$ rpki-client -vvf repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft File: 0FA41B65D1881666013C9683E40575E68E5DC0A5.mft (raw, json) Hash identifier: qCW0jmMIXqF8yG4kJr7qDMBnY7KF1LfjxWisPQLmRt0= Subject key identifier: 12:18:A9:35:A9:6C:86:D1:6A:4D:91:B2:53:AB:CA:01:2A:18:BA:70 Authority key identifier: 0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 Certificate issuer: /CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Certificate serial: 554D6A76690D3E4739DD5252EB1BC08D3E965651 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft Manifest number: 0507 Signing time: Tue 05 Aug 2025 00:21:03 +0000 Manifest this update: Tue 05 Aug 2025 00:16:03 +0000 Manifest next update: Fri 08 Aug 2025 11:22:03 +0000 Files and hashes: 1: 323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa (hash: 96iMJoj+cFMvtnyIVwYET8bE27HKdbaW3rJ7KX7hPqQ=) 2: 0FA41B65D1881666013C9683E40575E68E5DC0A5.crl (hash: tzgJLKNPplBSG3Xtiw0qopRg5Q+KB3a+YIYSrYTtW8U=) 3: 3130332e3231362e3138382e302f32342d3234203d3e20313431313037.roa (hash: 1h7fo52sVm4cJACJ1QTb5QR43dKEDAqoDnfictr7I+U=) 4: 3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa (hash: tHhLDdHHbsCkG+UHT3p88TUY2+W5e4f+3agioxt0A6g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 11:22:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:4d:6a:76:69:0d:3e:47:39:dd:52:52:eb:1b:c0:8d:3e:96:56:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Validity Not Before: Aug 5 00:16:03 2025 GMT Not After : Aug 8 11:22:03 2025 GMT Subject: CN=1218A935A96C86D16A4D91B253ABCA012A18BA70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:67:52:c8:0a:25:39:54:54:a6:9b:a8:ad:95: a4:56:65:48:e8:5b:df:45:f9:c4:de:31:0b:13:67: a4:28:a4:9f:55:d7:ea:9b:b2:86:d0:45:52:db:77: fb:0c:e8:86:14:6a:9c:1b:da:36:4c:08:5c:e5:4f: 66:9a:12:63:7e:8c:2e:0e:9a:91:ee:5e:0c:e5:b3: 8b:2c:db:a6:a0:bf:d8:7a:3d:ad:52:4c:ca:d6:d7: ed:f3:23:c6:4e:3a:04:0d:82:77:0b:ad:5b:16:88: d4:39:e3:07:e3:ae:d5:d5:4a:c2:ba:c7:b7:e8:e1: e0:76:21:ee:f1:e4:37:32:93:59:5e:c1:e9:c5:c3: 80:cd:b2:ad:f1:6e:bc:3a:33:d4:9a:24:8d:b4:c7: c7:18:c0:88:b9:49:18:6d:41:1c:fc:52:66:5e:a6: 29:c3:91:c8:2c:44:8a:05:86:59:33:b3:88:16:f1: cc:fd:f0:91:9c:78:2f:4b:36:d0:d4:d3:1d:4d:4f: 68:aa:c7:45:a0:40:45:77:2a:75:ee:49:41:54:d7: a4:f7:96:a5:ab:a9:ec:98:c1:48:7d:66:35:fe:12: d1:63:f5:55:d1:2f:fb:c0:20:76:78:54:3d:9a:21: 6d:90:c2:8f:4f:96:f4:e8:05:6a:e6:d3:ac:ce:8a: b0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:18:A9:35:A9:6C:86:D1:6A:4D:91:B2:53:AB:CA:01:2A:18:BA:70 X509v3 Authority Key Identifier: keyid:0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:aa:93:66:35:03:7b:db:f3:4a:26:40:15:10:15:2f:cd:3b: fc:c6:25:2a:e1:69:e0:f5:2f:3a:61:97:6e:4e:09:85:a7:d0: 91:7e:a4:67:9d:e1:0f:1f:63:a6:c0:31:ea:8e:ab:be:b3:e3: dd:b1:ed:90:5b:a7:61:10:d7:b9:f5:42:4b:af:29:9c:ff:87: ea:5d:65:76:d1:44:f7:bc:0f:13:61:3b:ee:60:b7:16:66:13: e8:8a:0a:76:17:03:f9:57:06:5b:11:b5:a7:94:02:29:14:fb: 13:7f:ff:0e:02:bd:18:38:29:16:c0:b1:8f:c6:d4:0b:c0:71: aa:80:d7:0c:d9:03:09:37:d6:4b:db:ef:f8:76:4c:46:39:ce: 0e:64:aa:73:c9:03:91:f8:67:48:88:d5:cd:c1:b3:e6:41:18: 69:fa:19:e0:29:33:3e:e9:05:d4:66:de:e0:47:30:38:4a:d3: 3a:95:d8:88:59:1b:e3:32:98:14:2c:0b:44:e1:ad:71:c5:03: e9:fd:4b:83:cb:db:81:68:c4:2b:5b:e4:71:cc:39:12:53:bf: 9a:e8:2a:d9:1c:e9:d2:98:61:eb:80:7b:cb:71:92:04:f0:15: 35:1f:f6:4e:fd:8c:1d:1d:01:61:6c:06:7c:d4:de:07:e8:5e: ed:0e:e0:5a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVU1qdmkNPkc53VJS6xvAjT6WVlEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4 RTVEQzBBNTAeFw0yNTA4MDUwMDE2MDNaFw0yNTA4MDgxMTIyMDNaMDMxMTAvBgNV BAMTKDEyMThBOTM1QTk2Qzg2RDE2QTREOTFCMjUzQUJDQTAxMkExOEJBNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIZ1LICiU5VFSmm6itlaRWZUjo W99F+cTeMQsTZ6QopJ9V1+qbsobQRVLbd/sM6IYUapwb2jZMCFzlT2aaEmN+jC4O mpHuXgzls4ss26agv9h6Pa1STMrW1+3zI8ZOOgQNgncLrVsWiNQ54wfjrtXVSsK6 x7fo4eB2Ie7x5Dcyk1lewenFw4DNsq3xbrw6M9SaJI20x8cYwIi5SRhtQRz8UmZe pinDkcgsRIoFhlkzs4gW8cz98JGceC9LNtDU0x1NT2iqx0WgQEV3KnXuSUFU16T3 lqWrqeyYwUh9ZjX+EtFj9VXRL/vAIHZ4VD2aIW2Qwo9PlvToBWrm06zOirDzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEhipNalshtFqTZGyU6vKASoYunAwHwYDVR0j BBgwFoAUD6QbZdGIFmYBPJaD5AV15o5dwKUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk0ZDM3NS1mYzdkLTRkYzctYTFmMS1lMGIzYTU5ZmRmNzgvMC8wRkE0MUI2NUQx ODgxNjY2MDEzQzk2ODNFNDA1NzVFNjhFNURDMEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4RTVE QzBBNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzk5NGQzNzUtZmM3ZC00ZGM3LWEx ZjEtZTBiM2E1OWZkZjc4LzAvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1 RTY4RTVEQzBBNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABSqk2Y1A3vb80omQBUQFS/NO/zGJSrhaeD1 Lzphl25OCYWn0JF+pGed4Q8fY6bAMeqOq76z492x7ZBbp2EQ17n1QkuvKZz/h+pd ZXbRRPe8DxNhO+5gtxZmE+iKCnYXA/lXBlsRtaeUAikU+xN//w4CvRg4KRbAsY/G 1AvAcaqA1wzZAwk31kvb7/h2TEY5zg5kqnPJA5H4Z0iI1c3Bs+ZBGGn6GeApMz7p BdRm3uBHMDhK0zqV2IhZG+MymBQsC0ThrXHFA+n9S4PL24FoxCtb5HHMORJTv5ro Ktkc6dKYYeuAe8txkgTwFTUf9k79jB0dAWFsBnzU3gfoXu0O4Fo= -----END CERTIFICATE-----Generated at Thu Aug 7 04:24:20 2025 by rpki-client