$ rpki-client -vvf repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft File: 43A0899A11D5A51202F1304338672AF19B201A74.mft (raw, json) Hash identifier: cH0CBl+mnusKXtNfTpDmFxRR9UPHPR56AnyKpGJxP+o= Subject key identifier: 35:04:6B:1D:97:E1:B4:79:19:5C:9D:5C:28:F0:F6:60:0F:27:B4:C6 Authority key identifier: 43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 Certificate issuer: /CN=43A0899A11D5A51202F1304338672AF19B201A74 Certificate serial: 589C8B87F484E35DADCDB1129D09195ED1C1A31F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft Manifest number: 03D6 Signing time: Fri 22 Aug 2025 22:22:01 +0000 Manifest this update: Fri 22 Aug 2025 22:17:01 +0000 Manifest next update: Tue 26 Aug 2025 06:03:01 +0000 Files and hashes: 1: 43A0899A11D5A51202F1304338672AF19B201A74.crl (hash: t6U9IPFlWoYBSggSfcGPdkyRuN3odeP8f7n5Ojhhhrc=) 2: 3130332e32392e3231322e302f32322d3234203d3e203538333737.roa (hash: bEv5NJFvGjCqOM99MFNub18kUBXqluJLuz63DD7/xZ4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 06:03:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:9c:8b:87:f4:84:e3:5d:ad:cd:b1:12:9d:09:19:5e:d1:c1:a3:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43A0899A11D5A51202F1304338672AF19B201A74 Validity Not Before: Aug 22 22:17:01 2025 GMT Not After : Aug 26 06:03:01 2025 GMT Subject: CN=35046B1D97E1B479195C9D5C28F0F6600F27B4C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7e:5a:b1:bc:ff:2a:1d:e2:4e:41:05:8b:70: 7d:a2:0e:92:70:7d:f7:1f:39:84:40:d6:89:4c:eb: a3:e7:2b:fa:3b:a2:41:1c:84:86:cc:51:80:7d:2a: 21:86:27:02:5a:38:06:82:d5:59:ed:31:cc:ad:1a: 80:d4:3e:c9:49:37:53:72:d3:d4:92:39:54:ab:52: c5:d3:81:c4:f7:2b:e8:64:ea:a0:f6:1e:f6:80:e0: 4a:cf:e3:df:67:77:1f:2b:e3:bd:86:43:4f:91:1f: 49:d8:49:51:cb:33:26:86:b7:0d:10:3a:c2:3b:8e: 26:1b:b7:02:c6:71:38:b9:3f:64:cf:76:80:d3:74: c8:d2:8a:76:68:64:a7:b8:c2:13:57:f4:f2:91:7c: 33:51:d6:84:2e:d0:8a:af:d5:a9:3a:34:ac:e0:13: 51:1f:e1:b6:37:cc:a0:1f:87:a4:53:8d:53:1b:0c: 89:f6:8b:df:fc:92:c2:a8:15:d6:1c:33:76:69:96: e0:6f:7f:dd:aa:7f:1d:27:03:57:b1:1e:59:28:a4: e8:da:9b:e3:31:48:d8:c6:fc:23:3c:0f:f4:c0:c6: a3:60:4c:42:19:f0:26:19:83:4a:a3:df:22:65:87: a0:8d:3f:53:b0:44:84:db:8b:49:b6:c6:35:aa:5f: 2b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:04:6B:1D:97:E1:B4:79:19:5C:9D:5C:28:F0:F6:60:0F:27:B4:C6 X509v3 Authority Key Identifier: keyid:43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:97:68:18:93:bb:e4:97:92:ee:36:4a:e1:f7:e2:c9:78:d0: 45:55:be:b0:62:a3:9c:db:40:1b:c0:8b:7d:76:40:d8:82:de: 45:07:fd:ba:fa:17:75:d7:39:c7:e6:ae:f8:f6:4d:eb:20:51: 17:f7:cc:21:54:8e:61:8d:02:be:c7:2e:e6:2e:84:1a:8c:ce: ca:19:7c:5b:02:5a:4a:bf:1e:39:e7:0f:32:0b:55:72:9f:f9: ff:c7:5b:fb:a4:8a:75:7c:8a:42:bb:90:50:20:57:18:24:7e: d0:a2:59:a6:e8:88:27:a1:5f:bf:22:10:df:50:6e:81:c5:30: c2:1b:8c:82:a5:53:f9:fb:c8:55:80:bc:61:12:1a:37:26:d0: bb:c7:55:a2:15:64:28:c7:41:71:82:b2:05:a0:ab:15:ec:6b: ea:88:f5:ec:2e:78:46:43:fb:20:b1:a4:cd:e6:c9:85:ac:09: 5f:ed:1d:69:b0:3b:3e:1a:d1:7f:dd:26:19:04:0a:1a:58:2e: fe:f9:30:3f:e2:f9:a6:cb:e2:ec:b6:cc:1a:d4:5d:ab:cd:b3: e2:43:c1:01:63:8f:4a:b7:21:f0:2b:61:85:03:27:30:5c:0f: 8d:a9:25:13:4b:11:58:33:c6:47:50:2d:be:97:a3:eb:53:cb: 8e:38:a3:47 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWJyLh/SE412tzbESnQkZXtHBox8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5 QjIwMUE3NDAeFw0yNTA4MjIyMjE3MDFaFw0yNTA4MjYwNjAzMDFaMDMxMTAvBgNV BAMTKDM1MDQ2QjFEOTdFMUI0NzkxOTVDOUQ1QzI4RjBGNjYwMEYyN0I0QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBflqxvP8qHeJOQQWLcH2iDpJw ffcfOYRA1olM66PnK/o7okEchIbMUYB9KiGGJwJaOAaC1VntMcytGoDUPslJN1Ny 09SSOVSrUsXTgcT3K+hk6qD2HvaA4ErP499ndx8r472GQ0+RH0nYSVHLMyaGtw0Q OsI7jiYbtwLGcTi5P2TPdoDTdMjSinZoZKe4whNX9PKRfDNR1oQu0Iqv1ak6NKzg E1Ef4bY3zKAfh6RTjVMbDIn2i9/8ksKoFdYcM3ZpluBvf92qfx0nA1exHlkopOja m+MxSNjG/CM8D/TAxqNgTEIZ8CYZg0qj3yJlh6CNP1OwRITbi0m2xjWqXyuNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNQRrHZfhtHkZXJ1cKPD2YA8ntMYwHwYDVR0j BBgwFoAUQ6CJmhHVpRIC8TBDOGcq8ZsgGnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDAxYjJkMS0wMWNhLTQwZTgtYmY3Ny05ODYxNTk4NjdhMDQvMC80M0EwODk5QTEx RDVBNTEyMDJGMTMwNDMzODY3MkFGMTlCMjAxQTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5QjIw MUE3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDQwMWIyZDEtMDFjYS00MGU4LWJm NzctOTg2MTU5ODY3YTA0LzAvNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJB RjE5QjIwMUE3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH2XaBiTu+SXku42SuH34sl40EVVvrBio5zb QBvAi312QNiC3kUH/br6F3XXOcfmrvj2TesgURf3zCFUjmGNAr7HLuYuhBqMzsoZ fFsCWkq/HjnnDzILVXKf+f/HW/ukinV8ikK7kFAgVxgkftCiWaboiCehX78iEN9Q boHFMMIbjIKlU/n7yFWAvGESGjcm0LvHVaIVZCjHQXGCsgWgqxXsa+qI9ewueEZD +yCxpM3myYWsCV/tHWmwOz4a0X/dJhkEChpYLv75MD/i+abL4uy2zBrUXavNs+JD wQFjj0q3IfArYYUDJzBcD42pJRNLEVgzxkdQLb6Xo+tTy444o0c= -----END CERTIFICATE-----Generated at Sat Aug 23 14:45:59 2025 by rpki-client