$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft File: 95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft (raw, json) Hash identifier: 3+YGA5A4dDGcsqdbCXdbygP8d0hZTq2upZt+v4PGWt4= Subject key identifier: D0:C2:70:09:40:C5:0D:2B:99:14:D7:E2:3D:1D:E3:A9:36:0D:C2:B8 Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Certificate serial: 119FB6A2ABEA34858624E6CCAB4E92BE8A575291 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft Manifest number: 0502 Signing time: Fri 08 Aug 2025 01:51:38 +0000 Manifest this update: Fri 08 Aug 2025 01:46:38 +0000 Manifest next update: Mon 11 Aug 2025 03:48:38 +0000 Files and hashes: 1: 323430343a666230303a3a2f33322d3332203d3e203538343734.roa (hash: T0GxcffUorQqKvKWvoQBmwT56g/pt1WC0GNCeIbnIXI=) 2: 3130332e32382e35372e302f32342d3234203d3e203538343734.roa (hash: RKuA2CS77/iBc1MhX2FD3Oj8MLTo/sw4r4vfbH4WpPI=) 3: 34332e3234382e3231322e302f32342d3234203d3e203538343734.roa (hash: lJiN/1jPk6sVzBu+b+dWtXwNwMFWgXWbUliAdUar1AU=) 4: 3130332e32382e35392e302f32342d3234203d3e203538343734.roa (hash: GggD4UAIQuJ2Ici9kI1FCxhBRH2erQ0+Zgb75d0bwAQ=) 5: 95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl (hash: C/Iq74vs2dnT+ZJDHPmIy/5gjdSPVsKjzjnEL9y0EgU=) 6: 34332e3234382e3231342e302f32342d3234203d3e203538343734.roa (hash: KABMcwwuj0PcVg0DF+2S7mT8pkOrI1Q8USpOkuuxMXI=) 7: 3130332e32382e35362e302f32342d3234203d3e203538343734.roa (hash: lS8odvouHADOZvGcEIZX6cESZX3v05ZwGGbLJRnmmPg=) 8: 34332e3234382e3231352e302f32342d3234203d3e203538343734.roa (hash: 2rfcy4tUpo7HgU2cGwZC6pQYZQAR7WSsi/1k28TkJlU=) 9: 3130332e32382e35382e302f32342d3234203d3e203538343734.roa (hash: SVVnOcpEzNW3GyvGQSrBzvX2ix4zPecYqTfJmTpW5Ek=) 10: 34332e3234382e3231332e302f32342d3234203d3e203538343734.roa (hash: I3OA1TXXrn7Ho4Bbdaoik2HHmIJMRdT3vdvqOadCgWc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 03:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:9f:b6:a2:ab:ea:34:85:86:24:e6:cc:ab:4e:92:be:8a:57:52:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Validity Not Before: Aug 8 01:46:38 2025 GMT Not After : Aug 11 03:48:38 2025 GMT Subject: CN=D0C2700940C50D2B9914D7E23D1DE3A9360DC2B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2c:b1:2e:3c:e2:f2:06:35:15:d1:cd:5d:66: 95:c4:72:fe:58:84:0f:3a:71:08:e8:5f:6a:d5:df: 7e:53:55:cb:e2:60:b5:09:b7:58:ce:b2:5e:aa:f9: 38:5a:4b:f1:bc:16:53:a0:b0:84:51:1b:ca:56:67: 43:89:cf:8c:5d:42:d7:93:de:e6:d5:fc:ca:59:03: d6:24:c6:da:65:8f:3d:de:ef:0c:96:03:a4:54:14: 0f:85:81:c5:f8:d4:60:a4:23:47:13:23:09:35:b0: 97:e9:02:ee:09:27:d9:ca:8b:97:9f:91:ad:8f:ef: ca:62:3d:22:45:1f:ac:55:06:6a:46:d6:8d:88:c9: 9b:3f:fd:8a:60:02:34:71:8e:15:e8:79:31:59:08: 10:8a:b1:73:6b:82:f3:65:f7:72:08:a4:3e:1a:c2: 36:5f:bb:f3:33:4b:68:dd:03:04:99:87:71:90:cc: 49:c6:ed:53:6f:78:ad:79:ce:b8:cb:05:67:31:c2: 5a:68:6b:19:c0:20:41:c1:ba:15:ef:3c:4c:82:01: ab:5a:a6:c9:9f:86:e6:2f:81:c7:ee:69:72:fa:08: ae:fc:ff:ab:97:55:f5:c6:64:12:3b:de:be:e5:ba: 28:3e:d9:97:6d:b3:bf:7c:72:24:1f:58:6e:65:db: b2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C2:70:09:40:C5:0D:2B:99:14:D7:E2:3D:1D:E3:A9:36:0D:C2:B8 X509v3 Authority Key Identifier: keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:80:82:93:15:6d:90:b0:ae:82:a4:12:52:05:44:55:77:b3: e3:31:cb:23:50:f3:38:24:3c:b1:bf:7f:6a:e7:27:7b:4d:07: 41:1b:ad:ca:a4:2d:1c:f1:77:68:a5:9e:f4:ed:f7:5f:e7:26: c4:0d:d3:96:fa:e6:b2:2d:c1:2b:7b:ff:b8:56:2a:10:47:25: 62:f3:eb:d8:7c:ed:18:c5:1d:89:99:c7:b1:39:b3:5b:22:53: c0:05:6b:fc:c8:78:1f:3c:a6:48:3f:c0:91:ff:80:14:f2:ef: c5:ad:06:d0:3e:b2:53:f3:f6:06:7d:4a:43:2f:7c:af:97:38: 55:53:32:15:5f:91:8f:a3:3a:81:60:40:8e:68:c4:6c:04:88: 74:69:cf:2c:75:38:9b:91:34:01:3a:2b:28:07:0d:0a:25:a2: 22:76:f0:53:ae:6c:f1:ad:a8:69:90:69:41:75:cc:91:05:02: c3:a5:20:7b:c5:c4:c5:2d:96:9e:34:2a:40:7e:e7:f9:9c:4d: 23:cd:b9:81:90:6e:fa:17:c6:01:c4:c2:c7:c5:82:70:35:8c: a1:33:b8:4f:1b:de:e7:b7:48:be:af:0a:6d:29:3a:a7:89:bf: 9b:76:55:ac:50:41:e4:95:8f:32:90:8a:5e:ff:f4:41:21:14: 27:15:c0:d6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEZ+2oqvqNIWGJObMq06SvopXUpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQz REEyRjA5ODAeFw0yNTA4MDgwMTQ2MzhaFw0yNTA4MTEwMzQ4MzhaMDMxMTAvBgNV BAMTKEQwQzI3MDA5NDBDNTBEMkI5OTE0RDdFMjNEMURFM0E5MzYwREMyQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBLLEuPOLyBjUV0c1dZpXEcv5Y hA86cQjoX2rV335TVcviYLUJt1jOsl6q+ThaS/G8FlOgsIRRG8pWZ0OJz4xdQteT 3ubV/MpZA9Ykxtpljz3e7wyWA6RUFA+FgcX41GCkI0cTIwk1sJfpAu4JJ9nKi5ef ka2P78piPSJFH6xVBmpG1o2IyZs//YpgAjRxjhXoeTFZCBCKsXNrgvNl93IIpD4a wjZfu/MzS2jdAwSZh3GQzEnG7VNveK15zrjLBWcxwlpoaxnAIEHBuhXvPEyCAata psmfhuYvgcfuaXL6CK78/6uXVfXGZBI73r7luig+2Zdts798ciQfWG5l27KfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0MJwCUDFDSuZFNfiPR3jqTYNwrgwHwYDVR0j BBgwFoAUlfxgcqSmkKYaC18Us2iCtD2i8JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzA1MTc3YS1hNTAwLTQ5OTYtYjNmZi03MGMxNDRlZGZlY2UvMC85NUZDNjA3MkE0 QTY5MEE2MUEwQjVGMTRCMzY4ODJCNDNEQTJGMDk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQzREEy RjA5OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzMwNTE3N2EtYTUwMC00OTk2LWIz ZmYtNzBjMTQ0ZWRmZWNlLzAvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgy QjQzREEyRjA5OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFWAgpMVbZCwroKkElIFRFV3s+MxyyNQ8zgk PLG/f2rnJ3tNB0EbrcqkLRzxd2ilnvTt91/nJsQN05b65rItwSt7/7hWKhBHJWLz 69h87RjFHYmZx7E5s1siU8AFa/zIeB88pkg/wJH/gBTy78WtBtA+slPz9gZ9SkMv fK+XOFVTMhVfkY+jOoFgQI5oxGwEiHRpzyx1OJuRNAE6KygHDQoloiJ28FOubPGt qGmQaUF1zJEFAsOlIHvFxMUtlp40KkB+5/mcTSPNuYGQbvoXxgHEwsfFgnA1jKEz uE8b3ue3SL6vCm0pOqeJv5t2VaxQQeSVjzKQil7/9EEhFCcVwNY= -----END CERTIFICATE-----Generated at Sat Aug 9 02:58:56 2025 by rpki-client