$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft File: 4C44F6F543BDBB858D3656D41A36660407672BDE.mft (raw, json) Hash identifier: 9eJE+h1ztC7RdddEFg5mIFY+NGbELa7K+NYJTJ+fCyw= Subject key identifier: 05:62:B6:EB:DB:4F:45:6C:8C:A9:84:8E:F1:9A:F0:67:65:28:9A:61 Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 6069E146C542F0936BC8585F93DF4C876305C16E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft Manifest number: 0249 Signing time: Thu 07 Aug 2025 18:30:59 +0000 Manifest this update: Thu 07 Aug 2025 18:25:58 +0000 Manifest next update: Mon 11 Aug 2025 01:53:58 +0000 Files and hashes: 1: 3130332e31312e3130372e302f32342d3234203d3e203538343832.roa (hash: 4O8b726/lpcYZIzCbq+BOqW7rrh6L+bwyN5I34NP9Oc=) 2: 3130332e32392e3138342e302f32342d3234203d3e203536323630.roa (hash: PxQIpqbQq2jLhpu3Xowhx5fys0b4IY/JPo7Tka0HdFo=) 3: 4C44F6F543BDBB858D3656D41A36660407672BDE.crl (hash: 0OPu1IqgXU9R4kWNv8N1ILYkhej7Jf0Q5+87qxEqvVc=) 4: 3130332e31312e3130362e302f32342d3234203d3e203536323630.roa (hash: /oNKkVvACpGRwEaHQtz+NrUuOBWsbNWp6QRHeV0MPMU=) 5: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (hash: 8Rg4KVnY/32fl4fG4uMRblRtiju0uviBp14XLoqECcw=) 6: 3130332e32392e3138352e302f32342d3234203d3e203536323630.roa (hash: rlZNRe9QwPDxRgCp5O054ihVTvOafRmbaG0Hj+9kO5Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 23:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:69:e1:46:c5:42:f0:93:6b:c8:58:5f:93:df:4c:87:63:05:c1:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Aug 7 18:25:58 2025 GMT Not After : Aug 11 01:53:58 2025 GMT Subject: CN=0562B6EBDB4F456C8CA9848EF19AF06765289A61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:de:28:62:76:b5:a9:fe:6b:91:a9:cd:f4:67: 6c:09:03:0c:55:96:7d:a6:7c:51:bb:93:8b:c1:40: ee:08:81:8a:54:ca:36:a4:df:33:2e:a5:07:3d:a8: c5:66:bd:7e:3d:bf:f3:c6:09:3d:6e:92:e7:64:5d: 2a:2d:a6:d1:65:4d:e4:2b:0f:34:ff:2e:60:89:e8: 49:45:bc:37:c9:58:5f:9d:2b:5c:a1:7f:01:9f:b0: 4c:11:2f:d5:d6:64:c1:87:53:99:23:ba:ac:3f:f5: 3c:1d:2b:63:3b:4d:72:aa:39:d0:9f:07:42:e3:71: dd:bc:59:6d:0d:77:cc:5e:9b:e6:36:02:c6:74:25: 0a:de:0c:8f:74:a3:91:de:36:71:0d:ae:79:2d:75: 4e:9a:2b:db:83:bf:9b:a7:b4:3a:1b:04:27:5f:14: 72:9d:bf:a4:99:e3:19:c7:d6:a7:46:11:fc:a2:56: 6c:61:0a:30:8f:be:a2:c8:39:b5:52:33:f3:f0:b7: 72:67:0e:6c:7a:81:fd:10:89:b9:99:3b:4a:29:74: f9:0e:79:a0:5e:15:f0:6f:9e:8f:46:db:41:5b:5c: 7f:5f:2b:59:f1:24:e3:26:cf:78:95:01:87:cd:07: d5:18:a9:30:ea:b7:aa:08:16:50:d1:2e:dd:e5:d6: f5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:62:B6:EB:DB:4F:45:6C:8C:A9:84:8E:F1:9A:F0:67:65:28:9A:61 X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:de:7e:18:84:96:91:77:97:c7:6b:ee:36:75:37:fd:28:52: 1c:23:0a:fd:2f:54:73:f2:02:81:fb:ed:9c:09:93:1f:96:5e: c3:d4:e5:59:6d:96:8c:54:46:62:ee:07:33:04:bc:cf:b7:97: 50:33:d4:4b:6f:cc:0f:9d:4e:e7:d4:9e:45:aa:e4:80:82:9d: 63:b7:07:0e:81:96:96:d3:b3:c8:e3:f1:2a:fb:30:26:8e:0f: f5:81:6d:58:38:b1:88:68:dd:2b:84:c0:b1:38:d2:70:34:ef: be:85:a8:fa:3d:7e:47:98:9e:f1:25:8a:b9:b5:42:a4:cc:6e: 0f:24:47:70:57:c5:a1:87:7e:1c:91:cb:f4:4b:da:1a:d0:53: e6:9a:ea:24:01:fe:fc:96:cc:fa:8a:26:bd:07:19:84:1d:59: 8f:d9:69:1f:b2:b3:7b:f9:1e:25:08:95:3b:54:ff:8e:9c:7c: f1:dd:2d:5f:11:6b:41:05:d8:e0:6e:f8:20:fd:fa:ab:25:e3: f5:58:6a:15:aa:59:8c:9d:b1:1e:6e:c4:34:55:3c:62:cc:80: d2:80:39:d0:aa:a4:3f:ec:d1:49:d4:b4:2b:a6:a1:38:32:9d: f8:13:d6:35:13:d5:a1:42:74:cf:4a:94:1a:0e:b0:4e:4b:58: fb:14:40:1b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYGnhRsVC8JNryFhfk99Mh2MFwW4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNTA4MDcxODI1NThaFw0yNTA4MTEwMTUzNThaMDMxMTAvBgNV BAMTKDA1NjJCNkVCREI0RjQ1NkM4Q0E5ODQ4RUYxOUFGMDY3NjUyODlBNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC73ihidrWp/muRqc30Z2wJAwxV ln2mfFG7k4vBQO4IgYpUyjak3zMupQc9qMVmvX49v/PGCT1ukudkXSotptFlTeQr DzT/LmCJ6ElFvDfJWF+dK1yhfwGfsEwRL9XWZMGHU5kjuqw/9TwdK2M7TXKqOdCf B0Ljcd28WW0Nd8xem+Y2AsZ0JQreDI90o5HeNnENrnktdU6aK9uDv5untDobBCdf FHKdv6SZ4xnH1qdGEfyiVmxhCjCPvqLIObVSM/Pwt3JnDmx6gf0QibmZO0opdPkO eaBeFfBvno9G20FbXH9fK1nxJOMmz3iVAYfNB9UYqTDqt6oIFlDRLt3l1vVDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUBWK269tPRWyMqYSO8ZrwZ2UommEwHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODVmMmM2NmMtMWY4Ny00ZDk4LWE0 NjctMzIxOGI2NDViM2FjLzAvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2 MDQwNzY3MkJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEzefhiElpF3l8dr7jZ1N/0oUhwjCv0vVHPy AoH77ZwJkx+WXsPU5VltloxURmLuBzMEvM+3l1Az1EtvzA+dTufUnkWq5ICCnWO3 Bw6BlpbTs8jj8Sr7MCaOD/WBbVg4sYho3SuEwLE40nA0776FqPo9fkeYnvElirm1 QqTMbg8kR3BXxaGHfhyRy/RL2hrQU+aa6iQB/vyWzPqKJr0HGYQdWY/ZaR+ys3v5 HiUIlTtU/46cfPHdLV8Ra0EF2OBu+CD9+qsl4/VYahWqWYydsR5uxDRVPGLMgNKA OdCqpD/s0UnUtCumoTgynfgT1jUT1aFCdM9KlBoOsE5LWPsUQBs= -----END CERTIFICATE-----Generated at Thu Aug 7 20:13:04 2025 by rpki-client