$ rpki-client -vvf repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft File: D00472C77B42BC0E23D929360AA568BBAE2AA668.mft (raw, json) Hash identifier: v5kcUgFaFFht7Orl241yfaiAjqQ1iOH6CjDKCrTuNdM= Subject key identifier: 21:C0:E2:D5:40:FC:34:DB:C4:ED:75:1E:57:A8:2E:96:28:4F:E4:80 Authority key identifier: D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 Certificate issuer: /CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Certificate serial: 1823B20784FE2B8C70B1DF9C3F6656A02787F066 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft Manifest number: 021C Signing time: Wed 06 Aug 2025 10:20:04 +0000 Manifest this update: Wed 06 Aug 2025 10:15:04 +0000 Manifest next update: Sat 09 Aug 2025 18:10:04 +0000 Files and hashes: 1: 3130332e3138352e3235342e302f32332d3234203d3e20313439363838.roa (hash: 6gEpief7n0b1o5LDXUhCiEL/rkB2mrhMUs19uxqg/vs=) 2: D00472C77B42BC0E23D929360AA568BBAE2AA668.crl (hash: 8N6NC0kUUF3a9hFQiAME1JxOCgT5U2ldvwq9/lWi40g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 18:10:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:23:b2:07:84:fe:2b:8c:70:b1:df:9c:3f:66:56:a0:27:87:f0:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Validity Not Before: Aug 6 10:15:04 2025 GMT Not After : Aug 9 18:10:04 2025 GMT Subject: CN=21C0E2D540FC34DBC4ED751E57A82E96284FE480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e1:4c:57:43:d9:a0:ef:16:32:d8:a3:1a:7e: 94:c8:78:bf:de:5e:76:5a:6d:06:91:a0:12:47:5c: 4b:16:3a:b3:fc:6a:f5:31:04:d0:a4:b4:20:4a:5f: aa:2f:6b:83:86:d7:6a:a1:f3:65:a5:27:69:7f:59: cc:92:a6:21:f7:45:09:1c:b2:5a:54:c7:b5:fd:65: e8:e8:28:88:d2:7d:55:88:34:c4:16:f7:23:ad:be: b3:06:90:28:d1:d0:12:ac:a2:42:40:f2:2a:3b:a9: a2:84:a1:11:f3:aa:c7:c3:dd:91:75:80:3e:e2:cd: 2e:ae:75:22:d4:a4:8b:14:8a:40:79:90:52:ee:a0: b3:9f:7b:8a:69:f2:76:77:6f:0c:16:68:6f:d7:ba: 97:df:d7:6a:aa:50:55:32:a3:08:bb:90:3a:ae:8f: 18:69:d9:2b:f7:f8:1c:5d:6d:46:dc:cb:f5:83:d9: 19:04:9d:e8:29:13:a6:f9:70:e8:0a:20:ae:64:d9: 51:50:a5:c0:ee:f1:c7:aa:fe:aa:cf:51:08:aa:6e: 5b:0d:f4:56:17:57:5b:28:30:2e:32:d7:a6:d6:3f: 3d:24:a3:53:63:25:70:03:a5:32:93:87:46:e4:93: f5:cc:5c:16:63:3b:88:f3:27:c6:ad:a9:67:3a:b6: 3f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:C0:E2:D5:40:FC:34:DB:C4:ED:75:1E:57:A8:2E:96:28:4F:E4:80 X509v3 Authority Key Identifier: keyid:D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:29:01:71:a4:ea:da:75:8e:96:f4:90:34:53:5c:c4:a8:3b: 1f:41:4a:c4:72:55:b3:e1:80:f1:85:b7:5f:e5:3a:d9:86:00: ae:a2:32:9c:98:d7:a6:e8:69:71:64:40:29:6f:5e:d4:db:ac: 1a:a0:0c:0e:fc:4f:ff:c6:13:d9:5f:0c:71:2d:01:97:66:2c: 13:66:8e:7c:7e:68:db:22:3c:1a:da:67:be:ad:04:76:01:a2: 98:2e:86:e6:7d:f3:da:53:25:25:94:ec:36:7a:d6:bb:94:5c: 91:b4:3b:1f:56:95:15:f9:1f:9c:93:e6:fd:7a:39:6e:f8:8c: 30:a4:8a:d0:2c:55:d5:d2:2f:2d:e3:45:1d:46:fa:a9:9b:ae: 7c:3a:3f:4c:14:1f:82:b0:5b:4b:34:70:fd:13:e3:3f:6e:b8: 09:41:84:f7:32:ab:06:3f:cb:77:43:a6:4d:84:31:a0:78:53: 00:71:4d:ac:dd:ae:dc:2f:96:26:93:c5:9e:c0:cb:23:33:67: bf:c9:f4:15:ef:30:45:63:e4:de:0c:a3:53:5b:ed:d1:58:44: 47:ea:ea:3a:18:69:d1:93:6a:f0:d8:17:07:a6:ca:fb:c3:22: 28:3f:d3:33:51:0c:10:eb:f4:d0:0f:a7:c9:08:32:55:e0:42: ae:19:4c:dd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGCOyB4T+K4xwsd+cP2ZWoCeH8GYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJB RTJBQTY2ODAeFw0yNTA4MDYxMDE1MDRaFw0yNTA4MDkxODEwMDRaMDMxMTAvBgNV BAMTKDIxQzBFMkQ1NDBGQzM0REJDNEVENzUxRTU3QTgyRTk2Mjg0RkU0ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz4UxXQ9mg7xYy2KMafpTIeL/e XnZabQaRoBJHXEsWOrP8avUxBNCktCBKX6ova4OG12qh82WlJ2l/WcySpiH3RQkc slpUx7X9ZejoKIjSfVWINMQW9yOtvrMGkCjR0BKsokJA8io7qaKEoRHzqsfD3ZF1 gD7izS6udSLUpIsUikB5kFLuoLOfe4pp8nZ3bwwWaG/Xupff12qqUFUyowi7kDqu jxhp2Sv3+BxdbUbcy/WD2RkEnegpE6b5cOgKIK5k2VFQpcDu8ceq/qrPUQiqblsN 9FYXV1soMC4y16bWPz0ko1NjJXADpTKTh0bkk/XMXBZjO4jzJ8atqWc6tj+rAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIcDi1UD8NNvE7XUeV6gulihP5IAwHwYDVR0j BBgwFoAU0ARyx3tCvA4j2Sk2CqVou64qpmgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzE3MzY5YS1iY2MxLTQyYmMtYjhiMi1mOTZkNTBkMzc0OWQvMC9EMDA0NzJDNzdC NDJCQzBFMjNEOTI5MzYwQUE1NjhCQkFFMkFBNjY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJBRTJB QTY2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMxNzM2OWEtYmNjMS00MmJjLWI4 YjItZjk2ZDUwZDM3NDlkLzAvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4 QkJBRTJBQTY2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB4pAXGk6tp1jpb0kDRTXMSoOx9BSsRyVbPh gPGFt1/lOtmGAK6iMpyY16boaXFkQClvXtTbrBqgDA78T//GE9lfDHEtAZdmLBNm jnx+aNsiPBraZ76tBHYBopguhuZ989pTJSWU7DZ61ruUXJG0Ox9WlRX5H5yT5v16 OW74jDCkitAsVdXSLy3jRR1G+qmbrnw6P0wUH4KwW0s0cP0T4z9uuAlBhPcyqwY/ y3dDpk2EMaB4UwBxTazdrtwvliaTxZ7AyyMzZ7/J9BXvMEVj5N4Mo1Nb7dFYREfq 6joYadGTavDYFwemyvvDIig/0zNRDBDr9NAPp8kIMlXgQq4ZTN0= -----END CERTIFICATE-----Generated at Fri Aug 8 10:11:02 2025 by rpki-client