$ rpki-client -vvf repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft File: CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft (raw, json) Hash identifier: gGd3Rf8kc9KrcWzyWzKR0Bnp0xXlXnDX2IcnGuy80vI= Subject key identifier: 71:D9:71:EA:8C:9D:FA:43:89:BC:6A:17:BE:B1:D1:81:D1:B1:9F:55 Authority key identifier: CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 Certificate issuer: /CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Certificate serial: 1AD771D51E2BCE5BBD838A4090FCEDC46524A0D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft Manifest number: 0205 Signing time: Wed 06 Aug 2025 05:51:06 +0000 Manifest this update: Wed 06 Aug 2025 05:46:06 +0000 Manifest next update: Sat 09 Aug 2025 13:25:06 +0000 Files and hashes: 1: 3130332e3138372e3136322e302f32332d3233203d3e20313439373434.roa (hash: NBMvMFdbSgV8YLztOs5et7qKnLsGThNMzle3TvV2a2Y=) 2: 3130332e3138372e3136322e302f32342d3234203d3e20313439373434.roa (hash: Tv+weNKfZV3vLvtIURyDMLx5ol7dILJ4RL8AQ9yiukI=) 3: 3130332e3138372e3136332e302f32342d3234203d3e20313439373434.roa (hash: xhHGbTeP6u0WbPe8ByZkxSsIh3tMuqCvY/m/R9Bd6uM=) 4: CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl (hash: u3EWB7BVArpDwwE4xWIbtM/pETbObAeqYRyavRBHDmw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 13:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:d7:71:d5:1e:2b:ce:5b:bd:83:8a:40:90:fc:ed:c4:65:24:a0:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Validity Not Before: Aug 6 05:46:06 2025 GMT Not After : Aug 9 13:25:06 2025 GMT Subject: CN=71D971EA8C9DFA4389BC6A17BEB1D181D1B19F55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:11:71:5b:41:85:cb:60:a9:bf:91:b3:df:46: c0:63:8c:bc:3d:23:49:a6:34:1c:12:7e:a4:17:bb: 33:88:25:e1:f3:f6:2d:70:b5:71:52:94:af:29:cc: 6f:7a:cc:f8:4f:28:65:ec:1e:e6:af:24:d4:ae:bc: f0:3f:b7:99:cc:62:10:64:f6:2a:a9:80:cf:17:ac: 34:48:95:89:a8:73:01:bb:93:39:1c:34:fb:66:8d: 9e:e7:3a:0c:48:8e:23:74:4e:f9:d8:7c:87:9e:41: 20:08:8b:8e:f2:4c:df:ef:cc:27:98:a6:ad:8e:0b: f7:3e:df:b8:43:c6:8b:84:e5:71:08:8f:29:43:8d: a1:78:72:4f:0d:4b:5f:05:6e:9f:fa:80:7f:f4:b5: 62:d6:a7:cd:77:55:33:fa:ed:61:2a:ed:60:24:92: 78:98:2f:a7:1a:91:b5:01:36:25:d9:c2:bd:26:16: 72:a9:b4:b8:91:36:5a:eb:85:cd:cb:cd:88:1f:de: 2f:02:a9:b6:e0:74:83:f6:82:0f:63:4f:77:3c:1c: 05:20:6b:34:59:1f:b1:5a:c1:e6:38:95:33:24:be: 1c:a4:db:15:66:39:79:30:20:7f:31:6c:db:19:43: 65:92:36:01:f0:fb:89:a8:1a:17:b7:b0:b8:df:5e: 17:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D9:71:EA:8C:9D:FA:43:89:BC:6A:17:BE:B1:D1:81:D1:B1:9F:55 X509v3 Authority Key Identifier: keyid:CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:00:59:c6:39:9e:bc:8b:9c:ee:0c:78:c9:c2:50:04:2e:9c: e5:1d:4d:f6:69:52:8d:98:08:91:57:04:55:37:a1:93:52:e0: f0:13:d0:93:3f:c9:47:ce:8b:4a:67:78:d7:80:80:0f:cd:3f: 89:98:b1:d4:01:04:a2:be:36:ac:08:29:5e:a1:98:20:9a:3a: 73:ff:f1:9f:e2:39:fc:18:ee:6f:b6:7f:f8:8d:eb:d5:09:f0: c1:84:fc:a3:dd:0c:78:72:8e:f0:c2:fc:11:21:20:24:83:2f: 47:24:f7:24:40:4d:5b:02:46:f1:ba:99:1e:15:b8:d0:17:c3: 97:47:4d:2d:58:90:21:e3:7d:f6:85:35:06:a7:23:95:9f:3d: 57:20:0b:88:9e:88:74:b2:c7:9f:a3:ae:89:db:db:b9:27:e9: a8:24:e9:df:65:36:fb:2e:9d:1c:32:44:79:5e:67:d3:05:f4: 08:b8:41:bc:ca:68:60:e9:c0:b1:16:3a:b9:49:f6:cc:9f:ad: 69:a9:1b:73:44:ca:e8:d9:2a:93:42:92:69:70:76:cb:46:f1: fd:66:ab:b3:85:d0:0f:0b:6e:45:81:28:0f:41:3e:b9:29:12: d3:8f:6e:ec:90:47:f0:69:d3:91:f7:94:ce:13:91:b7:a1:b7: ab:3c:c2:2b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGtdx1R4rzlu9g4pAkPztxGUkoNgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgy NzdCOTlEMTAeFw0yNTA4MDYwNTQ2MDZaFw0yNTA4MDkxMzI1MDZaMDMxMTAvBgNV BAMTKDcxRDk3MUVBOEM5REZBNDM4OUJDNkExN0JFQjFEMTgxRDFCMTlGNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1EXFbQYXLYKm/kbPfRsBjjLw9 I0mmNBwSfqQXuzOIJeHz9i1wtXFSlK8pzG96zPhPKGXsHuavJNSuvPA/t5nMYhBk 9iqpgM8XrDRIlYmocwG7kzkcNPtmjZ7nOgxIjiN0TvnYfIeeQSAIi47yTN/vzCeY pq2OC/c+37hDxouE5XEIjylDjaF4ck8NS18Fbp/6gH/0tWLWp813VTP67WEq7WAk kniYL6cakbUBNiXZwr0mFnKptLiRNlrrhc3LzYgf3i8CqbbgdIP2gg9jT3c8HAUg azRZH7FaweY4lTMkvhyk2xVmOXkwIH8xbNsZQ2WSNgHw+4moGhe3sLjfXhd7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcdlx6oyd+kOJvGoXvrHRgdGxn1UwHwYDVR0j BBgwFoAUz+WdTHphOrQ/yPaOiXSryCd7mdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjVjN2UxZC04MmU4LTQxMDAtYjQzNS05OTU0MjcyZmI3YTgvMC9DRkU1OUQ0QzdB NjEzQUI0M0ZDOEY2OEU4OTc0QUJDODI3N0I5OUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgyNzdC OTlEMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjI1YzdlMWQtODJlOC00MTAwLWI0 MzUtOTk1NDI3MmZiN2E4LzAvQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFC QzgyNzdCOTlEMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFAAWcY5nryLnO4MeMnCUAQunOUdTfZpUo2Y CJFXBFU3oZNS4PAT0JM/yUfOi0pneNeAgA/NP4mYsdQBBKK+NqwIKV6hmCCaOnP/ 8Z/iOfwY7m+2f/iN69UJ8MGE/KPdDHhyjvDC/BEhICSDL0ck9yRATVsCRvG6mR4V uNAXw5dHTS1YkCHjffaFNQanI5WfPVcgC4ieiHSyx5+jronb27kn6agk6d9lNvsu nRwyRHleZ9MF9Ai4QbzKaGDpwLEWOrlJ9syfrWmpG3NEyujZKpNCkmlwdstG8f1m q7OF0A8LbkWBKA9BPrkpEtOPbuyQR/Bp05H3lM4Tkbeht6s8wis= -----END CERTIFICATE-----Generated at Thu Aug 7 00:27:01 2025 by rpki-client