$ rpki-client -vvf repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft File: 7470038419B67CD1743CE4D96953077ECE6928FE.mft (raw, json) Hash identifier: 1NnSnZoBr9i8DDNlQZlh0YqyTwDUymvUsfPXeuTzHj0= Subject key identifier: 35:CC:5E:57:5F:58:CD:73:36:90:AA:D1:16:B3:77:59:C0:7C:8C:84 Authority key identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE Certificate issuer: /CN=7470038419B67CD1743CE4D96953077ECE6928FE Certificate serial: 0F758B0BBBD158B9B4D062BE54F6B9E2A0BD1C18 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft Manifest number: 01C8 Signing time: Sat 23 Aug 2025 05:01:47 +0000 Manifest this update: Sat 23 Aug 2025 04:56:47 +0000 Manifest next update: Tue 26 Aug 2025 14:29:47 +0000 Files and hashes: 1: 3130332e3135342e35322e302f32342d3234203d3e20313430343739.roa (hash: DQ6tr9CPErOI4RG1ZAv/ldO7tY9jf/c+WNf9/AzYbiQ=) 2: 323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa (hash: 3w+VK+tvKAA1AfC4liESzr0B7Kk6JlTbtXB9BTFuOGs=) 3: 3130332e3135342e35332e302f32342d3234203d3e20313430343739.roa (hash: seK97eEttenVyvDeIj5FLJRpNr+qf4DujlJD8pAoG3I=) 4: 7470038419B67CD1743CE4D96953077ECE6928FE.crl (hash: rPlmu6HYYVBeRoT1AgFdX/zMt8w3zjKFa8IPEgm1OYo=) 5: 323430363a353463303a3a2f33332d3333203d3e20313430343739.roa (hash: WKukFhTAk9Wfv4/OtDk/a2nJ3JcuJ/OWKwAPnS7JgvA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 14:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:75:8b:0b:bb:d1:58:b9:b4:d0:62:be:54:f6:b9:e2:a0:bd:1c:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7470038419B67CD1743CE4D96953077ECE6928FE Validity Not Before: Aug 23 04:56:47 2025 GMT Not After : Aug 26 14:29:47 2025 GMT Subject: CN=35CC5E575F58CD733690AAD116B37759C07C8C84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:62:db:92:d8:4d:77:43:2a:12:df:a5:92:59: 1c:df:4b:18:b2:be:a5:31:76:58:38:92:c1:82:d8: 2f:fa:56:47:91:53:bf:76:01:9e:be:b6:95:97:4d: c9:5a:5e:3f:1a:8a:b9:a2:37:b1:a8:b9:78:f8:8b: fe:d9:1e:71:fc:f9:7f:aa:1d:a8:a0:1d:ce:a3:8e: 67:3d:12:6d:f2:fb:fb:cb:db:d2:27:5b:03:97:bd: c5:65:37:13:5b:23:75:33:8f:6c:c0:ea:8e:a1:2b: fb:a9:0a:36:a2:4f:11:3d:a0:54:d1:5c:c0:2b:18: 1b:33:fe:aa:dd:4c:b7:f5:f4:a1:2e:78:6d:16:34: 10:9f:25:8e:3e:d0:b6:2b:8a:56:98:9f:a7:3d:5a: 35:13:48:5d:43:63:3b:57:f7:83:fc:53:c0:12:62: 63:68:82:0e:36:26:9d:95:e1:52:ea:3d:86:30:3e: 87:09:3f:cc:0d:83:2b:64:4f:f5:e3:0e:a8:ce:83: f6:24:39:2c:45:e7:00:e5:e6:10:6b:53:1d:76:71: 4a:66:15:68:cc:f3:c2:9c:99:ee:53:74:14:12:5b: f9:d4:29:b7:43:18:37:e5:3a:42:3c:d2:bf:c7:29: 64:95:11:52:65:45:f4:40:30:c0:ab:c8:70:a5:a8: b2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:CC:5E:57:5F:58:CD:73:36:90:AA:D1:16:B3:77:59:C0:7C:8C:84 X509v3 Authority Key Identifier: keyid:74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:2d:e4:96:62:e5:20:a7:34:e2:17:ed:ac:af:8a:16:e1:54: 3b:4f:49:91:d7:07:15:d8:38:13:69:c1:60:c3:e0:2e:31:67: 67:94:8c:fd:c7:4b:5c:a4:9f:34:5e:29:ea:21:01:22:2e:c2: 72:19:01:9b:e9:45:c5:78:3f:ae:02:67:6a:7f:5a:09:39:61: 27:ad:31:57:79:8d:5e:11:9a:db:09:08:f5:cf:e3:16:29:fb: 15:7e:80:0a:30:7c:1c:e0:12:67:40:54:ad:c2:c2:18:47:21: 4c:92:77:97:eb:97:d2:ac:c2:43:f6:d1:49:82:02:41:17:e0: 60:e8:8b:79:bc:62:67:94:30:aa:ca:e3:87:7f:6a:fd:1f:bc: 8c:d2:fd:12:a4:35:a4:70:13:78:3f:5e:9d:7f:c2:0e:f4:bf: 7d:32:e2:9f:64:fa:29:9e:3b:81:d5:67:1d:44:01:c8:29:3f: bd:0f:31:46:8f:e0:dd:1d:a9:8d:2e:b3:c4:19:29:c0:5e:05: 99:5f:3a:b1:ce:f1:bd:a4:b0:1d:8f:c4:56:4b:fa:25:f3:12: ce:44:24:44:3a:85:92:56:93:b0:07:c6:46:f3:c5:51:f3:7b: f2:32:4f:7b:fe:7b:d6:bf:73:9f:70:64:5b:cf:64:7c:c2:78: 70:0c:64:c6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUD3WLC7vRWLm00GK+VPa54qC9HBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VD RTY5MjhGRTAeFw0yNTA4MjMwNDU2NDdaFw0yNTA4MjYxNDI5NDdaMDMxMTAvBgNV BAMTKDM1Q0M1RTU3NUY1OENENzMzNjkwQUFEMTE2QjM3NzU5QzA3QzhDODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTYtuS2E13QyoS36WSWRzfSxiy vqUxdlg4ksGC2C/6VkeRU792AZ6+tpWXTclaXj8airmiN7GouXj4i/7ZHnH8+X+q HaigHc6jjmc9Em3y+/vL29InWwOXvcVlNxNbI3Uzj2zA6o6hK/upCjaiTxE9oFTR XMArGBsz/qrdTLf19KEueG0WNBCfJY4+0LYrilaYn6c9WjUTSF1DYztX94P8U8AS YmNogg42Jp2V4VLqPYYwPocJP8wNgytkT/XjDqjOg/YkOSxF5wDl5hBrUx12cUpm FWjM88Kcme5TdBQSW/nUKbdDGDflOkI80r/HKWSVEVJlRfRAMMCryHClqLITAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNcxeV19YzXM2kKrRFrN3WcB8jIQwHwYDVR0j BBgwFoAUdHADhBm2fNF0POTZaVMHfs5pKP4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Yzc2NWQ1MS1iMGIxLTQzNWQtYTY2Yi02MDRjNmU1ZDI5ZWYvMC83NDcwMDM4NDE5 QjY3Q0QxNzQzQ0U0RDk2OTUzMDc3RUNFNjkyOEZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VDRTY5 MjhGRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMGM3NjVkNTEtYjBiMS00MzVkLWE2 NmItNjA0YzZlNWQyOWVmLzAvNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3 N0VDRTY5MjhGRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFEt5JZi5SCnNOIX7ayvihbhVDtPSZHXBxXY OBNpwWDD4C4xZ2eUjP3HS1yknzReKeohASIuwnIZAZvpRcV4P64CZ2p/Wgk5YSet MVd5jV4RmtsJCPXP4xYp+xV+gAowfBzgEmdAVK3CwhhHIUySd5frl9KswkP20UmC AkEX4GDoi3m8YmeUMKrK44d/av0fvIzS/RKkNaRwE3g/Xp1/wg70v30y4p9k+ime O4HVZx1EAcgpP70PMUaP4N0dqY0us8QZKcBeBZlfOrHO8b2ksB2PxFZL+iXzEs5E JEQ6hZJWk7AHxkbzxVHze/IyT3v+e9a/c59wZFvPZHzCeHAMZMY= -----END CERTIFICATE-----Generated at Sat Aug 23 18:29:50 2025 by rpki-client