$ rpki-client -vvf repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft File: 651790FFFC1688AFA384D136FC4792AD18879019.mft (raw, json) Hash identifier: JWqptodgNkQE9zHGn6FfM+x8XgofbqKibq0UCfkME+A= Subject key identifier: FA:AB:E1:C3:9A:9F:7F:C9:90:08:8F:5C:F1:AA:2D:F9:84:31:DD:4C Authority key identifier: 65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 Certificate issuer: /CN=651790FFFC1688AFA384D136FC4792AD18879019 Certificate serial: 03095D44CACFD7D82AE6A34B46574D7E16E98D5A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft Manifest number: 04F5 Signing time: Wed 06 Aug 2025 11:32:15 +0000 Manifest this update: Wed 06 Aug 2025 11:27:15 +0000 Manifest next update: Sat 09 Aug 2025 15:28:15 +0000 Files and hashes: 1: 3130332e35332e37362e302f32322d3234203d3e20313333383137.roa (hash: +2/fO8INW6MBjsIr2MpsMr5pDS/07SU3AZAKJ801ins=) 2: 651790FFFC1688AFA384D136FC4792AD18879019.crl (hash: Wy5+eJIzXT+j4trUlz1itNiQLL1nTdkCFQ1VKuNgr3A=) 3: 323430323a353538303a3a2f33322d3438203d3e20313333383137.roa (hash: dttoTx4BQRFnMAvnuJnvYcnCQ5YOgtytig0qE7CIy64=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 15:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:09:5d:44:ca:cf:d7:d8:2a:e6:a3:4b:46:57:4d:7e:16:e9:8d:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=651790FFFC1688AFA384D136FC4792AD18879019 Validity Not Before: Aug 6 11:27:15 2025 GMT Not After : Aug 9 15:28:15 2025 GMT Subject: CN=FAABE1C39A9F7FC990088F5CF1AA2DF98431DD4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5c:1f:3c:9b:b6:47:f2:3e:c2:ab:43:f5:75: b6:d3:06:94:00:51:f6:bb:fe:ae:76:82:12:ab:04: 04:c3:6f:8b:b3:24:e3:fc:cd:b4:16:bf:52:98:50: 0d:db:ee:3a:e7:0a:bf:cf:90:98:94:d7:25:13:b8: 7c:ad:84:07:eb:68:54:9e:50:17:84:51:f0:c7:1c: 8a:67:a0:5e:bb:99:3f:01:7c:f5:4f:c1:9e:54:b2: 44:94:8c:e2:b4:c6:16:47:95:6b:41:da:4f:ca:5a: 1c:40:81:18:fa:af:b2:ce:a0:d9:ab:18:fa:7a:c2: 96:59:74:3b:a4:67:f7:0b:88:f2:a8:00:a3:b5:40: 90:70:ea:16:c4:e3:5d:85:ee:a3:f5:e1:ff:3c:e2: 85:75:c2:c1:80:db:9c:d9:d9:e0:2b:72:31:39:d9: de:04:5f:7a:d7:83:43:77:f6:ec:4f:68:52:73:87: a8:35:8f:9c:62:a3:ff:60:dc:31:b5:98:bf:a3:18: c1:c0:a5:a3:ac:c7:4a:ed:fd:b8:f2:de:9b:3b:45: 9a:b4:a8:d9:a5:49:63:16:d1:15:0f:9a:19:93:71: 75:93:a7:ce:55:0d:67:d6:ad:1f:7d:5f:b2:f2:93: 7f:68:08:c5:d1:95:96:e9:6a:a6:94:47:42:d9:a6: 16:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:AB:E1:C3:9A:9F:7F:C9:90:08:8F:5C:F1:AA:2D:F9:84:31:DD:4C X509v3 Authority Key Identifier: keyid:65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:fe:1f:42:13:fe:51:f2:ee:f2:4c:71:2f:c1:9f:01:84:fa: 5a:87:04:73:cc:3a:8e:b4:9e:92:08:8b:9c:b2:e6:9c:ab:44: 13:b3:6b:53:41:5a:4f:0a:f2:88:f7:f4:6f:81:40:e6:a9:9d: f4:26:03:08:4a:18:18:57:d4:c8:15:80:dc:e8:bb:eb:17:32: 72:33:6e:9f:d2:cd:cb:e9:11:a7:2b:0f:49:f3:2c:f9:7f:0f: 00:eb:55:0e:bf:a4:5b:dc:e5:97:fa:bd:ee:98:aa:be:d8:ac: c9:ee:0d:99:5a:21:3a:b1:12:32:df:ba:28:a5:7f:86:f3:cf: 34:2e:d7:f5:62:56:fa:12:e2:aa:26:f4:6b:c6:fe:88:70:1b: 96:3e:37:d0:6f:b8:78:d5:5c:f2:70:3e:d2:3d:83:12:5d:a3: 6f:bf:a5:8e:1b:85:47:e1:4d:30:6c:b0:d5:b4:5f:cc:0b:cb: ad:78:17:1c:d8:0e:d0:e7:be:21:81:b9:6d:7c:ca:d3:35:12: b7:ab:39:35:87:27:47:7e:fb:76:15:12:45:4f:75:1b:69:3e: c7:0c:3e:77:b7:6d:9d:10:7b:fb:32:73:2b:e4:90:5a:b6:a4: d4:02:7a:f7:f7:b0:5a:81:18:b3:3d:f0:94:51:57:65:c4:07: 79:2a:7b:4c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAwldRMrP19gq5qNLRldNfhbpjVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQx ODg3OTAxOTAeFw0yNTA4MDYxMTI3MTVaFw0yNTA4MDkxNTI4MTVaMDMxMTAvBgNV BAMTKEZBQUJFMUMzOUE5RjdGQzk5MDA4OEY1Q0YxQUEyREY5ODQzMURENEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAXB88m7ZH8j7Cq0P1dbbTBpQA Ufa7/q52ghKrBATDb4uzJOP8zbQWv1KYUA3b7jrnCr/PkJiU1yUTuHythAfraFSe UBeEUfDHHIpnoF67mT8BfPVPwZ5UskSUjOK0xhZHlWtB2k/KWhxAgRj6r7LOoNmr GPp6wpZZdDukZ/cLiPKoAKO1QJBw6hbE412F7qP14f884oV1wsGA25zZ2eArcjE5 2d4EX3rXg0N39uxPaFJzh6g1j5xio/9g3DG1mL+jGMHApaOsx0rt/bjy3ps7RZq0 qNmlSWMW0RUPmhmTcXWTp85VDWfWrR99X7Lyk39oCMXRlZbpaqaUR0LZphYFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+qvhw5qff8mQCI9c8aot+YQx3UwwHwYDVR0j BBgwFoAUZReQ//wWiK+jhNE2/EeSrRiHkBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmY3ZWYzNC00OTkxLTRiYjEtOTZiNC1iZTQzZjFlY2FiYjQvMC82NTE3OTBGRkZD MTY4OEFGQTM4NEQxMzZGQzQ3OTJBRDE4ODc5MDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQxODg3 OTAxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZmN2VmMzQtNDk5MS00YmIxLTk2 YjQtYmU0M2YxZWNhYmI0LzAvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0Nzky QUQxODg3OTAxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAL7+H0IT/lHy7vJMcS/BnwGE+lqHBHPMOo60 npIIi5yy5pyrRBOza1NBWk8K8oj39G+BQOapnfQmAwhKGBhX1MgVgNzou+sXMnIz bp/SzcvpEacrD0nzLPl/DwDrVQ6/pFvc5Zf6ve6Yqr7YrMnuDZlaITqxEjLfuiil f4bzzzQu1/ViVvoS4qom9GvG/ohwG5Y+N9BvuHjVXPJwPtI9gxJdo2+/pY4bhUfh TTBssNW0X8wLy614FxzYDtDnviGBuW18ytM1ErerOTWHJ0d++3YVEkVPdRtpPscM Pne3bZ0Qe/sycyvkkFq2pNQCevf3sFqBGLM98JRRV2XEB3kqe0w= -----END CERTIFICATE-----Generated at Thu Aug 7 00:38:30 2025 by rpki-client