$ rpki-client -vvf repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft File: 5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft (raw, json) Hash identifier: WQss7rgHQdoT+A/1iTKKe1Nbz8AauqenAiQPhEJMO8Y= Subject key identifier: 84:7C:EA:BC:F1:B9:CB:61:96:12:1B:39:91:F3:5A:35:45:84:EC:BD Authority key identifier: 5A:8D:4D:EC:5F:C2:9B:E6:E2:49:04:62:F5:80:90:3D:D4:A9:84:EB Certificate issuer: /CN=5A8D4DEC5FC29BE6E2490462F580903DD4A984EB Certificate serial: 283E04E2C1A3C951DB914B5CF545800238638308 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft Manifest number: C7 Signing time: Mon 04 Aug 2025 11:41:00 +0000 Manifest this update: Mon 04 Aug 2025 11:36:00 +0000 Manifest next update: Thu 07 Aug 2025 16:07:00 +0000 Files and hashes: 1: 3135372e36362e3132322e302f32342d3234203d3e203633383538.roa (hash: 4USC1AQzGKvJLoaILHyi8/vcN8nVPul2782sFf1fdxE=) 2: 5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl (hash: XGeFvQu2QhdXTWExinxw0Fd+4OjVnrzVpFrgyr39zf4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 16:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:3e:04:e2:c1:a3:c9:51:db:91:4b:5c:f5:45:80:02:38:63:83:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A8D4DEC5FC29BE6E2490462F580903DD4A984EB Validity Not Before: Aug 4 11:36:00 2025 GMT Not After : Aug 7 16:07:00 2025 GMT Subject: CN=847CEABCF1B9CB6196121B3991F35A354584ECBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2c:a2:b9:5c:8c:8a:f7:1a:5f:99:d8:40:34: 30:19:72:96:f7:14:60:96:d7:a4:f0:6f:0b:8d:b6: 8d:af:e7:0f:6c:01:2d:6a:04:be:aa:36:f8:95:98: ea:3a:5f:75:cb:ec:39:02:e4:c5:2f:b4:59:d6:1f: e5:cb:20:b7:ae:ef:52:2c:24:ac:fe:2a:f7:ba:13: 75:27:d4:69:8f:58:05:2a:6f:04:c9:fe:43:9e:ae: 34:26:9c:b7:a9:b6:58:94:86:cc:ff:d7:c3:3e:79: 7b:54:ec:d1:ff:3d:12:ea:db:8d:3a:ab:68:71:12: d1:4b:d9:a7:b6:5a:db:91:3d:a2:4c:81:b4:9c:7e: 6e:2a:34:e3:89:22:a5:df:db:a7:92:7e:6e:1b:97: 45:40:01:74:0e:65:9a:cc:95:0b:72:75:cc:54:21: 67:2d:2d:75:5c:f7:63:c6:3e:4f:36:1e:d2:ff:fa: f2:ff:b2:17:12:23:b5:e8:99:62:e8:13:b5:67:87: 36:44:e6:2e:26:0f:bc:4e:95:e4:1b:67:74:8d:30: 1e:34:6c:75:cf:22:9a:2e:41:3c:d3:a6:08:50:d8: 2b:ca:81:c5:3a:64:13:51:d1:f5:39:c5:a8:c2:ac: 33:81:49:29:84:60:f6:d7:be:98:bf:e3:7e:7a:56: 0c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:7C:EA:BC:F1:B9:CB:61:96:12:1B:39:91:F3:5A:35:45:84:EC:BD X509v3 Authority Key Identifier: keyid:5A:8D:4D:EC:5F:C2:9B:E6:E2:49:04:62:F5:80:90:3D:D4:A9:84:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:78:f9:37:fd:d3:f1:f0:56:cb:fb:a5:17:ce:b6:0c:c0:e3: 71:59:3f:c1:2f:16:83:fa:7b:bf:73:cc:c5:25:13:e2:bc:8f: 6a:1f:b5:65:cb:95:d0:39:ed:f0:39:c8:d7:8a:43:71:de:a1: cd:84:1e:b3:53:f5:d4:b0:16:02:5b:16:71:55:14:a6:11:34: 7f:b5:05:3b:56:18:02:de:56:18:d5:34:15:23:66:4e:89:60: c7:1a:c5:ac:dd:99:9f:21:c8:c5:47:6e:e3:f0:29:ee:e6:85: 6a:5d:cf:1f:a0:3e:1b:35:6e:00:bd:8e:18:41:9b:0f:11:3e: dc:5e:f5:4f:34:c3:ca:9c:e6:68:40:42:c9:92:f3:ce:70:b1: d7:c5:60:be:df:e1:0d:e7:a2:e0:af:01:c6:f0:71:28:b0:91: b7:88:c9:92:62:a7:8f:e1:0a:9c:93:83:e8:b2:fc:ae:c6:30: 22:77:53:76:3c:96:c6:fe:af:a1:db:5d:ae:b3:be:6a:46:6b: 05:e6:c3:eb:c9:9d:fc:fe:0c:3a:9d:ab:03:a4:db:a9:36:de: 84:0b:89:12:c5:ed:35:73:58:53:d8:b9:02:74:22:d2:d4:d4: a9:9b:59:76:70:ea:fd:5f:f2:8d:51:57:88:8f:a4:3d:5d:c8: f5:07:06:0a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKD4E4sGjyVHbkUtc9UWAAjhjgwgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkwM0RE NEE5ODRFQjAeFw0yNTA4MDQxMTM2MDBaFw0yNTA4MDcxNjA3MDBaMDMxMTAvBgNV BAMTKDg0N0NFQUJDRjFCOUNCNjE5NjEyMUIzOTkxRjM1QTM1NDU4NEVDQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFLKK5XIyK9xpfmdhANDAZcpb3 FGCW16TwbwuNto2v5w9sAS1qBL6qNviVmOo6X3XL7DkC5MUvtFnWH+XLILeu71Is JKz+Kve6E3Un1GmPWAUqbwTJ/kOerjQmnLeptliUhsz/18M+eXtU7NH/PRLq2406 q2hxEtFL2ae2WtuRPaJMgbScfm4qNOOJIqXf26eSfm4bl0VAAXQOZZrMlQtydcxU IWctLXVc92PGPk82HtL/+vL/shcSI7XomWLoE7VnhzZE5i4mD7xOleQbZ3SNMB40 bHXPIpouQTzTpghQ2CvKgcU6ZBNR0fU5xajCrDOBSSmEYPbXvpi/4356VgxpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhHzqvPG5y2GWEhs5kfNaNUWE7L0wHwYDVR0j BBgwFoAUWo1N7F/Cm+biSQRi9YCQPdSphOswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZWNmNWQ5NC03ZjFmLTQzYmYtYjdhYS0yMjBmMGMxNTZlYzAvMC81QThENERFQzVG QzI5QkU2RTI0OTA0NjJGNTgwOTAzREQ0QTk4NEVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkwM0RENEE5 ODRFQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2VjZjVkOTQtN2YxZi00M2JmLWI3 YWEtMjIwZjBjMTU2ZWMwLzAvNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkw M0RENEE5ODRFQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIp4+Tf90/HwVsv7pRfOtgzA43FZP8EvFoP6 e79zzMUlE+K8j2oftWXLldA57fA5yNeKQ3Heoc2EHrNT9dSwFgJbFnFVFKYRNH+1 BTtWGALeVhjVNBUjZk6JYMcaxazdmZ8hyMVHbuPwKe7mhWpdzx+gPhs1bgC9jhhB mw8RPtxe9U80w8qc5mhAQsmS885wsdfFYL7f4Q3nouCvAcbwcSiwkbeIyZJip4/h CpyTg+iy/K7GMCJ3U3Y8lsb+r6HbXa6zvmpGawXmw+vJnfz+DDqdqwOk26k23oQL iRLF7TVzWFPYuQJ0ItLU1KmbWXZw6v1f8o1RV4iPpD1dyPUHBgo= -----END CERTIFICATE-----Generated at Tue Aug 5 19:58:29 2025 by rpki-client