$ rpki-client -vvf repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft File: 7433AB64571BE1827F0BC97ED291976B6E3429FA.mft (raw, json) Hash identifier: 8XexCzo08BPiAphMGzFwvSatt1KZMExxE7Di4vEOk2o= Subject key identifier: D8:3C:FF:B2:61:BA:17:C2:5B:A2:0C:AD:D6:15:3B:F6:40:8C:E7:C2 Authority key identifier: 74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA Certificate issuer: /CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Certificate serial: 79BB80162E557FCBECA8E5D8EBA380743F48B333 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft Manifest number: 019A Signing time: Fri 22 Aug 2025 05:12:12 +0000 Manifest this update: Fri 22 Aug 2025 05:07:12 +0000 Manifest next update: Mon 25 Aug 2025 10:09:12 +0000 Files and hashes: 1: 3130332e37352e36322e302f32332d3234203d3e20313530353339.roa (hash: LDOqOfl8+d8Lz+/c+0knmLxGK2Kr8P4Ti1sIU0L3/wo=) 2: 7433AB64571BE1827F0BC97ED291976B6E3429FA.crl (hash: vZedRiqw7ZiH07cETIQz2lacY7z1UD26XsmmiOEMens=) 3: 3130332e37352e36332e302f32342d3234203d3e20313530353339.roa (hash: dt0M2E6hMVGXyd6wchuCJpbqgL7DjAEk9eGkYZfJTqo=) 4: 3130332e37352e36322e302f32342d3234203d3e20313530353339.roa (hash: Foo7ECvYM8eC5QdFLfci515Pz4pdcUotJYsrxOmUjnQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 10:09:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:bb:80:16:2e:55:7f:cb:ec:a8:e5:d8:eb:a3:80:74:3f:48:b3:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Validity Not Before: Aug 22 05:07:12 2025 GMT Not After : Aug 25 10:09:12 2025 GMT Subject: CN=D83CFFB261BA17C25BA20CADD6153BF6408CE7C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7d:ec:8b:99:61:cf:10:94:67:52:5f:45:5a: f1:3d:dc:b2:c9:2f:52:7e:cb:8a:0b:2c:a5:1b:70: e9:43:58:eb:d5:2b:f1:12:e4:74:68:52:92:77:47: bf:bd:39:a5:6f:09:10:c1:42:54:21:8b:1a:8d:b7: ea:f3:49:78:fd:54:da:78:b4:94:74:39:0f:dd:fa: 65:48:e5:61:2d:98:c9:4c:1f:eb:75:0d:94:99:08: 5d:89:03:b3:a0:ad:42:9f:7e:64:b5:f4:06:b6:c2: f1:d9:56:df:28:c5:ca:b8:0d:66:eb:31:f1:a6:86: 90:f1:27:85:21:78:2c:5d:41:30:af:3f:d7:5b:09: 42:0f:9c:1f:ff:bc:fb:b6:d3:6e:d1:64:c4:1f:9b: 28:0a:c9:ee:15:98:7d:8d:bd:88:db:7d:09:27:0b: 16:b3:6e:f6:54:0e:71:92:45:66:68:44:e0:80:7f: a0:9e:62:da:39:c3:79:c9:7a:ca:d6:82:a1:e5:d1: 22:d1:59:07:b5:d8:29:a5:f7:5b:5a:92:bc:ee:a1: b2:b1:c6:05:b2:82:2b:97:52:d1:e6:3f:91:0d:22: 42:22:c4:9a:d0:79:5a:83:b8:76:40:5a:dc:00:3b: f3:29:d7:df:e4:b5:7a:19:26:ae:8f:80:d0:b8:cd: 4f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:3C:FF:B2:61:BA:17:C2:5B:A2:0C:AD:D6:15:3B:F6:40:8C:E7:C2 X509v3 Authority Key Identifier: keyid:74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:83:91:34:d6:d2:a4:22:b9:4f:b8:95:53:be:ba:83:72:b5: ca:d9:8a:5d:bd:61:06:0c:90:51:08:23:ec:55:c6:3a:91:0f: 11:22:f3:93:57:12:b1:f1:bf:e2:71:92:b8:2a:db:4e:09:16: 92:95:ed:7d:72:c5:7f:f7:fc:55:7f:67:b6:d2:d6:fa:07:4c: bb:99:58:5f:33:be:17:f7:0c:69:6d:64:a3:f6:48:9a:19:7a: 2c:aa:3c:51:00:8d:a1:a2:89:d1:c8:34:68:61:2d:50:58:68: 5d:a8:7d:24:84:18:2f:8c:3a:b3:ba:24:6b:97:53:a5:74:2e: f6:2f:7a:a0:4c:5a:ee:98:c3:2d:96:09:ed:45:ec:a9:a1:8b: 3a:d7:46:76:40:e8:6f:96:78:91:87:81:84:cb:51:8c:af:a4: a8:f9:7c:bf:eb:2f:0e:03:d5:77:cb:a9:8a:85:cb:0a:7a:e9: ff:41:04:b3:43:73:9b:ab:50:bc:36:ce:b6:3f:71:dd:03:a6: f8:75:6e:1a:44:45:2f:d2:57:00:20:94:33:bf:d4:a9:a4:4e: 51:b2:8d:2a:0a:14:4b:18:7a:72:e4:37:2a:cd:82:47:f0:06: 9e:a1:74:27:a3:e5:77:a4:7a:9d:2a:07:fb:c1:41:28:3f:74: 33:fb:35:35 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUebuAFi5Vf8vsqOXY66OAdD9IszMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2 RTM0MjlGQTAeFw0yNTA4MjIwNTA3MTJaFw0yNTA4MjUxMDA5MTJaMDMxMTAvBgNV BAMTKEQ4M0NGRkIyNjFCQTE3QzI1QkEyMENBREQ2MTUzQkY2NDA4Q0U3QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2feyLmWHPEJRnUl9FWvE93LLJ L1J+y4oLLKUbcOlDWOvVK/ES5HRoUpJ3R7+9OaVvCRDBQlQhixqNt+rzSXj9VNp4 tJR0OQ/d+mVI5WEtmMlMH+t1DZSZCF2JA7OgrUKffmS19Aa2wvHZVt8oxcq4DWbr MfGmhpDxJ4UheCxdQTCvP9dbCUIPnB//vPu2027RZMQfmygKye4VmH2NvYjbfQkn CxazbvZUDnGSRWZoROCAf6CeYto5w3nJesrWgqHl0SLRWQe12Cml91takrzuobKx xgWygiuXUtHmP5ENIkIixJrQeVqDuHZAWtwAO/Mp19/ktXoZJq6PgNC4zU/lAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2Dz/smG6F8Jbogyt1hU79kCM58IwHwYDVR0j BBgwFoAUdDOrZFcb4YJ/C8l+0pGXa240KfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2M4YTBjMy0zN2Y1LTQ2NjctYTQzMC02ZmExMTFkMzQzYWEvMC83NDMzQUI2NDU3 MUJFMTgyN0YwQkM5N0VEMjkxOTc2QjZFMzQyOUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2RTM0 MjlGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDdjOGEwYzMtMzdmNS00NjY3LWE0 MzAtNmZhMTExZDM0M2FhLzAvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3 NkI2RTM0MjlGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGmDkTTW0qQiuU+4lVO+uoNytcrZil29YQYM kFEII+xVxjqRDxEi85NXErHxv+Jxkrgq204JFpKV7X1yxX/3/FV/Z7bS1voHTLuZ WF8zvhf3DGltZKP2SJoZeiyqPFEAjaGiidHINGhhLVBYaF2ofSSEGC+MOrO6JGuX U6V0LvYveqBMWu6Ywy2WCe1F7KmhizrXRnZA6G+WeJGHgYTLUYyvpKj5fL/rLw4D 1XfLqYqFywp66f9BBLNDc5urULw2zrY/cd0Dpvh1bhpERS/SVwAglDO/1KmkTlGy jSoKFEsYenLkNyrNgkfwBp6hdCej5Xekep0qB/vBQSg/dDP7NTU= -----END CERTIFICATE-----Generated at Sat Aug 23 12:14:49 2025 by rpki-client