$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: sLcAvtgaqRrf7sa2wZCcduEvBs5Sv/+ly4h6MwyCLD4= Subject key identifier: D9:59:98:61:B4:49:E0:FB:4A:E1:F0:43:71:19:FD:8B:EF:22:B6:B1 Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 778CA9F9F95852CB27785B876FFA7B44287B5CFA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: B2 Signing time: Tue 05 Aug 2025 04:21:05 +0000 Manifest this update: Tue 05 Aug 2025 04:16:05 +0000 Manifest next update: Fri 08 Aug 2025 14:03:05 +0000 Files and hashes: 1: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: Jit+uJIEyqjGrv7HRmDwiYsYuySfB8Lk478TOnlXVFM=) 2: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: 5TysUWdf//ijZZADQg/kyk1hPl8L9rMcShCWekWYvss=) 3: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: 9nsPjieL2GLdn2w1meOeJzJUhK7ZAQRXHA9/ayc2di0=) 4: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 09:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:8c:a9:f9:f9:58:52:cb:27:78:5b:87:6f:fa:7b:44:28:7b:5c:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Aug 5 04:16:05 2025 GMT Not After : Aug 8 14:03:05 2025 GMT Subject: CN=D9599861B449E0FB4AE1F0437119FD8BEF22B6B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5f:38:92:7d:99:ec:e1:ee:5c:c8:03:6d:d4: 7d:85:09:f0:d0:2b:04:d7:97:65:c9:73:82:cd:26: 88:4f:9f:ff:58:1d:7b:bd:c6:ad:8a:79:00:63:17: 5a:b5:90:29:2c:6e:e0:b6:d3:c1:a2:58:98:85:3c: 99:60:4b:d1:7c:9d:58:f8:3d:e7:07:4a:d5:2e:4c: 13:79:24:0e:d0:5b:0a:45:43:f8:3a:94:f5:fd:4d: c1:ad:5e:29:04:ed:19:ec:5e:a8:45:de:8b:7f:ac: a5:c9:5a:5a:ef:14:70:c7:f5:6b:ac:6d:d7:f0:bd: ac:b7:43:ed:43:d5:38:1f:8b:ba:bc:8f:a1:b9:0e: d2:8e:9d:48:be:e3:4a:70:c0:43:74:1e:5e:f4:23: 91:c4:04:8f:ac:2a:70:06:0f:bb:2f:6e:22:e4:7b: 87:f9:48:4e:f0:ab:b0:1b:d4:66:92:07:8d:54:76: f5:05:38:d6:47:8d:7b:2c:bc:ea:f1:31:db:d0:d9: 03:41:16:df:5f:06:b6:eb:d2:90:8a:f6:b0:ee:35: c8:64:18:9b:b4:5d:89:6a:fb:d4:b1:e2:0f:a2:5d: 4f:7a:fa:53:1b:cb:01:ec:22:aa:28:96:6a:ee:f8: e4:c1:95:53:58:d3:94:c0:14:2c:13:aa:bb:a8:90: 62:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:59:98:61:B4:49:E0:FB:4A:E1:F0:43:71:19:FD:8B:EF:22:B6:B1 X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:02:70:5d:d8:51:67:3d:bd:4b:6b:e0:4a:e1:4d:46:bf:90: 26:d1:58:87:ba:3c:ee:09:44:84:8e:7a:eb:33:38:4f:71:2a: a2:32:09:c9:c4:03:93:58:f3:f8:2c:2a:bd:b4:ea:19:b4:b5: 1f:ac:20:d2:38:b1:1b:80:d1:a6:2a:22:9a:75:0a:4d:1b:b1: f5:b3:54:7a:11:a6:78:b4:fa:f2:cd:b4:6e:f1:14:ac:e0:f5: 5a:83:e8:a9:82:6a:6e:90:43:46:e5:a0:81:bc:19:18:f4:10: 91:bf:91:cd:9c:23:35:72:e0:84:a7:4a:a6:0c:d4:e9:cb:e8: e7:9e:e5:de:c5:eb:90:23:85:b4:47:c6:a2:a3:e9:1a:3e:74: 06:b8:5e:1a:00:d2:2f:ec:6d:4a:27:08:9c:67:02:d0:ea:81: f1:6c:ec:f0:4f:bc:52:0d:d2:98:3b:3b:0b:c8:bf:a0:61:4b: 08:e6:e3:a2:f9:11:75:72:38:8f:1e:fb:37:13:8c:67:d8:1a: 52:5d:ae:93:eb:fe:8b:e6:30:8d:2f:71:96:c5:6e:1c:d0:28: ce:13:91:ec:20:81:8f:b2:a6:43:84:ed:da:0a:13:8d:cf:93: 5c:a9:61:e0:b8:09:55:a4:e1:f0:30:17:8f:8e:98:74:29:53: 36:bc:46:0b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd4yp+flYUssneFuHb/p7RCh7XPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNTA4MDUwNDE2MDVaFw0yNTA4MDgxNDAzMDVaMDMxMTAvBgNV BAMTKEQ5NTk5ODYxQjQ0OUUwRkI0QUUxRjA0MzcxMTlGRDhCRUYyMkI2QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2XziSfZns4e5cyANt1H2FCfDQ KwTXl2XJc4LNJohPn/9YHXu9xq2KeQBjF1q1kCksbuC208GiWJiFPJlgS9F8nVj4 PecHStUuTBN5JA7QWwpFQ/g6lPX9TcGtXikE7RnsXqhF3ot/rKXJWlrvFHDH9Wus bdfwvay3Q+1D1Tgfi7q8j6G5DtKOnUi+40pwwEN0Hl70I5HEBI+sKnAGD7svbiLk e4f5SE7wq7Ab1GaSB41UdvUFONZHjXssvOrxMdvQ2QNBFt9fBrbr0pCK9rDuNchk GJu0XYlq+9Sx4g+iXU96+lMbywHsIqoolmru+OTBlVNY05TAFCwTqruokGIrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2VmYYbRJ4PtK4fBDcRn9i+8itrEwHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA4CcF3YUWc9vUtr4ErhTUa/kCbRWIe6PO4J RISOeuszOE9xKqIyCcnEA5NY8/gsKr206hm0tR+sINI4sRuA0aYqIpp1Ck0bsfWz VHoRpni0+vLNtG7xFKzg9VqD6KmCam6QQ0bloIG8GRj0EJG/kc2cIzVy4ISnSqYM 1OnL6Oee5d7F65AjhbRHxqKj6Ro+dAa4XhoA0i/sbUonCJxnAtDqgfFs7PBPvFIN 0pg7OwvIv6BhSwjm46L5EXVyOI8e+zcTjGfYGlJdrpPr/ovmMI0vcZbFbhzQKM4T kewggY+ypkOE7doKE43Pk1ypYeC4CVWk4fAwF4+OmHQpUza8Rgs= -----END CERTIFICATE-----Generated at Thu Aug 7 03:15:40 2025 by rpki-client