$ rpki-client -vvf repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft File: D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft (raw, json) Hash identifier: oby87IOJnpLfpjEpZGShwo2CsGL9sQq8DsExJf/1IHk= Subject key identifier: 51:2F:C5:C0:2F:C0:8E:E5:49:F6:7A:FE:C5:C8:F5:24:F8:CB:E4:64 Authority key identifier: D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 Certificate issuer: /CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Certificate serial: 713DA6710754F12D90DA8FE74B9BBB64EF9C7945 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft Manifest number: 0128 Signing time: Wed 06 Aug 2025 03:21:05 +0000 Manifest this update: Wed 06 Aug 2025 03:16:05 +0000 Manifest next update: Sat 09 Aug 2025 11:19:05 +0000 Files and hashes: 1: 3130332e3138322e37392e302f32342d3234203d3e20313439363635.roa (hash: dJaS59sTNR5P0zfWxcM9Q8SeRwLPq4ilnHYQElEDNMo=) 2: 3130332e3138322e37382e302f32342d3234203d3e20313439363635.roa (hash: LAATNsnHcnoJWKciQROoRwDYWcBiokYiUiwzyLuS2UY=) 3: D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl (hash: ghvZibLU9wvZ+XZPVB2QaqPAdHm5/I0RQmdjqbSpbzo=) 4: 3130332e3138322e37382e302f32332d3234203d3e20313439363635.roa (hash: gY0MYBLnrNGMInBtjBk2fVW/5Y8HTuVN7KMpfZNbvwM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 11:19:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:3d:a6:71:07:54:f1:2d:90:da:8f:e7:4b:9b:bb:64:ef:9c:79:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Validity Not Before: Aug 6 03:16:05 2025 GMT Not After : Aug 9 11:19:05 2025 GMT Subject: CN=512FC5C02FC08EE549F67AFEC5C8F524F8CBE464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:34:c7:95:e4:9d:5f:2c:32:67:20:85:90:23: 9b:98:69:75:ce:78:77:78:f4:e1:25:f3:01:bc:5a: 4e:c6:80:c6:23:93:63:98:a8:22:6d:33:e0:52:d8: 6e:34:3d:ff:e3:e7:a7:e7:98:18:38:35:f4:f6:3c: a7:76:8f:23:0c:f7:46:45:5b:83:09:15:8b:cc:ae: 38:a5:89:fe:69:92:32:f0:f5:e7:d9:2f:e7:f0:84: 96:21:23:53:7a:0a:89:6e:96:61:0d:e3:9d:4c:66: d2:52:15:21:ba:08:db:a6:40:5f:b4:64:02:6a:57: 47:3d:23:22:f2:52:7b:96:2f:4c:72:76:08:b6:42: 53:1d:09:44:76:44:d0:a1:85:e6:36:87:c3:67:91: b7:89:2b:04:58:16:65:d9:58:94:c6:27:e6:e3:86: 14:06:fc:29:3b:64:a2:b5:c8:2b:80:f2:b0:8f:0c: 7f:1d:c1:6a:f1:86:53:38:75:5f:77:94:54:5a:b8: cc:86:d9:d1:13:8c:25:b3:2e:3a:3c:80:29:8d:d7: 16:17:9f:3e:f0:98:ed:50:91:95:f8:cb:4e:15:91: fa:b3:5e:43:98:1e:95:ab:1d:3c:8b:05:06:1e:63: f6:1f:88:28:e9:61:14:25:55:e2:09:4a:52:25:3b: 48:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:2F:C5:C0:2F:C0:8E:E5:49:F6:7A:FE:C5:C8:F5:24:F8:CB:E4:64 X509v3 Authority Key Identifier: keyid:D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:c8:08:a4:56:49:14:f6:a1:e9:0e:2d:53:21:bf:66:21:71: b3:aa:b7:1b:64:51:45:26:13:a6:a3:0e:fa:7b:a0:c7:e2:52: bd:db:7e:b4:5a:79:61:34:4b:6e:b5:c8:e9:85:16:2b:38:a8: 40:c3:8d:02:7a:f3:04:fa:f5:49:4d:f9:88:c5:a9:5c:61:db: ea:1c:9d:cc:ee:cd:aa:8d:59:99:d8:6e:db:9b:f8:aa:2a:d0: a5:44:4a:b9:91:59:00:a1:5f:14:b3:28:bd:7e:00:0e:53:05: 84:99:c1:70:56:a6:78:c8:3a:83:24:ba:45:b0:b9:79:75:37: 8e:ff:03:5d:56:b0:63:04:9e:ff:b6:fe:ac:5f:cc:31:04:e7: ed:6a:05:ee:a4:27:14:91:f4:de:eb:2a:35:8b:3e:74:7c:9e: cd:23:6b:a0:1a:9f:f6:04:9a:03:ff:64:7c:38:74:d9:5b:c0: 79:dc:73:a7:40:d0:37:e1:3f:7a:5f:35:e1:22:a1:40:f2:81: 81:f1:2c:cb:7e:44:13:fb:42:06:30:ef:88:38:8f:39:ef:89: 95:6b:ec:04:bd:c1:a5:3e:68:1b:72:72:0d:76:b4:44:cf:2d: 03:aa:63:69:29:33:ff:39:dc:27:56:f2:98:44:ce:13:78:20: 4b:a1:83:80 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcT2mcQdU8S2Q2o/nS5u7ZO+ceUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5 M0QxOTZENjAeFw0yNTA4MDYwMzE2MDVaFw0yNTA4MDkxMTE5MDVaMDMxMTAvBgNV BAMTKDUxMkZDNUMwMkZDMDhFRTU0OUY2N0FGRUM1QzhGNTI0RjhDQkU0NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7NMeV5J1fLDJnIIWQI5uYaXXO eHd49OEl8wG8Wk7GgMYjk2OYqCJtM+BS2G40Pf/j56fnmBg4NfT2PKd2jyMM90ZF W4MJFYvMrjilif5pkjLw9efZL+fwhJYhI1N6ColulmEN451MZtJSFSG6CNumQF+0 ZAJqV0c9IyLyUnuWL0xydgi2QlMdCUR2RNChheY2h8NnkbeJKwRYFmXZWJTGJ+bj hhQG/Ck7ZKK1yCuA8rCPDH8dwWrxhlM4dV93lFRauMyG2dETjCWzLjo8gCmN1xYX nz7wmO1QkZX4y04VkfqzXkOYHpWrHTyLBQYeY/YfiCjpYRQlVeIJSlIlO0jhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUS/FwC/AjuVJ9nr+xcj1JPjL5GQwHwYDVR0j BBgwFoAU0fcuZ9qczgkET6QgTqmTrpPRltYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRjMzNiOC05ZDQyLTQyMDgtOGFjNC1mMTcyYTE0NGQ4NjgvMC9EMUY3MkU2N0RB OUNDRTA5MDQ0RkE0MjA0RUE5OTNBRTkzRDE5NkQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5M0Qx OTZENi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0YzMzYjgtOWQ0Mi00MjA4LThh YzQtZjE3MmExNDRkODY4LzAvRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkz QUU5M0QxOTZENi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADvICKRWSRT2oekOLVMhv2YhcbOqtxtkUUUm E6ajDvp7oMfiUr3bfrRaeWE0S261yOmFFis4qEDDjQJ68wT69UlN+YjFqVxh2+oc nczuzaqNWZnYbtub+Koq0KVESrmRWQChXxSzKL1+AA5TBYSZwXBWpnjIOoMkukWw uXl1N47/A11WsGMEnv+2/qxfzDEE5+1qBe6kJxSR9N7rKjWLPnR8ns0ja6Aan/YE mgP/ZHw4dNlbwHncc6dA0DfhP3pfNeEioUDygYHxLMt+RBP7QgYw74g4jznviZVr 7AS9waU+aBtycg12tETPLQOqY2kpM/853CdW8phEzhN4IEuhg4A= -----END CERTIFICATE-----Generated at Thu Aug 7 11:16:41 2025 by rpki-client