$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft File: D85F6D41E807D8825356A681A7518FA27664A965.mft (raw, json) Hash identifier: U4mcgC2kSRfnC4fjIyaIY17b0XxBUlA2WeCWqeOEVKw= Subject key identifier: 64:55:D4:AA:25:E0:71:D2:9C:61:53:3D:64:54:20:52:78:C5:B0:41 Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 29042B018FBEC18F3A5569EA6EBE35AFC8F5F406 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft Manifest number: 0165 Signing time: Fri 22 Aug 2025 16:22:14 +0000 Manifest this update: Fri 22 Aug 2025 16:17:14 +0000 Manifest next update: Mon 25 Aug 2025 16:53:14 +0000 Files and hashes: 1: D85F6D41E807D8825356A681A7518FA27664A965.crl (hash: o8WbSUk7Rf150gVtXPuhHGA7A2Fhifd8O+gPlxy2aTs=) 2: 3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa (hash: hFj4Uh0PGeOBka7Cx4rmARhSt9TGPmz98D01cPT+PF4=) 3: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (hash: 2X5KoMU/cWrAj0o88iqREF+W66XbV79s9jtdMfDvn84=) 4: 3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa (hash: mLhBYPkwACBbxlJsTnV03pPrOs7jfGDROaGC1YIb24I=) 5: 323430373a396363303a3a2f33322d3332203d3e20313431393833.roa (hash: X3XCCURHmUEWOKsujokS9KRQ2ATuG6WfjZ6Xo/ilPmk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 16:53:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:04:2b:01:8f:be:c1:8f:3a:55:69:ea:6e:be:35:af:c8:f5:f4:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Aug 22 16:17:14 2025 GMT Not After : Aug 25 16:53:14 2025 GMT Subject: CN=6455D4AA25E071D29C61533D6454205278C5B041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:37:aa:5e:d1:f7:2f:da:d2:60:12:e2:8b:dc: 21:6f:94:1c:83:d8:d8:f8:78:45:d2:d2:03:eb:2e: 53:20:97:c9:23:cc:71:d2:14:9c:dd:cf:21:61:fb: 04:62:09:58:fa:60:99:6e:b0:2a:9e:85:c2:3b:de: e5:b2:0a:57:26:1a:d8:60:d6:48:85:d4:8a:4f:05: d0:6e:d7:a0:78:88:ba:82:8f:78:6a:33:c9:15:0e: 3b:64:52:5c:f4:12:3b:20:c7:9d:c2:7f:df:82:9a: 24:0f:84:02:26:eb:6d:fe:18:08:42:43:0d:0f:c3: e0:d3:32:42:7e:44:73:23:e5:ef:6a:db:72:1d:24: 38:d5:25:07:2b:36:9f:e0:4e:dd:bb:1d:bd:03:f5: 26:b2:f5:60:92:be:1f:db:61:32:f1:d4:17:fe:df: 36:8a:0e:4d:ff:34:c3:03:20:61:16:56:a9:39:a2: 6c:ea:01:1a:79:e8:0d:b8:06:36:22:0e:f1:5c:b5: 3b:32:97:3f:db:4c:9e:0b:bc:b7:d9:91:95:74:38: 6d:fc:69:37:e3:3e:bb:e0:ec:7d:ec:29:0d:c5:88: ec:b2:54:c3:1b:4d:3d:6a:30:32:24:ca:7f:4a:22: 19:e1:08:82:33:74:6a:48:9f:93:2a:75:72:59:93: 80:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:55:D4:AA:25:E0:71:D2:9C:61:53:3D:64:54:20:52:78:C5:B0:41 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:d8:e2:8f:e0:aa:0d:97:de:f5:10:a0:74:6b:55:0f:40:44: 60:c8:0c:c7:9b:52:55:bc:f4:05:00:cc:29:0d:27:dd:ea:2e: 34:65:a2:79:74:a4:3a:e6:44:ba:c9:ff:0d:ba:67:4a:4a:f0: 7c:ff:4d:75:66:47:07:2d:c8:af:bb:5f:86:32:1d:19:f1:64: ae:0f:7b:e9:65:59:02:47:3b:c6:e0:48:ba:d8:82:7f:94:7a: c4:41:3d:b2:44:d8:f0:e7:d0:98:0e:52:02:98:4c:78:ec:0c: 42:37:da:32:27:cc:a5:d5:86:25:e4:a6:58:10:9a:bc:9f:79: 47:50:e8:00:2b:88:df:8a:7d:d9:f1:11:4b:a3:c5:f1:98:a8: d4:f0:a3:31:8f:7b:4b:48:ff:72:22:36:9b:f0:2f:71:75:25: 6d:d9:a5:31:12:2f:45:3a:3b:d5:60:79:17:a4:12:47:c1:2b: 96:5b:95:87:74:b0:7e:0f:16:1f:a5:25:86:73:e9:6e:28:a5: 22:f1:2c:68:9e:6d:ef:bd:f6:56:63:64:dc:b3:4e:b9:0d:03: 8f:fa:8a:b7:c8:48:bb:3a:be:22:b8:64:92:da:44:65:33:25: 6b:c3:e9:c1:16:fc:e9:9e:8d:66:39:c1:72:27:4e:cf:88:58: f9:d6:49:69 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKQQrAY++wY86VWnqbr41r8j19AYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNTA4MjIxNjE3MTRaFw0yNTA4MjUxNjUzMTRaMDMxMTAvBgNV BAMTKDY0NTVENEFBMjVFMDcxRDI5QzYxNTMzRDY0NTQyMDUyNzhDNUIwNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8N6pe0fcv2tJgEuKL3CFvlByD 2Nj4eEXS0gPrLlMgl8kjzHHSFJzdzyFh+wRiCVj6YJlusCqehcI73uWyClcmGthg 1kiF1IpPBdBu16B4iLqCj3hqM8kVDjtkUlz0Ejsgx53Cf9+CmiQPhAIm623+GAhC Qw0Pw+DTMkJ+RHMj5e9q23IdJDjVJQcrNp/gTt27Hb0D9Say9WCSvh/bYTLx1Bf+ 3zaKDk3/NMMDIGEWVqk5omzqARp56A24BjYiDvFctTsylz/bTJ4LvLfZkZV0OG38 aTfjPrvg7H3sKQ3FiOyyVMMbTT1qMDIkyn9KIhnhCIIzdGpIn5MqdXJZk4ClAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZFXUqiXgcdKcYVM9ZFQgUnjFsEEwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZiZWRmM2EtZDdkMS00OWE2LTkz ZWQtYjI3N2YxZjdhNmViLzAvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThG QTI3NjY0QTk2NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ7Y4o/gqg2X3vUQoHRrVQ9ARGDIDMebUlW8 9AUAzCkNJ93qLjRlonl0pDrmRLrJ/w26Z0pK8Hz/TXVmRwctyK+7X4YyHRnxZK4P e+llWQJHO8bgSLrYgn+UesRBPbJE2PDn0JgOUgKYTHjsDEI32jInzKXVhiXkplgQ mryfeUdQ6AAriN+KfdnxEUujxfGYqNTwozGPe0tI/3IiNpvwL3F1JW3ZpTESL0U6 O9VgeRekEkfBK5ZblYd0sH4PFh+lJYZz6W4opSLxLGiebe+99lZjZNyzTrkNA4/6 irfISLs6viK4ZJLaRGUzJWvD6cEW/OmejWY5wXInTs+IWPnWSWk= -----END CERTIFICATE-----Generated at Sat Aug 23 14:15:12 2025 by rpki-client