$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft File: 024ABFF2959A6144CC4889C70F77F968FA410EF1.mft (raw, json) Hash identifier: 3KAcmaYiqjESVj36sHratueDRzf4kJFEm8z88AlKFuQ= Subject key identifier: DC:05:90:2C:C3:78:FE:8A:D3:7F:C8:97:A4:1A:FD:65:9E:2A:E6:87 Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 40917AA82D161C8FFA3ECFD84E185BD824232DA2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft Manifest number: 02B5 Signing time: Mon 04 Aug 2025 22:11:13 +0000 Manifest this update: Mon 04 Aug 2025 22:06:13 +0000 Manifest next update: Fri 08 Aug 2025 04:10:13 +0000 Files and hashes: 1: 3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa (hash: aay9Jvclfs8gBm7idaaHHT8mQr3TT32/vrVHbT4o17k=) 2: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (hash: ZcflU18QHaOG0H5AVVuZs+fe6ZIRvg4OT/QSDZzqWpk=) 3: 024ABFF2959A6144CC4889C70F77F968FA410EF1.crl (hash: eaHniarmDEqVAwN6DXyqWo265SYcOwNo2fP67qkS9os=) 4: 3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa (hash: G2juGB6eftwsC+fsnzguy++P5zlF0bkzL2c8r+kWKkI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 04:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:91:7a:a8:2d:16:1c:8f:fa:3e:cf:d8:4e:18:5b:d8:24:23:2d:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Aug 4 22:06:13 2025 GMT Not After : Aug 8 04:10:13 2025 GMT Subject: CN=DC05902CC378FE8AD37FC897A41AFD659E2AE687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:da:41:1a:1f:8d:cd:67:71:63:e5:bc:5c:40: 89:bd:1b:01:57:27:36:0f:e4:7a:b1:90:88:ef:d7: 1c:05:84:e8:03:e0:83:ad:73:1e:12:17:10:e1:b8: ea:30:32:5c:95:c6:75:1e:21:ef:c8:0b:64:ed:09: fe:c4:95:42:29:06:12:66:97:36:32:ed:ea:b5:65: de:88:e9:8e:45:f0:d4:fc:ca:57:bd:04:68:39:e9: 62:32:f7:77:0f:5d:03:7c:8d:62:fd:f1:9d:fa:4b: fa:2b:5c:64:ba:89:19:75:3b:49:6d:a5:0e:d7:d9: 33:b0:10:1c:ba:55:ae:b2:ce:de:a5:ee:83:ef:97: 34:e6:f7:69:84:d0:65:29:fc:6a:06:e6:56:8e:9c: 6d:34:cb:24:35:92:50:de:a6:af:82:be:09:59:f0: 97:5b:25:d5:d9:a7:2a:71:78:72:7b:c4:df:e7:55: 3c:fb:23:15:1f:62:fe:a8:ca:74:99:c0:a0:fc:f5: 16:ff:0e:b8:e0:c5:8d:0c:9f:d4:33:51:dd:6d:a2: 27:f1:6c:57:63:27:d0:75:dc:e4:06:5f:89:31:89: be:dc:d5:a9:6d:0b:11:d5:4d:05:f6:8f:35:14:19: 7a:3f:e0:3a:08:cd:74:ff:c5:29:79:19:be:c9:2b: e7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:05:90:2C:C3:78:FE:8A:D3:7F:C8:97:A4:1A:FD:65:9E:2A:E6:87 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:ce:4a:94:25:4c:7d:65:53:ad:36:70:9a:45:aa:de:32:6e: 8a:a9:56:50:4b:70:3e:9a:03:43:9c:42:e4:55:2a:fa:68:48: b8:ed:64:f9:49:d8:9d:23:74:77:51:0a:d0:08:87:c1:4e:3d: 00:c1:fd:f6:a5:18:88:0d:b2:df:50:d5:44:2c:90:b1:72:e5: 18:43:f9:ee:2d:7b:b8:fe:72:67:e1:54:06:dc:19:79:56:ae: 60:ab:8c:46:59:06:86:6f:8c:77:c3:12:88:5d:9d:ad:3f:49: b7:82:5f:f0:99:22:47:c8:1a:60:a4:c7:e1:ab:aa:61:12:61: 82:fa:04:81:94:9c:29:da:19:54:fb:4d:c5:dd:40:37:3a:51: 6d:05:50:f3:30:52:99:e9:e3:3a:e6:ba:4c:e7:31:d3:3d:f8: 10:33:9d:81:c8:bd:f4:8a:66:41:f4:9a:7f:17:a4:4c:82:4e: f0:94:74:e4:d0:39:0b:9e:c9:df:1f:ab:51:0b:9a:eb:b3:99: 9b:c8:ca:12:bb:3a:cb:7f:b8:6d:a6:e3:15:6b:47:5a:d0:d0: 69:e4:9f:3d:61:cb:8f:13:a9:dc:46:0e:b7:4a:18:ff:75:d2: 6f:28:a5:01:77:c3:b5:85:2d:c0:d0:22:f6:3c:2f:ca:98:f0: af:e4:46:da -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQJF6qC0WHI/6Ps/YThhb2CQjLaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNTA4MDQyMjA2MTNaFw0yNTA4MDgwNDEwMTNaMDMxMTAvBgNV BAMTKERDMDU5MDJDQzM3OEZFOEFEMzdGQzg5N0E0MUFGRDY1OUUyQUU2ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg2kEaH43NZ3Fj5bxcQIm9GwFX JzYP5HqxkIjv1xwFhOgD4IOtcx4SFxDhuOowMlyVxnUeIe/IC2TtCf7ElUIpBhJm lzYy7eq1Zd6I6Y5F8NT8yle9BGg56WIy93cPXQN8jWL98Z36S/orXGS6iRl1O0lt pQ7X2TOwEBy6Va6yzt6l7oPvlzTm92mE0GUp/GoG5laOnG00yyQ1klDepq+CvglZ 8JdbJdXZpypxeHJ7xN/nVTz7IxUfYv6oynSZwKD89Rb/DrjgxY0Mn9QzUd1toifx bFdjJ9B13OQGX4kxib7c1altCxHVTQX2jzUUGXo/4DoIzXT/xSl5Gb7JK+cZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3AWQLMN4/orTf8iXpBr9ZZ4q5ocwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDMxYTk0MjYtM2MzNS00NzBlLWJm MzQtMzBlN2U0MTYwMmNiLzAvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5 NjhGQTQxMEVGMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAfOSpQlTH1lU602cJpFqt4yboqpVlBLcD6a A0OcQuRVKvpoSLjtZPlJ2J0jdHdRCtAIh8FOPQDB/falGIgNst9Q1UQskLFy5RhD +e4te7j+cmfhVAbcGXlWrmCrjEZZBoZvjHfDEohdna0/SbeCX/CZIkfIGmCkx+Gr qmESYYL6BIGUnCnaGVT7TcXdQDc6UW0FUPMwUpnp4zrmukznMdM9+BAznYHIvfSK ZkH0mn8XpEyCTvCUdOTQOQueyd8fq1ELmuuzmZvIyhK7Ost/uG2m4xVrR1rQ0Gnk nz1hy48TqdxGDrdKGP910m8opQF3w7WFLcDQIvY8L8qY8K/kRto= -----END CERTIFICATE-----Generated at Thu Aug 7 03:29:47 2025 by rpki-client