$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft File: CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft (raw, json) Hash identifier: mb88IlsclxkVEucmj1hflZTqI3z012OuN9ZlNsONrU0= Subject key identifier: C5:D9:CE:BA:95:80:3A:5A:09:85:C1:90:31:3C:02:DD:95:B1:D3:95 Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 22535F7E73EA3CC5FB699C1B4A162E573E56EE02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft Manifest number: 02AC Signing time: Tue 05 Aug 2025 23:30:56 +0000 Manifest this update: Tue 05 Aug 2025 23:25:56 +0000 Manifest next update: Sat 09 Aug 2025 06:32:56 +0000 Files and hashes: 1: CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl (hash: hcVgCvrWIdUR2iXuk8Of19Zi3ANTAqrxd0Sy2i3IjG4=) 2: 3130332e362e3230362e302f32342d3234203d3e203538353033.roa (hash: Cu2RdLHzB+A2EJBsuRCMa0mxP5/Kmd4TOJ7qAO2a+Js=) 3: 3130332e362e3230372e302f32342d3234203d3e203538353033.roa (hash: NhbEnUbS1RFVhQFgb/k13Oo2qyTOB30jh0qFTUkaAik=) 4: 3130332e362e3230362e302f32332d3233203d3e203538353033.roa (hash: 7LF1a7D5EDLG17ihfLxfwJXRWol/1ek+UfoMR7jTEuA=) 5: 3130332e362e3230342e302f32342d3234203d3e203538353033.roa (hash: vJN17h6zHlw8lhqv4ICIcSweY39vapLLmQqw71/RhS0=) 6: 3130332e362e3230342e302f32332d3233203d3e203538353033.roa (hash: yBaA0+xOkr+iculo5l4/62QXBhceh7/LNqxDxugk/Cg=) 7: 3130332e362e3230352e302f32342d3234203d3e203538353033.roa (hash: ptSpa0yORFDFTGktJ23ziYaQuqfcwcD6+X4WfU20Bt4=) 8: 3130332e362e3230342e302f32322d3232203d3e203538353033.roa (hash: 4hTYB6oeBmhzrslyPSwrX3Ek6Lkwqv8RzR59ex14KTA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 06:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:53:5f:7e:73:ea:3c:c5:fb:69:9c:1b:4a:16:2e:57:3e:56:ee:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Aug 5 23:25:56 2025 GMT Not After : Aug 9 06:32:56 2025 GMT Subject: CN=C5D9CEBA95803A5A0985C190313C02DD95B1D395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0c:0c:77:29:bf:64:1d:6f:6f:54:06:30:6f: 51:1b:bf:a0:f7:59:d7:82:b8:59:cc:1e:c1:8d:44: c9:52:dd:8c:da:80:85:36:e5:e0:1b:d3:09:87:37: b1:20:e4:de:61:17:19:26:83:1f:1a:4c:e1:3e:b3: 7f:b1:b1:bc:1b:48:14:34:0c:5c:32:66:09:5f:43: 8d:e6:d9:0d:2b:54:52:28:cf:fa:f3:81:11:0d:2c: 63:80:50:49:9a:e8:db:e7:d6:fc:0a:8d:01:c3:01: eb:de:99:5c:9c:65:04:5a:1e:9e:39:fd:18:58:60: 1a:15:b4:8e:53:03:a5:79:82:cb:cc:15:42:1a:22: 6f:ad:9a:7e:e2:b4:2b:6a:bc:9b:0e:50:19:c4:b8: d8:5e:cd:f0:5d:e0:5b:b8:a3:74:ff:fc:a3:28:df: 98:22:0f:e1:bd:04:6e:dd:1e:45:ca:5f:2c:6e:4b: d5:6d:b3:d0:a4:b7:2f:fa:4e:07:ec:1b:e6:64:78: e8:79:41:4e:78:63:73:65:fe:a6:09:6b:67:1d:99: ec:06:aa:01:11:1b:43:a8:76:84:da:42:02:71:4a: 16:54:7d:ff:98:c6:08:65:67:fe:57:38:5c:be:3b: 45:3d:a4:eb:c4:04:94:29:4a:a2:d5:2b:e7:b2:2f: 99:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D9:CE:BA:95:80:3A:5A:09:85:C1:90:31:3C:02:DD:95:B1:D3:95 X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:16:84:67:30:55:65:8e:b9:dd:99:66:14:34:2d:bc:41:f7: c1:ea:5f:ac:ae:de:15:32:86:af:7f:96:89:36:63:0c:c5:32: 81:0a:c8:b8:ec:db:a6:d3:65:53:e2:32:e6:94:3a:10:76:cb: d5:03:ca:7a:18:fe:66:be:a8:8f:f7:25:a4:13:58:42:f6:fc: c4:6b:33:fe:4a:54:50:1b:98:3f:af:ec:a9:72:d0:31:7a:0b: 9c:fd:bd:cb:2c:bb:66:2a:8b:96:5e:f8:3b:79:db:b4:74:ca: 68:e2:5e:d1:61:63:3d:a0:38:fe:c7:51:ef:4b:eb:fb:11:bb: af:06:66:0f:9c:db:f1:e9:17:f5:b5:18:e9:62:3b:05:0b:3e: 40:12:b1:42:fb:0c:85:91:36:95:c7:bb:e1:be:93:c6:a8:c7: 46:d1:f1:7c:69:c9:34:29:aa:29:9e:d0:5c:fe:fd:1d:6c:82: ab:bc:e6:79:3b:0c:eb:af:f4:f4:84:91:82:6d:b2:00:ca:e3: 75:cd:af:ab:9b:f4:d3:1e:3d:a1:82:cc:14:2f:c4:34:a9:7d: b6:38:3c:d9:52:30:13:ad:3e:86:c6:5f:4d:9f:b3:18:2b:42: 5c:10:8b:7e:84:c6:5a:93:a0:6d:50:18:5a:c5:cb:02:1a:f1: 57:66:41:51 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIlNffnPqPMX7aZwbShYuVz5W7gIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNTA4MDUyMzI1NTZaFw0yNTA4MDkwNjMyNTZaMDMxMTAvBgNV BAMTKEM1RDlDRUJBOTU4MDNBNUEwOTg1QzE5MDMxM0MwMkREOTVCMUQzOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXDAx3Kb9kHW9vVAYwb1Ebv6D3 WdeCuFnMHsGNRMlS3YzagIU25eAb0wmHN7Eg5N5hFxkmgx8aTOE+s3+xsbwbSBQ0 DFwyZglfQ43m2Q0rVFIoz/rzgRENLGOAUEma6Nvn1vwKjQHDAevemVycZQRaHp45 /RhYYBoVtI5TA6V5gsvMFUIaIm+tmn7itCtqvJsOUBnEuNhezfBd4Fu4o3T//KMo 35giD+G9BG7dHkXKXyxuS9Vts9Ckty/6TgfsG+ZkeOh5QU54Y3Nl/qYJa2cdmewG qgERG0OodoTaQgJxShZUff+YxghlZ/5XOFy+O0U9pOvEBJQpSqLVK+eyL5kfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxdnOupWAOloJhcGQMTwC3ZWx05UwHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTgyZjJiMzgtYWRkZi00YmQzLTky NDktZTViYTU2Y2QwNTJlLzAvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3 N0IyMzRDQTQ0Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIoWhGcwVWWOud2ZZhQ0LbxB98HqX6yu3hUy hq9/lok2YwzFMoEKyLjs26bTZVPiMuaUOhB2y9UDynoY/ma+qI/3JaQTWEL2/MRr M/5KVFAbmD+v7Kly0DF6C5z9vcssu2Yqi5Ze+Dt527R0ymjiXtFhYz2gOP7HUe9L 6/sRu68GZg+c2/HpF/W1GOliOwULPkASsUL7DIWRNpXHu+G+k8aox0bR8XxpyTQp qime0Fz+/R1sgqu85nk7DOuv9PSEkYJtsgDK43XNr6ub9NMePaGCzBQvxDSpfbY4 PNlSMBOtPobGX02fsxgrQlwQi36ExlqToG1QGFrFywIa8VdmQVE= -----END CERTIFICATE-----Generated at Thu Aug 7 01:04:58 2025 by rpki-client