$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: dv9gWQTXV615aVyI1nr2u1VI+udo9KhKOXULDf2Ej/0= Subject key identifier: 9D:FD:8C:E1:24:59:F8:E3:E6:4C:4F:9B:39:A6:6B:F6:E1:D9:EE:A7 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 568F2DA51AD67260A2C48C5B8B208E154BF0FC79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 0503 Signing time: Tue 05 Aug 2025 12:02:05 +0000 Manifest this update: Tue 05 Aug 2025 11:57:05 +0000 Manifest next update: Fri 08 Aug 2025 18:29:05 +0000 Files and hashes: 1: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: BilMX6PAfP77Q5Ze/r2bseAvAFYgHI4D9c4hoNAPY/0=) 2: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: LMlg0YtMMAZTGP6EzKXImD6a6ZjUtLMQ+VabkB5A5lc=) 3: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: 1cZaLW2bYSVuCFR3p6/QnCg+KIF2tEt9ZDlyjUYN2tI=) 4: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: 9pt7JLtOWMCBsJXp8H1J28V9N/OUvx5VflNai/uQZgc=) 5: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: bapqkW+U1q58vOIJAWB6XLNywwwE3ZW/OobIOO8rdqw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 18:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:8f:2d:a5:1a:d6:72:60:a2:c4:8c:5b:8b:20:8e:15:4b:f0:fc:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Aug 5 11:57:05 2025 GMT Not After : Aug 8 18:29:05 2025 GMT Subject: CN=9DFD8CE12459F8E3E64C4F9B39A66BF6E1D9EEA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2f:03:57:2d:17:b2:ce:8e:ac:49:a9:81:2b: 1b:fe:fa:4a:26:8d:95:c5:c8:41:6e:b5:b5:08:be: 80:84:90:e2:58:66:f8:b1:a3:2a:01:9f:39:98:48: 60:3c:79:6d:78:24:4f:24:f9:93:44:ec:2d:32:92: da:3c:de:d1:6c:66:80:6c:c4:4d:62:98:ee:93:83: 6a:76:b5:c9:c8:03:f9:4b:21:a1:a0:15:55:4a:ea: a8:6d:47:7a:77:e9:34:b6:f3:9b:48:9b:8e:c1:bb: b0:33:15:cc:f1:e6:95:3d:02:cc:27:20:8f:b1:91: 5b:f2:36:5e:e5:67:0f:67:46:c7:30:42:be:c1:d2: d3:cf:c4:cb:ca:32:53:b4:a8:b1:d3:6e:77:43:40: a6:06:98:f9:a1:89:b5:61:8b:04:72:de:12:db:bb: c9:87:d0:d4:1f:9d:a2:0c:5c:eb:a2:46:f5:86:6c: 83:76:2e:9c:68:d2:4f:a1:a0:a7:e7:55:63:dd:b0: c2:ef:eb:f1:91:10:1d:b3:e3:1d:84:32:ce:a2:a7: 69:51:66:94:f5:ca:18:70:b5:f0:d2:ed:fb:93:e1: 60:db:28:ba:ed:e7:95:ec:f8:9f:00:34:80:c7:57: c8:9a:a3:c7:08:05:9f:af:b6:c0:34:f7:89:59:d9: 2f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:FD:8C:E1:24:59:F8:E3:E6:4C:4F:9B:39:A6:6B:F6:E1:D9:EE:A7 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:9e:e6:80:52:e2:7d:7b:92:a5:c0:f6:7c:3c:42:b5:a7:c6: 19:f3:13:bb:28:86:58:62:f2:d9:39:2d:51:9c:6b:46:8b:69: 0f:92:8b:4b:89:19:ad:bb:40:27:39:6b:e8:c4:ea:8a:8c:bc: af:9d:2f:68:11:51:2a:b1:8d:7f:c1:11:fc:70:32:51:70:73: 68:e9:70:f9:9a:ee:16:1d:cf:c3:28:60:97:9e:95:12:0d:d8: f5:ec:6e:0d:16:5e:69:b3:f7:57:18:eb:a8:de:a6:09:c9:56: 9f:98:70:08:e7:55:e6:e1:0f:77:88:66:ff:53:78:8d:b0:a5: c4:8e:20:c2:e3:b2:37:89:f7:ef:ab:26:86:63:d0:39:14:36: 2b:4f:a4:46:c0:a0:5a:3e:20:42:22:8e:ac:68:04:ce:e6:fa: 27:da:71:5f:34:a2:47:03:b0:f8:e1:e5:c0:47:d7:b9:e0:fb: e3:1b:4e:b6:91:be:b5:29:8b:a5:5d:fc:42:c8:1c:d3:28:0c: de:8b:fe:13:3a:c3:68:c4:80:44:fe:0b:c5:c7:f6:c7:4c:07: e0:11:96:c2:9f:97:62:8d:da:20:9c:7f:1c:b8:ba:81:fc:a2: 9a:b7:f4:93:b5:a4:fb:0c:f6:ed:70:a3:98:66:f8:b0:70:e1: 3c:c8:e1:04 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVo8tpRrWcmCixIxbiyCOFUvw/HkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNTA4MDUxMTU3MDVaFw0yNTA4MDgxODI5MDVaMDMxMTAvBgNV BAMTKDlERkQ4Q0UxMjQ1OUY4RTNFNjRDNEY5QjM5QTY2QkY2RTFEOUVFQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6LwNXLReyzo6sSamBKxv++kom jZXFyEFutbUIvoCEkOJYZvixoyoBnzmYSGA8eW14JE8k+ZNE7C0ykto83tFsZoBs xE1imO6Tg2p2tcnIA/lLIaGgFVVK6qhtR3p36TS285tIm47Bu7AzFczx5pU9Aswn II+xkVvyNl7lZw9nRscwQr7B0tPPxMvKMlO0qLHTbndDQKYGmPmhibVhiwRy3hLb u8mH0NQfnaIMXOuiRvWGbIN2Lpxo0k+hoKfnVWPdsMLv6/GREB2z4x2EMs6ip2lR ZpT1yhhwtfDS7fuT4WDbKLrt55Xs+J8ANIDHV8iao8cIBZ+vtsA094lZ2S8tAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnf2M4SRZ+OPmTE+bOaZr9uHZ7qcwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABye5oBS4n17kqXA9nw8QrWnxhnzE7sohlhi 8tk5LVGca0aLaQ+Si0uJGa27QCc5a+jE6oqMvK+dL2gRUSqxjX/BEfxwMlFwc2jp cPma7hYdz8MoYJeelRIN2PXsbg0WXmmz91cY66jepgnJVp+YcAjnVebhD3eIZv9T eI2wpcSOIMLjsjeJ9++rJoZj0DkUNitPpEbAoFo+IEIijqxoBM7m+ifacV80okcD sPjh5cBH17ng++MbTraRvrUpi6Vd/ELIHNMoDN6L/hM6w2jEgET+C8XH9sdMB+AR lsKfl2KN2iCcfxy4uoH8opq39JO1pPsM9u1wo5hm+LBw4TzI4QQ= -----END CERTIFICATE-----Generated at Thu Aug 7 03:16:02 2025 by rpki-client