$ rpki-client -vvf repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft (raw, json) Hash identifier: /whrORDCOi0v+3nf6u7MpVBDyzFN8o7qfRBwFxcqdds= Subject key identifier: 39:02:09:66:9D:01:C7:CE:32:B4:5D:C2:F9:4D:AC:48:68:11:DB:8B Authority key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Certificate issuer: /CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Certificate serial: 0322738AB48FAB809DE7CCA1772093662D1685AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft Manifest number: 022F Signing time: Fri 08 Aug 2025 17:41:08 +0000 Manifest this update: Fri 08 Aug 2025 17:36:08 +0000 Manifest next update: Tue 12 Aug 2025 01:55:08 +0000 Files and hashes: 1: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl (hash: i4oKUH0jqIVYw9VgcCQ3TFSSTnm+OPwQzQAsBQPYxms=) 2: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: pGfLfqeQeD8uU2thnQryvAF3YiN767pDKu8zHBjIsCs=) 3: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: yCac+KeTfH0lkjTAK49G4zxY27cUgoZJXWm+CK7QM48=) 4: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: qonOSoihdyEOGXKEjx0ElQczxx60RKjDCLheufBA0qE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 01:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:22:73:8a:b4:8f:ab:80:9d:e7:cc:a1:77:20:93:66:2d:16:85:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Validity Not Before: Aug 8 17:36:08 2025 GMT Not After : Aug 12 01:55:08 2025 GMT Subject: CN=390209669D01C7CE32B45DC2F94DAC486811DB8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:80:7e:fa:69:af:f2:80:a7:a8:16:2d:be:83: 09:35:64:52:80:d1:d2:3c:b7:a1:d4:59:1f:83:6c: 3e:25:00:90:29:63:6a:42:52:00:62:1f:e1:80:07: 81:34:4c:02:86:24:2d:2e:94:cf:94:e1:f2:ce:7f: 2b:3f:47:6d:45:32:0f:cf:51:6d:a5:87:67:ff:d2: f4:e9:96:97:3a:45:bb:70:34:5a:e2:1d:8c:51:9e: 29:26:eb:37:02:48:ab:bd:58:af:bc:24:88:8b:46: 22:3d:00:47:8b:fc:d7:13:c4:b1:74:92:24:20:e3: 3a:19:3c:02:3f:f0:1c:58:66:4c:41:32:00:22:d9: ff:25:e1:2b:e9:da:9f:a6:37:5a:3b:e0:87:f2:67: 1f:42:c3:b7:dc:1f:d6:5a:9c:32:bf:e7:ae:fd:be: aa:c7:38:02:09:a2:31:88:c0:3e:78:f5:57:b0:dc: be:51:6d:0d:1b:53:de:e4:f5:83:86:82:e3:2b:d0: e6:bc:d2:30:6e:5e:a2:17:11:df:f8:cf:6a:5c:52: 11:f2:96:8d:9c:1e:35:f8:54:66:3f:13:8b:06:bb: 81:f4:8c:00:8c:6a:9f:f5:b5:58:f5:3a:70:5b:42: 78:3f:82:f3:3d:c5:8d:2d:cd:2f:83:83:bf:dc:e9: 8d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:02:09:66:9D:01:C7:CE:32:B4:5D:C2:F9:4D:AC:48:68:11:DB:8B X509v3 Authority Key Identifier: keyid:AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:fc:2a:df:4a:fc:0a:0a:ea:75:23:65:c0:4c:84:0f:2d:ae: 5f:4f:4f:71:be:25:80:50:f1:83:4d:ab:d8:73:c1:75:9b:06: d7:28:28:73:43:60:0c:84:43:53:3e:00:b7:ee:be:b6:03:1c: 58:0a:d9:b6:8e:02:9b:72:5c:ea:3d:58:ab:7e:6d:0a:37:36: 26:a7:d5:80:4b:8b:e2:07:58:07:4a:3f:37:55:7d:fa:60:0d: f7:3d:32:dc:f5:4e:dc:a9:44:a2:58:54:46:57:35:4e:f2:60: 24:1d:25:e1:fb:83:62:eb:10:c2:37:d7:7c:86:14:2f:43:3c: 51:d3:a6:08:73:b7:8e:49:59:0f:bd:88:f0:70:1c:e6:38:f2: 5c:15:62:1c:ff:c9:c5:ee:fc:5e:ec:ea:ad:d7:ac:c2:55:f8: c6:e4:85:a9:50:87:a1:18:76:87:0b:48:a7:6d:1c:55:15:32: 21:28:19:68:ed:7f:47:4a:aa:49:5a:8b:0a:7f:91:b5:0c:90: a9:85:14:c6:b5:c6:44:10:2b:a0:ad:38:51:d0:cd:70:d4:af: 68:b9:a5:66:fb:99:78:6f:57:b5:6b:e6:d6:f6:8c:90:cc:26: aa:f2:80:13:67:bc:32:68:52:e9:80:fc:cd:c8:19:d7:62:b7: df:a2:37:f6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAyJzirSPq4Cd58yhdyCTZi0WhaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3 NDg2N0Y1MzAeFw0yNTA4MDgxNzM2MDhaFw0yNTA4MTIwMTU1MDhaMDMxMTAvBgNV BAMTKDM5MDIwOTY2OUQwMUM3Q0UzMkI0NURDMkY5NERBQzQ4NjgxMURCOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6gH76aa/ygKeoFi2+gwk1ZFKA 0dI8t6HUWR+DbD4lAJApY2pCUgBiH+GAB4E0TAKGJC0ulM+U4fLOfys/R21FMg/P UW2lh2f/0vTplpc6RbtwNFriHYxRnikm6zcCSKu9WK+8JIiLRiI9AEeL/NcTxLF0 kiQg4zoZPAI/8BxYZkxBMgAi2f8l4Svp2p+mN1o74IfyZx9Cw7fcH9ZanDK/5679 vqrHOAIJojGIwD549Vew3L5RbQ0bU97k9YOGguMr0Oa80jBuXqIXEd/4z2pcUhHy lo2cHjX4VGY/E4sGu4H0jACMap/1tVj1OnBbQng/gvM9xY0tzS+Dg7/c6Y0HAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOQIJZp0Bx84ytF3C+U2sSGgR24swHwYDVR0j BBgwFoAUrSoPazAkv/EUWNcsjlYj+3SGf1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC9BRDJBMEY2QjMw MjRCRkYxMTQ1OEQ3MkM4RTU2MjNGQjc0ODY3RjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3NDg2 N0Y1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZhZjRkZTUtNTAzNy00OTE3LTlh OTMtMDE5MmM2OTU5YmZiLzAvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIz RkI3NDg2N0Y1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHr8Kt9K/AoK6nUjZcBMhA8trl9PT3G+JYBQ 8YNNq9hzwXWbBtcoKHNDYAyEQ1M+ALfuvrYDHFgK2baOAptyXOo9WKt+bQo3Nian 1YBLi+IHWAdKPzdVffpgDfc9Mtz1TtypRKJYVEZXNU7yYCQdJeH7g2LrEMI313yG FC9DPFHTpghzt45JWQ+9iPBwHOY48lwVYhz/ycXu/F7s6q3XrMJV+MbkhalQh6EY docLSKdtHFUVMiEoGWjtf0dKqklaiwp/kbUMkKmFFMa1xkQQK6CtOFHQzXDUr2i5 pWb7mXhvV7Vr5tb2jJDMJqrygBNnvDJoUumA/M3IGddit9+iN/Y= -----END CERTIFICATE-----Generated at Sun Aug 10 05:37:33 2025 by rpki-client