$ rpki-client -vvf repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft File: D2EA420344F486935839E03DF1B3C237F295C2DE.mft (raw, json) Hash identifier: koKL4V8xa3ew333inurPwQYXH0D8/Qpi/y357fClLeE= Subject key identifier: 01:B0:76:C6:85:F4:89:9A:C6:98:67:C1:6D:6A:DE:78:9F:32:DA:9B Authority key identifier: D2:EA:42:03:44:F4:86:93:58:39:E0:3D:F1:B3:C2:37:F2:95:C2:DE Certificate issuer: /CN=D2EA420344F486935839E03DF1B3C237F295C2DE Certificate serial: 3EE611947F4E1E2BCDD05AFABAA8C1D881349F15 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft Manifest number: 04C8 Signing time: Thu 07 Aug 2025 21:51:45 +0000 Manifest this update: Thu 07 Aug 2025 21:46:45 +0000 Manifest next update: Mon 11 Aug 2025 02:14:45 +0000 Files and hashes: 1: 3130332e3131302e3132302e302f32322d3234203d3e20313337333230.roa (hash: Z1/0hxtcuucuwACdWQq+JfghAHLR9fBRu9+nQ76ie1Y=) 2: D2EA420344F486935839E03DF1B3C237F295C2DE.crl (hash: Yp6jZLXSQm3hTPCVgWjOY/agJJhnLBxD+Qyunug3pQ4=) 3: 323430323a386163303a3a2f33322d3438203d3e20313337333230.roa (hash: oHAd0vkxRqWyozAmCufOZ+4unG6aZz/EmEBi8K1zkKg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.crl rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 02:14:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e6:11:94:7f:4e:1e:2b:cd:d0:5a:fa:ba:a8:c1:d8:81:34:9f:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EA420344F486935839E03DF1B3C237F295C2DE Validity Not Before: Aug 7 21:46:45 2025 GMT Not After : Aug 11 02:14:45 2025 GMT Subject: CN=01B076C685F4899AC69867C16D6ADE789F32DA9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:63:be:af:b7:b7:70:70:67:b8:4d:68:05:0f: c9:26:c7:4c:3b:95:cf:19:08:4f:8a:fe:ea:db:c5: d3:ec:29:37:bf:aa:74:75:59:75:cf:84:8d:77:7c: 0c:99:b6:f8:77:e7:f4:11:54:ee:b7:9d:83:ad:3f: 59:dc:ac:f5:fb:2b:f9:66:cc:f3:55:57:81:71:7d: 6c:dc:c5:cc:e4:f9:7e:5c:9e:1d:2f:57:54:0e:d7: ed:7e:7b:35:d7:94:38:b0:f8:42:70:a3:0e:d1:08: b8:31:e6:58:9c:ea:72:e6:82:39:d3:c4:d7:0c:74: bb:a8:c8:e2:cc:95:2b:8d:2e:6f:43:2d:54:5b:47: a8:05:ce:1f:2e:c2:4d:63:75:58:78:e9:a9:c7:aa: d1:18:22:56:91:a5:44:1e:e2:af:18:1e:f6:66:2d: 63:40:e9:63:c8:1c:98:af:e1:da:18:02:54:bc:e7: fa:a4:30:b1:9d:e7:7d:34:b7:54:83:e3:d5:4e:39: 90:a9:5d:34:6b:1c:ce:00:ce:9f:dd:2e:d9:93:8e: eb:15:e5:05:76:5a:31:df:a4:fa:6e:35:79:01:fc: 3b:ba:ad:8b:0b:e9:3b:41:6b:f8:37:d0:e1:36:09: 5e:9f:23:49:ad:98:dc:f9:47:c5:fd:d0:ed:6a:3a: 67:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B0:76:C6:85:F4:89:9A:C6:98:67:C1:6D:6A:DE:78:9F:32:DA:9B X509v3 Authority Key Identifier: keyid:D2:EA:42:03:44:F4:86:93:58:39:E0:3D:F1:B3:C2:37:F2:95:C2:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:22:d1:b6:f0:f1:3f:4f:6c:d1:e1:90:8f:8a:53:b2:a2:0b: 1d:34:64:c2:31:16:e3:7c:c6:a3:03:8d:28:53:a8:e4:8c:a6: 2e:d6:f0:3a:06:f8:ca:da:9b:26:45:a5:83:85:11:36:07:3a: ce:81:92:66:24:b4:8d:7d:6c:63:c3:e6:5b:fc:3b:bf:cf:b5: 6f:16:ca:94:56:bc:3f:44:a5:16:86:a4:80:96:1e:1b:f0:a9: 6a:87:ef:c3:50:9d:ac:40:3b:81:3b:68:2c:4b:d5:8f:db:b2: 85:28:6d:c4:14:56:92:aa:c8:f3:1d:88:c8:41:1a:56:64:ae: e4:bf:33:a6:74:80:9e:9c:3f:09:4f:bf:3f:56:54:a3:2d:0b: bd:41:4d:2e:e0:48:d7:34:25:4e:9a:fa:02:5c:5f:cc:e4:7c: 78:31:1d:9e:ca:77:94:5a:d2:02:1b:30:55:27:52:3d:0b:69: e2:aa:45:4f:bf:ab:9a:09:4c:e9:03:23:d2:71:ab:55:30:f2: 48:86:da:b2:a6:cd:c0:a6:d1:13:a9:e1:0a:eb:b0:93:e4:80: 33:a1:ce:61:ef:1a:05:3c:ea:bf:c8:72:29:5b:3e:22:4c:4d: cd:40:8e:51:12:58:e1:a6:bd:c5:b8:b2:9d:79:e4:26:63:f3: da:ca:39:f6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPuYRlH9OHivN0Fr6uqjB2IE0nxUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0MyMzdG Mjk1QzJERTAeFw0yNTA4MDcyMTQ2NDVaFw0yNTA4MTEwMjE0NDVaMDMxMTAvBgNV BAMTKDAxQjA3NkM2ODVGNDg5OUFDNjk4NjdDMTZENkFERTc4OUYzMkRBOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXY76vt7dwcGe4TWgFD8kmx0w7 lc8ZCE+K/urbxdPsKTe/qnR1WXXPhI13fAyZtvh35/QRVO63nYOtP1ncrPX7K/lm zPNVV4FxfWzcxczk+X5cnh0vV1QO1+1+ezXXlDiw+EJwow7RCLgx5lic6nLmgjnT xNcMdLuoyOLMlSuNLm9DLVRbR6gFzh8uwk1jdVh46anHqtEYIlaRpUQe4q8YHvZm LWNA6WPIHJiv4doYAlS85/qkMLGd5300t1SD49VOOZCpXTRrHM4Azp/dLtmTjusV 5QV2WjHfpPpuNXkB/Du6rYsL6TtBa/g30OE2CV6fI0mtmNz5R8X90O1qOmcfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAbB2xoX0iZrGmGfBbWreeJ8y2pswHwYDVR0j BBgwFoAU0upCA0T0hpNYOeA98bPCN/KVwt4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NDA4ODNmMy00NTdhLTRjMTQtOTU3Ny02N2UxNTBhMmIxMmEvMC9EMkVBNDIwMzQ0 RjQ4NjkzNTgzOUUwM0RGMUIzQzIzN0YyOTVDMkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0MyMzdGMjk1 QzJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzQwODgzZjMtNDU3YS00YzE0LTk1 NzctNjdlMTUwYTJiMTJhLzAvRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0My MzdGMjk1QzJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJsi0bbw8T9PbNHhkI+KU7KiCx00ZMIxFuN8 xqMDjShTqOSMpi7W8DoG+MramyZFpYOFETYHOs6BkmYktI19bGPD5lv8O7/PtW8W ypRWvD9EpRaGpICWHhvwqWqH78NQnaxAO4E7aCxL1Y/bsoUobcQUVpKqyPMdiMhB GlZkruS/M6Z0gJ6cPwlPvz9WVKMtC71BTS7gSNc0JU6a+gJcX8zkfHgxHZ7Kd5Ra 0gIbMFUnUj0LaeKqRU+/q5oJTOkDI9Jxq1Uw8kiG2rKmzcCm0ROp4QrrsJPkgDOh zmHvGgU86r/IcilbPiJMTc1AjlESWOGmvcW4sp155CZj89rKOfY= -----END CERTIFICATE-----Generated at Sat Aug 9 14:25:21 2025 by rpki-client