$ rpki-client -vvf repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft File: 95966A8DB250307CF9852483F96922EE520F6E2A.mft (raw, json) Hash identifier: iowIG/zC2TiPx2YuvbRjJ4guDxC9eKRNdNvfAFF34CU= Subject key identifier: BE:48:61:26:5B:F5:74:A5:61:A7:F8:CA:49:10:24:80:10:59:17:5B Authority key identifier: 95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A Certificate issuer: /CN=95966A8DB250307CF9852483F96922EE520F6E2A Certificate serial: 7269B92EBC934FF34958D8DB76F9AEA69C54A166 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft Manifest number: 02E3 Signing time: Tue 05 Aug 2025 06:50:00 +0000 Manifest this update: Tue 05 Aug 2025 06:45:00 +0000 Manifest next update: Fri 08 Aug 2025 09:39:00 +0000 Files and hashes: 1: 3130332e31392e3232392e302f32342d3234203d3e20313332363638.roa (hash: lJA11B888lTAIORO0k9rdft4p7t0vrr4FyWBG++arwA=) 2: 3130332e31392e3233302e302f32342d3234203d3e20313332363638.roa (hash: QAndsMLECtqgWCCHyuYe9oOyMMkwnZ8QhtRk2OHf9FQ=) 3: 3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa (hash: MitWmX3yxsYyPd+sKi7YcLOVm2fefPu2Qs/7NDCXxb8=) 4: 95966A8DB250307CF9852483F96922EE520F6E2A.crl (hash: lpyy8/gh/+T9TcdjM0ODQeGVNpZlTBhjahvAIU3GPEo=) 5: 3130332e31392e3233312e302f32342d3234203d3e20313332363638.roa (hash: xt2DiIsS1Hm+P8ldmkaqq+Mf+LiIX+U17UKLw/Y34Uk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 09:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:69:b9:2e:bc:93:4f:f3:49:58:d8:db:76:f9:ae:a6:9c:54:a1:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95966A8DB250307CF9852483F96922EE520F6E2A Validity Not Before: Aug 5 06:45:00 2025 GMT Not After : Aug 8 09:39:00 2025 GMT Subject: CN=BE4861265BF574A561A7F8CA491024801059175B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fe:ed:61:65:48:ca:19:58:87:79:09:a8:eb: bd:16:ed:43:c7:51:fb:4a:72:89:7a:2e:4e:82:23: d9:eb:62:7b:97:0a:15:6f:0a:13:a7:36:61:61:42: 23:34:cc:5a:51:14:99:ca:c7:7b:89:da:e7:8b:cf: 6d:7e:42:1f:cc:42:8c:c9:f9:71:ad:74:2e:2f:14: 16:c9:e8:e6:1e:73:ee:3b:38:70:e9:f4:a2:f4:ef: 1c:69:21:db:30:30:d9:82:0c:be:4c:ca:a6:10:5f: 8e:3e:db:be:ae:43:00:55:15:01:e8:f6:2e:a3:b0: 4f:86:7c:25:99:ad:64:2f:34:e8:83:d9:40:ee:ba: db:51:e7:cb:ac:85:9f:3d:66:80:0e:b6:f2:5b:6f: ae:a5:d6:32:9c:c7:bf:a2:ce:32:d7:0d:c6:11:de: 90:22:65:57:fd:a7:4f:2f:95:32:3e:f5:19:1b:08: d0:cb:4a:3a:92:0e:f6:9f:23:ff:ee:de:2c:45:ee: 90:cd:6b:41:9a:bb:1a:1e:d9:f7:d5:c1:71:e7:ca: 90:aa:0e:a4:65:c6:35:5d:2b:9b:06:30:0b:86:cb: a4:f3:f5:ea:31:c7:31:94:ce:57:16:0d:2c:27:22: c6:1c:30:e0:d2:e1:52:4f:20:dc:77:60:c9:bc:bb: 1f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:48:61:26:5B:F5:74:A5:61:A7:F8:CA:49:10:24:80:10:59:17:5B X509v3 Authority Key Identifier: keyid:95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:6a:0f:14:df:be:15:79:35:d5:b7:06:0e:68:0a:c7:ec:1c: 04:51:55:ad:51:b1:ef:2d:12:92:9c:15:e8:6c:b2:e6:d7:82: 2e:22:33:54:40:f8:04:64:88:fb:49:b5:62:39:87:f0:9f:01: d9:c3:b7:14:65:0e:6b:f1:99:02:07:3d:9d:99:6d:2c:90:b7: 93:3f:33:d8:b7:b2:31:c5:a8:06:dd:2d:01:37:4c:40:cf:a8: 1b:64:25:cb:61:61:52:1d:08:5b:25:49:b8:4f:d4:f9:3e:83: d7:a1:54:ba:96:9f:fa:10:89:b2:10:22:37:2f:05:71:6d:68: b6:c0:b8:3b:56:79:55:b5:9b:b5:72:f7:c9:fd:2a:0e:04:81: 1d:04:98:79:ab:05:e0:64:f3:33:10:ec:75:e9:fb:6f:a6:6e: 87:7e:23:8e:02:ec:b8:d2:d9:40:a0:1c:7a:18:1c:62:cd:1b: 92:3a:88:d4:59:70:c7:89:9f:66:5c:67:bc:a2:24:9c:d1:05: 5d:4f:5e:87:8b:41:1b:5d:0e:1f:a8:7b:98:e8:3b:14:17:66: 56:8a:f4:47:a5:87:63:99:ae:c5:e7:fc:d5:19:5d:01:bd:b6: 00:8e:69:75:5b:86:1b:c6:19:53:ff:37:f2:1c:88:0d:2c:07: b3:59:bf:44 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcmm5LryTT/NJWNjbdvmuppxUoWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1 MjBGNkUyQTAeFw0yNTA4MDUwNjQ1MDBaFw0yNTA4MDgwOTM5MDBaMDMxMTAvBgNV BAMTKEJFNDg2MTI2NUJGNTc0QTU2MUE3RjhDQTQ5MTAyNDgwMTA1OTE3NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC//u1hZUjKGViHeQmo670W7UPH UftKcol6Lk6CI9nrYnuXChVvChOnNmFhQiM0zFpRFJnKx3uJ2ueLz21+Qh/MQozJ +XGtdC4vFBbJ6OYec+47OHDp9KL07xxpIdswMNmCDL5MyqYQX44+276uQwBVFQHo 9i6jsE+GfCWZrWQvNOiD2UDuuttR58ushZ89ZoAOtvJbb66l1jKcx7+izjLXDcYR 3pAiZVf9p08vlTI+9RkbCNDLSjqSDvafI//u3ixF7pDNa0Gauxoe2ffVwXHnypCq DqRlxjVdK5sGMAuGy6Tz9eoxxzGUzlcWDSwnIsYcMODS4VJPINx3YMm8ux9vAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvkhhJlv1dKVhp/jKSRAkgBBZF1swHwYDVR0j BBgwFoAUlZZqjbJQMHz5hSSD+Wki7lIPbiowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MmYxNDE3YS01NzE4LTQwNzEtOWYzNS1jMTIyNTU1ZGFjN2EvMC85NTk2NkE4REIy NTAzMDdDRjk4NTI0ODNGOTY5MjJFRTUyMEY2RTJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1MjBG NkUyQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDJmMTQxN2EtNTcxOC00MDcxLTlm MzUtYzEyMjU1NWRhYzdhLzAvOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIy RUU1MjBGNkUyQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADpqDxTfvhV5NdW3Bg5oCsfsHARRVa1Rse8t EpKcFehssubXgi4iM1RA+ARkiPtJtWI5h/CfAdnDtxRlDmvxmQIHPZ2ZbSyQt5M/ M9i3sjHFqAbdLQE3TEDPqBtkJcthYVIdCFslSbhP1Pk+g9ehVLqWn/oQibIQIjcv BXFtaLbAuDtWeVW1m7Vy98n9Kg4EgR0EmHmrBeBk8zMQ7HXp+2+mbod+I44C7LjS 2UCgHHoYHGLNG5I6iNRZcMeJn2ZcZ7yiJJzRBV1PXoeLQRtdDh+oe5joOxQXZlaK 9Eelh2OZrsXn/NUZXQG9tgCOaXVbhhvGGVP/N/IciA0sB7NZv0Q= -----END CERTIFICATE-----Generated at Thu Aug 7 00:45:47 2025 by rpki-client