73qJkcMa1MxpSuM5o= Subject key identifier: 9F:43:33:5C:2F:FB:53:46:A0:62:AA:80:24:53:A3:F9:64:0A:F8:C3 Authority key identifier: 2D:51:7D:C0:24:CE:FC:FA:F8:0C:F7:FD:39:22:46:89:4E:94:F1:2F Certificate issuer: /CN=2D517DC024CEFCFAF80CF7FD392246894E94F12F Certificate serial: 6DFD1FCD08192E542B5E132BE01051946C1D3246 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft Manifest number: E4 Signing time: Wed 06 Aug 2025 17:30:51 +0000 Manifest this update: Wed 06 Aug 2025 17:25:51 +0000 Manifest next update: Sun 10 Aug 2025 02:25:51 +0000 Files and hashes: 1: 2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl (hash: vF2VYOHg4TbqniS8MHdAtm+oRms1b8ylAsuQaXvN530=) 2: 3130332e3135362e3131302e302f32342d3234203d3e20313431303839.roa (hash: oX2rRL4yj7u4AFId0yrPwmCzP4drZZYO3pu9upGhNCY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 02:25:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:fd:1f:cd:08:19:2e:54:2b:5e:13:2b:e0:10:51:94:6c:1d:32:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D517DC024CEFCFAF80CF7FD392246894E94F12F Validity Not Before: Aug 6 17:25:51 2025 GMT Not After : Aug 10 02:25:51 2025 GMT Subject: CN=9F43335C2FFB5346A062AA802453A3F9640AF8C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:53:09:c2:30:da:42:ce:ad:14:cd:8b:33:e2: 79:64:de:9f:73:ad:0a:ca:24:fe:e5:b9:f1:f7:4b: 0c:3b:e6:55:12:d1:3d:5f:31:a0:69:e7:8a:97:3d: 75:19:29:b6:89:61:e7:b9:35:7f:fc:09:12:06:ee: 57:ba:1e:dc:04:1d:46:f6:c4:14:8c:5a:14:f0:39: 03:12:9c:ff:c6:14:05:e1:f9:57:78:7d:fd:74:48: 99:4d:93:55:fb:e7:f0:6f:ef:b3:94:e4:a3:a9:e6: ea:4b:1e:4d:ef:99:dc:15:49:75:0c:7f:76:c3:52: 6f:58:11:00:cc:0f:f5:f7:84:5c:a0:3c:d8:a5:93: 9b:2e:31:2c:1c:59:da:c7:59:37:6e:9f:5c:50:d4: ce:67:8f:2a:e1:16:6f:17:e0:fa:22:f1:2d:58:bc: 79:28:27:b7:39:69:28:af:8c:14:51:4c:73:0f:14: 30:2d:8f:2c:30:d4:c2:db:f4:30:f9:59:fa:b9:e3: cd:59:ff:b5:f3:a2:82:6e:7e:07:52:a4:5c:23:d8: ab:05:c6:b1:f2:1e:23:3b:76:77:d0:55:3e:eb:7f: 2b:a0:7a:72:61:6a:7a:3f:f1:74:30:ab:2d:73:29: 9e:9f:78:20:7c:6c:b1:c3:16:68:50:ea:9c:13:ab: 8f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:43:33:5C:2F:FB:53:46:A0:62:AA:80:24:53:A3:F9:64:0A:F8:C3 X509v3 Authority Key Identifier: keyid:2D:51:7D:C0:24:CE:FC:FA:F8:0C:F7:FD:39:22:46:89:4E:94:F1:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:e0:27:15:7a:22:13:ad:ab:9d:34:6f:9c:43:b9:b0:b8:f8: 02:55:bc:83:f8:36:79:95:9a:1b:2f:89:95:3b:e2:4a:bf:df: 6a:c1:b8:2c:45:eb:1a:5f:72:db:1a:f6:4c:8e:6d:b5:df:bb: 0b:13:00:dd:70:06:60:a7:05:84:41:5b:96:b5:8a:75:ea:39: bd:31:d2:f5:14:4a:7f:1e:8b:0b:b4:ba:de:d9:50:84:e5:c2: 86:74:30:8c:66:42:ad:49:89:4e:75:ca:93:25:97:87:d8:54: e2:ef:60:3d:a0:42:3a:44:9e:5e:8f:44:f0:df:b5:b7:90:12: 93:17:d7:cb:25:68:84:77:39:1e:aa:9e:10:34:0a:3e:69:b1: ae:c9:3e:be:d6:c4:12:77:c6:b6:1a:54:48:9d:bc:02:17:79: 34:cf:6e:f6:32:39:e0:af:8d:90:18:ed:8d:3c:68:5f:4a:28: c9:a1:74:01:79:6b:c1:51:a2:64:65:77:66:90:4f:99:59:b5: ce:79:cb:f1:8b:ef:a9:bb:b4:e5:69:76:1c:75:34:92:37:8e: e2:a3:a1:c1:d1:fe:66:a8:56:fe:e7:c3:df:7d:2b:22:2d:9e: 27:92:aa:8d:aa:fb:e8:dc:9e:68:30:6d:39:e3:74:24:ac:da: 7a:bd:5a:10 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbf0fzQgZLlQrXhMr4BBRlGwdMkYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2ODk0 RTk0RjEyRjAeFw0yNTA4MDYxNzI1NTFaFw0yNTA4MTAwMjI1NTFaMDMxMTAvBgNV BAMTKDlGNDMzMzVDMkZGQjUzNDZBMDYyQUE4MDI0NTNBM0Y5NjQwQUY4QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/UwnCMNpCzq0UzYsz4nlk3p9z rQrKJP7lufH3Sww75lUS0T1fMaBp54qXPXUZKbaJYee5NX/8CRIG7le6HtwEHUb2 xBSMWhTwOQMSnP/GFAXh+Vd4ff10SJlNk1X75/Bv77OU5KOp5upLHk3vmdwVSXUM f3bDUm9YEQDMD/X3hFygPNilk5suMSwcWdrHWTdun1xQ1M5njyrhFm8X4Poi8S1Y vHkoJ7c5aSivjBRRTHMPFDAtjyww1MLb9DD5Wfq5481Z/7XzooJufgdSpFwj2KsF xrHyHiM7dnfQVT7rfyugenJhano/8XQwqy1zKZ6feCB8bLHDFmhQ6pwTq48bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUn0MzXC/7U0agYqqAJFOj+WQK+MMwHwYDVR0j BBgwFoAULVF9wCTO/Pr4DPf9OSJGiU6U8S8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDMzYTFjNi0wZjcwLTRjOTgtOTZiMC1jYWI1ODEyNmFiOTQvMC8yRDUxN0RDMDI0 Q0VGQ0ZBRjgwQ0Y3RkQzOTIyNDY4OTRFOTRGMTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2ODk0RTk0 RjEyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQzM2ExYzYtMGY3MC00Yzk4LTk2 YjAtY2FiNTgxMjZhYjk0LzAvMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2 ODk0RTk0RjEyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKbgJxV6IhOtq500b5xDubC4+AJVvIP4NnmV mhsviZU74kq/32rBuCxF6xpfctsa9kyObbXfuwsTAN1wBmCnBYRBW5a1inXqOb0x 0vUUSn8eiwu0ut7ZUITlwoZ0MIxmQq1JiU51ypMll4fYVOLvYD2gQjpEnl6PRPDf tbeQEpMX18slaIR3OR6qnhA0Cj5psa7JPr7WxBJ3xrYaVEidvAIXeTTPbvYyOeCv jZAY7Y08aF9KKMmhdAF5a8FRomRld2aQT5lZtc55y/GL76m7tOVpdhx1NJI3juKj ocHR/maoVv7nw999KyItnieSqo2q++jcnmgwbTnjdCSs2nq9WhA= -----END CERTIFICATE-----Generated at Thu Aug 7 03:18:31 2025 by rpki-client