$ rpki-client -vvf repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft File: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft (raw, json) Hash identifier: r6ToJRVTr5Ui886XLfNXnLBXNkSVcDzx8j3ul9X9yqo= Subject key identifier: A5:80:6F:30:22:9E:67:98:BC:0B:76:97:44:7A:B3:08:35:97:05:2B Authority key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Certificate issuer: /CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Certificate serial: 3F2B29DF30B924EFE4C467CB7E9DBCA940287D9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft Manifest number: 04F7 Signing time: Wed 06 Aug 2025 12:41:16 +0000 Manifest this update: Wed 06 Aug 2025 12:36:16 +0000 Manifest next update: Sat 09 Aug 2025 17:34:16 +0000 Files and hashes: 1: 3130332e3139352e31392e302f32342d3234203d3e203535363833.roa (hash: NswJoPlTbkW1QbykJdu3UOhV7IqDYlomNhuRwW/poHY=) 2: 323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa (hash: Xkph31LntzUaI1/CJr8Ltj+zXZ7Nq1uWNrqZKmCZlP8=) 3: 3130332e3139352e31382e302f32342d3234203d3e203535363833.roa (hash: GyTvAyiqDcz4HqvEtyjLwFP+vqa6W3Rz6dNaGJkDvBQ=) 4: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl (hash: eLc7Y+BwpIUsgU7YAm1unsebMbg8rOKYgWc66UekLwI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 17:34:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:2b:29:df:30:b9:24:ef:e4:c4:67:cb:7e:9d:bc:a9:40:28:7d:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Validity Not Before: Aug 6 12:36:16 2025 GMT Not After : Aug 9 17:34:16 2025 GMT Subject: CN=A5806F30229E6798BC0B7697447AB3083597052B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e1:b3:79:33:a9:34:a6:a6:cd:c6:6d:8e:c5: 29:a3:55:83:0b:17:4d:8e:91:2f:0b:f9:c7:3e:c5: f9:9a:6f:69:39:cd:a5:1d:8e:33:72:95:9e:99:49: 0d:2f:d9:dc:ca:e7:b2:39:f7:0f:72:b4:35:f8:bd: 51:41:b8:e9:2a:21:f4:64:45:3b:f3:f4:e4:b4:27: 63:94:66:57:66:07:d3:47:2f:95:30:75:65:ff:f2: 7d:e7:c3:11:4b:02:a0:b9:12:7d:e9:d7:91:54:32: b8:c8:32:2e:88:d3:45:ea:b8:ae:50:90:97:e8:f7: 51:f5:4e:6d:d2:de:0a:02:75:86:f1:d3:83:7d:15: f3:6e:f7:5a:ff:8e:41:bc:fc:25:c9:1d:3d:a8:4b: ea:88:dc:e2:5e:81:e8:e8:96:80:07:34:bd:ce:55: 7c:10:07:57:d1:87:66:06:18:81:46:ca:29:ba:72: 7d:8a:79:77:3a:d4:90:18:3f:c2:b1:83:90:31:1c: e6:80:9a:27:49:a7:2f:37:4e:a0:c5:ac:7a:f7:30: 61:05:20:6a:e6:ef:66:a8:40:78:6d:3b:ee:3d:15: cf:e4:13:c0:91:d6:83:b6:b0:1d:89:52:36:2a:0b: 24:8f:87:dc:2b:a1:54:dc:39:e2:1d:f5:07:1a:46: 88:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:80:6F:30:22:9E:67:98:BC:0B:76:97:44:7A:B3:08:35:97:05:2B X509v3 Authority Key Identifier: keyid:35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:99:a6:7a:5f:c2:9f:d6:34:b5:f0:c0:be:2b:62:26:a5:f2: f2:8e:0d:71:0f:93:e3:b7:be:43:67:ff:0c:0d:7b:27:27:b4: 5b:95:59:97:14:9c:89:b4:5b:19:7f:18:25:ed:98:a7:65:0c: a7:2c:bb:6b:9a:f9:d1:17:08:a0:ef:38:25:5b:4f:2f:3a:e0: 08:40:81:70:2a:2d:32:71:16:31:f5:0b:85:69:f3:3e:e0:5b: ea:63:0e:69:9d:ca:25:47:ad:40:40:90:e5:a0:f8:71:71:69: 11:70:eb:d4:75:2a:0a:d9:03:71:ac:34:6e:6d:78:bc:69:ac: 9d:3e:01:70:33:ac:0d:46:f2:2a:e7:09:b6:36:44:b1:33:89: 32:76:f3:d0:62:41:cf:96:3f:29:19:be:6b:1e:fe:80:86:13: 8b:20:fd:1a:b1:4c:9e:c8:7b:67:85:de:c3:72:5d:3a:97:52: e2:4b:14:16:39:c6:50:74:7e:a1:ae:5e:65:b1:ce:17:5c:66: 77:ef:35:c5:a1:cb:7f:c2:2c:eb:28:cd:73:ce:b9:eb:73:f3: e6:46:bb:8b:38:69:d9:f1:31:e7:5c:c5:1e:3d:ae:8b:5a:78: 93:46:5b:26:01:c9:ec:9c:e4:eb:ad:fc:fb:ce:1d:ee:7e:1f: af:0e:f2:ff -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPysp3zC5JO/kxGfLfp28qUAofZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENC NUFEQkQyODAeFw0yNTA4MDYxMjM2MTZaFw0yNTA4MDkxNzM0MTZaMDMxMTAvBgNV BAMTKEE1ODA2RjMwMjI5RTY3OThCQzBCNzY5NzQ0N0FCMzA4MzU5NzA1MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC14bN5M6k0pqbNxm2OxSmjVYML F02OkS8L+cc+xfmab2k5zaUdjjNylZ6ZSQ0v2dzK57I59w9ytDX4vVFBuOkqIfRk RTvz9OS0J2OUZldmB9NHL5UwdWX/8n3nwxFLAqC5En3p15FUMrjIMi6I00XquK5Q kJfo91H1Tm3S3goCdYbx04N9FfNu91r/jkG8/CXJHT2oS+qI3OJegejoloAHNL3O VXwQB1fRh2YGGIFGyim6cn2KeXc61JAYP8Kxg5AxHOaAmidJpy83TqDFrHr3MGEF IGrm72aoQHhtO+49Fc/kE8CR1oO2sB2JUjYqCySPh9wroVTcOeId9QcaRoj1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpYBvMCKeZ5i8C3aXRHqzCDWXBSswHwYDVR0j BBgwFoAUNWa2zwDXsLZz+LUmxWrr3LWtvSgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMC8zNTY2QjZDRjAw RDdCMEI2NzNGOEI1MjZDNTZBRUJEQ0I1QURCRDI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENCNUFE QkQyOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNiOGFlOTctNjgxOC00OGE5LWFi ZTQtZWRiOTYwNDlmM2M4LzAvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVC RENCNUFEQkQyOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGSZpnpfwp/WNLXwwL4rYial8vKODXEPk+O3 vkNn/wwNeycntFuVWZcUnIm0Wxl/GCXtmKdlDKcsu2ua+dEXCKDvOCVbTy864AhA gXAqLTJxFjH1C4Vp8z7gW+pjDmmdyiVHrUBAkOWg+HFxaRFw69R1KgrZA3GsNG5t eLxprJ0+AXAzrA1G8irnCbY2RLEziTJ289BiQc+WPykZvmse/oCGE4sg/RqxTJ7I e2eF3sNyXTqXUuJLFBY5xlB0fqGuXmWxzhdcZnfvNcWhy3/CLOsozXPOuetz8+ZG u4s4adnxMedcxR49rotaeJNGWyYByeyc5Out/PvOHe5+H68O8v8= -----END CERTIFICATE-----Generated at Thu Aug 7 20:13:16 2025 by rpki-client