$ rpki-client -vvf repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft File: 4A688B72A804A426A9096ECA60105A4D831C5FA8.mft (raw, json) Hash identifier: YW7B3rkwxL4sN/AFb4CYgZp8YEBxDnMVWpGB2GPgjU0= Subject key identifier: 61:64:F3:4C:8A:9C:45:0A:70:C0:B1:18:FC:37:23:5D:AD:F6:B0:04 Authority key identifier: 4A:68:8B:72:A8:04:A4:26:A9:09:6E:CA:60:10:5A:4D:83:1C:5F:A8 Certificate issuer: /CN=4A688B72A804A426A9096ECA60105A4D831C5FA8 Certificate serial: 65ED63D194C01B7CB9A092FBE1863D146C0CC05C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft Manifest number: 02D6 Signing time: Thu 07 Aug 2025 10:41:43 +0000 Manifest this update: Thu 07 Aug 2025 10:36:43 +0000 Manifest next update: Sun 10 Aug 2025 13:00:43 +0000 Files and hashes: 1: 4A688B72A804A426A9096ECA60105A4D831C5FA8.crl (hash: fRYwMP0zzhTnY9SpmsCzcp76FMFbGPMQ3q63ljTRsgA=) 2: 3130332e3137352e3230362e302f32332d3234203d3e20313437313234.roa (hash: eGEsrGBto/hQncn3YcGePX27GH/UT48OX+sETIcZ17o=) 3: 3130332e3137352e3230372e302f32342d3234203d3e20313437313234.roa (hash: aQ3bZ8U/53lOgq6IbJ4jaeEks7cypqeVb0bEi+y+Pus=) 4: 3130332e3137352e3230362e302f32342d3234203d3e20313437313234.roa (hash: eQ2W59Sl25b9+tbhRBYK+eiWkdxaKDr4YfWFXlk9jXI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.crl rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 13:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ed:63:d1:94:c0:1b:7c:b9:a0:92:fb:e1:86:3d:14:6c:0c:c0:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A688B72A804A426A9096ECA60105A4D831C5FA8 Validity Not Before: Aug 7 10:36:43 2025 GMT Not After : Aug 10 13:00:43 2025 GMT Subject: CN=6164F34C8A9C450A70C0B118FC37235DADF6B004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a2:84:8d:13:80:4c:63:42:11:6f:a7:82:3d: 02:4c:fb:15:89:c0:93:1b:07:92:a0:55:08:67:a0: 3d:5d:5d:58:ae:23:18:a1:90:99:db:e3:70:05:4c: 5f:2f:1d:d4:c8:fc:e9:02:3d:6c:1a:77:99:e5:32: a4:5b:83:ce:31:99:76:23:20:0d:a8:c4:10:5a:5f: f2:9b:c2:c5:dd:fc:0b:7d:07:41:a4:af:ff:dd:1a: 5c:7d:33:3f:7b:ca:60:13:2e:91:89:ec:9b:b4:3e: e1:f4:70:d7:92:f3:9a:a0:e5:87:57:cb:22:e4:77: ca:a4:c7:c2:3d:a9:49:c7:e8:5f:f0:d4:ac:09:57: fe:0d:96:e6:69:76:95:61:a1:1a:18:f4:a4:a5:27: 95:69:12:97:66:58:41:49:7b:ad:14:7e:d3:b5:7b: 85:3b:86:7b:0e:52:46:35:6d:bb:97:48:62:1b:75: 5c:01:43:80:30:61:2e:ea:8f:0a:28:03:5c:35:c1: 81:34:5f:9f:5f:23:7e:cc:0e:e0:13:84:2e:4a:1b: a0:76:b0:eb:b8:9a:d4:e9:fe:06:ab:a7:27:61:94: c5:be:48:b2:d9:9e:a4:c7:7b:fb:73:75:86:7e:ea: ee:bf:91:60:d3:c0:24:ce:99:57:47:5a:3d:05:c6: bc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:64:F3:4C:8A:9C:45:0A:70:C0:B1:18:FC:37:23:5D:AD:F6:B0:04 X509v3 Authority Key Identifier: keyid:4A:68:8B:72:A8:04:A4:26:A9:09:6E:CA:60:10:5A:4D:83:1C:5F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:78:05:7a:f2:f5:c9:e1:f4:86:48:26:48:ba:83:06:57:f9: 50:b3:56:17:72:12:f6:63:90:d0:07:aa:63:11:54:eb:50:95: 9f:94:03:df:2d:bc:f6:0a:42:59:76:85:0f:6c:0f:28:6d:e4: 1f:3d:28:a0:b1:77:de:ed:d2:59:50:50:1d:e2:f5:da:ce:34: 93:46:39:a4:85:32:10:ce:43:b9:85:4c:09:9a:a1:1c:ac:ae: 2c:4d:be:01:99:28:c3:1e:b4:88:3e:6c:92:00:aa:bc:8e:dc: d8:21:b9:76:69:4e:59:62:5b:62:ac:64:7c:a7:d6:c7:ad:e9: 42:b6:45:8b:ed:c2:dc:78:21:27:c1:8d:cf:44:4d:67:2f:d6: 16:f2:bf:6a:32:74:67:16:22:11:95:d4:10:1e:fa:e9:1e:5f: 06:c7:55:4f:b2:34:db:58:62:ab:1c:fc:06:be:f6:85:aa:c0: 8d:65:05:98:1a:c6:fe:23:40:1e:7f:ba:7d:45:12:f8:8d:95: bf:07:07:bc:32:d1:40:7e:05:01:22:4f:3a:d1:38:0c:d6:aa: b6:e8:7c:d4:7a:ee:16:74:58:4e:73:d7:d0:28:43:ed:39:e9: 69:98:36:5f:89:a7:ed:4c:f8:cf:61:cc:35:00:35:88:22:76: ab:69:09:25 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZe1j0ZTAG3y5oJL74YY9FGwMwFwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE2ODhCNzJBODA0QTQyNkE5MDk2RUNBNjAxMDVBNEQ4 MzFDNUZBODAeFw0yNTA4MDcxMDM2NDNaFw0yNTA4MTAxMzAwNDNaMDMxMTAvBgNV BAMTKDYxNjRGMzRDOEE5QzQ1MEE3MEMwQjExOEZDMzcyMzVEQURGNkIwMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhooSNE4BMY0IRb6eCPQJM+xWJ wJMbB5KgVQhnoD1dXViuIxihkJnb43AFTF8vHdTI/OkCPWwad5nlMqRbg84xmXYj IA2oxBBaX/KbwsXd/At9B0Gkr//dGlx9Mz97ymATLpGJ7Ju0PuH0cNeS85qg5YdX yyLkd8qkx8I9qUnH6F/w1KwJV/4NluZpdpVhoRoY9KSlJ5VpEpdmWEFJe60UftO1 e4U7hnsOUkY1bbuXSGIbdVwBQ4AwYS7qjwooA1w1wYE0X59fI37MDuAThC5KG6B2 sOu4mtTp/garpydhlMW+SLLZnqTHe/tzdYZ+6u6/kWDTwCTOmVdHWj0FxrxjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYWTzTIqcRQpwwLEY/DcjXa32sAQwHwYDVR0j BBgwFoAUSmiLcqgEpCapCW7KYBBaTYMcX6gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWE2YTY3ZC1jYmEzLTQyN2ItOTA1NS01ZjUyOGYyZDIzMmYvMC80QTY4OEI3MkE4 MDRBNDI2QTkwOTZFQ0E2MDEwNUE0RDgzMUM1RkE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE2ODhCNzJBODA0QTQyNkE5MDk2RUNBNjAxMDVBNEQ4MzFD NUZBOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmFhNmE2N2QtY2JhMy00MjdiLTkw NTUtNWY1MjhmMmQyMzJmLzAvNEE2ODhCNzJBODA0QTQyNkE5MDk2RUNBNjAxMDVB NEQ4MzFDNUZBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJt4BXry9cnh9IZIJki6gwZX+VCzVhdyEvZj kNAHqmMRVOtQlZ+UA98tvPYKQll2hQ9sDyht5B89KKCxd97t0llQUB3i9drONJNG OaSFMhDOQ7mFTAmaoRysrixNvgGZKMMetIg+bJIAqryO3NghuXZpTlliW2KsZHyn 1set6UK2RYvtwtx4ISfBjc9ETWcv1hbyv2oydGcWIhGV1BAe+ukeXwbHVU+yNNtY Yqsc/Aa+9oWqwI1lBZgaxv4jQB5/un1FEviNlb8HB7wy0UB+BQEiTzrROAzWqrbo fNR67hZ0WE5z19AoQ+056WmYNl+Jp+1M+M9hzDUANYgidqtpCSU= -----END CERTIFICATE-----Generated at Thu Aug 7 23:59:56 2025 by rpki-client