$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft File: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft (raw, json) Hash identifier: TqZxPBljFZpU0bz0roSg7LSl72Xb4BKuC/iVvNBfSXk= Subject key identifier: 56:79:3A:88:9B:13:65:D2:B4:2A:4D:81:53:9E:47:43:23:33:EC:15 Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 142DA67ABB9C10DEB2A58C84A9F4A751483E0080 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft Manifest number: A7 Signing time: Thu 07 Aug 2025 00:12:04 +0000 Manifest this update: Thu 07 Aug 2025 00:07:03 +0000 Manifest next update: Sun 10 Aug 2025 11:20:03 +0000 Files and hashes: 1: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (hash: neEFe0w5kAvbktE6GbOUZcC2jhb5+07V2Dgm04kOOSQ=) 2: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl (hash: WwOKHNF7vgbAV8/sBhtpc+QsSSAgVv+wqdHDlTbNh0Q=) 3: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (hash: l6is4dO0R0PbZ70dLKCH7MsIvztrQYbYg8s+N5j55/w=) 4: 323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa (hash: S9qtO6NNat29VwWXnPO9Ad1pn0XLAWnDz3QkqSTjTbI=) 5: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (hash: TZoglv4gVSEGVdYtRZ4lgIJlzz7UT43dp4O+n8rkNNY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 11:20:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:2d:a6:7a:bb:9c:10:de:b2:a5:8c:84:a9:f4:a7:51:48:3e:00:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Aug 7 00:07:03 2025 GMT Not After : Aug 10 11:20:03 2025 GMT Subject: CN=56793A889B1365D2B42A4D81539E47432333EC15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cb:39:4c:18:0b:ae:24:4a:4c:e5:47:a7:9d: 8e:36:40:92:aa:60:dc:7b:b8:60:3e:44:e9:58:40: 5e:03:ff:19:7c:3d:c7:d4:5b:8c:37:d6:de:37:df: f7:61:32:29:10:97:2a:d5:97:f1:41:b3:3e:a9:4f: 28:4e:a9:bc:2b:a4:3c:3b:ce:a8:2a:98:f4:7a:f8: 77:1d:49:77:71:b0:4e:0f:72:11:32:45:0d:26:80: 4d:1c:95:f2:27:d6:a8:c4:ef:3f:e1:dc:2a:cd:0c: a1:6e:74:cf:07:9c:0c:7b:4b:0e:c3:8c:6d:7b:d1: 09:0a:e1:ca:57:7d:d6:ab:5f:c6:ce:62:c2:2b:e7: 2b:fd:27:fa:4e:db:2f:3f:8b:a9:49:4d:5a:d3:28: 68:59:ed:78:67:e4:a8:40:e1:80:7e:0c:b1:be:f2: 13:7b:5e:f7:85:88:c2:24:b1:9e:dd:98:36:78:66: 99:6e:2f:8c:0e:46:15:77:60:4f:85:51:01:26:a3: 02:69:72:a1:0b:2e:30:ce:d7:2d:15:87:47:b8:a7: aa:11:c7:06:38:d8:13:61:45:6d:21:e8:6d:d5:75: ad:8f:fb:41:ce:81:83:ef:5e:e3:ac:ee:a0:16:a1: 8f:83:c3:93:30:f2:99:97:f8:ba:5f:54:30:1c:45: cc:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:79:3A:88:9B:13:65:D2:B4:2A:4D:81:53:9E:47:43:23:33:EC:15 X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:ec:43:1d:a0:10:fc:45:d4:8f:a7:d4:6b:25:40:ee:17:f5: 08:bc:69:02:1e:13:72:41:ac:6d:44:14:1c:b3:00:e3:40:ff: e7:2f:0e:d4:51:98:37:41:ec:07:9a:9d:7e:59:ee:00:ab:f0: 37:e2:2f:11:10:2a:15:93:73:76:51:3f:89:bb:7c:6f:00:22: 11:18:8d:20:cf:0a:3e:bb:b0:22:a9:54:90:d9:d1:50:33:ed: 44:7f:9d:64:de:a9:9d:b8:ee:85:24:be:42:d6:92:48:39:e1: fe:d2:f3:7e:6c:50:78:09:56:ed:32:b5:64:07:39:76:ab:cd: d2:32:05:e9:6e:24:a5:c2:69:22:93:9f:5b:37:fa:db:ca:4d: 04:56:72:19:a3:9b:ec:04:09:97:ed:01:52:10:5c:c8:a4:a6: 43:6f:85:4b:3f:96:35:7b:2c:af:c1:01:e1:d6:df:cb:38:34: 51:f6:c1:d7:8a:f2:ce:a8:fa:e6:79:1d:18:8e:5e:99:be:cf: 4c:3c:34:b5:ee:7f:5f:db:63:bf:a6:3f:9b:fb:14:13:54:1f: 4f:60:69:5e:eb:1a:41:52:d3:fb:40:2f:c8:63:98:b0:19:e3: b0:31:34:77:33:59:65:b5:1c:1a:cb:d0:54:2c:7e:44:81:72: d5:7e:c4:90 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFC2merucEN6ypYyEqfSnUUg+AIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNTA4MDcwMDA3MDNaFw0yNTA4MTAxMTIwMDNaMDMxMTAvBgNV BAMTKDU2NzkzQTg4OUIxMzY1RDJCNDJBNEQ4MTUzOUU0NzQzMjMzM0VDMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEyzlMGAuuJEpM5UennY42QJKq YNx7uGA+ROlYQF4D/xl8PcfUW4w31t433/dhMikQlyrVl/FBsz6pTyhOqbwrpDw7 zqgqmPR6+HcdSXdxsE4PchEyRQ0mgE0clfIn1qjE7z/h3CrNDKFudM8HnAx7Sw7D jG170QkK4cpXfdarX8bOYsIr5yv9J/pO2y8/i6lJTVrTKGhZ7Xhn5KhA4YB+DLG+ 8hN7XveFiMIksZ7dmDZ4ZpluL4wORhV3YE+FUQEmowJpcqELLjDO1y0Vh0e4p6oR xwY42BNhRW0h6G3Vda2P+0HOgYPvXuOs7qAWoY+Dw5Mw8pmX+LpfVDAcRcxzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVnk6iJsTZdK0Kk2BU55HQyMz7BUwHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGI3MmVjYTQtNzNhZC00ZTBiLWE2 YTYtN2E2NTY5OGI3M2JlLzAvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNG NDM0NDk3QkZFMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACnsQx2gEPxF1I+n1GslQO4X9Qi8aQIeE3JB rG1EFByzAONA/+cvDtRRmDdB7AeanX5Z7gCr8DfiLxEQKhWTc3ZRP4m7fG8AIhEY jSDPCj67sCKpVJDZ0VAz7UR/nWTeqZ247oUkvkLWkkg54f7S835sUHgJVu0ytWQH OXarzdIyBeluJKXCaSKTn1s3+tvKTQRWchmjm+wECZftAVIQXMikpkNvhUs/ljV7 LK/BAeHW38s4NFH2wdeK8s6o+uZ5HRiOXpm+z0w8NLXuf1/bY7+mP5v7FBNUH09g aV7rGkFS0/tAL8hjmLAZ47AxNHczWWW1HBrL0FQsfkSBctV+xJA= -----END CERTIFICATE-----Generated at Thu Aug 7 23:57:17 2025 by rpki-client