$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: Iofg+itI2mMnylv634mJzVx1l3ba+/9LD2fzzSG7D7k= Subject key identifier: 61:8A:00:00:A1:EF:06:F3:27:34:CB:45:D4:B2:42:46:CB:3C:E8:EF Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 43B1D10ED86CBAC29C82FC3CB7499197584CA1A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: D5 Signing time: Fri 22 Aug 2025 06:21:04 +0000 Manifest this update: Fri 22 Aug 2025 06:16:04 +0000 Manifest next update: Mon 25 Aug 2025 08:48:04 +0000 Files and hashes: 1: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: LQj0jMPge82CwHOWS5fHIk0tBtvaFA1Hv5mniV+5odo=) 2: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: 6vbdCdxNgdT1YPs8S7qknWHTI+dH6Kzhg9o0VLXLQxQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 08:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:b1:d1:0e:d8:6c:ba:c2:9c:82:fc:3c:b7:49:91:97:58:4c:a1:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Aug 22 06:16:04 2025 GMT Not After : Aug 25 08:48:04 2025 GMT Subject: CN=618A0000A1EF06F32734CB45D4B24246CB3CE8EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:aa:67:e0:4f:02:be:ee:40:79:39:9c:72:93: 7b:d4:b7:a3:53:52:25:06:9b:3e:8a:3e:75:e0:14: 6f:ae:8a:06:13:8a:fc:15:ad:12:17:a9:83:9f:30: 0a:ea:96:1d:2e:5d:a3:b1:09:80:02:83:3f:09:3d: ff:b3:d4:45:99:81:20:88:a2:a2:c3:4d:ab:bb:53: 81:97:32:ec:5c:4a:03:67:64:d1:32:99:c7:39:fc: 6b:7e:4f:5a:b8:b7:5a:b9:77:be:9e:90:4f:c4:cf: 8b:05:fc:57:44:75:13:90:ff:55:8b:e4:94:2a:51: e2:15:9f:da:3c:d8:c2:de:59:71:03:02:17:89:72: 24:ac:d8:5e:8e:e1:16:89:6e:3a:74:16:12:3e:6f: 96:ad:a1:61:31:b3:ed:1a:92:24:c7:5a:33:b3:b5: 1a:67:6f:61:d3:ae:4d:3d:35:4b:12:cd:78:14:b0: db:ff:94:d8:0f:3e:5b:89:82:81:33:e0:4f:aa:3f: 59:f3:63:a3:60:f0:d9:77:c6:92:31:00:72:d7:79: d3:de:ea:0a:b4:5f:94:aa:ab:92:1a:dc:ef:3f:53: 06:3e:8f:15:dc:84:b9:8b:4c:4d:be:d8:ae:b2:3c: e8:57:b4:d9:98:90:03:41:f2:a1:c3:99:5b:c7:86: 3e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:8A:00:00:A1:EF:06:F3:27:34:CB:45:D4:B2:42:46:CB:3C:E8:EF X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:df:5b:d3:d5:d0:c3:23:a7:0f:b6:da:4e:ba:c0:94:0d:26: b2:bb:c6:14:7e:c9:8d:8d:2e:8c:c9:5a:22:90:52:19:6c:54: 54:7a:24:11:e7:5a:90:2f:2e:4e:3f:b8:a9:52:8d:ec:c2:c6: c5:d5:8d:8b:af:e8:92:ee:07:bc:34:a2:b7:56:2b:12:8a:d4: 14:0c:ef:6b:ea:61:67:a3:19:b7:3c:19:ee:e0:24:e2:72:be: ed:89:06:17:13:7a:40:9c:ae:7f:9b:2c:4a:13:0b:65:26:6b: 9c:1f:75:e2:81:0b:19:80:90:67:64:d7:d5:a8:61:62:6b:0f: d2:c1:7e:ae:f7:44:05:f6:46:e7:70:2a:43:44:db:11:ca:92: 5d:65:4b:59:12:89:c7:ed:8f:df:18:24:4e:38:cc:b8:6f:bc: 0b:63:51:21:36:12:31:d3:9a:9c:69:79:d7:68:30:00:31:48: 4c:e9:9c:90:c6:05:51:ef:7d:44:7a:35:8b:c0:8f:d3:1b:2c: 16:61:cc:b1:a5:a8:bc:04:4c:5c:19:a2:5d:56:b9:ab:49:d5: 36:7a:62:a1:97:09:e3:2c:4a:1d:46:c5:82:8d:0b:c9:29:15: d6:71:03:74:f9:8a:c0:bb:0d:5c:d5:31:cb:14:1d:51:bb:fe: 92:f9:cb:ce -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ7HRDthsusKcgvw8t0mRl1hMoaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNTA4MjIwNjE2MDRaFw0yNTA4MjUwODQ4MDRaMDMxMTAvBgNV BAMTKDYxOEEwMDAwQTFFRjA2RjMyNzM0Q0I0NUQ0QjI0MjQ2Q0IzQ0U4RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1qmfgTwK+7kB5OZxyk3vUt6NT UiUGmz6KPnXgFG+uigYTivwVrRIXqYOfMArqlh0uXaOxCYACgz8JPf+z1EWZgSCI oqLDTau7U4GXMuxcSgNnZNEymcc5/Gt+T1q4t1q5d76ekE/Ez4sF/FdEdROQ/1WL 5JQqUeIVn9o82MLeWXEDAheJciSs2F6O4RaJbjp0FhI+b5atoWExs+0akiTHWjOz tRpnb2HTrk09NUsSzXgUsNv/lNgPPluJgoEz4E+qP1nzY6Ng8Nl3xpIxAHLXedPe 6gq0X5Sqq5Ia3O8/UwY+jxXchLmLTE2+2K6yPOhXtNmYkANB8qHDmVvHhj5NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYYoAAKHvBvMnNMtF1LJCRss86O8wHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADDfW9PV0MMjpw+22k66wJQNJrK7xhR+yY2N LozJWiKQUhlsVFR6JBHnWpAvLk4/uKlSjezCxsXVjYuv6JLuB7w0ordWKxKK1BQM 72vqYWejGbc8Ge7gJOJyvu2JBhcTekCcrn+bLEoTC2Uma5wfdeKBCxmAkGdk19Wo YWJrD9LBfq73RAX2RudwKkNE2xHKkl1lS1kSicftj98YJE44zLhvvAtjUSE2EjHT mpxpeddoMAAxSEzpnJDGBVHvfUR6NYvAj9MbLBZhzLGlqLwETFwZol1WuatJ1TZ6 YqGXCeMsSh1GxYKNC8kpFdZxA3T5isC7DVzVMcsUHVG7/pL5y84= -----END CERTIFICATE-----Generated at Sat Aug 23 18:02:28 2025 by rpki-client