$ rpki-client -vvf repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft File: D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft (raw, json) Hash identifier: 02dzE81YNIMYqmJVXVh4HWC1nyzyH1P2jCbU17b7FLc= Subject key identifier: 5E:D9:86:A4:DB:76:C8:53:54:5C:8B:61:1F:0F:48:FD:89:82:6B:24 Authority key identifier: D0:FF:6F:09:3D:0D:EA:FB:5C:B4:2A:93:43:3F:A2:39:C9:03:EA:C0 Certificate issuer: /CN=D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0 Certificate serial: 41939FAEEFE9465E5BD57598D6FB5E0F3637F058 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft Manifest number: 01F2 Signing time: Tue 05 Aug 2025 15:01:55 +0000 Manifest this update: Tue 05 Aug 2025 14:56:55 +0000 Manifest next update: Fri 08 Aug 2025 17:25:55 +0000 Files and hashes: 1: 3130332e3136312e3230322e302f32332d3234203d3e203338333230.roa (hash: BdsS4s7jPHig7lZYR1kjJB8vTutisx05tJ8qnuC/vHI=) 2: D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl (hash: NyEPh90bMB68sIUuFKHFdsvfOl3kIfRT2bD9IjcGU9w=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 17:25:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:93:9f:ae:ef:e9:46:5e:5b:d5:75:98:d6:fb:5e:0f:36:37:f0:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0 Validity Not Before: Aug 5 14:56:55 2025 GMT Not After : Aug 8 17:25:55 2025 GMT Subject: CN=5ED986A4DB76C853545C8B611F0F48FD89826B24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:fa:0c:f1:55:5c:5d:b4:d9:12:c8:e2:ea:70: f2:c7:8b:22:55:69:39:11:a1:e6:c8:75:83:ef:4b: eb:fa:8e:0e:07:85:e6:28:9b:f4:18:d6:a7:81:30: e3:4d:d7:38:d5:5b:54:76:b3:0b:8b:f1:77:47:fc: b2:a1:37:94:5a:66:f7:2f:8f:89:a3:7a:72:53:38: e8:2e:67:29:6f:2c:0c:85:6e:b3:6f:68:10:c2:08: 0e:18:6d:56:28:6d:f3:43:41:5b:70:b7:7d:3f:51: 29:cd:81:17:2f:48:4e:43:2e:ab:6e:be:05:36:4e: 13:d2:a1:5c:0a:17:7d:2d:a9:6e:63:c0:83:89:fb: 0f:46:4a:b2:7c:09:53:65:01:26:23:d5:04:a9:2f: 25:b5:0f:1d:ec:cd:ca:23:9b:f5:82:ce:42:a2:a3: f3:99:34:57:31:70:ab:7e:07:c5:84:2b:74:3d:9e: d4:3c:ff:d4:03:53:61:da:f8:dd:b8:7b:41:83:5f: 8f:07:6f:12:f7:4d:87:64:6c:a4:79:04:49:32:69: 05:56:e0:e5:64:f0:7d:3a:96:88:b2:d5:8e:05:57: b4:73:a7:f7:22:f7:39:a1:5b:2e:31:2c:c4:86:57: 56:26:64:9d:2b:c5:0e:d2:c4:55:b3:71:bf:65:bf: 6e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D9:86:A4:DB:76:C8:53:54:5C:8B:61:1F:0F:48:FD:89:82:6B:24 X509v3 Authority Key Identifier: keyid:D0:FF:6F:09:3D:0D:EA:FB:5C:B4:2A:93:43:3F:A2:39:C9:03:EA:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:55:4f:88:e1:e1:07:d3:80:95:de:28:d6:c2:6c:4f:68:4b: 56:d7:0d:0b:7b:6d:53:8c:31:38:54:51:b7:72:53:f6:42:07: de:37:e2:e1:bc:ed:12:4a:3e:da:02:55:b4:21:e7:fb:be:68: 93:50:67:16:8f:d0:2c:16:12:3a:6c:41:21:b3:c6:bd:bc:e7: 1d:7f:ae:5c:5c:2c:a9:ab:ad:06:4e:e2:0d:c3:6a:da:7c:8f: 39:49:52:6a:3e:8f:c8:a0:80:7b:fc:66:90:ec:2d:7e:9c:ac: 08:f5:bd:00:a3:d5:d9:66:00:ab:75:6e:8f:09:fb:9e:cf:33: 80:5c:c4:3e:58:ac:7f:fb:c8:bf:b8:34:78:64:c1:25:c9:6d: b6:ce:5b:a8:8e:b7:ec:03:fd:2f:24:2a:f4:06:2b:b1:4f:02: 45:85:23:7f:e5:bf:ff:c3:31:85:43:b5:28:ef:cd:68:1a:8d: 3d:09:51:b4:6d:85:e9:a6:51:9d:4b:78:c1:f9:83:90:2f:fb: 79:e0:d9:bc:6d:d3:fa:0f:dc:44:51:47:1a:bf:06:bb:b2:7f: 6a:d9:52:3d:bd:45:32:b1:68:14:b1:0a:7a:03:3f:48:2f:68: c0:c0:c7:59:e2:d3:dd:81:8b:ee:24:93:a8:ed:02:2a:c1:7e: 95:bd:87:58 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQZOfru/pRl5b1XWY1vteDzY38FgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEyMzlD OTAzRUFDMDAeFw0yNTA4MDUxNDU2NTVaFw0yNTA4MDgxNzI1NTVaMDMxMTAvBgNV BAMTKDVFRDk4NkE0REI3NkM4NTM1NDVDOEI2MTFGMEY0OEZEODk4MjZCMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm+gzxVVxdtNkSyOLqcPLHiyJV aTkRoebIdYPvS+v6jg4HheYom/QY1qeBMONN1zjVW1R2swuL8XdH/LKhN5RaZvcv j4mjenJTOOguZylvLAyFbrNvaBDCCA4YbVYobfNDQVtwt30/USnNgRcvSE5DLqtu vgU2ThPSoVwKF30tqW5jwIOJ+w9GSrJ8CVNlASYj1QSpLyW1Dx3szcojm/WCzkKi o/OZNFcxcKt+B8WEK3Q9ntQ8/9QDU2Ha+N24e0GDX48HbxL3TYdkbKR5BEkyaQVW 4OVk8H06loiy1Y4FV7Rzp/ci9zmhWy4xLMSGV1YmZJ0rxQ7SxFWzcb9lv259AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXtmGpNt2yFNUXIthHw9I/YmCayQwHwYDVR0j BBgwFoAU0P9vCT0N6vtctCqTQz+iOckD6sAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 N2Y5ZjU2Mi03MjkyLTQ0ZjEtOGUyYy00NDBhMDUzMWMzOTYvMC9EMEZGNkYwOTNE MERFQUZCNUNCNDJBOTM0MzNGQTIzOUM5MDNFQUMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEyMzlDOTAz RUFDMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjdmOWY1NjItNzI5Mi00NGYxLThl MmMtNDQwYTA1MzFjMzk2LzAvRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEy MzlDOTAzRUFDMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEhVT4jh4QfTgJXeKNbCbE9oS1bXDQt7bVOM MThUUbdyU/ZCB9434uG87RJKPtoCVbQh5/u+aJNQZxaP0CwWEjpsQSGzxr285x1/ rlxcLKmrrQZO4g3Datp8jzlJUmo+j8iggHv8ZpDsLX6crAj1vQCj1dlmAKt1bo8J +57PM4BcxD5YrH/7yL+4NHhkwSXJbbbOW6iOt+wD/S8kKvQGK7FPAkWFI3/lv//D MYVDtSjvzWgajT0JUbRthemmUZ1LeMH5g5Av+3ng2bxt0/oP3ERRRxq/Bruyf2rZ Uj29RTKxaBSxCnoDP0gvaMDAx1ni092Bi+4kk6jtAirBfpW9h1g= -----END CERTIFICATE-----Generated at Thu Aug 7 11:09:26 2025 by rpki-client