$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft File: 3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft (raw, json) Hash identifier: +UXVA+bDVJoQwFywhQkySlK5AckeRI75T38XBk4Wd5w= Subject key identifier: 4A:EF:05:9C:3B:2E:7E:66:EE:4D:D7:4A:2A:54:62:24:9C:20:D7:00 Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Certificate serial: 0A1B11A6B11AF0FBFA39EB7C65B7F7311E60F7FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft Manifest number: 01E2 Signing time: Fri 08 Aug 2025 18:32:19 +0000 Manifest this update: Fri 08 Aug 2025 18:27:19 +0000 Manifest next update: Tue 12 Aug 2025 04:32:19 +0000 Files and hashes: 1: 3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa (hash: 1QFmqqnDt9FD4CT5iXH8IaTJeZQAgHohWAPwCtiQfbk=) 2: 3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa (hash: mvmoi8dcnfPzFCUL4IZOH3T40kp0yAQpvbAqzxB1zYc=) 3: 3130332e3235342e3137312e302f32342d3234203d3e203539313439.roa (hash: j7/0o24Y/Dntb2SDxDz2B+Eis79rWFB0ghqmTnU55LQ=) 4: 3130332e3235342e3136392e302f32342d3234203d3e203539313439.roa (hash: NK7ClTvv4/NDBbf89x9B3VnTnm5k2ddyF3YW/vuXpLs=) 5: 3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa (hash: wNLC96dZ0hf5g5SQzM5GoaCW4xx90rlAQngevEb0OMg=) 6: 3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl (hash: 8u2m4FEADKmk0Ljml2sfkuHXOQBcDOlVxG3nV28Mxnk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 04:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:1b:11:a6:b1:1a:f0:fb:fa:39:eb:7c:65:b7:f7:31:1e:60:f7:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Validity Not Before: Aug 8 18:27:19 2025 GMT Not After : Aug 12 04:32:19 2025 GMT Subject: CN=4AEF059C3B2E7E66EE4DD74A2A5462249C20D700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2b:20:63:eb:51:ff:1d:cf:30:78:f9:c7:af: e7:9c:4b:07:af:50:d7:38:ba:5d:a2:96:49:cb:d3: 7d:55:f8:d7:4a:0b:98:43:49:d2:43:01:14:12:41: c8:de:52:8a:62:fd:01:7d:81:4d:13:ad:8c:bd:4f: 10:e3:27:ed:70:13:b3:81:e5:2b:7c:01:70:9c:f1: 72:cf:20:84:03:02:b1:14:06:fc:9f:53:fb:07:b7: 21:87:62:ab:76:70:36:16:fe:5e:78:a3:b4:a4:b4: 18:df:d9:56:75:48:cd:4f:3b:a0:62:bb:f6:31:07: eb:9d:ec:4c:c1:4d:21:3a:18:3a:90:03:28:7d:a1: 47:70:8b:51:ed:ad:a7:60:dd:6f:b8:d7:7b:e4:1e: 29:55:f7:be:78:e0:d4:cd:c2:35:60:3b:07:f1:67: bf:e3:e5:f9:3d:e8:7f:8b:c2:08:19:d9:67:26:1a: ed:76:63:b2:7a:c6:bb:91:a5:39:29:a8:d7:62:7f: 5e:b9:e3:2a:13:97:e2:84:cd:47:8f:ca:21:04:72: 7d:35:81:8c:d9:2d:2b:da:12:40:6c:6c:c5:54:47: 96:ba:f0:cc:54:65:f7:91:73:b0:6c:55:81:16:e9: 0a:73:f7:9d:68:90:fa:3a:a7:6e:9a:84:9e:8b:00: de:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:EF:05:9C:3B:2E:7E:66:EE:4D:D7:4A:2A:54:62:24:9C:20:D7:00 X509v3 Authority Key Identifier: keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:9c:61:8f:ca:24:80:c6:da:f4:da:e9:3a:74:9f:0a:96:af: c0:7d:cd:80:00:bb:cb:38:2d:2e:a3:56:e5:bc:21:02:99:6a: a2:c3:33:af:cf:9c:3a:63:f3:16:4b:3b:55:95:2c:27:07:15: 2c:5a:02:77:54:d4:d6:c9:62:99:c1:80:1d:2f:93:b6:94:c9: 56:77:09:76:33:17:54:ec:d1:9d:ce:c7:c4:36:2e:1d:d4:65: 0b:a3:58:f2:87:d3:f4:a2:36:7b:40:46:df:c2:b0:55:ab:ab: bb:13:82:a5:3c:01:be:f6:5d:49:96:f4:4a:66:2c:43:9f:62: 93:23:9b:63:f8:63:08:90:51:c8:86:9a:04:24:f8:62:64:77: 87:bd:36:5d:3b:a7:fe:55:89:d3:fc:25:a8:36:6d:e4:34:f5: 8f:52:72:55:64:9f:d8:26:6e:81:f8:da:03:4d:cc:cc:e1:82: d6:17:f3:1e:40:12:31:e9:5f:8c:f9:33:3f:df:94:87:1b:00: a1:24:a9:f3:3d:f4:04:61:97:61:e6:e2:2e:85:8d:65:d4:b3: de:25:c0:12:47:51:e1:b2:ec:e9:ed:e9:94:23:19:1c:88:93: df:91:7a:12:e0:dd:61:5b:c2:82:3e:ee:48:b0:35:ce:71:28: 85:2f:3e:e7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUChsRprEa8Pv6Oet8Zbf3MR5g9/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5 RTE4MjA3NDAeFw0yNTA4MDgxODI3MTlaFw0yNTA4MTIwNDMyMTlaMDMxMTAvBgNV BAMTKDRBRUYwNTlDM0IyRTdFNjZFRTRERDc0QTJBNTQ2MjI0OUMyMEQ3MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLKyBj61H/Hc8wePnHr+ecSwev UNc4ul2ilknL031V+NdKC5hDSdJDARQSQcjeUopi/QF9gU0TrYy9TxDjJ+1wE7OB 5St8AXCc8XLPIIQDArEUBvyfU/sHtyGHYqt2cDYW/l54o7SktBjf2VZ1SM1PO6Bi u/YxB+ud7EzBTSE6GDqQAyh9oUdwi1Htradg3W+413vkHilV97544NTNwjVgOwfx Z7/j5fk96H+LwggZ2WcmGu12Y7J6xruRpTkpqNdif1654yoTl+KEzUePyiEEcn01 gYzZLSvaEkBsbMVUR5a68MxUZfeRc7BsVYEW6Qpz951okPo6p26ahJ6LAN5nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSu8FnDsufmbuTddKKlRiJJwg1wAwHwYDVR0j BBgwFoAUOyup6NU1er13a27EyvfBxZ4YIHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMC8zQjJCQTlFOEQ1 MzU3QUJENzc2QjZFQzRDQUY3QzFDNTlFMTgyMDc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5RTE4 MjA3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmFlN2Q0NjEtMGUzMi00ZTY1LWJi ODgtZDcyNDA1YjI0NDUxLzAvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0Mx QzU5RTE4MjA3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIecYY/KJIDG2vTa6Tp0nwqWr8B9zYAAu8s4 LS6jVuW8IQKZaqLDM6/PnDpj8xZLO1WVLCcHFSxaAndU1NbJYpnBgB0vk7aUyVZ3 CXYzF1Ts0Z3Ox8Q2Lh3UZQujWPKH0/SiNntARt/CsFWrq7sTgqU8Ab72XUmW9Epm LEOfYpMjm2P4YwiQUciGmgQk+GJkd4e9Nl07p/5VidP8Jag2beQ09Y9SclVkn9gm boH42gNNzMzhgtYX8x5AEjHpX4z5Mz/flIcbAKEkqfM99ARhl2Hm4i6FjWXUs94l wBJHUeGy7Ont6ZQjGRyIk9+RehLg3WFbwoI+7kiwNc5xKIUvPuc= -----END CERTIFICATE-----Generated at Sat Aug 9 14:33:37 2025 by rpki-client