$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft File: 2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft (raw, json) Hash identifier: Z13zDyu+16O0YWWi2ehX162GbX8WJbmDCuK07dtXZ2M= Subject key identifier: DC:7F:BE:83:7B:17:C4:B3:D0:B7:9F:45:67:9A:65:74:54:9D:E8:0B Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 530BCCA999D0AC95D27293467759DFD6EAE69C85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft Manifest number: 04C9 Signing time: Tue 05 Aug 2025 06:42:01 +0000 Manifest this update: Tue 05 Aug 2025 06:37:01 +0000 Manifest next update: Fri 08 Aug 2025 16:42:01 +0000 Files and hashes: 1: 323430323a363938303a333030303a3a2f34382d3438203d3e203539323738.roa (hash: 1MuWl4R2LfAc9czxG6/QjtCE9g5QKK5BETiXC4FMLHs=) 2: 323430323a363938303a323030303a3a2f34382d3438203d3e203539323738.roa (hash: D6GCo3ceVvJhAX1b+afxEUHTBD9rmTcpfSp7SCURViA=) 3: 2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl (hash: 6gp9ZUf/vYoP08k4Dcg7CtVEOyHGwcYRyqJXR3Nkp2M=) 4: 3130332e35382e3136302e302f32322d3234203d3e203539323738.roa (hash: 3p6KpA6/uKsXu1iiVTHxP1H1aKBvRxURT7LJ3HzRuNw=) 5: 323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa (hash: LrRa5/YbMQIirnwavEqQmjlSXIv4GPDAL8XSH/RPz2k=) 6: 323430323a363938303a313030303a3a2f34382d3438203d3e203539323738.roa (hash: Cf4F1dHsLMAEwRXj/sLvggNAyN9aUktmarNyz8vl8uk=) 7: 323430323a363938303a3a2f33322d3438203d3e203539323738.roa (hash: IyTH+iDrZwcYpQjVq5OAN4r5uvDjzNsSK7r7mWOE79s=) 8: 3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa (hash: pAsXLpsnvtFY9CiLQfO4MgBTQXdXjfq9fjmjjZL7V7Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 16:42:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:0b:cc:a9:99:d0:ac:95:d2:72:93:46:77:59:df:d6:ea:e6:9c:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Aug 5 06:37:01 2025 GMT Not After : Aug 8 16:42:01 2025 GMT Subject: CN=DC7FBE837B17C4B3D0B79F45679A6574549DE80B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f7:cf:bc:86:6f:99:72:32:66:cb:66:bd:b8: d4:81:10:2e:ac:e4:82:78:03:02:e8:05:eb:36:b0: af:a1:5a:77:45:64:03:d9:63:b8:a2:08:73:02:0c: 17:3c:3f:10:5a:90:b5:ab:d8:fe:92:44:08:b8:55: 74:24:3f:da:86:9c:53:09:1d:f8:a9:26:38:ab:92: e7:ef:cb:0b:de:ab:18:fd:c9:10:ca:ea:80:00:1b: a6:30:51:89:8f:68:6c:d0:7c:cc:f3:4f:f1:2d:0e: f3:d8:65:9a:05:2d:cb:c8:62:ed:45:06:13:6c:bb: 7b:3c:50:2b:42:22:ab:c7:83:82:0a:86:ee:78:cf: 4c:8e:eb:f4:35:bc:c3:c8:76:c6:8d:d0:4c:35:cf: 59:c7:ab:9f:62:eb:41:1b:bf:2e:da:3e:45:e8:f3: 47:ae:68:68:d3:4d:60:e5:4d:d5:21:3c:79:89:49: 11:df:c9:f2:f0:8f:6b:be:b5:56:14:5a:f5:38:0d: 4d:8e:2d:3a:8d:ab:be:9b:68:a2:d4:4a:34:3e:aa: 3b:cb:cd:59:03:55:c6:d9:f7:68:44:93:86:25:cb: 02:2d:c0:b3:64:13:d6:1b:a5:09:8c:72:3e:5a:ca: 23:d9:d3:a4:58:52:74:3a:ed:9e:60:75:5f:a5:b8: 51:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7F:BE:83:7B:17:C4:B3:D0:B7:9F:45:67:9A:65:74:54:9D:E8:0B X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:67:3c:b2:d7:15:83:f5:8f:8d:80:87:49:62:7e:93:0a:45: 78:a1:19:41:a4:8a:c2:9e:e3:ef:e7:c3:4f:41:b1:2e:a5:40: 3d:49:8b:d6:51:a1:aa:37:98:aa:bb:09:c0:40:f7:93:4c:f0: 43:1e:6b:e1:67:3c:9b:47:3d:3d:a5:bc:f4:66:62:1a:aa:36: 51:a2:7d:1d:15:61:14:92:da:8a:1a:2f:3e:68:79:28:34:52: 73:d2:bd:7d:b5:da:a5:37:65:59:be:44:6a:d0:ad:1e:21:67: 1e:73:ed:9b:78:ab:bd:bc:e8:46:90:71:45:1e:74:e3:02:a1: 71:10:6a:75:29:6a:a6:fc:a9:d5:14:03:fc:90:84:06:10:94: e0:c3:5c:b2:6f:e8:8a:1f:26:11:46:ce:74:79:03:10:b8:23: 0a:75:5e:b8:a9:48:99:3b:0c:74:1d:5e:f5:b9:bc:cc:7a:23: c9:3d:4d:d4:3b:7e:0c:ae:13:83:f8:5e:6f:36:e9:f6:55:1a: c2:5a:af:ef:58:7b:a2:40:d5:d3:cf:f7:e0:8b:50:e9:07:fa: eb:05:94:1b:e7:d8:2c:f4:0f:c5:78:85:c1:5b:e4:b6:56:ca: 30:9e:81:e4:74:af:9e:a6:53:92:6f:b7:8f:9d:5c:c3:ea:fa: 0f:ff:8d:11 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUwvMqZnQrJXScpNGd1nf1urmnIUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yNTA4MDUwNjM3MDFaFw0yNTA4MDgxNjQyMDFaMDMxMTAvBgNV BAMTKERDN0ZCRTgzN0IxN0M0QjNEMEI3OUY0NTY3OUE2NTc0NTQ5REU4MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx98+8hm+ZcjJmy2a9uNSBEC6s 5IJ4AwLoBes2sK+hWndFZAPZY7iiCHMCDBc8PxBakLWr2P6SRAi4VXQkP9qGnFMJ HfipJjirkufvywveqxj9yRDK6oAAG6YwUYmPaGzQfMzzT/EtDvPYZZoFLcvIYu1F BhNsu3s8UCtCIqvHg4IKhu54z0yO6/Q1vMPIdsaN0Ew1z1nHq59i60Ebvy7aPkXo 80euaGjTTWDlTdUhPHmJSRHfyfLwj2u+tVYUWvU4DU2OLTqNq76baKLUSjQ+qjvL zVkDVcbZ92hEk4YlywItwLNkE9YbpQmMcj5ayiPZ06RYUnQ67Z5gdV+luFGnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3H++g3sXxLPQt59FZ5pldFSd6AswHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWYxYzc5ZjEtMjY0ZS00MjNmLTll MDgtMGIyOTAwZGE2OTQ5LzAvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2 QjVERDc4QzVCRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACJnPLLXFYP1j42Ah0lifpMKRXihGUGkisKe 4+/nw09BsS6lQD1Ji9ZRoao3mKq7CcBA95NM8EMea+FnPJtHPT2lvPRmYhqqNlGi fR0VYRSS2ooaLz5oeSg0UnPSvX212qU3ZVm+RGrQrR4hZx5z7Zt4q7286EaQcUUe dOMCoXEQanUpaqb8qdUUA/yQhAYQlODDXLJv6IofJhFGznR5AxC4Iwp1XripSJk7 DHQdXvW5vMx6I8k9TdQ7fgyuE4P4Xm826fZVGsJar+9Ye6JA1dPP9+CLUOkH+usF lBvn2Cz0D8V4hcFb5LZWyjCegeR0r56mU5Jvt4+dXMPq+g//jRE= -----END CERTIFICATE-----Generated at Thu Aug 7 00:26:23 2025 by rpki-client