$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft File: 749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft (raw, json) Hash identifier: dbE9DC9QIXo4LTqP+cwRVuOdWHdsxkAMV/aSt3subD0= Subject key identifier: 07:87:FE:B5:5D:AB:7A:F4:73:C0:8B:67:A0:11:4E:89:5B:08:97:95 Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 21580FEA8426FE108ECF2EAFA65E2303E8EC6BBF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft Manifest number: 01F7 Signing time: Tue 05 Aug 2025 11:51:59 +0000 Manifest this update: Tue 05 Aug 2025 11:46:59 +0000 Manifest next update: Fri 08 Aug 2025 23:25:59 +0000 Files and hashes: 1: 749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl (hash: 84401qx+g59meCgSQI8uCkmWDHj4eXK/XSKgxs/rcLs=) 2: 3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa (hash: D6ZQ1Nszopc+tjvvlk9LxeInARJoQa1nF2ZqxR2uBQM=) 3: 3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa (hash: q3nnfuFQ9fllwu5vaDMWKT58tFIU7r2iWutM+FFs7uM=) 4: 323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa (hash: VaGZ2rtQiVhlvvEqhey8VuIsjUW/H1CymqkYlv2nCyM=) 5: 3130332e3134392e3137362e302f32342d3234203d3e20313430343433.roa (hash: u/HGXTKlzUVzN3BHvIbNac6O5D491LLOLOhh0HKRChM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 23:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:58:0f:ea:84:26:fe:10:8e:cf:2e:af:a6:5e:23:03:e8:ec:6b:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Aug 5 11:46:59 2025 GMT Not After : Aug 8 23:25:59 2025 GMT Subject: CN=0787FEB55DAB7AF473C08B67A0114E895B089795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:09:1f:a6:a2:1e:4d:00:63:4b:58:4a:16:88: 7b:ae:03:95:e7:46:74:1f:09:e1:76:64:57:0c:f4: f2:6e:b9:31:f2:b9:c4:33:92:cd:b9:47:55:13:cb: 66:db:33:15:fe:f2:54:df:c3:02:52:16:39:52:d9: c6:5a:54:78:b1:36:43:ea:3b:10:ed:61:dc:e8:d6: d6:d6:6c:75:b0:ce:34:65:9f:98:28:10:e9:50:8b: 5e:df:9f:9b:97:1e:54:f1:fc:75:3e:c2:82:db:26: d6:e3:40:a3:7f:e0:ee:c0:11:cb:49:0a:7e:c3:1e: 58:2f:f6:cc:83:64:a0:2d:40:f7:8e:35:71:c7:b6: 0a:8e:8c:b2:b2:8f:ce:8f:11:ee:c8:70:ff:e3:30: f6:57:ba:a7:66:bf:8c:46:fc:1b:34:ce:55:98:3d: 84:09:2c:47:ee:5e:22:d2:39:0b:d4:37:ae:77:2c: 89:cb:69:92:0e:ff:c1:38:25:97:77:71:ee:e4:03: 1a:95:36:5e:9f:c7:fa:93:0a:72:6f:7b:ec:0a:ea: d6:02:ad:49:e0:6f:63:c2:af:89:1b:72:9a:e8:a7: 41:0f:7c:43:89:3e:53:84:08:b2:26:a7:00:9e:8d: 55:dd:59:7f:3b:15:c1:ed:32:94:01:88:b4:4b:6c: ee:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:87:FE:B5:5D:AB:7A:F4:73:C0:8B:67:A0:11:4E:89:5B:08:97:95 X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c0:83:4e:9d:e5:c1:50:36:23:1d:74:dc:77:98:cc:e3:61:80: fc:2b:23:53:31:85:88:5a:f2:01:ab:ad:f5:09:ac:ea:7e:4d: 35:4d:6d:ca:58:99:a2:1a:aa:7c:12:51:36:4a:1f:ec:57:8d: 3d:0a:14:9b:45:63:01:58:e7:2e:6f:77:30:59:0a:bf:6b:3e: 1d:7b:79:af:30:9c:c5:1b:8b:78:57:f8:0d:d4:12:21:b2:e3: d3:9c:66:85:a1:90:a1:90:f6:f8:83:6d:ba:b2:56:20:bd:d1: c0:48:70:71:d6:a4:31:79:91:0f:f6:42:c2:d3:88:40:dd:86: d1:ce:c4:3b:aa:9b:7a:dc:f6:4a:2c:3e:1b:8b:e8:62:af:59: 61:53:6f:fe:ee:ab:19:d2:d5:41:56:3a:15:39:4f:a1:5f:b8: a3:d8:dd:08:c5:b5:bd:23:0f:c0:21:0b:1e:6c:6e:c5:ba:9d: b4:79:3f:33:fd:a6:6e:7e:5b:90:b8:9c:d8:30:da:e1:27:cd: ba:19:31:e5:93:86:91:3a:f8:01:ad:c3:d2:3f:43:cb:09:65: d9:3a:9a:80:85:98:02:85:b9:0a:7e:34:70:1b:d0:71:fe:8a: b4:27:6b:cd:ab:74:84:da:c7:e6:3f:43:9e:46:eb:3b:cc:03: bc:37:2f:e9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIVgP6oQm/hCOzy6vpl4jA+jsa78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yNTA4MDUxMTQ2NTlaFw0yNTA4MDgyMzI1NTlaMDMxMTAvBgNV BAMTKDA3ODdGRUI1NURBQjdBRjQ3M0MwOEI2N0EwMTE0RTg5NUIwODk3OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjCR+moh5NAGNLWEoWiHuuA5Xn RnQfCeF2ZFcM9PJuuTHyucQzks25R1UTy2bbMxX+8lTfwwJSFjlS2cZaVHixNkPq OxDtYdzo1tbWbHWwzjRln5goEOlQi17fn5uXHlTx/HU+woLbJtbjQKN/4O7AEctJ Cn7DHlgv9syDZKAtQPeONXHHtgqOjLKyj86PEe7IcP/jMPZXuqdmv4xG/Bs0zlWY PYQJLEfuXiLSOQvUN653LInLaZIO/8E4JZd3ce7kAxqVNl6fx/qTCnJve+wK6tYC rUngb2PCr4kbcprop0EPfEOJPlOECLImpwCejVXdWX87FcHtMpQBiLRLbO7XAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUB4f+tV2revRzwItnoBFOiVsIl5UwHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGFlOGRiMzgtNjNhOC00MTNjLWE5 ZjYtY2MyMjNhZmE0YTc1LzAvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVD RDNFQTI3NjM1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMCDTp3lwVA2Ix103HeYzONhgPwrI1MxhYha 8gGrrfUJrOp+TTVNbcpYmaIaqnwSUTZKH+xXjT0KFJtFYwFY5y5vdzBZCr9rPh17 ea8wnMUbi3hX+A3UEiGy49OcZoWhkKGQ9viDbbqyViC90cBIcHHWpDF5kQ/2QsLT iEDdhtHOxDuqm3rc9kosPhuL6GKvWWFTb/7uqxnS1UFWOhU5T6FfuKPY3QjFtb0j D8AhCx5sbsW6nbR5PzP9pm5+W5C4nNgw2uEnzboZMeWThpE6+AGtw9I/Q8sJZdk6 moCFmAKFuQp+NHAb0HH+irQna82rdITax+Y/Q55G6zvMA7w3L+k= -----END CERTIFICATE-----Generated at Thu Aug 7 23:57:55 2025 by rpki-client