$ rpki-client -vvf repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft File: 3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft (raw, json) Hash identifier: oWrnHHRW5K/diwmGkmKHq+mIuDhbyMzrMF/TREZtMQE= Subject key identifier: 5E:D7:B6:06:9A:F1:57:33:18:FE:F0:76:17:AB:BD:38:81:B2:CB:88 Authority key identifier: 3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA Certificate issuer: /CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Certificate serial: 7DAAFAE0D77BD35C942D9FD6CFC5711589095E4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft Manifest number: 0343 Signing time: Tue 05 Aug 2025 19:52:05 +0000 Manifest this update: Tue 05 Aug 2025 19:47:05 +0000 Manifest next update: Sat 09 Aug 2025 06:16:05 +0000 Files and hashes: 1: 3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl (hash: jLfoLPHhKao+skM1JghNwwJ+Y48rbIsLAgPn3S0zEzg=) 2: 3130332e3137312e3138322e302f32332d3233203d3e20313432333735.roa (hash: aihSJuIZjlYbfPjvBLdvafMIwZ5NASIBmOuqn4SEmM0=) 3: 3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa (hash: YYGVRYPBp9IPNMR5VwzW826x/acetE+4Oj6LGMt7tPU=) 4: 3130332e3137312e3138332e302f32342d3234203d3e20313432333735.roa (hash: DCgYEPaVukPuYmvO5a2cczC4OgprkfQ5HG76ulQS39Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 06:16:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:aa:fa:e0:d7:7b:d3:5c:94:2d:9f:d6:cf:c5:71:15:89:09:5e:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Validity Not Before: Aug 5 19:47:05 2025 GMT Not After : Aug 9 06:16:05 2025 GMT Subject: CN=5ED7B6069AF1573318FEF07617ABBD3881B2CB88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:09:2b:50:21:c8:3b:2f:b4:fa:ac:70:2f:73: 0c:98:e2:44:43:c4:61:9e:be:6b:c6:e6:a8:50:c7: 45:19:f1:3f:fd:b7:2b:44:ea:79:1d:d7:a0:f1:2f: 4a:ca:33:6f:df:b8:81:48:a1:00:05:fb:ca:b0:ac: d6:c7:f7:67:d0:3b:53:71:62:4e:37:fe:df:3d:3a: 5c:5e:4e:62:c2:e2:ec:cf:ba:75:97:cf:c9:49:bf: ce:88:c2:5d:0f:2d:6d:11:95:07:11:a4:89:ba:1c: d2:00:34:7f:f7:eb:72:fc:aa:49:25:62:ce:62:fb: 3a:2e:74:ad:87:10:72:dd:0f:e8:3f:bd:7d:12:9d: 2a:f1:e5:77:da:c7:f5:4b:d4:a8:f9:d7:89:9a:f8: 34:6f:c6:9e:35:f1:60:47:7f:8f:b8:d5:f5:9a:c5: 3b:74:34:f0:1c:ee:40:33:74:22:2d:5c:97:f9:b1: 7f:7c:57:ee:f6:b7:45:9e:09:03:48:63:5f:41:bb: 3e:51:29:8c:a3:7d:f7:db:cb:1c:84:cf:44:01:0f: 21:2a:82:f8:b9:24:c9:93:bf:02:5e:85:dc:ff:52: c4:0f:d7:be:6b:52:fe:5e:c1:07:96:31:c8:90:b9: f1:27:61:2a:67:a8:15:dd:b5:0e:58:5e:44:59:82: 5f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D7:B6:06:9A:F1:57:33:18:FE:F0:76:17:AB:BD:38:81:B2:CB:88 X509v3 Authority Key Identifier: keyid:3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:60:2f:b6:8d:6e:bb:6e:c0:66:45:f2:9b:9a:9b:aa:d8:cb: 05:4d:3f:01:6d:7b:15:67:60:e5:eb:f7:d9:e5:b9:70:05:c2: 88:86:c0:a2:be:27:d2:29:de:a8:01:b7:e7:55:91:88:d6:4a: c6:e6:05:7d:fb:55:39:48:0c:5a:fc:6c:ff:e0:f1:fc:20:a4: 3f:c1:89:4e:f7:a0:27:f8:38:17:19:ef:81:a1:7e:fa:99:32: ad:96:38:c1:01:eb:97:dc:77:de:f9:12:6a:08:e7:c5:e2:2a: 86:29:78:b0:47:9d:24:8a:c4:a1:86:e8:61:e0:1e:bf:60:9b: 1c:5c:fa:a2:dc:db:dc:9e:0d:98:ab:0f:e2:10:d2:74:4e:45: e3:85:76:9b:ad:de:70:40:95:0d:8e:26:9f:71:4f:2f:8d:6b: 19:a2:8b:cb:16:a8:b1:be:54:33:a7:58:74:16:a1:0f:6a:85: 78:0a:f4:e1:61:7a:76:b3:74:ea:9c:f1:18:81:2b:bc:cc:5d: cd:fd:26:d6:45:e3:3a:6f:90:2a:7f:a4:3d:5d:af:6d:9e:91: 67:6e:0c:49:6a:35:c4:db:fc:41:18:26:69:91:32:38:1f:a5: 6e:00:53:e9:aa:e0:85:55:c0:b5:33:a5:d5:7f:ec:65:71:8f: c2:f3:3c:d2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfar64Nd701yULZ/Wz8VxFYkJXk4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVG NjUxQkFBQTAeFw0yNTA4MDUxOTQ3MDVaFw0yNTA4MDkwNjE2MDVaMDMxMTAvBgNV BAMTKDVFRDdCNjA2OUFGMTU3MzMxOEZFRjA3NjE3QUJCRDM4ODFCMkNCODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoCStQIcg7L7T6rHAvcwyY4kRD xGGevmvG5qhQx0UZ8T/9tytE6nkd16DxL0rKM2/fuIFIoQAF+8qwrNbH92fQO1Nx Yk43/t89OlxeTmLC4uzPunWXz8lJv86Iwl0PLW0RlQcRpIm6HNIANH/363L8qkkl Ys5i+zoudK2HEHLdD+g/vX0SnSrx5Xfax/VL1Kj514ma+DRvxp418WBHf4+41fWa xTt0NPAc7kAzdCItXJf5sX98V+72t0WeCQNIY19Buz5RKYyjfffbyxyEz0QBDyEq gvi5JMmTvwJehdz/UsQP175rUv5ewQeWMciQufEnYSpnqBXdtQ5YXkRZgl9dAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXte2BprxVzMY/vB2F6u9OIGyy4gwHwYDVR0j BBgwFoAUPs59Lpwv89XTDSlNdJLD/vZRuqowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzUwNWNiMy1iNTVlLTQwZTQtYWM3OS02MzY1NjA2ZjRlZjkvMC8zRUNFN0QyRTlD MkZGM0Q1RDMwRDI5NEQ3NDkyQzNGRUY2NTFCQUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVGNjUx QkFBQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTM1MDVjYjMtYjU1ZS00MGU0LWFj NzktNjM2NTYwNmY0ZWY5LzAvM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMz RkVGNjUxQkFBQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABBgL7aNbrtuwGZF8puam6rYywVNPwFtexVn YOXr99nluXAFwoiGwKK+J9Ip3qgBt+dVkYjWSsbmBX37VTlIDFr8bP/g8fwgpD/B iU73oCf4OBcZ74GhfvqZMq2WOMEB65fcd975EmoI58XiKoYpeLBHnSSKxKGG6GHg Hr9gmxxc+qLc29yeDZirD+IQ0nROReOFdput3nBAlQ2OJp9xTy+Naxmii8sWqLG+ VDOnWHQWoQ9qhXgK9OFhenazdOqc8RiBK7zMXc39JtZF4zpvkCp/pD1dr22ekWdu DElqNcTb/EEYJmmRMjgfpW4AU+mq4IVVwLUzpdV/7GVxj8LzPNI= -----END CERTIFICATE-----Generated at Thu Aug 7 00:26:21 2025 by rpki-client