$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft File: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft (raw, json) Hash identifier: tQcNe+WYgw2u7Du0PaewuI+CGiaDi6uCkX+FUVzkbqc= Subject key identifier: 32:BC:72:CC:F7:41:51:F8:6F:C1:4D:2F:06:0E:57:2D:AB:8C:6F:48 Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 7F1009AFEFA74DFC587723F8177259E0883831F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft Manifest number: 0481 Signing time: Thu 07 Aug 2025 08:42:17 +0000 Manifest this update: Thu 07 Aug 2025 08:37:17 +0000 Manifest next update: Sun 10 Aug 2025 13:37:17 +0000 Files and hashes: 1: 3130332e32342e35382e302f32342d3234203d3e203436303532.roa (hash: bPWP0OQUIp2Y9GGXuX0UNuWcLsy7WT1L06MXLwlNCSg=) 2: 323030313a6466303a61383a3a2f34382d3438203d3e203436303532.roa (hash: qMdSXe2z67bVJOmODSeb4BQMQ40LX9lF9FYmIAv+p7A=) 3: 3130332e32342e35372e302f32342d3234203d3e203436303532.roa (hash: WgrIRzdaFJ0g4e27LMgAxhh+yicucERWndK+pSX36cg=) 4: 3230322e392e38352e302f32342d3234203d3e203436303532.roa (hash: Y2PTe5fMMDYclXsLhLsiwjVncBgzuq5ROa1U1eOC/Wc=) 5: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl (hash: HZMeGuPrGWtR26llP8TgGiADZIYkAGRYAXwneLghrX0=) 6: 3130332e32342e35362e302f32342d3234203d3e203436303532.roa (hash: 0GSE1PDB0X1nNRLhLL+YFIj25TLvzXb3P+1q7y2DYeY=) 7: 3130332e32342e35392e302f32342d3234203d3e203436303532.roa (hash: yg0Ga2BI5N+zhlTssMp6B5+VROj1HXmBfDxoTWvqgpA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 13:37:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:10:09:af:ef:a7:4d:fc:58:77:23:f8:17:72:59:e0:88:38:31:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Aug 7 08:37:17 2025 GMT Not After : Aug 10 13:37:17 2025 GMT Subject: CN=32BC72CCF74151F86FC14D2F060E572DAB8C6F48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e7:c8:e7:05:89:06:ba:63:f4:15:a5:0c:af: ba:dc:e8:cb:d8:88:d7:74:0c:72:1b:37:dc:9c:43: c3:15:da:55:18:27:73:99:36:a9:dc:39:03:53:c8: cf:5a:6c:46:77:12:d2:93:e7:c0:d0:a4:d9:3b:ae: 9c:80:3f:36:ba:7f:a1:ad:91:5f:48:8d:c1:ac:da: ac:6f:cc:76:a0:10:8a:09:38:0a:05:31:2c:65:18: 58:14:d3:6a:57:16:32:8a:1a:00:32:67:16:f3:d3: 05:70:f5:f2:9b:09:8f:8a:7c:26:ba:85:40:a3:49: 87:35:ab:ee:b2:e3:a5:04:40:85:29:cf:c2:ee:6d: a1:87:6b:dd:c4:d6:1a:07:da:97:8e:01:b1:29:27: 30:4c:38:75:6c:1f:35:7c:d5:a8:da:b0:03:8a:5d: 22:06:9b:0b:14:8c:e9:0c:16:ba:ff:0c:50:85:9a: b1:eb:8e:2f:b9:ac:70:ae:5d:c5:69:48:94:f9:bb: 50:16:a3:fa:ac:74:d5:c3:f5:0c:d8:b8:8e:a2:a6: 82:38:98:f6:b2:b4:11:01:70:63:27:cf:bd:56:31: cf:d5:3a:bb:be:92:de:4f:84:a6:a6:c1:72:aa:38: 42:c5:5b:c9:1a:95:a2:1d:41:1b:6d:2f:e6:ad:ba: 36:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:BC:72:CC:F7:41:51:F8:6F:C1:4D:2F:06:0E:57:2D:AB:8C:6F:48 X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:7b:f7:27:13:72:2b:85:06:23:1b:8b:1f:d1:17:cf:03:bc: 92:15:52:a9:e8:76:07:9f:6a:79:7b:79:a7:ba:0f:5c:f8:73: 4c:81:57:17:37:eb:0d:1d:b4:48:60:a1:69:07:20:9c:5b:0b: a1:9c:a8:de:06:d8:9a:38:aa:55:16:8f:42:ee:7a:ee:98:3d: 9f:98:64:b7:c2:b0:92:ea:2a:c1:be:27:65:7c:fe:3d:09:44: 85:36:fb:1e:87:68:6e:b7:1d:4f:30:82:c4:0d:b7:cf:91:bb: c3:df:31:1c:06:d8:61:af:ea:6b:a1:9d:ea:9f:c2:c2:dc:b5: e7:8c:11:1d:7b:79:3c:6b:b5:27:16:00:68:d8:f5:4b:9f:50: f5:82:30:b6:12:42:31:40:56:fe:46:4c:fc:fc:66:b8:66:57: 04:84:c9:18:80:34:f2:9f:1c:73:27:f8:55:5c:5a:1c:99:53: 88:78:26:ea:5b:ee:94:3e:bc:1c:a1:b5:61:75:36:a0:a6:98: df:9f:14:73:bc:46:9d:62:19:56:6f:90:f4:a4:64:ae:71:3a: 2c:f1:3a:7e:21:99:1a:87:91:73:18:55:23:bf:9b:06:7d:26: 64:77:87:17:e8:45:69:c8:5d:d7:06:c8:82:f6:13:30:a0:99: f6:9c:90:b7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfxAJr++nTfxYdyP4F3JZ4Ig4MfYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNTA4MDcwODM3MTdaFw0yNTA4MTAxMzM3MTdaMDMxMTAvBgNV BAMTKDMyQkM3MkNDRjc0MTUxRjg2RkMxNEQyRjA2MEU1NzJEQUI4QzZGNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn58jnBYkGumP0FaUMr7rc6MvY iNd0DHIbN9ycQ8MV2lUYJ3OZNqncOQNTyM9abEZ3EtKT58DQpNk7rpyAPza6f6Gt kV9IjcGs2qxvzHagEIoJOAoFMSxlGFgU02pXFjKKGgAyZxbz0wVw9fKbCY+KfCa6 hUCjSYc1q+6y46UEQIUpz8LubaGHa93E1hoH2peOAbEpJzBMOHVsHzV81ajasAOK XSIGmwsUjOkMFrr/DFCFmrHrji+5rHCuXcVpSJT5u1AWo/qsdNXD9QzYuI6ipoI4 mPaytBEBcGMnz71WMc/VOru+kt5PhKamwXKqOELFW8kalaIdQRttL+atujbxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMrxyzPdBUfhvwU0vBg5XLauMb0gwHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmQxZWU1ZTItMzM4Yy00ZDIwLTgw N2UtZTUwYjc1NTgzZGI4LzAvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIw RTFEQzlBMTI2OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG979ycTciuFBiMbix/RF88DvJIVUqnodgef anl7eae6D1z4c0yBVxc36w0dtEhgoWkHIJxbC6GcqN4G2Jo4qlUWj0Lueu6YPZ+Y ZLfCsJLqKsG+J2V8/j0JRIU2+x6HaG63HU8wgsQNt8+Ru8PfMRwG2GGv6muhneqf wsLcteeMER17eTxrtScWAGjY9UufUPWCMLYSQjFAVv5GTPz8ZrhmVwSEyRiANPKf HHMn+FVcWhyZU4h4Jupb7pQ+vByhtWF1NqCmmN+fFHO8Rp1iGVZvkPSkZK5xOizx On4hmRqHkXMYVSO/mwZ9JmR3hxfoRWnIXdcGyIL2EzCgmfackLc= -----END CERTIFICATE-----Generated at Sat Aug 9 01:01:10 2025 by rpki-client