$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft File: D2EF21DBD545255BED30EEC34623F204A3E12D23.mft (raw, json) Hash identifier: +FPGuxXd43HxrSp4z+BQw2l/zphpGyawQ+o4/AgP9bg= Subject key identifier: A6:07:84:25:1A:49:EA:4D:F4:DB:7C:0E:38:3E:29:2F:CE:0C:C3:71 Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 57E0225028A9FF0CE052FF8A6A8B6A8E3E54A131 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft Manifest number: 04F3 Signing time: Mon 04 Aug 2025 12:51:13 +0000 Manifest this update: Mon 04 Aug 2025 12:46:13 +0000 Manifest next update: Thu 07 Aug 2025 22:04:13 +0000 Files and hashes: 1: 3130332e3130342e3230362e302f32342d3234203d3e20313336383639.roa (hash: W2IYXy+JkbGpp85/sS2UKLUazxQpNz2N8iZifbHeJpI=) 2: 3130332e3130342e3230372e302f32342d3234203d3e20313336383639.roa (hash: 2COjLCJ4YEuRoqvYvSrj9dQC5huF+G+dAbpMe2HpJLo=) 3: 3130332e3130342e3230342e302f32342d3234203d3e20313336383639.roa (hash: w7Chi4gZxBYt1ZeGb/YO7tH8OTI2H/0aS5PoiZEPc/Y=) 4: 3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa (hash: iReeweCReiVdyDxdcHaFTjeSzHc3cSR3SFaF6DPJP8s=) 5: D2EF21DBD545255BED30EEC34623F204A3E12D23.crl (hash: G3qlowQYPbSokSm2hUxGlPIOP2TBfWCn/dRu8NpDOwg=) 6: 323430323a316134303a3a2f33322d3332203d3e20313336383639.roa (hash: HI0hJJXTQDhzD7pTczCRmyIdw4yYJFsaIwjzSTbxsrY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 22:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:e0:22:50:28:a9:ff:0c:e0:52:ff:8a:6a:8b:6a:8e:3e:54:a1:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Aug 4 12:46:13 2025 GMT Not After : Aug 7 22:04:13 2025 GMT Subject: CN=A60784251A49EA4DF4DB7C0E383E292FCE0CC371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:da:df:3e:d8:5f:30:09:d1:6b:c9:0d:1d:ec: 2e:1c:c2:59:ac:cb:67:58:94:0f:39:c5:24:27:e0: 2f:0e:bb:d1:bf:8a:2d:00:13:ff:13:a4:55:6e:a5: 9a:7f:2a:a6:09:a2:d2:7d:60:1c:17:b4:34:d0:8a: a5:27:d7:1a:45:83:30:ea:a2:ed:75:0b:5a:ed:b3: 8b:b1:e4:2b:33:e1:27:37:0f:b5:d3:61:ce:be:b2: 57:49:23:79:42:59:fc:7d:ed:41:6d:55:6d:9c:50: 0e:d4:cc:93:be:58:66:c6:64:3c:1a:c2:65:96:a5: 67:65:02:32:25:f6:9a:b9:6b:52:fe:36:8a:c3:ac: 4d:50:80:7e:24:1d:fb:0a:6e:ca:4b:60:db:2f:39: 74:68:76:77:cb:0b:50:b2:2c:65:d9:96:e5:82:24: d4:2c:3b:ca:26:71:85:31:45:33:f1:7c:4b:27:7d: 19:cb:ed:46:8d:67:30:42:e6:40:c8:44:18:be:81: fc:71:3d:22:48:8b:28:2d:9c:58:99:09:5f:89:fc: 07:f7:52:d1:aa:d5:25:42:5b:78:15:85:9e:81:d6: 32:21:4a:52:8a:d1:23:a3:63:3b:67:8c:e3:d3:3e: 06:da:d6:e0:27:2d:93:f5:e2:83:ce:8d:c0:91:a9: 62:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:07:84:25:1A:49:EA:4D:F4:DB:7C:0E:38:3E:29:2F:CE:0C:C3:71 X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:6a:34:b6:4c:8b:37:61:eb:fe:6e:d1:81:cc:b2:dd:ac:61: 78:0e:38:1d:fd:e8:af:1b:6d:f8:7e:d5:13:0c:c2:35:f5:41: 66:b3:b6:40:fb:b0:27:04:be:57:8d:93:98:56:86:9c:33:4c: 1d:dd:94:1d:a4:d5:63:c4:cc:cc:3d:ac:47:94:60:b8:bb:fc: 2a:c2:3f:e5:bf:4a:44:1f:9e:44:89:80:37:69:82:fd:ef:a3: 30:29:c6:b1:7d:a6:d3:82:2f:0f:7b:62:e9:6d:11:1e:bc:f4: de:93:64:e0:5b:16:1c:76:d1:af:1f:41:c9:f5:98:23:97:83: 5f:0f:2f:ed:81:33:90:b3:16:27:07:71:52:fd:17:f0:0c:2b: c0:0a:ab:3c:80:5e:94:af:18:4f:ea:65:05:9b:11:88:11:cc: 17:73:23:90:eb:a0:79:75:8a:0f:e6:25:3a:63:4c:e6:b2:50: 12:63:be:e9:a8:fa:c8:ac:46:d8:6f:e5:41:45:ec:ce:4a:7e: e3:a3:98:c4:71:f7:d8:5f:57:78:6c:d8:69:8f:39:62:51:6b: 9d:c4:96:e0:43:71:d3:59:d0:a9:4d:3d:43:f4:75:44:70:f5: d9:44:18:d6:23:9b:33:99:d6:f8:94:da:34:dc:3b:ef:53:66: 27:8d:18:ed -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUV+AiUCip/wzgUv+Kaotqjj5UoTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNTA4MDQxMjQ2MTNaFw0yNTA4MDcyMjA0MTNaMDMxMTAvBgNV BAMTKEE2MDc4NDI1MUE0OUVBNERGNERCN0MwRTM4M0UyOTJGQ0UwQ0MzNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW2t8+2F8wCdFryQ0d7C4cwlms y2dYlA85xSQn4C8Ou9G/ii0AE/8TpFVupZp/KqYJotJ9YBwXtDTQiqUn1xpFgzDq ou11C1rts4ux5Csz4Sc3D7XTYc6+sldJI3lCWfx97UFtVW2cUA7UzJO+WGbGZDwa wmWWpWdlAjIl9pq5a1L+NorDrE1QgH4kHfsKbspLYNsvOXRodnfLC1CyLGXZluWC JNQsO8omcYUxRTPxfEsnfRnL7UaNZzBC5kDIRBi+gfxxPSJIiygtnFiZCV+J/Af3 UtGq1SVCW3gVhZ6B1jIhSlKK0SOjYztnjOPTPgba1uAnLZP14oPOjcCRqWLbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpgeEJRpJ6k3023wOOD4pL84Mw3EwHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDIzMWU2YjEtMTg0MS00NzZkLWI0 NmItYjQ0YjljYjk2OGIwLzAvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0Yy MDRBM0UxMkQyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEJqNLZMizdh6/5u0YHMst2sYXgOOB396K8b bfh+1RMMwjX1QWaztkD7sCcEvleNk5hWhpwzTB3dlB2k1WPEzMw9rEeUYLi7/CrC P+W/SkQfnkSJgDdpgv3vozApxrF9ptOCLw97YultER689N6TZOBbFhx20a8fQcn1 mCOXg18PL+2BM5CzFicHcVL9F/AMK8AKqzyAXpSvGE/qZQWbEYgRzBdzI5DroHl1 ig/mJTpjTOayUBJjvumo+sisRthv5UFF7M5KfuOjmMRx99hfV3hs2GmPOWJRa53E luBDcdNZ0KlNPUP0dURw9dlEGNYjmzOZ1viU2jTcO+9TZieNGO0= -----END CERTIFICATE-----Generated at Wed Aug 6 12:25:20 2025 by rpki-client