$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft File: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft (raw, json) Hash identifier: 6mIU5FVVuwQO8bYG2omL9G09WiSJLEwUDI6xjql0vs4= Subject key identifier: 7F:80:CE:9F:F3:DB:8C:06:D3:08:72:D7:9A:49:8E:B6:77:92:30:BF Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 5D3919228EC2AC624ABD26A19634AF08AA3A2D37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft Manifest number: 0251 Signing time: Mon 04 Aug 2025 23:22:02 +0000 Manifest this update: Mon 04 Aug 2025 23:17:02 +0000 Manifest next update: Fri 08 Aug 2025 07:50:02 +0000 Files and hashes: 1: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (hash: fr8+FrmlPGl8AfQlow8lySzaZVznKtOBprgMvRW46vw=) 2: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (hash: yOR4ha1iNJToiWgXnk0oG7heqETlfk80W41Jvd2P1xg=) 3: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (hash: s6MFeDXqeIkTAot5lzYFNGxoGgi1Yjw/2CsMKFqccxU=) 4: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (hash: B08azy3XQsiTZf5UppG1ngPrOYAEwHH6x3322yJGfrI=) 5: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl (hash: 64PnSTDoiSGKRRWebgOQEDLG5zo+hU0Sj+E6D2Ix33s=) 6: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (hash: Q49EnVockO7Wf1pEkALOtAUiauf7qPnxOjOocdL9Yus=) 7: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (hash: RZP1u67IkDY1VxYw8axwNJaL5jYZcoL8kOhW1c7O+Eg=) 8: 3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa (hash: 2gVCxg+hDmKkdBfr1IN+Jz7t1loTVbupLhThyLDp4zk=) 9: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (hash: zVGnPMz6FjIWNaiokQGONx21w4m18vhd71uDshC7eyA=) 10: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (hash: TIp9WHuUqK5QCHJsHK2qMd4Di3b+YgT1J52ydC6PYvs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 07:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:39:19:22:8e:c2:ac:62:4a:bd:26:a1:96:34:af:08:aa:3a:2d:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Aug 4 23:17:02 2025 GMT Not After : Aug 8 07:50:02 2025 GMT Subject: CN=7F80CE9FF3DB8C06D30872D79A498EB6779230BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:93:c7:a2:ce:07:4a:24:84:78:48:9e:ab:fb: 51:97:0a:bb:89:70:63:8c:d3:bb:c0:c0:e2:c8:3d: 4c:81:a4:a3:35:6d:2d:79:ad:d2:20:da:52:d9:9f: 6f:ae:c1:3c:4c:b0:1e:17:e3:32:52:e1:74:ea:ec: e4:62:2b:f9:93:23:d9:89:de:d1:e6:4b:c3:db:bd: a7:14:06:06:0b:5d:91:11:9f:ab:42:5a:fb:0b:d8: 27:c4:0d:f9:ea:7c:bc:b5:18:fb:d0:b1:03:5e:a9: 19:fd:56:0a:ea:bd:96:50:e1:23:c5:b0:06:de:73: a8:2e:3a:5d:f7:77:0f:14:28:31:c5:97:44:7d:ca: 2d:97:cb:aa:8e:42:34:f0:c3:c8:d3:c4:64:85:1e: cc:44:b5:3e:59:9f:4d:63:1a:a9:e4:90:06:0f:67: 11:89:a6:25:20:ae:e2:be:64:eb:a9:7e:72:a5:3e: df:76:9b:6a:dc:9b:ec:8b:a7:df:1f:ca:13:f4:4c: eb:c6:61:4d:6a:a0:38:26:0d:46:00:e6:3c:59:d1: f6:27:3b:73:d7:9e:31:59:9f:f6:66:3d:e9:15:11: 3c:f1:88:07:32:f6:54:6e:0b:79:a9:bb:c5:72:75: c7:00:cd:c5:3b:22:6b:9d:21:29:be:47:37:4f:80: b7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:80:CE:9F:F3:DB:8C:06:D3:08:72:D7:9A:49:8E:B6:77:92:30:BF X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:31:0b:e8:11:76:a2:0d:07:91:2d:a3:fc:95:98:4a:bc:b1: 75:85:63:47:95:12:bc:5c:39:af:ce:4e:9b:e6:f1:46:f8:e4: a0:e2:2f:cb:b6:4c:a2:d6:48:10:6e:12:19:78:09:d8:11:55: a7:d1:0d:15:87:9e:38:90:1d:55:92:94:e1:5d:21:d9:67:e8: 80:9e:39:52:1c:bf:83:e7:44:ae:48:cb:74:84:82:b3:1f:a6: 05:cb:96:17:b4:29:14:ea:02:cd:d6:4c:08:de:c6:ba:b7:4e: 63:98:d6:97:3c:f2:79:19:20:c6:71:48:7e:c8:1d:96:66:18: cf:64:42:ab:ce:d0:7e:20:fa:51:ec:ad:fc:cd:e6:75:61:fb: 78:b6:93:53:07:8f:16:d2:15:d8:ed:2b:bd:d4:74:e4:4b:a4: 3f:b1:28:48:12:16:96:0f:4c:10:97:8e:bd:de:94:e0:f6:89: d9:04:e8:65:a4:c6:7d:57:d9:85:6c:d5:5d:e1:54:02:95:db: e6:be:bf:57:15:89:e5:29:e4:5f:72:10:25:65:d4:01:4d:4f: 8f:8c:96:6c:9e:76:bb:47:93:78:1d:18:16:48:9b:a7:9c:c3: 41:8a:c2:cb:1f:9e:2a:f7:9c:59:0d:38:81:79:f7:8c:d9:d2: df:c8:fd:43 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXTkZIo7CrGJKvSahljSvCKo6LTcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTA4MDQyMzE3MDJaFw0yNTA4MDgwNzUwMDJaMDMxMTAvBgNV BAMTKDdGODBDRTlGRjNEQjhDMDZEMzA4NzJENzlBNDk4RUI2Nzc5MjMwQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHk8eizgdKJIR4SJ6r+1GXCruJ cGOM07vAwOLIPUyBpKM1bS15rdIg2lLZn2+uwTxMsB4X4zJS4XTq7ORiK/mTI9mJ 3tHmS8PbvacUBgYLXZERn6tCWvsL2CfEDfnqfLy1GPvQsQNeqRn9VgrqvZZQ4SPF sAbec6guOl33dw8UKDHFl0R9yi2Xy6qOQjTww8jTxGSFHsxEtT5Zn01jGqnkkAYP ZxGJpiUgruK+ZOupfnKlPt92m2rcm+yLp98fyhP0TOvGYU1qoDgmDUYA5jxZ0fYn O3PXnjFZn/ZmPekVETzxiAcy9lRuC3mpu8VydccAzcU7ImudISm+RzdPgLe7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUf4DOn/PbjAbTCHLXmkmOtneSML8wHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzhkMGU2NDAtMjJlOS00NDFjLTg2 MzQtZjk1MjUzMDdkYTc2LzAvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYy MzZCNzQwMTY2MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC0xC+gRdqINB5Eto/yVmEq8sXWFY0eVErxc Oa/OTpvm8Ub45KDiL8u2TKLWSBBuEhl4CdgRVafRDRWHnjiQHVWSlOFdIdln6ICe OVIcv4PnRK5Iy3SEgrMfpgXLlhe0KRTqAs3WTAjexrq3TmOY1pc88nkZIMZxSH7I HZZmGM9kQqvO0H4g+lHsrfzN5nVh+3i2k1MHjxbSFdjtK73UdORLpD+xKEgSFpYP TBCXjr3elOD2idkE6GWkxn1X2YVs1V3hVAKV2+a+v1cVieUp5F9yECVl1AFNT4+M lmyedrtHk3gdGBZIm6ecw0GKwssfnir3nFkNOIF594zZ0t/I/UM= -----END CERTIFICATE-----Generated at Tue Aug 5 19:58:13 2025 by rpki-client