$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft File: 2D0745D26E59440CB71FAFE996834493DA753248.mft (raw, json) Hash identifier: ILJrU1fL+4utzouijStLTI/Nf2eefCYXEBc/Uz/8rqs= Subject key identifier: CC:0F:65:82:B3:44:57:35:30:D2:1F:08:CB:51:99:CA:4D:F1:1D:D9 Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 62AAF993E380A57C70885FC583CC5C104EF55E6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft Manifest number: 01CA Signing time: Tue 05 Aug 2025 09:40:49 +0000 Manifest this update: Tue 05 Aug 2025 09:35:49 +0000 Manifest next update: Fri 08 Aug 2025 21:27:49 +0000 Files and hashes: 1: 2D0745D26E59440CB71FAFE996834493DA753248.crl (hash: hJRFAugX60tRZYImNbJmsOBN89Eu2jwpPcBG7SbZUW0=) 2: 3130332e37332e3135382e302f32342d3234203d3e203234343239.roa (hash: ujITe6uXtdvP5WOayQADk+Rg7asyYqwio86khyT1Nho=) 3: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (hash: nxYZnXzCnu/G6Di5JhS1WLXdlQHk8fuEdbh3UpU3Jf8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 21:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:aa:f9:93:e3:80:a5:7c:70:88:5f:c5:83:cc:5c:10:4e:f5:5e:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: Aug 5 09:35:49 2025 GMT Not After : Aug 8 21:27:49 2025 GMT Subject: CN=CC0F6582B344573530D21F08CB5199CA4DF11DD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:83:02:d8:da:75:af:80:e0:f9:c6:71:79:c0: 7f:df:a2:c4:5e:bc:cd:08:04:8c:3a:61:68:8b:48: 0e:8e:91:59:a5:d3:52:e4:46:84:12:e1:2b:75:d2: 36:56:d0:6e:79:2a:0c:d4:5c:3a:01:48:81:9e:c5: a9:48:55:56:9f:cc:9b:51:29:82:fc:01:7b:25:67: 14:9a:92:b9:db:71:f3:8a:43:74:18:93:51:fb:b2: 04:a4:80:93:f0:15:28:70:46:26:cf:8c:4f:3c:fc: 5e:89:df:1e:14:80:08:99:ef:b9:bc:3e:44:11:15: 03:23:d0:79:b9:20:47:73:15:31:0d:40:e5:35:25: 47:9a:8d:a1:7f:be:5c:ad:23:91:6d:87:a8:cd:68: 84:f9:23:a6:c9:61:e7:b1:a3:ea:66:f8:5f:61:c6: b6:27:6b:f5:9f:44:3e:7d:61:85:d3:44:01:1b:93: 17:5b:80:ab:d9:70:33:65:9c:13:c7:63:9c:1d:74: 5d:35:a4:85:20:16:38:41:7d:9b:80:a6:c5:09:f2: 68:08:f4:54:df:0c:ae:60:2f:d0:d0:13:aa:0b:3d: 62:95:2b:09:9e:d6:b0:48:da:c6:6f:a6:4f:36:86: 9b:05:82:75:92:5d:b1:f1:31:f4:7d:90:91:32:fb: db:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:0F:65:82:B3:44:57:35:30:D2:1F:08:CB:51:99:CA:4D:F1:1D:D9 X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:ba:f2:c0:fe:c8:68:22:7b:ab:fd:b6:1d:c4:79:c5:1a:c3: 9a:0a:df:3d:b0:33:69:a3:01:77:32:64:3a:75:6b:a1:58:6e: 34:51:c4:f8:29:a3:8e:0f:39:d7:92:9f:c7:89:71:d0:07:01: 4b:5e:38:03:9a:d8:d1:cc:62:fd:6c:bd:b3:69:ba:fc:67:24: ed:de:46:c4:18:49:88:d7:8f:f9:99:a5:44:c0:b8:fb:60:ed: c3:6b:f6:04:87:65:43:35:7e:61:c9:96:0a:84:6c:3b:70:13: 99:66:df:1f:34:f2:0e:72:36:60:78:a4:03:9b:4e:73:cb:87: ce:0b:71:75:ac:f2:d9:bc:38:bf:02:94:8e:36:0c:4b:a4:f3: f4:eb:21:15:fb:28:66:02:88:b4:85:b1:98:b9:0f:84:99:00: 5b:b4:9f:79:d5:b0:08:8b:c6:b3:b4:9d:f9:3b:0f:63:a6:1b: 86:f1:0a:28:fe:ca:94:2a:bc:41:b5:b3:a2:f6:7a:b8:02:16: 19:8d:0e:ca:e0:2d:48:cf:d6:9e:f0:c5:7a:12:78:b9:53:cb: 3d:14:87:24:7a:bf:12:57:1c:5a:ed:82:19:bc:45:51:28:00: 82:ab:10:2a:01:d0:6d:b9:7c:ba:8c:ff:8d:a1:70:48:6a:25: e5:fc:ad:43 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYqr5k+OApXxwiF/Fg8xcEE71Xm8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNTA4MDUwOTM1NDlaFw0yNTA4MDgyMTI3NDlaMDMxMTAvBgNV BAMTKENDMEY2NTgyQjM0NDU3MzUzMEQyMUYwOENCNTE5OUNBNERGMTFERDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3gwLY2nWvgOD5xnF5wH/fosRe vM0IBIw6YWiLSA6OkVml01LkRoQS4St10jZW0G55KgzUXDoBSIGexalIVVafzJtR KYL8AXslZxSakrnbcfOKQ3QYk1H7sgSkgJPwFShwRibPjE88/F6J3x4UgAiZ77m8 PkQRFQMj0Hm5IEdzFTENQOU1JUeajaF/vlytI5Fth6jNaIT5I6bJYeexo+pm+F9h xrYna/WfRD59YYXTRAEbkxdbgKvZcDNlnBPHY5wddF01pIUgFjhBfZuApsUJ8mgI 9FTfDK5gL9DQE6oLPWKVKwme1rBI2sZvpk82hpsFgnWSXbHxMfR9kJEy+9uXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzA9lgrNEVzUw0h8Iy1GZyk3xHdkwHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2E0MDZjZGItMTc5MS00NzhkLTlk MjgtOWUzN2E2ZjgwOWNjLzAvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0 OTNEQTc1MzI0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALi68sD+yGgie6v9th3EecUaw5oK3z2wM2mj AXcyZDp1a6FYbjRRxPgpo44POdeSn8eJcdAHAUteOAOa2NHMYv1svbNpuvxnJO3e RsQYSYjXj/mZpUTAuPtg7cNr9gSHZUM1fmHJlgqEbDtwE5lm3x808g5yNmB4pAOb TnPLh84LcXWs8tm8OL8ClI42DEuk8/TrIRX7KGYCiLSFsZi5D4SZAFu0n3nVsAiL xrO0nfk7D2OmG4bxCij+ypQqvEG1s6L2ergCFhmNDsrgLUjP1p7wxXoSeLlTyz0U hyR6vxJXHFrtghm8RVEoAIKrECoB0G25fLqM/42hcEhqJeX8rUM= -----END CERTIFICATE-----Generated at Thu Aug 7 00:30:30 2025 by rpki-client