$ rpki-client -vvf repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft File: 2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft (raw, json) Hash identifier: LDJEH/rTdRwJ1NzZY2HzEygsDJ9yv82bUpiDmQFqzBQ= Subject key identifier: 2A:5A:DE:0B:F6:78:DA:08:E3:FA:5D:3F:B1:EF:2E:23:1D:90:08:6D Authority key identifier: 2C:B2:1E:F3:36:B6:AB:46:40:E4:61:96:01:E0:F6:48:8C:B8:FD:52 Certificate issuer: /CN=2CB21EF336B6AB4640E4619601E0F6488CB8FD52 Certificate serial: 3B0CABE6B368688320A89502C755B4D86451E6D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft Manifest number: 0327 Signing time: Thu 07 Aug 2025 01:32:00 +0000 Manifest this update: Thu 07 Aug 2025 01:27:00 +0000 Manifest next update: Sun 10 Aug 2025 09:31:00 +0000 Files and hashes: 1: 2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl (hash: WHcXsDhrsZmNiGzXPg5pN6pcDR2Xl545JCX0lNdFaEU=) 2: 3130332e3136302e31322e302f32332d3234203d3e20313331313131.roa (hash: 2TjUbAwclmvFhuQfA5b8APF/xfL7qfTm8NzkksHu4ng=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 09:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:0c:ab:e6:b3:68:68:83:20:a8:95:02:c7:55:b4:d8:64:51:e6:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB21EF336B6AB4640E4619601E0F6488CB8FD52 Validity Not Before: Aug 7 01:27:00 2025 GMT Not After : Aug 10 09:31:00 2025 GMT Subject: CN=2A5ADE0BF678DA08E3FA5D3FB1EF2E231D90086D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:1a:91:07:6a:c9:1c:1f:4e:28:3a:c7:07:78: f5:ce:c9:fc:51:a1:e7:50:30:ad:67:33:e3:d7:08: 12:2d:c0:41:00:3c:14:21:d1:08:2d:2c:c3:f4:45: 48:28:3c:13:3f:b4:14:11:45:c9:6a:22:2d:c5:0e: 02:01:c4:29:8b:cc:d9:23:c6:e7:02:cf:1e:d2:ee: 01:b5:f1:28:27:86:fc:26:8b:44:57:33:86:8e:80: 6a:3e:b2:fa:e9:15:00:09:75:c4:df:9b:2a:18:b5: 05:b7:5d:36:69:7d:21:1c:5d:aa:e1:e2:d6:b3:99: de:9f:a4:77:ed:d7:1d:2e:a9:27:cd:4b:09:97:d2: 71:a3:2a:7c:28:0b:bc:3e:6a:81:fd:96:71:22:2c: 8d:72:f8:ca:3d:2a:15:1f:84:f4:29:a2:e0:ac:86: 50:f1:9e:5b:bf:04:47:89:59:25:f0:68:28:ad:64: 5f:d7:9d:c6:3b:95:e3:97:bc:de:84:05:e4:f0:af: 1a:18:bc:b8:ce:9a:6b:d9:7e:23:78:8a:1a:13:56: 8d:a2:57:f8:18:87:25:44:41:51:d6:92:2e:1f:58: 3b:31:26:2c:66:de:d5:08:59:d7:0e:46:89:1e:aa: a8:e7:c5:6b:5c:68:82:b8:c6:bb:6a:2c:51:b1:3d: f0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5A:DE:0B:F6:78:DA:08:E3:FA:5D:3F:B1:EF:2E:23:1D:90:08:6D X509v3 Authority Key Identifier: keyid:2C:B2:1E:F3:36:B6:AB:46:40:E4:61:96:01:E0:F6:48:8C:B8:FD:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:ce:e5:e7:d9:92:aa:de:bb:db:f1:94:e5:f4:87:22:bf:62: 5c:6d:2f:b6:0a:3f:3f:92:6a:07:94:6c:d4:c1:91:df:99:4b: b8:05:79:66:e8:71:c0:e6:06:bd:01:32:11:59:5a:bf:37:95: 9f:e0:31:0b:89:32:45:c3:61:e0:6f:a9:cd:5c:ec:71:e9:22: 82:16:0c:a0:c2:cf:71:a1:d2:50:5d:1b:60:da:7c:23:2e:ac: ff:32:f9:3b:14:7c:ba:f0:64:f3:51:ae:52:21:a1:a9:7c:27: 4a:af:bc:65:61:ef:d1:0e:ec:55:2d:f4:68:aa:af:51:fe:31: 41:a4:72:06:8e:28:ca:af:4b:9f:f8:e8:93:d4:7f:42:8b:d6: 01:55:41:2b:eb:91:9f:16:f7:42:92:46:fc:03:bd:09:71:b3: 25:82:e2:6c:6a:9b:2d:4a:0a:1f:01:03:0f:30:d0:4c:af:97: cf:d4:b6:92:35:ff:2f:da:56:07:b6:9b:f4:76:ee:0a:86:91: 82:40:d4:24:4f:0b:22:41:4d:73:e7:fc:c2:31:1b:8e:33:ed: be:87:03:e2:37:c0:51:04:9a:a4:c8:04:5b:9f:93:4f:52:c7: e0:6d:8e:56:b5:7d:a8:69:6d:65:e9:61:1d:6e:53:47:d1:fa: 4e:7c:a3:5c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOwyr5rNoaIMgqJUCx1W02GRR5tAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2NDg4 Q0I4RkQ1MjAeFw0yNTA4MDcwMTI3MDBaFw0yNTA4MTAwOTMxMDBaMDMxMTAvBgNV BAMTKDJBNUFERTBCRjY3OERBMDhFM0ZBNUQzRkIxRUYyRTIzMUQ5MDA4NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiGpEHaskcH04oOscHePXOyfxR oedQMK1nM+PXCBItwEEAPBQh0QgtLMP0RUgoPBM/tBQRRclqIi3FDgIBxCmLzNkj xucCzx7S7gG18Sgnhvwmi0RXM4aOgGo+svrpFQAJdcTfmyoYtQW3XTZpfSEcXarh 4tazmd6fpHft1x0uqSfNSwmX0nGjKnwoC7w+aoH9lnEiLI1y+Mo9KhUfhPQpouCs hlDxnlu/BEeJWSXwaCitZF/XncY7leOXvN6EBeTwrxoYvLjOmmvZfiN4ihoTVo2i V/gYhyVEQVHWki4fWDsxJixm3tUIWdcORokeqqjnxWtcaIK4xrtqLFGxPfBhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKlreC/Z42gjj+l0/se8uIx2QCG0wHwYDVR0j BBgwFoAULLIe8za2q0ZA5GGWAeD2SIy4/VIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGM2Zjc3MC02ODZhLTQ1ZWYtOGRmYi0wYzNhODdkM2Q4ZGEvMC8yQ0IyMUVGMzM2 QjZBQjQ2NDBFNDYxOTYwMUUwRjY0ODhDQjhGRDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2NDg4Q0I4 RkQ1Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjRjNmY3NzAtNjg2YS00NWVmLThk ZmItMGMzYTg3ZDNkOGRhLzAvMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2 NDg4Q0I4RkQ1Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABbO5efZkqreu9vxlOX0hyK/YlxtL7YKPz+S ageUbNTBkd+ZS7gFeWboccDmBr0BMhFZWr83lZ/gMQuJMkXDYeBvqc1c7HHpIoIW DKDCz3Gh0lBdG2DafCMurP8y+TsUfLrwZPNRrlIhoal8J0qvvGVh79EO7FUt9Giq r1H+MUGkcgaOKMqvS5/46JPUf0KL1gFVQSvrkZ8W90KSRvwDvQlxsyWC4mxqmy1K Ch8BAw8w0Eyvl8/UtpI1/y/aVge2m/R27gqGkYJA1CRPCyJBTXPn/MIxG44z7b6H A+I3wFEEmqTIBFufk09Sx+Btjla1fahpbWXpYR1uU0fR+k58o1w= -----END CERTIFICATE-----Generated at Thu Aug 7 23:57:38 2025 by rpki-client