$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft File: 2985976A4B3081770748882703E16497964D05A6.mft (raw, json) Hash identifier: aqPJCCYB4zE3OcBtfR25oFIqziCy+ZOKrKp1Nc3Simk= Subject key identifier: E8:3C:9A:0E:00:75:04:C2:D3:2D:86:C5:78:CB:DA:F5:2D:CB:AA:D4 Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6 Certificate serial: 262654D0A930C9044644C2276D56CED590924F23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft Manifest number: 01E7 Signing time: Sun 10 Aug 2025 20:40:43 +0000 Manifest this update: Sun 10 Aug 2025 20:35:43 +0000 Manifest next update: Thu 14 Aug 2025 03:59:43 +0000 Files and hashes: 1: 323430333a38303a3a2f33322d3332203d3e20313334363233.roa (hash: 6DmXkqMFBwmOgmu7GrU8MAR3khWhl6gAoERCQcW2kCE=) 2: 3130332e3139372e39352e302f32342d3234203d3e20313334363233.roa (hash: h0i6o1md9zXeZ9ZcSa+PGKss268qYszF+iOxTtMdu4E=) 3: 3130332e3139372e39322e302f32342d3234203d3e20313334363233.roa (hash: s3jB5rGy3ygjsQ7KSNEtfVl4k8P8QCufhhtVBzaX2IQ=) 4: 3130332e3139372e39332e302f32342d3234203d3e20313334363233.roa (hash: RrW5I2lzLuA+7ZMS1LEMZMinrm7Ftg4PYDdGcwSGY08=) 5: 2985976A4B3081770748882703E16497964D05A6.crl (hash: kf+r7pHHBTyh1AWPfsMWuhd8hYytTXQiWX/IK2ToO+Q=) 6: 3130332e3139372e39342e302f32342d3234203d3e20313334363233.roa (hash: fbMC3foKpfnHAAX7CqNwv+8CUIBKmVdM4iWFdYY2w+c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:26:54:d0:a9:30:c9:04:46:44:c2:27:6d:56:ce:d5:90:92:4f:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985976A4B3081770748882703E16497964D05A6 Validity Not Before: Aug 10 20:35:43 2025 GMT Not After : Aug 14 03:59:43 2025 GMT Subject: CN=E83C9A0E007504C2D32D86C578CBDAF52DCBAAD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:62:a1:85:32:b8:03:ba:7e:37:48:80:22:be: 3a:a3:e6:35:93:48:d5:d6:c0:c9:af:56:f7:dd:e2: 75:00:0f:d1:6d:f7:97:d8:23:09:ae:7a:6c:c8:d9: 47:fa:53:7a:2b:f8:2c:fa:4a:7d:0d:9b:fb:7c:de: 0e:1f:a9:1e:c0:b5:79:e2:c8:41:83:da:91:d0:e8: 2f:c9:bb:76:77:f0:e7:df:c0:f1:e4:8e:35:c0:82: 37:52:dc:22:4f:d8:9c:73:b3:b5:9d:3f:0e:40:92: 5a:f9:97:80:b1:9d:5a:62:0a:83:d7:5b:22:82:75: c4:e8:f3:f6:a6:3a:4d:a2:f7:09:44:98:60:b0:db: 59:8c:63:89:4f:fa:27:31:7c:b4:96:8b:39:f7:c5: fa:20:ee:b6:60:dd:3b:6e:5e:55:95:01:46:bd:43: 03:d9:e3:ea:cc:4a:dd:81:86:f2:44:27:73:8f:75: ce:05:09:84:31:22:6f:fd:8d:a1:65:cb:f8:c0:aa: fa:cb:3a:46:b4:ac:8d:d6:2b:2b:35:27:1a:4b:79: e3:5b:79:80:28:ce:06:f9:f2:bc:26:75:96:b9:32: f6:26:93:11:68:65:e6:9d:99:6b:5c:4f:02:81:18: 25:c6:01:8a:51:73:55:94:03:19:2e:bd:ef:28:89: 27:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:3C:9A:0E:00:75:04:C2:D3:2D:86:C5:78:CB:DA:F5:2D:CB:AA:D4 X509v3 Authority Key Identifier: keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:fe:69:07:03:2f:29:ba:21:91:93:52:3c:74:9a:01:c1:05: 2c:5e:20:c5:84:a6:eb:c8:e3:1c:3c:16:75:7d:37:bc:a2:a6: 37:15:bb:7a:c9:aa:75:3f:13:51:bc:32:e6:5f:9a:07:15:20: eb:5f:e1:91:01:0b:d4:fd:4c:d6:9c:9f:46:ce:15:e7:2b:d8: 8c:32:10:c6:71:c4:cd:61:7e:50:6a:99:ce:1c:74:46:a1:91: 48:86:53:1d:96:08:01:47:5d:0e:74:ce:21:1a:0a:88:4a:72: aa:5b:48:01:cd:9b:57:8b:ab:a4:31:58:b5:19:b4:b5:a4:9b: c4:61:c6:be:b5:df:49:a1:8e:ec:fb:84:5e:15:8e:c3:c5:d3: 55:ad:10:db:4e:d6:5e:ce:0b:4f:5d:85:02:a8:bf:b5:25:a9: 09:bb:f5:57:b0:56:7f:01:b8:69:d1:6c:26:c7:6b:99:1f:20: fc:a7:0e:b7:6f:8b:06:b7:45:81:ae:63:7b:c9:d5:37:44:6c: 3d:0f:78:0f:b0:87:92:fc:d5:d6:02:1f:e3:01:03:54:69:02: cb:ce:8f:e0:7a:84:37:1e:dc:b8:92:89:4e:72:16:c8:3b:b9: 1d:5c:a5:6f:81:67:97:e3:2a:5e:a7:af:5b:09:de:2f:32:89: b4:3b:d6:d0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJiZU0KkwyQRGRMInbVbO1ZCSTyMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5 NjREMDVBNjAeFw0yNTA4MTAyMDM1NDNaFw0yNTA4MTQwMzU5NDNaMDMxMTAvBgNV BAMTKEU4M0M5QTBFMDA3NTA0QzJEMzJEODZDNTc4Q0JEQUY1MkRDQkFBRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtYqGFMrgDun43SIAivjqj5jWT SNXWwMmvVvfd4nUAD9Ft95fYIwmuemzI2Uf6U3or+Cz6Sn0Nm/t83g4fqR7AtXni yEGD2pHQ6C/Ju3Z38OffwPHkjjXAgjdS3CJP2Jxzs7WdPw5Aklr5l4CxnVpiCoPX WyKCdcTo8/amOk2i9wlEmGCw21mMY4lP+icxfLSWizn3xfog7rZg3TtuXlWVAUa9 QwPZ4+rMSt2BhvJEJ3OPdc4FCYQxIm/9jaFly/jAqvrLOka0rI3WKys1JxpLeeNb eYAozgb58rwmdZa5MvYmkxFoZeadmWtcTwKBGCXGAYpRc1WUAxkuve8oiSeNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6DyaDgB1BMLTLYbFeMva9S3LqtQwHwYDVR0j BBgwFoAUKYWXakswgXcHSIgnA+Fkl5ZNBaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZWQxMDBkZi0wNDQxLTQzODEtYTNmYS01ODdkYjllOWMyZjAvMC8yOTg1OTc2QTRC MzA4MTc3MDc0ODg4MjcwM0UxNjQ5Nzk2NEQwNUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5NjRE MDVBNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2VkMTAwZGYtMDQ0MS00MzgxLWEz ZmEtNTg3ZGI5ZTljMmYwLzAvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0 OTc5NjREMDVBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABz+aQcDLym6IZGTUjx0mgHBBSxeIMWEpuvI 4xw8FnV9N7yipjcVu3rJqnU/E1G8MuZfmgcVIOtf4ZEBC9T9TNacn0bOFecr2Iwy EMZxxM1hflBqmc4cdEahkUiGUx2WCAFHXQ50ziEaCohKcqpbSAHNm1eLq6QxWLUZ tLWkm8Rhxr6130mhjuz7hF4VjsPF01WtENtO1l7OC09dhQKov7UlqQm79VewVn8B uGnRbCbHa5kfIPynDrdviwa3RYGuY3vJ1TdEbD0PeA+wh5L81dYCH+MBA1RpAsvO j+B6hDce3LiSiU5yFsg7uR1cpW+BZ5fjKl6nr1sJ3i8yibQ71tA= -----END CERTIFICATE-----Generated at Wed Aug 13 02:42:14 2025 by rpki-client