$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft File: 2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft (raw, json) Hash identifier: NO/GzkNDccnFhiypEAsjB5T7rXD0d5qM3IVNLJYwYzs= Subject key identifier: 66:8C:3D:6D:7A:9D:A4:4E:B9:FD:39:07:FF:21:9D:C0:38:AE:DF:6A Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Certificate serial: 7179E8C5B327419BFD38C8E152196D07B4A0507A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft Manifest number: 04B3 Signing time: Sat 09 Aug 2025 14:41:45 +0000 Manifest this update: Sat 09 Aug 2025 14:36:45 +0000 Manifest next update: Tue 12 Aug 2025 23:27:45 +0000 Files and hashes: 1: 3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa (hash: sGuZ949AervQFXJY8lGdE9UQu3pLwaxX5H+2ASfBYqU=) 2: 2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl (hash: /tGNdVA3qqY+KhCmjMHPmgLxz1dvSBDEwAVJhiMg0Xg=) 3: 3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa (hash: igZUGj9WZ1hy1WLn/uUmoBiqqH+6kXF5u53eZj34KGg=) 4: 3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa (hash: alDRN92tlwgNSOsmGcO4bYs5k2yVLt0hg1F97xm610Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 23:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:79:e8:c5:b3:27:41:9b:fd:38:c8:e1:52:19:6d:07:b4:a0:50:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Validity Not Before: Aug 9 14:36:45 2025 GMT Not After : Aug 12 23:27:45 2025 GMT Subject: CN=668C3D6D7A9DA44EB9FD3907FF219DC038AEDF6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:86:47:30:98:7a:fe:82:ff:af:f1:f9:b9:69: 96:60:0f:12:4c:c1:b1:be:e6:6a:24:4e:3e:c1:8c: 31:9c:5f:02:5c:4c:3a:1c:c9:e2:8f:43:56:37:f6: d5:76:17:1b:5f:a8:c7:9a:a6:92:79:bc:7f:5f:5b: 40:92:2e:8c:e2:66:9b:e1:5c:98:0c:04:52:4b:b9: 31:6a:52:53:bc:db:5b:11:91:2e:74:72:44:12:6b: 97:22:45:b1:cc:0a:96:46:80:ce:1e:6e:15:c6:54: 7f:36:65:43:cd:5b:df:b0:6b:ec:ab:39:1b:73:61: 38:d0:93:92:c1:22:94:36:aa:12:2e:ec:cf:7a:18: cf:e1:b9:e1:dd:c6:df:bc:07:6c:8e:44:f4:18:3c: 26:5d:5a:ce:55:ce:fe:1f:8a:c7:58:bb:74:eb:af: 54:82:a8:31:6d:60:52:24:94:ad:53:71:70:41:ea: 6a:ae:77:16:79:6b:72:92:49:9d:85:4f:19:f1:af: e6:42:6c:c3:7f:ee:50:de:c0:2a:39:e6:87:74:a9: dd:88:e5:62:1e:60:cb:59:03:8e:83:d7:05:fb:ec: 00:8c:85:48:13:02:d9:67:17:03:b3:ff:27:a7:a6: 1a:f3:98:19:4a:95:a9:3d:61:a9:3d:52:b3:8e:f6: 22:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:8C:3D:6D:7A:9D:A4:4E:B9:FD:39:07:FF:21:9D:C0:38:AE:DF:6A X509v3 Authority Key Identifier: keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:e0:25:70:1a:83:b4:f0:fc:58:65:07:bc:16:fa:4d:28:ce: c5:b2:f7:58:0e:9b:7e:bd:62:9c:dd:34:35:2e:28:f5:9e:1d: fb:1f:35:90:a3:a0:5a:43:86:2c:4d:da:0d:df:cd:18:fc:9f: 82:83:02:1b:5d:51:40:72:07:af:da:30:8d:4a:93:32:fa:ff: fc:9c:bd:52:92:ac:fa:74:e9:cf:57:bb:fd:a8:3d:f0:4c:5c: 6e:86:af:f3:26:76:98:f5:d5:53:f3:48:03:d2:0c:17:2b:67: 24:68:5d:85:26:bc:f1:8f:60:9c:84:20:65:95:5e:d8:52:f4: f0:cb:79:ed:19:c0:a2:14:22:f4:5d:4a:04:3c:29:96:b5:07: 4b:93:cd:f2:9b:20:38:3d:bf:58:12:79:a1:0e:15:4e:bc:c2: ec:ca:f6:09:cb:9c:7b:bd:61:d3:d5:10:5e:15:49:5b:c1:a4: 21:f3:59:ea:a3:b5:a8:99:e5:64:57:35:a8:81:c3:b3:3b:dc: 30:13:3a:94:ca:eb:7f:76:f1:10:ac:96:06:5c:d6:96:44:5a: 36:0d:05:c9:b7:08:ab:4a:5f:06:f6:fb:9d:e6:7e:83:2a:04: 02:94:a9:30:f8:d0:e1:ea:82:45:a7:67:36:99:32:6e:bb:85: 44:4f:7e:60 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcXnoxbMnQZv9OMjhUhltB7SgUHowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5Mzcy RUJEMkExNzAeFw0yNTA4MDkxNDM2NDVaFw0yNTA4MTIyMzI3NDVaMDMxMTAvBgNV BAMTKDY2OEMzRDZEN0E5REE0NEVCOUZEMzkwN0ZGMjE5REMwMzhBRURGNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkhkcwmHr+gv+v8fm5aZZgDxJM wbG+5mokTj7BjDGcXwJcTDocyeKPQ1Y39tV2FxtfqMeappJ5vH9fW0CSLoziZpvh XJgMBFJLuTFqUlO821sRkS50ckQSa5ciRbHMCpZGgM4ebhXGVH82ZUPNW9+wa+yr ORtzYTjQk5LBIpQ2qhIu7M96GM/hueHdxt+8B2yORPQYPCZdWs5Vzv4fisdYu3Tr r1SCqDFtYFIklK1TcXBB6mqudxZ5a3KSSZ2FTxnxr+ZCbMN/7lDewCo55od0qd2I 5WIeYMtZA46D1wX77ACMhUgTAtlnFwOz/yenphrzmBlKlak9Yak9UrOO9iKVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZow9bXqdpE65/TkH/yGdwDiu32owHwYDVR0j BBgwFoAUJVIkDv/uL2D1aE3QPt5JNy69KhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDA0MjMzZi1iYjJjLTQ3ZDctOTAxYy1lM2M4MmY4ZDQyM2MvMC8yNTUyMjQwRUZG RUUyRjYwRjU2ODRERDAzRURFNDkzNzJFQkQyQTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5MzcyRUJE MkExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjAwNDIzM2YtYmIyYy00N2Q3LTkw MWMtZTNjODJmOGQ0MjNjLzAvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5 MzcyRUJEMkExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACXgJXAag7Tw/FhlB7wW+k0ozsWy91gOm369 YpzdNDUuKPWeHfsfNZCjoFpDhixN2g3fzRj8n4KDAhtdUUByB6/aMI1KkzL6//yc vVKSrPp06c9Xu/2oPfBMXG6Gr/Mmdpj11VPzSAPSDBcrZyRoXYUmvPGPYJyEIGWV XthS9PDLee0ZwKIUIvRdSgQ8KZa1B0uTzfKbIDg9v1gSeaEOFU68wuzK9gnLnHu9 YdPVEF4VSVvBpCHzWeqjtaiZ5WRXNaiBw7M73DATOpTK63928RCslgZc1pZEWjYN Bcm3CKtKXwb2+53mfoMqBAKUqTD40OHqgkWnZzaZMm67hURPfmA= -----END CERTIFICATE-----Generated at Mon Aug 11 01:43:32 2025 by rpki-client