$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft File: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft (raw, json) Hash identifier: C54z+0/o/mJEZLm2OiK7hAfApbpWzd1MI3Uw5tS7nuw= Subject key identifier: 61:BB:72:20:5B:79:57:D7:F2:D4:C1:95:B1:49:C0:A0:25:F0:74:C6 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 7BEE7CEF46B8EF784AB428C1A35FD8584B7E07D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft Manifest number: 04F8 Signing time: Tue 05 Aug 2025 05:00:44 +0000 Manifest this update: Tue 05 Aug 2025 04:55:44 +0000 Manifest next update: Fri 08 Aug 2025 13:17:44 +0000 Files and hashes: 1: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (hash: OI9Dbbh3AxBZ/lUfEAmwLldVzXyZ0yA+CnQ3viXQgc8=) 2: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (hash: hlUw25q5eNWFZZoKL6XJ7rDIzMv9Ha/qCoX1PFqE3P4=) 3: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl (hash: +DLlHyROD9QGPiEnKWLT6gOFhvb9WTDoMD5+lTs+I3U=) 4: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (hash: OT+Mk5WwssGJkg82hSQpE4gvwieaMEJQhhjdSn/cLTY=) 5: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (hash: sOLICWbkOQCKZGJuOxKOtJraYeaZ/2+UOwySpa2U+Ms=) 6: 34332e3235322e3130342e302f32322d3234203d3e203435333035.roa (hash: PKIt6KT96DVg2otgI4L6Lbo6X1IxxuQSsidS83qyqJk=) 7: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (hash: qTnm5CGA/RYtoBdoUqEMNKhCi+L95N248VCqrGjA3NM=) 8: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (hash: VtiYvCa1bjH6ANhQ1ZiFk2JkSbje5+lBzE3EKLizBTk=) 9: 3230322e35362e3136342e302f32322d3234203d3e203435333035.roa (hash: Ks6djmjYrG5U+knwJmAadX8Vs5do9/GjSatcKmwDXgM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 13:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:ee:7c:ef:46:b8:ef:78:4a:b4:28:c1:a3:5f:d8:58:4b:7e:07:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Aug 5 04:55:44 2025 GMT Not After : Aug 8 13:17:44 2025 GMT Subject: CN=61BB72205B7957D7F2D4C195B149C0A025F074C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bb:7f:42:39:26:bc:1e:33:9b:34:94:39:cf: 67:a6:bd:7c:6e:09:a2:df:56:7d:4a:d1:71:0d:7f: 1e:28:4b:2a:39:cc:4d:47:05:f2:83:e9:0f:d9:3c: e4:fb:79:0c:49:d4:a1:64:c1:a5:58:6a:8c:58:56: eb:25:2c:07:d2:fe:66:54:e6:58:27:e3:04:0d:a1: 16:7a:11:2e:ec:c1:4a:ae:9c:56:98:f3:bb:28:46: b3:62:3b:63:f1:fa:fc:32:50:bf:32:88:cc:f4:ad: 89:70:cd:7c:cd:8c:c0:e6:22:6d:5b:36:69:a1:b9: f1:b4:a7:15:56:85:5a:2d:59:83:6c:dc:39:e6:02: f0:79:e8:41:5a:ea:45:02:1c:8c:99:a3:d5:92:34: 15:d4:9c:8d:fb:13:ac:a0:84:a7:ba:cf:82:af:a1: ef:54:9d:24:a5:65:ea:dd:df:bc:a9:20:f3:21:0c: f3:4d:84:a8:b8:c0:d5:37:04:6e:b1:d8:79:6c:24: be:06:db:b3:01:ae:ea:1a:30:eb:3d:e2:31:bb:39: c5:80:28:5b:ec:1f:4a:4c:3c:a9:d4:ec:75:2d:2b: f5:4e:19:da:6c:e5:74:d9:0b:c9:df:59:61:c5:e7: b0:2b:e2:15:5e:b4:cb:d9:91:ce:bd:93:4e:ad:3d: b9:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:BB:72:20:5B:79:57:D7:F2:D4:C1:95:B1:49:C0:A0:25:F0:74:C6 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:73:17:0f:32:c9:26:5a:48:31:52:bd:6a:df:26:e6:26:cf: 52:75:e2:ee:d8:94:37:d3:95:0a:ad:45:5b:28:81:e1:aa:2b: 8c:f6:68:fa:fa:e0:98:1a:ab:a1:8c:af:3a:b9:2e:75:05:12: f1:f2:8c:75:10:93:95:89:87:d1:07:1c:a1:61:56:f5:c7:31: 43:e3:20:27:b0:03:e8:f8:f8:3d:46:99:8c:4c:06:7d:24:28: 17:ff:4a:9f:72:2a:c6:6d:90:25:18:de:a6:d1:40:c4:b6:35: 2b:94:d4:65:aa:c5:f9:0a:51:4a:c0:b1:5b:48:8e:e9:c4:06: 56:61:52:7f:6f:fe:cd:77:d4:06:41:86:f8:61:4c:29:24:b5: 2d:6b:6f:73:68:f0:e1:71:c5:34:f3:18:b9:6a:51:8c:c9:30: ae:9e:18:e6:fb:49:86:52:53:fc:6c:cd:30:27:db:b4:04:00: 4d:85:96:75:57:e2:b4:1f:a5:0c:f8:30:b5:27:68:2d:ee:e3: 9c:32:09:28:e2:5e:4d:58:60:12:30:a5:f0:3e:52:3f:35:ab: 46:8a:4a:c9:76:d9:54:25:b5:7a:d0:44:e5:18:de:a1:7e:0c: ab:5a:d4:4b:f1:e9:22:c3:ab:c5:39:f0:01:e0:3a:7e:49:76: 35:97:96:82 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUe+5870a473hKtCjBo1/YWEt+B9cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNTA4MDUwNDU1NDRaFw0yNTA4MDgxMzE3NDRaMDMxMTAvBgNV BAMTKDYxQkI3MjIwNUI3OTU3RDdGMkQ0QzE5NUIxNDlDMEEwMjVGMDc0QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDu39COSa8HjObNJQ5z2emvXxu CaLfVn1K0XENfx4oSyo5zE1HBfKD6Q/ZPOT7eQxJ1KFkwaVYaoxYVuslLAfS/mZU 5lgn4wQNoRZ6ES7swUqunFaY87soRrNiO2Px+vwyUL8yiMz0rYlwzXzNjMDmIm1b NmmhufG0pxVWhVotWYNs3DnmAvB56EFa6kUCHIyZo9WSNBXUnI37E6yghKe6z4Kv oe9UnSSlZerd37ypIPMhDPNNhKi4wNU3BG6x2HlsJL4G27MBruoaMOs94jG7OcWA KFvsH0pMPKnU7HUtK/VOGdps5XTZC8nfWWHF57Ar4hVetMvZkc69k06tPbmzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYbtyIFt5V9fy1MGVsUnAoCXwdMYwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQ5NWMxOWMtMzI2Mi00OGM3LWFm MDItMzdhODM1ZDBhNzc5LzAvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIz REM2MTQyRTVGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFlzFw8yySZaSDFSvWrfJuYmz1J14u7YlDfT lQqtRVsogeGqK4z2aPr64Jgaq6GMrzq5LnUFEvHyjHUQk5WJh9EHHKFhVvXHMUPj ICewA+j4+D1GmYxMBn0kKBf/Sp9yKsZtkCUY3qbRQMS2NSuU1GWqxfkKUUrAsVtI junEBlZhUn9v/s131AZBhvhhTCkktS1rb3No8OFxxTTzGLlqUYzJMK6eGOb7SYZS U/xszTAn27QEAE2FlnVX4rQfpQz4MLUnaC3u45wyCSjiXk1YYBIwpfA+Uj81q0aK Ssl22VQltXrQROUY3qF+DKta1Evx6SLDq8U58AHgOn5JdjWXloI= -----END CERTIFICATE-----Generated at Thu Aug 7 00:27:14 2025 by rpki-client