$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft File: 4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft (raw, json) Hash identifier: diF9QI/tlZ7od9hDFT2ylapLIujEuZg9nZTsOwoiZ04= Subject key identifier: A3:3C:3D:66:27:3D:A7:19:CC:ED:4D:D2:4B:64:D4:86:A3:D4:C2:A3 Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 7761E4FBF07003A9F37AB88DA66EBBE35B044A27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft Manifest number: 0501 Signing time: Tue 05 Aug 2025 00:00:02 +0000 Manifest this update: Mon 04 Aug 2025 23:55:02 +0000 Manifest next update: Fri 08 Aug 2025 02:07:02 +0000 Files and hashes: 1: 4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl (hash: OxErG0ptcEKFbaCPYQsEZr0NL6TxBtA28fkVm/iByKM=) 2: 3130332e3132352e3131362e302f32342d3234203d3e20313338313032.roa (hash: RbezRzshmathyV4EoiQ/5deOypXsD7H6MYLkfw1/pRw=) 3: 3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa (hash: y8ADkM9INdo4B5YpCY3N+ofggmxgoMYRUDnTX9TJFJg=) 4: 3130332e3132352e3131382e302f32342d3234203d3e20313338313032.roa (hash: KvTsgODxSTYXSwM09nr1mlGXAPY3uRhzMZlaVsc+OC4=) 5: 3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa (hash: 8llNfwrUTFXUaOZxOG2FdVdGooONQqY0triO7boP8ZE=) 6: 3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa (hash: ZMeuRsHtVSwXmTeOlP2EBAn6yOUfUCueHpz1hHvcg+E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 02:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:61:e4:fb:f0:70:03:a9:f3:7a:b8:8d:a6:6e:bb:e3:5b:04:4a:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Aug 4 23:55:02 2025 GMT Not After : Aug 8 02:07:02 2025 GMT Subject: CN=A33C3D66273DA719CCED4DD24B64D486A3D4C2A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2b:5c:00:13:12:9c:4b:bd:a0:f8:b4:6b:40: 6a:97:7e:4c:a0:19:d1:03:7f:cd:1a:73:1a:eb:7e: 8c:27:d4:a4:e4:86:aa:4e:73:a1:9f:f2:c8:f1:f3: 2e:ed:a4:bc:b3:da:7e:58:37:0b:aa:f9:9d:31:33: f1:67:8c:92:03:e4:65:21:dc:e3:c1:ee:d9:e0:5f: 89:66:d7:d9:89:72:4e:9f:3a:39:e7:52:a5:0c:7e: 05:d5:8e:ce:31:d1:40:03:5b:1d:82:e6:b3:f6:21: 70:7f:99:80:17:78:a9:50:20:03:32:1b:f9:f5:1e: 27:e1:fb:b7:69:1d:fb:99:e6:2f:f4:46:3b:2e:62: 0b:51:a8:42:08:79:50:aa:5f:6d:c2:f7:2d:d4:3d: 4e:0b:b3:49:08:87:14:9b:8e:7e:7a:fd:f9:ee:01: 6a:a4:e4:2a:5e:f9:f8:86:4a:d3:2a:df:11:15:1c: ce:e9:79:5f:fb:c4:b9:d0:4d:20:de:85:13:a9:8c: 53:9f:6e:41:86:a2:45:c9:1f:c8:82:4c:c3:f3:4a: bd:7e:07:fd:7f:9d:97:e2:4a:45:1b:d9:b5:e0:f8: fa:d5:55:3e:66:db:8d:29:19:91:24:4b:0d:05:4b: 39:2c:ba:0b:26:00:09:e9:16:7d:81:12:ff:86:39: d3:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:3C:3D:66:27:3D:A7:19:CC:ED:4D:D2:4B:64:D4:86:A3:D4:C2:A3 X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:6e:f8:a7:69:6a:e9:3d:73:89:75:63:68:88:2f:95:3c:2e: 54:b0:cf:43:dd:7d:18:e6:af:26:91:92:7f:01:4e:14:07:f2: 8d:32:3c:d7:72:63:16:b8:a1:05:b0:f6:42:1e:28:09:b5:db: bd:3e:04:70:fe:86:a2:48:e3:df:c3:c5:7c:9a:b9:3b:e1:07: 9e:6a:19:e9:7f:a8:d3:5c:4a:c5:81:09:d6:3a:9e:0c:77:6b: 73:69:45:25:69:1c:70:3c:cb:24:fc:78:0f:6a:a9:96:98:7b: 94:8f:28:a1:b1:d8:86:77:77:8d:f6:0f:63:ad:5d:97:25:41: 97:c8:f2:cf:fc:87:0e:c5:6b:f8:1d:1d:c4:3b:cf:59:10:ff: f5:ef:74:74:e7:ef:8b:fa:e1:52:f4:ef:df:71:55:3c:82:3c: 74:4c:66:f5:b3:b6:84:bf:8d:6a:c3:5d:59:41:58:53:7b:90: 17:13:2d:0e:91:4c:3c:bc:58:05:46:f8:97:ca:e7:f2:82:be: 87:13:31:9c:5f:33:d9:72:c5:b3:6f:35:73:71:e5:2c:54:8a: ab:12:2c:15:07:7f:6a:c3:47:f4:0d:a6:d7:50:47:d3:a6:91: 4d:1a:28:1c:48:3c:25:11:99:22:5a:84:f6:2c:5b:f4:ef:9b: ee:c7:3f:1e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd2Hk+/BwA6nzeriNpm6741sESicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNTA4MDQyMzU1MDJaFw0yNTA4MDgwMjA3MDJaMDMxMTAvBgNV BAMTKEEzM0MzRDY2MjczREE3MTlDQ0VENEREMjRCNjRENDg2QTNENEMyQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTK1wAExKcS72g+LRrQGqXfkyg GdEDf80acxrrfown1KTkhqpOc6Gf8sjx8y7tpLyz2n5YNwuq+Z0xM/FnjJID5GUh 3OPB7tngX4lm19mJck6fOjnnUqUMfgXVjs4x0UADWx2C5rP2IXB/mYAXeKlQIAMy G/n1Hifh+7dpHfuZ5i/0RjsuYgtRqEIIeVCqX23C9y3UPU4Ls0kIhxSbjn56/fnu AWqk5Cpe+fiGStMq3xEVHM7peV/7xLnQTSDehROpjFOfbkGGokXJH8iCTMPzSr1+ B/1/nZfiSkUb2bXg+PrVVT5m240pGZEkSw0FSzksugsmAAnpFn2BEv+GOdOhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUozw9Zic9pxnM7U3SS2TUhqPUwqMwHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTBkZTIzMWYtZmI4YS00MjdhLWFh MzYtMGEzZmM5NzIzMjhkLzAvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAy QzNFRTZBRDFGOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAlu+Kdpauk9c4l1Y2iIL5U8LlSwz0PdfRjm ryaRkn8BThQH8o0yPNdyYxa4oQWw9kIeKAm1270+BHD+hqJI49/DxXyauTvhB55q Gel/qNNcSsWBCdY6ngx3a3NpRSVpHHA8yyT8eA9qqZaYe5SPKKGx2IZ3d432D2Ot XZclQZfI8s/8hw7Fa/gdHcQ7z1kQ//XvdHTn74v64VL0799xVTyCPHRMZvWztoS/ jWrDXVlBWFN7kBcTLQ6RTDy8WAVG+JfK5/KCvocTMZxfM9lyxbNvNXNx5SxUiqsS LBUHf2rDR/QNptdQR9OmkU0aKBxIPCURmSJahPYsW/Tvm+7HPx4= -----END CERTIFICATE-----Generated at Thu Aug 7 03:20:11 2025 by rpki-client