$ rpki-client -vvf repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft File: D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft (raw, json) Hash identifier: j1akJ1oLeeTcbN3k25CAT4cyur406mex4/NoMBeYQwY= Subject key identifier: 1A:6E:9D:67:75:7D:8A:DE:86:F9:E2:48:E4:A4:F5:9B:D7:93:73:76 Authority key identifier: D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 Certificate issuer: /CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Certificate serial: 36C2466175BD2812C573D5683058875F5239511A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft Manifest number: 0236 Signing time: Wed 06 Aug 2025 04:21:26 +0000 Manifest this update: Wed 06 Aug 2025 04:16:26 +0000 Manifest next update: Sat 09 Aug 2025 06:11:26 +0000 Files and hashes: 1: D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl (hash: /jslH08DjfXIBc59KwTzq7hU30XCzLAgBWGSOjc5Eos=) 2: 3130332e3136392e302e302f32332d3234203d3e20313432333235.roa (hash: kS5BqB0fQsybN4YzA6LLybAUUgYhEkwegd5mZxZdL2I=) 3: 3130332e3136392e312e302f32342d3234203d3e20313432333235.roa (hash: QVwXZiEUDkzJTFJTP2kak0B1PFcbgFpWZtYiCacvLzc=) 4: 3130332e3136392e302e302f32342d3234203d3e20313432333235.roa (hash: BHsnMPpdFZL0d9XOfOmW0tnCHE686u/F/UGOnWHulsY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 06:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:c2:46:61:75:bd:28:12:c5:73:d5:68:30:58:87:5f:52:39:51:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Validity Not Before: Aug 6 04:16:26 2025 GMT Not After : Aug 9 06:11:26 2025 GMT Subject: CN=1A6E9D67757D8ADE86F9E248E4A4F59BD7937376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fb:34:6f:98:ec:8e:60:6a:a2:66:56:93:36: 49:36:82:d6:91:fe:98:4a:54:76:a7:05:d9:ab:b1: e3:4a:33:2c:f2:d1:9f:fd:81:b7:00:a2:6c:b4:6d: cb:00:d4:3f:bb:de:dd:56:08:e6:a0:cd:7b:ff:7f: b6:cc:1c:5e:ae:f5:ce:e3:55:1e:07:da:8e:cd:3b: 17:f1:4a:9d:c8:40:65:15:05:f2:35:23:2b:8c:e2: bf:f6:83:18:87:a6:45:96:1f:8f:b9:ac:bd:bc:f5: 14:bb:b0:8a:85:d4:13:b3:02:76:17:52:4f:6f:9e: 5e:a8:d8:96:aa:b7:ce:8a:5a:aa:83:d3:56:9d:10: 42:2d:7c:9b:3e:76:4d:3d:1a:c7:2d:2b:99:e9:25: 39:f4:80:f3:41:d4:e8:54:cc:a9:06:08:eb:f5:33: 5a:7a:01:67:91:d3:79:6c:2c:61:23:34:f7:78:41: b6:86:9c:21:63:36:28:1e:58:da:63:15:5d:89:f6: 10:ea:1d:4b:81:95:f2:53:08:c2:73:1f:02:2e:9b: 31:9e:3a:dc:6f:06:04:de:3b:a4:c8:ce:f5:ce:6a: 0f:71:29:43:3a:01:16:08:38:8a:ef:23:b3:7a:1a: be:cb:6e:68:f9:82:35:f2:a1:c8:56:90:22:54:60: 65:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:6E:9D:67:75:7D:8A:DE:86:F9:E2:48:E4:A4:F5:9B:D7:93:73:76 X509v3 Authority Key Identifier: keyid:D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:e1:8f:a3:99:12:f7:c6:7f:17:14:52:6b:21:35:9e:b7:68: 97:61:d4:9f:05:a5:de:8f:8b:8c:fb:f9:a4:d0:00:d1:ad:ed: e4:3a:30:e2:6d:33:14:b8:33:33:aa:98:22:e0:35:9b:3a:ca: c1:72:5c:bb:ec:d5:c6:86:71:14:c9:1c:41:03:74:35:90:ea: fd:9e:2f:d1:b7:03:b8:e7:15:f1:06:65:c4:d2:67:45:be:f8: b0:25:3b:82:84:5f:cf:9e:25:87:68:c5:cd:95:4b:3e:b8:e8: 31:e6:bf:df:b0:24:c8:82:13:37:d9:6d:d2:a3:b0:ae:ec:fd: 4b:99:50:8a:28:9e:75:66:41:dc:34:35:0a:d9:7b:ce:0c:14: 53:88:f3:e9:27:77:5e:24:b1:6c:90:06:88:75:41:74:1a:da: 6b:c7:07:62:9f:4e:09:73:09:83:37:a4:68:6b:c6:c8:f4:7b: 17:75:8a:f1:ca:24:b8:08:38:7c:3c:be:83:55:a1:9a:d8:e6: 2d:b0:8e:a0:9e:69:96:6a:0f:ff:3f:18:f1:93:08:9f:de:4f: 3e:6b:ec:3a:a8:42:ab:00:e9:57:43:69:3c:b8:f1:04:7a:6d: 04:18:76:7c:38:50:5c:51:0e:3f:51:dc:44:8a:97:df:0c:8b: a3:2f:39:75 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNsJGYXW9KBLFc9VoMFiHX1I5URowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlG N0NCMkZFNzAeFw0yNTA4MDYwNDE2MjZaFw0yNTA4MDkwNjExMjZaMDMxMTAvBgNV BAMTKDFBNkU5RDY3NzU3RDhBREU4NkY5RTI0OEU0QTRGNTlCRDc5MzczNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2+zRvmOyOYGqiZlaTNkk2gtaR /phKVHanBdmrseNKMyzy0Z/9gbcAomy0bcsA1D+73t1WCOagzXv/f7bMHF6u9c7j VR4H2o7NOxfxSp3IQGUVBfI1IyuM4r/2gxiHpkWWH4+5rL289RS7sIqF1BOzAnYX Uk9vnl6o2Jaqt86KWqqD01adEEItfJs+dk09GsctK5npJTn0gPNB1OhUzKkGCOv1 M1p6AWeR03lsLGEjNPd4QbaGnCFjNigeWNpjFV2J9hDqHUuBlfJTCMJzHwIumzGe OtxvBgTeO6TIzvXOag9xKUM6ARYIOIrvI7N6Gr7Lbmj5gjXyochWkCJUYGWLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGm6dZ3V9it6G+eJI5KT1m9eTc3YwHwYDVR0j BBgwFoAU0iSKBNmUolaaj/ZF1LAlqffLL+cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTNjYzJjMS0xNDZjLTQ4YTktYjAwMy03YmQ4MzgyMjA4NGQvMC9EMjI0OEEwNEQ5 OTRBMjU2OUE4RkY2NDVENEIwMjVBOUY3Q0IyRkU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlGN0NC MkZFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWEzY2MyYzEtMTQ2Yy00OGE5LWIw MDMtN2JkODM4MjIwODRkLzAvRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1 QTlGN0NCMkZFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHvhj6OZEvfGfxcUUmshNZ63aJdh1J8Fpd6P i4z7+aTQANGt7eQ6MOJtMxS4MzOqmCLgNZs6ysFyXLvs1caGcRTJHEEDdDWQ6v2e L9G3A7jnFfEGZcTSZ0W++LAlO4KEX8+eJYdoxc2VSz646DHmv9+wJMiCEzfZbdKj sK7s/UuZUIoonnVmQdw0NQrZe84MFFOI8+knd14ksWyQBoh1QXQa2mvHB2KfTglz CYM3pGhrxsj0exd1ivHKJLgIOHw8voNVoZrY5i2wjqCeaZZqD/8/GPGTCJ/eTz5r 7DqoQqsA6VdDaTy48QR6bQQYdnw4UFxRDj9R3ESKl98Mi6MvOXU= -----END CERTIFICATE-----Generated at Thu Aug 7 00:26:55 2025 by rpki-client