$ rpki-client -vvf repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft File: C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft (raw, json) Hash identifier: dfTvpmBcnwcr4bTbooR4K+4A8l/8wfUW9d1wbFqD5gc= Subject key identifier: EC:62:EC:C6:E2:D3:35:5E:FF:EB:0F:E4:EC:A9:A3:94:9F:09:D0:67 Authority key identifier: C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 Certificate issuer: /CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Certificate serial: 7E620C5DAF84302B8C7363C1088A30FD945B8459 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject info access: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft Manifest number: ED Signing time: Wed 06 Aug 2025 21:00:50 +0000 Manifest this update: Wed 06 Aug 2025 20:55:50 +0000 Manifest next update: Sat 09 Aug 2025 22:32:50 +0000 Files and hashes: 1: 3230332e3134352e35392e302f32342d3234203d3e20313432333735.roa (hash: XQ5YOO3QMAmUiXXyDyAvfXAeHqliwoa7oF/Rg8qefuw=) 2: 3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa (hash: lPAaUMCnmORN0lcIkL1SdTQ//TRobbXWIgBrv9ai9Yc=) 3: C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl (hash: q7yuAhF56XvloYiexf7V7KHUqTeInUhxErR4WKKc3AI=) 4: 3230332e3134352e35382e302f32342d3234203d3e20313432333735.roa (hash: bBnfqhprKZxO7GNHi6JFSi7ubIWOVMTy7/ydlUAr+qE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 22:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:62:0c:5d:af:84:30:2b:8c:73:63:c1:08:8a:30:fd:94:5b:84:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Validity Not Before: Aug 6 20:55:50 2025 GMT Not After : Aug 9 22:32:50 2025 GMT Subject: CN=EC62ECC6E2D3355EFFEB0FE4ECA9A3949F09D067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:74:cd:cc:af:ac:84:48:2c:63:b5:bd:6a:28: 29:f3:89:50:ec:11:31:c4:fe:66:e6:ca:dd:43:bc: 2e:89:f7:b4:b0:86:01:f1:71:de:d2:74:3b:9a:a3: f9:f4:c5:5c:bf:7a:67:b5:e7:5a:e4:66:fa:a0:38: 27:f0:96:fe:c4:16:42:b0:53:dd:e6:22:5b:0e:47: 8d:22:f5:05:fa:36:77:b8:a0:7e:7c:20:7c:33:e7: c3:a5:b8:d8:c7:8e:1b:40:cd:e8:c9:f0:cf:37:95: 4b:5e:ea:f0:e3:dd:7e:76:11:c5:53:e0:f3:a9:10: c5:10:f6:34:8e:68:35:01:44:44:bd:50:8e:6f:33: 7d:95:f6:62:f9:bf:77:77:fe:7d:e9:63:4c:ec:16: 6d:1a:28:20:0d:24:a3:8a:0b:c0:61:67:57:bd:11: a1:d8:f7:47:b7:00:7c:87:fe:d0:fb:99:42:a5:81: 2b:6b:10:01:10:a0:ee:4d:51:bb:41:af:2b:e2:40: 12:54:3c:26:8b:4b:f6:2f:b5:27:bc:1f:96:0d:8e: e7:d7:38:52:0b:d6:fe:72:8e:79:67:32:d3:7b:b8: e5:40:18:6e:91:3d:c9:a6:15:91:fd:db:3c:5d:1e: 47:fa:0b:58:4d:af:40:bd:c8:0e:67:b8:e0:ce:f6: 8d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:62:EC:C6:E2:D3:35:5E:FF:EB:0F:E4:EC:A9:A3:94:9F:09:D0:67 X509v3 Authority Key Identifier: keyid:C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:de:d5:ba:d1:d8:b3:d1:29:80:a2:62:70:e4:ff:9f:9d:10: 5c:58:a7:68:53:70:e0:6b:bd:11:b1:6f:c7:e4:b6:27:f4:7c: 17:e9:8c:59:43:1b:0b:62:e0:ba:c3:fa:d9:8a:0b:ab:2a:29: 3b:ad:d1:10:ee:1a:0c:57:c2:6b:6f:ea:51:60:c0:50:67:af: 22:4c:76:46:7f:8f:36:f2:6f:6f:94:26:69:57:2d:8e:0f:dc: c7:83:d8:1e:50:58:5e:10:01:4d:dd:72:20:06:2e:c3:20:9e: 09:fc:3a:8c:04:7b:95:fa:32:17:c5:2c:1d:32:b6:27:48:b0: 8e:78:79:47:ee:79:e8:dc:89:90:b3:be:d7:a4:25:bd:bb:9a: 03:e8:01:c2:76:7d:39:6d:e5:86:09:09:26:4c:b9:98:0e:2f: 92:c5:78:28:8a:1e:de:b0:b0:c6:4c:05:cd:ae:d0:cb:15:44: 17:ba:a3:99:6c:40:ab:80:0c:e9:05:71:25:b3:97:63:33:14: c2:42:72:49:67:43:d5:71:5e:e3:c8:e7:aa:f8:74:05:02:d8: 3b:50:03:ea:b7:2d:94:e2:a9:d5:e9:87:8d:07:aa:9e:06:3a: 18:9f:a4:63:69:53:b3:e4:8b:af:d0:e2:5b:c9:a0:30:69:73: 39:c0:22:66 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfmIMXa+EMCuMc2PBCIow/ZRbhFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFC NTMwNjMzNjAeFw0yNTA4MDYyMDU1NTBaFw0yNTA4MDkyMjMyNTBaMDMxMTAvBgNV BAMTKEVDNjJFQ0M2RTJEMzM1NUVGRkVCMEZFNEVDQTlBMzk0OUYwOUQwNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXdM3Mr6yESCxjtb1qKCnziVDs ETHE/mbmyt1DvC6J97SwhgHxcd7SdDuao/n0xVy/eme151rkZvqgOCfwlv7EFkKw U93mIlsOR40i9QX6Nne4oH58IHwz58OluNjHjhtAzejJ8M83lUte6vDj3X52EcVT 4POpEMUQ9jSOaDUBRES9UI5vM32V9mL5v3d3/n3pY0zsFm0aKCANJKOKC8BhZ1e9 EaHY90e3AHyH/tD7mUKlgStrEAEQoO5NUbtBryviQBJUPCaLS/YvtSe8H5YNjufX OFIL1v5yjnlnMtN7uOVAGG6RPcmmFZH92zxdHkf6C1hNr0C9yA5nuODO9o1PAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7GLsxuLTNV7/6w/k7KmjlJ8J0GcwHwYDVR0j BBgwFoAUwvlWsSaIS179jdrc6w4z4bUwYzYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NmFhM2JlYi01NzYxLTRjMzQtODhkMy0wMTVjY2M2NDAwMmYvMC9DMkY5NTZCMTI2 ODg0QjVFRkQ4RERBRENFQjBFMzNFMUI1MzA2MzM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFCNTMw NjMzNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzZhYTNiZWItNTc2MS00YzM0LTg4 ZDMtMDE1Y2NjNjQwMDJmLzAvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMz RTFCNTMwNjMzNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAL3e1brR2LPRKYCiYnDk/5+dEFxYp2hTcOBr vRGxb8fktif0fBfpjFlDGwti4LrD+tmKC6sqKTut0RDuGgxXwmtv6lFgwFBnryJM dkZ/jzbyb2+UJmlXLY4P3MeD2B5QWF4QAU3dciAGLsMgngn8OowEe5X6MhfFLB0y tidIsI54eUfueejciZCzvtekJb27mgPoAcJ2fTlt5YYJCSZMuZgOL5LFeCiKHt6w sMZMBc2u0MsVRBe6o5lsQKuADOkFcSWzl2MzFMJCcklnQ9VxXuPI56r4dAUC2DtQ A+q3LZTiqdXph40Hqp4GOhifpGNpU7Pki6/Q4lvJoDBpcznAImY= -----END CERTIFICATE-----Generated at Thu Aug 7 03:20:10 2025 by rpki-client