$ rpki-client -vvf repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft File: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft (raw, json) Hash identifier: RceqVeJdWQrS0Bbqt2hgEN4/fBDmZK1+GVDPrB9mLL0= Subject key identifier: 4E:5D:A0:FD:27:71:7A:2B:F7:1D:CC:E7:FA:C0:E4:6F:EA:AC:D1:86 Authority key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 Certificate issuer: /CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Certificate serial: 20455D45F7561971A3E088DDA68C182E3BEF241D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft Manifest number: 04C7 Signing time: Tue 05 Aug 2025 03:21:48 +0000 Manifest this update: Tue 05 Aug 2025 03:16:48 +0000 Manifest next update: Fri 08 Aug 2025 13:42:48 +0000 Files and hashes: 1: 323430363a376234303a3a2f33322d3438203d3e203538383231.roa (hash: UaGmn4kTfe+1TDn5eCuN9O53yKjU57F4Hz3jxRXHWWY=) 2: 3130332e3135362e31342e302f32332d3234203d3e203538383231.roa (hash: uhbTS40xOE2iorcFCGhU6uKqyXCDewHO7yiFkBSc5gw=) 3: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl (hash: q18NW+3uY6BlUje2BC0hG8ESOP09toe/5iHh0WGkZIc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 13:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:45:5d:45:f7:56:19:71:a3:e0:88:dd:a6:8c:18:2e:3b:ef:24:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Validity Not Before: Aug 5 03:16:48 2025 GMT Not After : Aug 8 13:42:48 2025 GMT Subject: CN=4E5DA0FD27717A2BF71DCCE7FAC0E46FEAACD186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:92:9f:36:70:53:e4:c3:d9:0f:fc:40:5d:6b: 49:f2:8b:a7:10:b5:99:05:6a:f8:65:2e:1c:3e:fb: f5:a8:dc:14:42:ac:80:37:d6:66:09:dc:25:d1:d8: 70:74:79:9c:67:39:54:f1:80:f3:2e:ae:b1:3c:c4: 35:ca:00:22:37:95:4c:bf:a1:8c:80:af:d3:56:f4: 67:e0:64:d9:96:0c:04:9b:a1:3b:a6:66:22:f7:ee: 2a:b9:d6:f5:b2:1e:55:e0:75:7d:2b:49:d6:a8:11: 79:2d:b8:b7:48:b0:28:99:d4:25:04:8b:76:b8:0b: f5:a7:81:43:b5:26:49:9b:ce:71:66:42:a0:35:5e: 81:5a:1f:cd:41:02:54:6e:1a:02:86:38:00:48:a2: b3:61:e1:ed:3b:73:ec:3a:bb:5c:10:c0:00:e1:19: 2c:92:8c:e3:60:e8:5e:d2:17:d2:d0:37:24:37:75: 8b:c7:c3:b8:ea:08:70:ed:db:b3:d1:aa:88:e5:36: 76:76:53:4a:6a:13:17:aa:07:43:fc:18:f3:78:62: 65:2a:ca:c1:a7:92:91:59:33:8a:68:5b:23:4c:13: 19:00:72:45:1f:37:7e:7e:b3:b0:a2:33:6d:42:9f: d2:28:ca:92:c0:a3:f8:09:cf:6b:a4:0a:57:d5:e4: 83:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:5D:A0:FD:27:71:7A:2B:F7:1D:CC:E7:FA:C0:E4:6F:EA:AC:D1:86 X509v3 Authority Key Identifier: keyid:1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:2d:c8:70:d9:17:c0:d6:1e:54:0a:ca:dd:cf:89:ed:b1:37: 46:1a:89:a5:80:82:96:24:7b:44:f2:e0:b4:4e:2b:8a:6f:c4: ef:b5:70:b3:f1:12:81:13:8b:28:f8:e9:97:c6:52:9e:52:bd: e6:8c:7d:94:06:5f:27:bc:11:bd:b5:23:ed:d0:99:c0:14:7a: c7:b9:89:c6:f4:ab:27:70:c9:aa:75:75:3e:2b:c2:7f:35:4c: 8e:d8:83:72:6f:5b:6e:26:4f:b2:24:49:15:57:ff:be:b9:a3: 4d:86:4f:bd:d4:ac:8a:06:e8:b8:14:2f:ad:1c:e6:5b:12:b9: bc:13:73:7a:4f:4c:2e:8a:0b:87:41:4b:13:8b:d5:b4:fb:af: 42:1e:af:3e:5c:6d:a8:37:9e:11:f3:b8:58:6e:f6:3b:01:28: 9d:a4:5f:64:7a:db:09:03:66:ed:fc:36:6d:07:e0:d8:20:3e: 14:d1:e4:63:7f:75:69:13:86:ba:c6:bc:18:3b:e5:2d:cd:9a: dc:7d:4c:45:1d:f1:3b:70:44:c3:f5:4c:85:b2:db:4f:7b:a8: f1:4d:32:47:9e:f1:be:95:42:6e:ff:23:53:d4:f1:29:76:e8: 4e:f0:48:df:f1:41:56:d9:ac:86:40:fb:c5:73:84:5c:e7:db: 54:84:58:61 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIEVdRfdWGXGj4IjdpowYLjvvJB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2 OEY4MDQxOTAeFw0yNTA4MDUwMzE2NDhaFw0yNTA4MDgxMzQyNDhaMDMxMTAvBgNV BAMTKDRFNURBMEZEMjc3MTdBMkJGNzFEQ0NFN0ZBQzBFNDZGRUFBQ0QxODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDakp82cFPkw9kP/EBda0nyi6cQ tZkFavhlLhw++/Wo3BRCrIA31mYJ3CXR2HB0eZxnOVTxgPMurrE8xDXKACI3lUy/ oYyAr9NW9GfgZNmWDASboTumZiL37iq51vWyHlXgdX0rSdaoEXktuLdIsCiZ1CUE i3a4C/WngUO1JkmbznFmQqA1XoFaH81BAlRuGgKGOABIorNh4e07c+w6u1wQwADh GSySjONg6F7SF9LQNyQ3dYvHw7jqCHDt27PRqojlNnZ2U0pqExeqB0P8GPN4YmUq ysGnkpFZM4poWyNMExkAckUfN35+s7CiM21Cn9IoypLAo/gJz2ukClfV5IM7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTl2g/Sdxeiv3Hczn+sDkb+qs0YYwHwYDVR0j BBgwFoAUHY2cvFKTTvArzR1Hiuumo2j4BBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTFlYTUxMy1hYzZlLTRhNWYtYjNlYi1kNTM1MmNhZjQ4NmIvMC8xRDhEOUNCQzUy OTM0RUYwMkJDRDFENDc4QUVCQTZBMzY4RjgwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2OEY4 MDQxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2UxZWE1MTMtYWM2ZS00YTVmLWIz ZWItZDUzNTJjYWY0ODZiLzAvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2 QTM2OEY4MDQxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAUtyHDZF8DWHlQKyt3Pie2xN0YaiaWAgpYk e0Ty4LROK4pvxO+1cLPxEoETiyj46ZfGUp5SveaMfZQGXye8Eb21I+3QmcAUese5 icb0qydwyap1dT4rwn81TI7Yg3JvW24mT7IkSRVX/765o02GT73UrIoG6LgUL60c 5lsSubwTc3pPTC6KC4dBSxOL1bT7r0Ierz5cbag3nhHzuFhu9jsBKJ2kX2R62wkD Zu38Nm0H4NggPhTR5GN/dWkThrrGvBg75S3Nmtx9TEUd8TtwRMP1TIWy2097qPFN Mkee8b6VQm7/I1PU8Sl26E7wSN/xQVbZrIZA+8VzhFzn21SEWGE= -----END CERTIFICATE-----Generated at Thu Aug 7 03:30:33 2025 by rpki-client