$ rpki-client -vvf repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft File: 458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft (raw, json) Hash identifier: ytAVWYt0EF0JME6RdMYZ07zHGObDzDY9oLBZotVsVBc= Subject key identifier: EE:E1:71:63:9B:2D:91:0D:9A:7F:B6:9A:18:6C:F5:EE:F2:A2:BC:69 Authority key identifier: 45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33 Certificate issuer: /CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33 Certificate serial: 62A068AD696A9A57CF41589F5A3B2661AF88438D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft Manifest number: 01D9 Signing time: Mon 04 Aug 2025 18:21:34 +0000 Manifest this update: Mon 04 Aug 2025 18:16:34 +0000 Manifest next update: Fri 08 Aug 2025 03:00:34 +0000 Files and hashes: 1: 3130332e3139312e35342e302f32342d3234203d3e20313439393133.roa (hash: PlUQuGrph6ozxAfOZbVVs0CGGRj4aYxErmFtS7Skvdg=) 2: 458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl (hash: ZtOOyafVRy5eVt0ncjqWvB38NQdfUAtgKwatKikzGOU=) 3: 3130332e3139312e35352e302f32342d3234203d3e20313439393133.roa (hash: TPt0MPhRlnRnEy6pwXTYSOfvzf7c+OznSicdCAsldBc=) 4: 323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa (hash: K39jn2y2K6bT6WSylU024emK2v2goVGb5peC7he2S4U=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 03:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:a0:68:ad:69:6a:9a:57:cf:41:58:9f:5a:3b:26:61:af:88:43:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33 Validity Not Before: Aug 4 18:16:34 2025 GMT Not After : Aug 8 03:00:34 2025 GMT Subject: CN=EEE171639B2D910D9A7FB69A186CF5EEF2A2BC69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6f:d1:b3:d9:3c:20:fb:45:01:bf:7b:44:68: d5:36:25:6d:8f:40:5b:05:fd:08:58:4f:68:c6:20: a3:fb:d1:df:52:b9:6d:d3:eb:dc:7e:96:c2:cd:aa: 81:37:21:de:3f:cd:bc:06:ed:aa:a6:0b:2c:66:7f: 08:b4:7f:24:a2:26:39:55:9a:3a:fa:2e:06:91:5b: 21:e3:86:41:c2:08:eb:07:2c:15:a4:cc:3a:f9:fa: 7b:c0:4f:c8:3c:77:eb:57:de:c6:9d:a6:fa:46:95: 07:fe:28:f0:64:0e:1f:a1:4b:31:8a:65:4c:b9:04: 8c:7a:6c:1b:aa:88:56:1c:e8:6b:f6:95:7b:7b:31: a1:d5:5f:7e:19:d7:09:03:9c:ef:73:b6:92:a2:4f: d4:80:0f:73:2d:d1:59:cb:4e:38:72:8a:01:64:0a: 4d:5e:59:1d:80:be:62:e7:54:d0:e7:b3:14:21:3f: 2f:be:0b:de:f8:11:2e:ac:b8:87:bc:7c:8c:80:8f: 67:56:d2:b2:99:87:36:25:ad:e0:c7:e1:e5:81:07: 56:21:7b:b4:44:ab:d1:24:2f:ca:63:6f:b3:ec:27: 25:e3:56:b8:43:67:91:28:bc:fe:02:8e:a1:7e:70: 62:fa:11:de:79:45:70:46:e2:db:5f:09:c4:6a:e6: fa:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:E1:71:63:9B:2D:91:0D:9A:7F:B6:9A:18:6C:F5:EE:F2:A2:BC:69 X509v3 Authority Key Identifier: keyid:45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:96:0d:66:2d:1f:0e:db:80:1e:4e:79:08:1c:b8:63:9d:41: 21:55:8c:fc:19:7e:44:96:11:b3:37:2e:2d:a3:1f:74:c7:34: 25:87:71:fc:2f:08:4b:59:51:cd:87:d8:93:28:fb:30:1b:45: 0e:dd:b1:6e:3e:c7:62:ac:7e:42:36:5b:46:fc:da:28:fb:6f: ff:81:04:73:ff:dd:4e:39:ea:33:73:c9:c1:68:84:ea:4a:e5: 9a:8e:9d:6d:75:74:2b:9c:a5:b6:e2:fe:38:a7:11:07:4b:55: 72:ab:72:91:d5:c5:44:00:a8:49:69:c0:cd:f3:60:9c:fe:bf: 28:78:d3:f6:9d:d3:e6:28:78:3a:59:31:44:70:fb:8e:b7:d9: 69:80:51:68:31:11:21:f0:43:be:69:c7:74:f8:80:98:55:39: d6:2c:98:d9:6e:23:b1:4f:5b:f9:e5:e9:af:f7:4f:67:15:b1: 1b:d3:71:39:cd:1b:4d:a1:e9:e9:bf:04:0f:c2:10:fe:8b:77: d4:be:d1:b5:49:26:de:5d:be:c0:25:e5:de:de:7e:8c:a3:6b: db:fa:d6:a0:0b:22:cc:c9:d3:06:ca:41:dd:f7:bc:c8:61:e7: 68:4d:2a:d6:42:18:f5:f1:65:ea:09:fc:88:02:fd:e7:dd:c7: 6d:bf:e7:53 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYqBorWlqmlfPQVifWjsmYa+IQ40wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIzRTJC RTBERkQzMzAeFw0yNTA4MDQxODE2MzRaFw0yNTA4MDgwMzAwMzRaMDMxMTAvBgNV BAMTKEVFRTE3MTYzOUIyRDkxMEQ5QTdGQjY5QTE4NkNGNUVFRjJBMkJDNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5b9Gz2Twg+0UBv3tEaNU2JW2P QFsF/QhYT2jGIKP70d9SuW3T69x+lsLNqoE3Id4/zbwG7aqmCyxmfwi0fySiJjlV mjr6LgaRWyHjhkHCCOsHLBWkzDr5+nvAT8g8d+tX3sadpvpGlQf+KPBkDh+hSzGK ZUy5BIx6bBuqiFYc6Gv2lXt7MaHVX34Z1wkDnO9ztpKiT9SAD3Mt0VnLTjhyigFk Ck1eWR2AvmLnVNDnsxQhPy++C974ES6suIe8fIyAj2dW0rKZhzYlreDH4eWBB1Yh e7REq9EkL8pjb7PsJyXjVrhDZ5EovP4CjqF+cGL6Ed55RXBG4ttfCcRq5vq7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7uFxY5stkQ2af7aaGGz17vKivGkwHwYDVR0j BBgwFoAURY2aK0wi/1AWri4kcp0j4r4N/TMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODZkNmJhMS0xZjczLTQ3NzYtOGE2YS00ZjQ1MTIwNzkyYjEvMC80NThEOUEyQjRD MjJGRjUwMTZBRTJFMjQ3MjlEMjNFMkJFMERGRDMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIzRTJCRTBE RkQzMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzg2ZDZiYTEtMWY3My00Nzc2LThh NmEtNGY0NTEyMDc5MmIxLzAvNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIz RTJCRTBERkQzMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALiWDWYtHw7bgB5OeQgcuGOdQSFVjPwZfkSW EbM3Li2jH3THNCWHcfwvCEtZUc2H2JMo+zAbRQ7dsW4+x2KsfkI2W0b82ij7b/+B BHP/3U456jNzycFohOpK5ZqOnW11dCucpbbi/jinEQdLVXKrcpHVxUQAqElpwM3z YJz+vyh40/ad0+YoeDpZMURw+4632WmAUWgxESHwQ75px3T4gJhVOdYsmNluI7FP W/nl6a/3T2cVsRvTcTnNG02h6em/BA/CEP6Ld9S+0bVJJt5dvsAl5d7efoyja9v6 1qALIszJ0wbKQd33vMhh52hNKtZCGPXxZeoJ/IgC/efdx22/51M= -----END CERTIFICATE-----Generated at Thu Aug 7 00:26:02 2025 by rpki-client