$ rpki-client -vvf repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft File: 3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft (raw, json) Hash identifier: 1NR73G2AS57rl4btk9JT5sVKTqitWSV7t6hcsUvwwZs= Subject key identifier: 89:23:14:7B:94:97:6D:98:86:FF:0B:C6:53:45:74:25:2B:C6:F9:06 Authority key identifier: 3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F Certificate issuer: /CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Certificate serial: 2BF16FC75375B76D5CDB9F4B1A3159D263803732 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft Manifest number: 01D7 Signing time: Wed 06 Aug 2025 23:00:54 +0000 Manifest this update: Wed 06 Aug 2025 22:55:54 +0000 Manifest next update: Sun 10 Aug 2025 01:28:54 +0000 Files and hashes: 1: 3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl (hash: zWeMwdq2w4WVKj960Hzwlbnl1RmoetcpDmjWw9aPD+c=) 2: 3130332e31302e3235332e302f32342d3234203d3e203536323539.roa (hash: HvzvMBj5qU+NExWSjTWqrdpmvH/WBtBrlcSKkhbhERc=) 3: 3130332e32382e3136332e302f32342d3234203d3e203536323539.roa (hash: NAFqFIaSAImXyE9eWh33YjJ4/n4BJqvDNhOBlZ2+l28=) 4: 3130332e36352e39362e302f32332d3234203d3e203536323539.roa (hash: GJQ3NUFsB2nVnSk1uRZagjtzrc7ng31cjwY1HHOp2FQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 01:28:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:f1:6f:c7:53:75:b7:6d:5c:db:9f:4b:1a:31:59:d2:63:80:37:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Validity Not Before: Aug 6 22:55:54 2025 GMT Not After : Aug 10 01:28:54 2025 GMT Subject: CN=8923147B94976D9886FF0BC6534574252BC6F906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b7:a4:66:d9:68:a7:1c:d9:27:26:73:fd:bb: ef:25:ae:af:3c:64:22:ea:d6:f1:ec:92:9d:73:73: 60:80:57:09:64:e8:12:03:97:3f:91:3d:28:cb:6e: 22:97:fb:7a:69:7f:cd:f6:dc:7c:c9:17:ce:fa:9e: 00:93:03:ad:1d:b9:b7:43:4a:88:de:e1:ed:b1:f4: f2:d5:e1:92:f0:58:5e:5b:5d:f8:a5:5b:5d:02:ea: 5a:bf:e1:37:ba:fd:eb:4f:0e:e4:d0:5d:6f:38:1f: d1:aa:1a:dd:3c:fb:e5:6b:d2:3f:41:1d:a5:93:95: 60:fa:ea:84:31:aa:e8:d4:a4:27:c0:d3:09:49:1a: c9:ed:b4:45:f9:93:0d:88:87:99:53:9d:53:31:01: df:4a:37:ba:dd:0c:21:a2:1d:3b:9a:63:63:6e:f4: de:ad:b1:59:21:24:6b:2a:5d:f8:2b:cd:95:b0:8f: 86:4d:db:d7:1a:62:48:30:f7:06:f4:0b:f8:c6:39: 8c:fc:e9:86:a8:e3:76:1c:e0:e1:b1:bf:60:3f:96: 3c:75:05:cc:63:c9:fe:a9:d5:5d:10:ef:9b:83:27: b3:c4:84:72:be:c1:6c:78:05:9c:4f:13:bf:be:30: 0a:ab:e8:f3:ad:9c:c9:ba:67:77:c9:3a:74:cc:3b: 26:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:23:14:7B:94:97:6D:98:86:FF:0B:C6:53:45:74:25:2B:C6:F9:06 X509v3 Authority Key Identifier: keyid:3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:f5:44:f2:d2:8b:e9:f8:fc:35:be:83:4d:e1:5e:07:56:2f: 28:0b:9d:1c:52:85:f5:37:0a:38:2a:05:df:f9:16:f9:53:87: 2e:d5:a4:4c:40:11:8a:0b:13:e4:75:59:82:53:e2:7d:89:a1: 5d:e2:4d:c8:76:c4:e2:3f:6c:76:39:f3:9d:1b:f7:03:34:dd: 87:b0:6f:9a:5c:4f:49:fa:f7:a8:26:04:57:0f:2c:02:89:62: 29:38:e3:c2:cf:6f:e1:cb:1f:e6:fc:7c:36:a4:ea:78:13:a9: 34:40:e5:17:16:01:f9:08:ef:63:dd:14:3e:91:80:73:3b:3c: 29:19:da:c9:63:1a:34:49:48:33:39:70:71:5a:20:f4:52:9e: 33:44:b8:92:de:bf:25:ec:94:c1:d9:30:74:a2:f6:f7:df:75: 8d:99:77:5e:aa:10:0a:13:59:37:96:e7:79:a1:76:24:a1:f1: 39:35:cd:ee:97:28:79:5a:7c:8b:7d:1b:8e:6d:0e:41:a1:c5: 7e:6b:a3:8f:fa:fa:f2:31:a6:7e:91:4a:99:07:51:99:e7:51: ed:eb:22:0e:f7:24:77:59:94:60:53:b1:14:e4:99:8c:b4:f7: 8d:11:e1:8e:0f:b0:10:5a:c3:ad:57:32:4f:83:ae:90:4b:3a: c5:90:d9:84 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUK/Fvx1N1t21c259LGjFZ0mOANzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4 NUMzNUU0RjAeFw0yNTA4MDYyMjU1NTRaFw0yNTA4MTAwMTI4NTRaMDMxMTAvBgNV BAMTKDg5MjMxNDdCOTQ5NzZEOTg4NkZGMEJDNjUzNDU3NDI1MkJDNkY5MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkt6Rm2WinHNknJnP9u+8lrq88 ZCLq1vHskp1zc2CAVwlk6BIDlz+RPSjLbiKX+3ppf8323HzJF876ngCTA60dubdD Soje4e2x9PLV4ZLwWF5bXfilW10C6lq/4Te6/etPDuTQXW84H9GqGt08++Vr0j9B HaWTlWD66oQxqujUpCfA0wlJGsnttEX5kw2Ih5lTnVMxAd9KN7rdDCGiHTuaY2Nu 9N6tsVkhJGsqXfgrzZWwj4ZN29caYkgw9wb0C/jGOYz86Yao43Yc4OGxv2A/ljx1 Bcxjyf6p1V0Q75uDJ7PEhHK+wWx4BZxPE7++MAqr6POtnMm6Z3fJOnTMOyaxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiSMUe5SXbZiG/wvGU0V0JSvG+QYwHwYDVR0j BBgwFoAUPXifr19+vmk4xMcj3NLu14XDXk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDk3MDAzMi0wOGVhLTQ4OTAtYmRiYS02MzA5YTQ5NzkxN2QvMC8zRDc4OUZBRjVG N0VCRTY5MzhDNEM3MjNEQ0QyRUVENzg1QzM1RTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4NUMz NUU0Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGQ5NzAwMzItMDhlYS00ODkwLWJk YmEtNjMwOWE0OTc5MTdkLzAvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVF RDc4NUMzNUU0Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ31RPLSi+n4/DW+g03hXgdWLygLnRxShfU3 CjgqBd/5FvlThy7VpExAEYoLE+R1WYJT4n2JoV3iTch2xOI/bHY5850b9wM03Yew b5pcT0n696gmBFcPLAKJYik448LPb+HLH+b8fDak6ngTqTRA5RcWAfkI72PdFD6R gHM7PCkZ2sljGjRJSDM5cHFaIPRSnjNEuJLevyXslMHZMHSi9vffdY2Zd16qEAoT WTeW53mhdiSh8Tk1ze6XKHlafIt9G45tDkGhxX5ro4/6+vIxpn6RSpkHUZnnUe3r Ig73JHdZlGBTsRTkmYy0940R4Y4PsBBaw61XMk+DrpBLOsWQ2YQ= -----END CERTIFICATE-----Generated at Thu Aug 7 03:20:02 2025 by rpki-client