$ rpki-client -vvf repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft File: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft (raw, json) Hash identifier: luMYTD1Gsog/k2DyYt2ezTz2W11T6byIndO+wS2LDS4= Subject key identifier: 18:48:FB:B3:93:92:BF:35:26:81:7A:B9:07:2B:18:F6:91:AD:C6:E6 Authority key identifier: 43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 Certificate issuer: /CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Certificate serial: 4C304BE25219DA0B8C801DC1D263B7324F0662DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft Manifest number: 02CB Signing time: Wed 06 Aug 2025 17:11:12 +0000 Manifest this update: Wed 06 Aug 2025 17:06:12 +0000 Manifest next update: Sat 09 Aug 2025 22:41:12 +0000 Files and hashes: 1: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl (hash: uJUD3I01LmOZCZ5wC4anZwQ8eV/WwxGc5OGk/LE/da0=) 2: 3130332e3137362e39372e302f32342d3234203d3e20313437313331.roa (hash: gcQbwwcsgWLto/MeqdtpULkQCdJ/hBMpFsyWHdzWTU8=) 3: 3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa (hash: omt0on/osncWzWrbGIk75aVtn8fXGKFlF84iedQ76S8=) 4: 3130332e3137362e39362e302f32332d3233203d3e20313437313331.roa (hash: RvlNgfW0J+bVY7d2yjeoXrc2sRB1/6Dnvn34DHTz4kU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 22:41:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:30:4b:e2:52:19:da:0b:8c:80:1d:c1:d2:63:b7:32:4f:06:62:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Validity Not Before: Aug 6 17:06:12 2025 GMT Not After : Aug 9 22:41:12 2025 GMT Subject: CN=1848FBB39392BF3526817AB9072B18F691ADC6E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:43:b0:32:8b:1b:45:27:70:86:3c:6d:9d:4d: 74:8a:88:50:90:9f:fb:46:d7:9f:d7:91:fa:14:ee: e7:d6:a3:67:f9:c8:b9:30:e3:d3:05:7d:22:75:ee: 61:34:07:96:35:c6:1a:cf:86:2c:d4:59:a3:c8:f4: 56:24:82:f1:5d:88:d5:67:d6:a0:1e:21:06:7a:95: 41:65:92:ac:a2:6b:97:96:60:ae:bd:c2:68:30:9c: 69:ff:d7:89:c0:f9:54:02:c0:2e:62:30:01:b1:2f: d7:d4:a7:65:85:56:25:d3:53:1f:fb:2c:9d:ee:ac: a6:85:56:55:1b:c0:1e:9e:16:ea:f6:0f:eb:26:f6: 8f:00:4b:5a:d4:e5:32:86:ce:8c:66:ee:cf:31:c3: c5:3a:ec:4b:08:b8:82:32:4e:80:fd:c5:1a:95:f7: ad:6f:55:c2:a4:52:ae:48:12:b9:90:b2:4b:64:c6: ce:50:1f:83:cc:6a:cf:9e:77:20:52:4c:0c:3a:af: de:b4:fc:aa:cf:3a:67:50:36:28:ec:c3:f4:ac:65: 76:a8:ed:f0:31:68:e6:6c:a3:cb:22:bf:77:96:5e: 13:9c:57:20:61:ab:6f:92:d9:b8:c4:0b:bc:e6:2e: 54:eb:bd:a4:1b:27:8c:45:ae:1c:0b:ff:56:8f:af: b5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:48:FB:B3:93:92:BF:35:26:81:7A:B9:07:2B:18:F6:91:AD:C6:E6 X509v3 Authority Key Identifier: keyid:43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:4e:76:aa:29:21:ba:ae:d3:a5:41:1b:e7:7c:6c:4c:0c:a3: ca:67:8d:5b:7f:8c:32:d8:f7:7d:17:87:89:bb:85:da:54:62: 0c:8b:f6:13:db:c2:f7:f1:9d:43:69:29:87:24:5b:bd:16:05: 49:28:44:cb:bd:54:13:47:18:4e:c1:0c:b7:0b:d7:df:cf:ca: 96:10:89:c3:81:a0:f4:3a:be:60:50:6a:8a:8f:b9:7b:3d:63: 3b:1e:1a:ae:2d:2b:e2:57:52:c9:db:8e:59:82:0d:d5:d5:5c: ac:34:2e:b8:83:7c:26:44:ad:3b:f1:d2:f7:c9:7b:c3:fd:44: 20:17:8d:f7:e5:10:d0:35:04:23:c3:d3:af:38:78:df:26:2f: 0a:92:43:cd:73:92:92:b0:c0:d0:73:0d:53:9b:67:90:ed:f8: 44:aa:dc:bc:89:2e:3f:ad:cd:91:af:08:69:24:6d:a7:75:40: bf:0b:16:d0:73:b4:15:37:34:f4:8f:e8:16:fa:44:3e:c3:fa: bb:1f:b1:f0:2a:71:94:c9:c3:e8:66:02:04:c8:52:37:c2:d2: 2b:5e:69:e0:93:bf:19:f0:ab:6b:41:75:03:23:6f:d3:39:0d: 25:34:55:88:f5:11:99:4b:0f:80:8c:dc:bf:24:0f:e2:a0:7b: 03:4d:ce:2d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTDBL4lIZ2guMgB3B0mO3Mk8GYt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVF MzdCQjY1NzAeFw0yNTA4MDYxNzA2MTJaFw0yNTA4MDkyMjQxMTJaMDMxMTAvBgNV BAMTKDE4NDhGQkIzOTM5MkJGMzUyNjgxN0FCOTA3MkIxOEY2OTFBREM2RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnQ7AyixtFJ3CGPG2dTXSKiFCQ n/tG15/XkfoU7ufWo2f5yLkw49MFfSJ17mE0B5Y1xhrPhizUWaPI9FYkgvFdiNVn 1qAeIQZ6lUFlkqyia5eWYK69wmgwnGn/14nA+VQCwC5iMAGxL9fUp2WFViXTUx/7 LJ3urKaFVlUbwB6eFur2D+sm9o8AS1rU5TKGzoxm7s8xw8U67EsIuIIyToD9xRqV 961vVcKkUq5IErmQsktkxs5QH4PMas+edyBSTAw6r960/KrPOmdQNijsw/SsZXao 7fAxaOZso8siv3eWXhOcVyBhq2+S2bjEC7zmLlTrvaQbJ4xFrhwL/1aPr7ULAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGEj7s5OSvzUmgXq5BysY9pGtxuYwHwYDVR0j BBgwFoAUQzfp/5Ggy2XOHrj662EI9eN7tlcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzM0ZGMzZi0zMDhmLTRkZTEtYTM2NS03MDFiZDljZjEwMDQvMC80MzM3RTlGRjkx QTBDQjY1Q0UxRUI4RkFFQjYxMDhGNUUzN0JCNjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVFMzdC QjY1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMzNGRjM2YtMzA4Zi00ZGUxLWEz NjUtNzAxYmQ5Y2YxMDA0LzAvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4 RjVFMzdCQjY1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAROdqopIbqu06VBG+d8bEwMo8pnjVt/jDLY 930Xh4m7hdpUYgyL9hPbwvfxnUNpKYckW70WBUkoRMu9VBNHGE7BDLcL19/PypYQ icOBoPQ6vmBQaoqPuXs9YzseGq4tK+JXUsnbjlmCDdXVXKw0LriDfCZErTvx0vfJ e8P9RCAXjfflENA1BCPD0684eN8mLwqSQ81zkpKwwNBzDVObZ5Dt+ESq3LyJLj+t zZGvCGkkbad1QL8LFtBztBU3NPSP6Bb6RD7D+rsfsfAqcZTJw+hmAgTIUjfC0ite aeCTvxnwq2tBdQMjb9M5DSU0VYj1EZlLD4CM3L8kD+KgewNNzi0= -----END CERTIFICATE-----Generated at Thu Aug 7 00:27:11 2025 by rpki-client