$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft File: 228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft (raw, json) Hash identifier: LGvGMWngBjw8sd6f7J3oDd/DpbMgoPZJTIfOuvabvNE= Subject key identifier: C3:1B:43:6D:94:6E:CB:94:88:AA:BC:D9:99:83:71:FF:3B:59:20:44 Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Certificate serial: 363E6AA1DB04CDE19D8DE0F18B593C312F51B181 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft Manifest number: 01CF Signing time: Wed 06 Aug 2025 00:41:22 +0000 Manifest this update: Wed 06 Aug 2025 00:36:22 +0000 Manifest next update: Sat 09 Aug 2025 04:03:22 +0000 Files and hashes: 1: 3132342e3130392e32332e302f32342d3234203d3e203338353237.roa (hash: hSmHQriBgEB6G8euGPo5okmMfhhllZ1AqyrcnX9VlJE=) 2: 3131392e34372e39352e302f32342d3234203d3e20313530323438.roa (hash: nIrbzR22XSry4Jrw3LIPGv150kbPZD6HPRMENEZHMHw=) 3: 228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl (hash: zrle+T3lcQpjFEL5q6fE0inkAfoWWbog/sgIvOymomY=) 4: 3131392e34372e39302e302f32342d3234203d3e203338353237.roa (hash: 2gYjkNpQS7rIhX41LQ5E9ZRuFubPcLm5+1qbHYEWbNU=) 5: 32372e3132342e38332e302f32342d3234203d3e203338353237.roa (hash: L5InqyKvyWP9tFezdM+9rBpde1AjX1HCs7qP97HZ0mU=) 6: 3132342e3130392e32322e302f32342d3234203d3e20313339393439.roa (hash: HVWbk3IWKH+5JXE4MGQxsGy0csGyHkuWv0WX8uhGzdw=) 7: 3130332e32352e3130382e302f32342d3234203d3e20313339393439.roa (hash: qqfzsjlYqjPxNhzC0UkUL2m+zHonm3K6iD+8hUdOJig=) 8: 3132342e3130392e32302e302f32342d3234203d3e203338353237.roa (hash: ETJz1GlN0xqgrI/TiDRe3oL2wRqZlR8gI6HL/idn2yc=) 9: 3131392e34372e38392e302f32342d3234203d3e203338353237.roa (hash: 2N3BwgIjWHFbTQKqljv/UDzpCDNCSry44iBQjllcOAY=) 10: 3132342e3130392e32312e302f32342d3234203d3e203338353237.roa (hash: JF25GsZLyzVMqdMpnO1WYlSsjR6hM621Mtm2BRDUvVE=) 11: 3131392e34372e38382e302f32342d3234203d3e203338353237.roa (hash: gaK9TNDkDAX6rLbicLT8NaMu8dPZqEuVmgkAb8uim8M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 04:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:3e:6a:a1:db:04:cd:e1:9d:8d:e0:f1:8b:59:3c:31:2f:51:b1:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Validity Not Before: Aug 6 00:36:22 2025 GMT Not After : Aug 9 04:03:22 2025 GMT Subject: CN=C31B436D946ECB9488AABCD9998371FF3B592044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b4:39:31:0f:01:d9:7b:90:1a:e6:88:cd:40: cd:18:7d:71:cf:4b:66:a4:2b:44:46:4d:b3:2c:0d: 9f:68:70:6e:6b:d4:8e:62:e3:9f:86:66:06:cf:be: 06:e2:90:53:32:0d:9f:a5:9a:84:f7:36:e9:6b:39: 3a:15:b3:0c:a7:d1:38:15:81:cf:16:50:af:0f:ab: 63:30:95:81:f4:23:06:74:3b:5b:81:a5:18:b8:b9: 79:70:87:4d:15:60:04:8e:1d:c2:da:28:3c:ba:64: d0:f6:b5:b0:b2:7d:1a:6a:70:15:97:13:bc:ea:54: 04:f6:0b:f4:b0:6f:67:76:e0:f0:ef:0a:26:bd:67: a6:83:ce:20:5b:e6:00:51:e0:98:b6:90:22:93:fc: b5:1f:f3:e9:26:b2:9e:a1:15:74:80:4f:cb:87:d4: d9:86:f5:a3:0c:82:32:13:61:4c:77:5e:96:cb:7b: 41:72:78:2f:35:e1:1f:06:06:f3:cd:75:47:97:74: 63:53:7a:40:56:30:ff:2b:26:1e:1c:32:91:c9:e6: 99:19:36:5e:16:b1:66:49:d8:9a:07:b8:5f:5e:af: 6e:20:80:02:2a:83:a2:dc:27:b6:74:d5:8a:70:62: 51:f1:60:77:b1:bc:cc:ce:6b:87:96:8d:5f:7d:c1: 16:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:1B:43:6D:94:6E:CB:94:88:AA:BC:D9:99:83:71:FF:3B:59:20:44 X509v3 Authority Key Identifier: keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:e1:de:df:f6:59:bd:58:99:f6:34:83:8e:f7:35:7b:52:2b: 2b:02:c6:3b:71:03:33:08:c9:b2:c6:33:21:50:5e:a5:73:88: 14:57:0d:c4:ed:ab:7d:01:1e:58:96:de:a9:26:9d:34:2a:24: 22:4f:a5:0d:92:dd:ad:22:a3:8b:d7:bb:82:cc:da:4a:3d:88: 5f:fc:27:2d:c9:9c:28:c4:b0:a8:95:72:12:8a:74:1f:15:8a: 0d:e9:a1:4a:9a:66:3f:95:c0:3d:85:6e:4d:09:58:0f:38:76: 8b:bc:aa:a3:7b:6f:38:3a:9f:27:ed:ce:f9:96:0e:ed:3f:d5: 64:7a:8a:24:ca:c0:27:d1:39:d9:5c:6a:18:61:4b:19:43:af: 0e:4f:f3:f6:e3:e6:3b:2a:09:76:0f:24:68:94:b3:ff:36:58: 70:7c:cb:c3:69:19:e1:16:cf:9c:0a:c6:17:38:d6:0b:b2:25: 60:c8:1b:b6:63:b1:0a:1e:95:62:12:a4:11:89:08:64:01:7f: cc:1a:7b:ec:41:30:08:d8:e7:cb:18:bb:85:db:06:05:7f:3c: 33:cc:bd:f0:f0:f6:0c:a9:06:ad:aa:b9:ff:97:60:8a:6b:21: 21:d2:32:f3:b9:ad:07:89:26:fb:c9:a4:37:86:6b:ac:db:26: 82:53:65:93 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNj5qodsEzeGdjeDxi1k8MS9RsYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD RjlBNjQ3MzAeFw0yNTA4MDYwMDM2MjJaFw0yNTA4MDkwNDAzMjJaMDMxMTAvBgNV BAMTKEMzMUI0MzZEOTQ2RUNCOTQ4OEFBQkNEOTk5ODM3MUZGM0I1OTIwNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCytDkxDwHZe5Aa5ojNQM0YfXHP S2akK0RGTbMsDZ9ocG5r1I5i45+GZgbPvgbikFMyDZ+lmoT3NulrOToVswyn0TgV gc8WUK8Pq2MwlYH0IwZ0O1uBpRi4uXlwh00VYASOHcLaKDy6ZND2tbCyfRpqcBWX E7zqVAT2C/Swb2d24PDvCia9Z6aDziBb5gBR4Ji2kCKT/LUf8+kmsp6hFXSAT8uH 1NmG9aMMgjITYUx3XpbLe0FyeC814R8GBvPNdUeXdGNTekBWMP8rJh4cMpHJ5pkZ Nl4WsWZJ2JoHuF9er24ggAIqg6LcJ7Z01YpwYlHxYHexvMzOa4eWjV99wRZjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwxtDbZRuy5SIqrzZmYNx/ztZIEQwHwYDVR0j BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB NjQ3My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzE3ZWZkMmEtMDJhYi00MjAyLTk3 MGYtZjY5OWRmZjk3ZGU1LzAvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VE NTBDRjlBNjQ3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGjh3t/2Wb1YmfY0g473NXtSKysCxjtxAzMI ybLGMyFQXqVziBRXDcTtq30BHliW3qkmnTQqJCJPpQ2S3a0io4vXu4LM2ko9iF/8 Jy3JnCjEsKiVchKKdB8Vig3poUqaZj+VwD2Fbk0JWA84dou8qqN7bzg6nyftzvmW Du0/1WR6iiTKwCfROdlcahhhSxlDrw5P8/bj5jsqCXYPJGiUs/82WHB8y8NpGeEW z5wKxhc41guyJWDIG7ZjsQoelWISpBGJCGQBf8wae+xBMAjY58sYu4XbBgV/PDPM vfDw9gypBq2quf+XYIprISHSMvO5rQeJJvvJpDeGa6zbJoJTZZM= -----END CERTIFICATE-----Generated at Thu Aug 7 04:03:12 2025 by rpki-client