$ rpki-client -vvf repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft File: 2858C74CC23A557C73F59051B7FE8638AA491C94.mft (raw, json) Hash identifier: rCzjxeLf+5A8u352XqBZVbAh7mEatRb6MiXe5V0XXN4= Subject key identifier: 3C:3D:69:E0:61:0A:2B:EF:71:EB:53:00:F3:10:31:BE:3D:2D:14:08 Authority key identifier: 28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 Certificate issuer: /CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Certificate serial: 36F6DD5656DB979486220EACC93E1F64588C0D1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft Manifest number: 0C Signing time: Mon 11 Aug 2025 08:11:22 +0000 Manifest this update: Mon 11 Aug 2025 08:06:22 +0000 Manifest next update: Thu 14 Aug 2025 12:06:22 +0000 Files and hashes: 1: 323430303a366632303a353a3a2f34382d3438203d3e20313333383039.roa (hash: KGGUUPJetYRovMai9BvuYsEqHu8TgW6bYg4Sm8JWJcg=) 2: 323430303a366632303a3a2f33322d3438203d3e20313333383039.roa (hash: 8MTe8KcDcB0X2kj+3dmF5RSp4lHPV4hialaox1IdvHk=) 3: 2858C74CC23A557C73F59051B7FE8638AA491C94.crl (hash: NmPbLkZRjy02G6m1DpeSQVBm0Oz/mGXZhKQhexd+SIo=) 4: 3130332e35302e3132382e302f32322d3234203d3e20313333383039.roa (hash: IB02l7aeS1Ctr7m+n8ymFsmUvTLgjo3obFTTz15X/C8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 12:06:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:f6:dd:56:56:db:97:94:86:22:0e:ac:c9:3e:1f:64:58:8c:0d:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Validity Not Before: Aug 11 08:06:22 2025 GMT Not After : Aug 14 12:06:22 2025 GMT Subject: CN=3C3D69E0610A2BEF71EB5300F31031BE3D2D1408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d7:ce:64:45:37:51:b2:66:1c:14:e2:8d:0f: 3f:88:42:7a:45:3b:e9:53:e7:c4:74:b7:71:af:9f: a3:1e:e9:83:86:ba:6d:2d:dd:bd:5e:8f:a8:43:b4: cb:fc:55:04:ef:a5:e3:60:f7:22:ee:c7:8f:7d:1b: cb:37:dd:11:9e:8d:53:3e:78:e4:6b:d4:49:d0:d5: 8a:5c:a5:18:92:90:bd:3e:2d:b6:b5:a9:51:2e:8b: e4:5d:93:3f:9c:61:39:52:fb:0d:92:d5:f2:97:57: d8:2f:1b:6d:dd:ff:1a:85:34:ff:83:59:de:f4:fc: 07:99:08:d9:5c:ba:97:cd:d6:37:87:c6:31:87:d2: b9:74:b1:7e:3c:ff:c9:62:27:c3:c9:dc:18:8d:1e: 29:82:01:ad:79:d0:6b:a1:57:7b:52:57:be:87:d4: 6e:21:c9:c9:82:69:5e:95:d1:73:cb:ec:b9:4b:5d: 71:5d:73:ae:b1:a4:84:30:ce:76:4b:8e:0a:4e:85: 6c:de:09:11:f3:8b:db:b9:94:9c:c3:60:26:38:6f: 8f:88:f8:b0:f6:df:5b:3a:fc:e4:f2:82:1a:bf:45: f0:8a:b8:1c:2d:71:c9:30:6c:ac:56:9a:f2:f2:f5: 89:18:0a:b1:3b:86:db:85:8b:65:d0:06:d8:6a:2f: 7b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:3D:69:E0:61:0A:2B:EF:71:EB:53:00:F3:10:31:BE:3D:2D:14:08 X509v3 Authority Key Identifier: keyid:28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:14:f3:9c:e9:34:82:9f:ca:cc:9a:73:34:8b:17:f5:b9:9a: a7:38:02:55:1e:5f:0d:5a:0c:fe:fd:73:9c:8c:a3:3f:70:f5: be:89:74:ea:e0:99:82:77:13:79:65:b5:73:c7:dc:9e:98:db: 65:ea:b0:bc:e1:25:42:8a:e0:be:38:d2:bc:7b:71:d9:0c:66: bf:a0:22:d6:a7:ce:70:3e:6c:e5:53:fc:88:5e:d1:a7:cb:c8: 59:3a:bd:41:67:dc:0e:46:cd:c7:d3:bf:9f:fe:db:5d:87:ae: 90:4a:20:38:81:c0:59:0e:cd:4f:3f:1c:57:7b:a6:80:16:2d: 19:4a:a3:8b:10:69:5e:0c:bc:d1:56:ef:fd:8f:26:80:ef:75: bd:34:99:a0:1e:47:c4:d7:c1:5c:fa:20:52:6d:c4:14:76:e3: 48:4f:24:a2:a1:a4:1b:a8:73:7b:3c:d6:46:53:f9:9d:e3:ab: a6:94:8d:5b:a5:04:85:22:3d:f2:7d:2a:87:91:33:6f:a3:10: 89:45:e2:01:77:86:f4:28:ba:7b:fe:9c:8f:0d:90:9b:1f:c4: 03:7a:84:fb:b4:f4:ad:5a:f2:fb:0d:39:5d:2a:f4:2a:1f:04: 94:8d:1f:e4:f7:3a:50:79:f0:20:01:12:d9:5d:67:92:e6:2f: 33:69:85:93 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNvbdVlbbl5SGIg6syT4fZFiMDRwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhB QTQ5MUM5NDAeFw0yNTA4MTEwODA2MjJaFw0yNTA4MTQxMjA2MjJaMDMxMTAvBgNV BAMTKDNDM0Q2OUUwNjEwQTJCRUY3MUVCNTMwMEYzMTAzMUJFM0QyRDE0MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv185kRTdRsmYcFOKNDz+IQnpF O+lT58R0t3Gvn6Me6YOGum0t3b1ej6hDtMv8VQTvpeNg9yLux499G8s33RGejVM+ eORr1EnQ1YpcpRiSkL0+Lba1qVEui+Rdkz+cYTlS+w2S1fKXV9gvG23d/xqFNP+D Wd70/AeZCNlcupfN1jeHxjGH0rl0sX48/8liJ8PJ3BiNHimCAa150GuhV3tSV76H 1G4hycmCaV6V0XPL7LlLXXFdc66xpIQwznZLjgpOhWzeCRHzi9u5lJzDYCY4b4+I +LD231s6/OTyghq/RfCKuBwtcckwbKxWmvLy9YkYCrE7htuFi2XQBthqL3vVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPD1p4GEKK+9x61MA8xAxvj0tFAgwHwYDVR0j BBgwFoAUKFjHTMI6VXxz9ZBRt/6GOKpJHJQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWNlZjhiMC1iYTY0LTRjMGMtOGRlOC0xZjUwYTg1ZDVmZGUvMC8yODU4Qzc0Q0My M0E1NTdDNzNGNTkwNTFCN0ZFODYzOEFBNDkxQzk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhBQTQ5 MUM5NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTljZWY4YjAtYmE2NC00YzBjLThk ZTgtMWY1MGE4NWQ1ZmRlLzAvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2 MzhBQTQ5MUM5NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFoU85zpNIKfysyaczSLF/W5mqc4AlUeXw1a DP79c5yMoz9w9b6JdOrgmYJ3E3lltXPH3J6Y22XqsLzhJUKK4L440rx7cdkMZr+g ItanznA+bOVT/Ihe0afLyFk6vUFn3A5GzcfTv5/+212HrpBKIDiBwFkOzU8/HFd7 poAWLRlKo4sQaV4MvNFW7/2PJoDvdb00maAeR8TXwVz6IFJtxBR240hPJKKhpBuo c3s81kZT+Z3jq6aUjVulBIUiPfJ9KoeRM2+jEIlF4gF3hvQounv+nI8NkJsfxAN6 hPu09K1a8vsNOV0q9CofBJSNH+T3OlB58CABEtldZ5LmLzNphZM= -----END CERTIFICATE-----Generated at Wed Aug 13 02:10:46 2025 by rpki-client