$ rpki-client -vvf repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft File: 1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft (raw, json) Hash identifier: q229M843OyR4rDZI3yAbdI85NYPojNWea75NGlqFCqU= Subject key identifier: D7:17:81:DF:C1:1D:21:03:50:01:0C:69:28:A8:B2:42:85:40:1D:5C Authority key identifier: 16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 Certificate issuer: /CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Certificate serial: 05C8ECF5702B3BBFFBD80384BC88982EAE54311D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft Manifest number: 04C6 Signing time: Tue 05 Aug 2025 22:42:19 +0000 Manifest this update: Tue 05 Aug 2025 22:37:19 +0000 Manifest next update: Sat 09 Aug 2025 06:21:19 +0000 Files and hashes: 1: 3130332e33302e3134372e302f32342d3234203d3e203436303530.roa (hash: e40kdwd9RGaDzut85pUqofV0tIg/vdE6e4M9mcDTUZU=) 2: 323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa (hash: rdX2P/62Fs2A7bSHrzzBOblACv/dlOvxDsyqbDOTmes=) 3: 3230332e3136312e3138342e302f32332d3234203d3e203436303530.roa (hash: QmUK5t+kPBhbRYikNscX9LWrBhBp5pP7CeGdlMn53Do=) 4: 3230322e35322e3134362e302f32332d3234203d3e203435333234.roa (hash: fr5BMGMZ4/JWAtuc82Bwpon8VOaBOapImuPEr/qDXGY=) 5: 3130332e33302e3134342e302f32322d3234203d3e203436303530.roa (hash: AqVeGkcCeQqSSxTzFMHfgh7oeb2WJE9ZcEpymir7iqI=) 6: 1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl (hash: st9SGnuP+6ApG9ryTN559MIEn5N7xaPklwJOTPcxvjw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 06:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:c8:ec:f5:70:2b:3b:bf:fb:d8:03:84:bc:88:98:2e:ae:54:31:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Validity Not Before: Aug 5 22:37:19 2025 GMT Not After : Aug 9 06:21:19 2025 GMT Subject: CN=D71781DFC11D210350010C6928A8B24285401D5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bd:14:41:5a:39:20:1d:98:89:5f:c9:17:f3: a5:b3:10:aa:71:fa:d5:64:cf:d8:43:2a:1d:c8:e1: a7:3e:b8:c2:98:c1:b8:0e:28:4d:b2:51:8c:8a:8f: a7:dc:23:32:5a:71:be:d5:4a:bd:2b:19:aa:3a:2f: 10:69:93:15:77:66:36:22:61:03:6f:9b:df:53:8d: 04:56:94:cb:7b:f6:62:2d:ec:29:b4:77:fc:9d:84: 6a:8c:03:4a:b7:90:55:a4:b5:4e:54:55:cd:6d:b5: 8c:fe:bb:ca:c8:6e:90:97:79:8c:91:b2:a6:eb:b6: 43:cd:e0:5b:3f:24:ad:94:97:0b:33:8e:2b:06:77: d8:34:e5:7c:a3:0e:26:6f:1c:42:9e:c4:6f:bf:3c: 9c:67:d4:59:ff:49:4a:0d:8c:13:24:82:fa:5e:67: dd:48:b4:22:ea:58:82:d0:19:e0:57:1f:6a:01:3a: 46:00:4f:54:d4:fd:f1:c9:a5:5e:5b:ee:58:c3:7c: 70:24:38:25:92:a7:7e:29:34:50:71:57:7b:3a:95: 71:f6:3b:ba:b0:23:30:bc:45:6f:91:72:6a:5a:44: 31:42:50:f5:a9:97:f0:2a:70:be:16:50:36:18:cb: a7:83:a3:f2:10:a2:70:e2:15:27:56:21:fb:6f:54: 10:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:17:81:DF:C1:1D:21:03:50:01:0C:69:28:A8:B2:42:85:40:1D:5C X509v3 Authority Key Identifier: keyid:16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:ec:81:f7:84:a9:a8:70:3a:28:c1:79:28:0e:0d:8b:95:1a: 20:2f:41:da:49:c8:f2:1d:c9:45:e0:4e:73:4d:2e:95:92:c3: 46:79:4b:44:d3:7e:bd:4a:74:64:08:da:34:80:5d:92:d0:ed: 5b:5f:8a:41:db:6c:f9:c9:15:f2:57:13:07:1d:3a:85:9c:fc: bb:31:56:04:f5:c2:1a:c8:5e:53:21:5f:35:b8:4d:8a:a8:7c: 85:f7:5e:69:87:7e:81:42:c7:b4:0e:20:3a:83:6f:85:32:7f: b0:50:88:cf:e9:53:1d:47:31:06:84:60:b6:bf:ac:12:58:a6: d7:a5:5c:88:5e:15:72:5b:1c:b5:27:3b:bd:8f:bb:b8:63:59: 6e:65:d8:8a:2d:b8:bd:cb:50:0b:2e:c2:67:fe:3e:f1:95:de: 9e:0a:84:4d:e8:59:b3:89:13:ed:94:32:2a:bb:09:73:ff:87: 46:17:2e:09:61:0c:8b:7b:7c:e7:c4:db:ef:d5:5e:16:89:9b: b6:32:b3:8e:e3:57:72:64:fb:c5:b7:2b:e6:26:15:ff:12:62: ba:72:b7:36:ff:5a:6d:c9:90:88:6b:b7:a3:74:37:1e:25:97: 54:cb:28:24:9a:e1:b9:61:9a:02:e9:bf:2a:60:02:1c:51:b0: d3:63:a5:c2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBcjs9XArO7/72AOEvIiYLq5UMR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBE RTE4MUUwNjAeFw0yNTA4MDUyMjM3MTlaFw0yNTA4MDkwNjIxMTlaMDMxMTAvBgNV BAMTKEQ3MTc4MURGQzExRDIxMDM1MDAxMEM2OTI4QThCMjQyODU0MDFENUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTvRRBWjkgHZiJX8kX86WzEKpx +tVkz9hDKh3I4ac+uMKYwbgOKE2yUYyKj6fcIzJacb7VSr0rGao6LxBpkxV3ZjYi YQNvm99TjQRWlMt79mIt7Cm0d/ydhGqMA0q3kFWktU5UVc1ttYz+u8rIbpCXeYyR sqbrtkPN4Fs/JK2UlwszjisGd9g05XyjDiZvHEKexG+/PJxn1Fn/SUoNjBMkgvpe Z91ItCLqWILQGeBXH2oBOkYAT1TU/fHJpV5b7ljDfHAkOCWSp34pNFBxV3s6lXH2 O7qwIzC8RW+RcmpaRDFCUPWpl/AqcL4WUDYYy6eDo/IQonDiFSdWIftvVBAbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1xeB38EdIQNQAQxpKKiyQoVAHVwwHwYDVR0j BBgwFoAUFmGhvInMrdTHvnIwUq5ZAN4YHgYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MGQyZDNlMy00YzIwLTRhOTAtODMzZS1lYWQ0M2MzMzk5MWUvMC8xNjYxQTFCQzg5 Q0NBREQ0QzdCRTcyMzA1MkFFNTkwMERFMTgxRTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBERTE4 MUUwNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDBkMmQzZTMtNGMyMC00YTkwLTgz M2UtZWFkNDNjMzM5OTFlLzAvMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5 MDBERTE4MUUwNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFLsgfeEqahwOijBeSgODYuVGiAvQdpJyPId yUXgTnNNLpWSw0Z5S0TTfr1KdGQI2jSAXZLQ7VtfikHbbPnJFfJXEwcdOoWc/Lsx VgT1whrIXlMhXzW4TYqofIX3XmmHfoFCx7QOIDqDb4Uyf7BQiM/pUx1HMQaEYLa/ rBJYptelXIheFXJbHLUnO72Pu7hjWW5l2IotuL3LUAsuwmf+PvGV3p4KhE3oWbOJ E+2UMiq7CXP/h0YXLglhDIt7fOfE2+/VXhaJm7Yys47jV3Jk+8W3K+YmFf8SYrpy tzb/Wm3JkIhrt6N0Nx4ll1TLKCSa4blhmgLpvypgAhxRsNNjpcI= -----END CERTIFICATE-----Generated at Thu Aug 7 07:17:34 2025 by rpki-client