$ rpki-client -vvf repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft File: 656A72A6F38230D6A0DB097480D736B5C2FBA683.mft (raw, json) Hash identifier: zdKCDps60FbDkh9rIi0GRYsO2rGBZOdDZZNHJSzkDv4= Subject key identifier: 9C:F6:33:93:49:67:24:7D:08:37:B1:A0:96:29:C5:15:A6:A4:35:36 Authority key identifier: 65:6A:72:A6:F3:82:30:D6:A0:DB:09:74:80:D7:36:B5:C2:FB:A6:83 Certificate issuer: /CN=656A72A6F38230D6A0DB097480D736B5C2FBA683 Certificate serial: 39E145CD34E82D8EDA0EE112D5A4BC292BB22D5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer Subject info access: rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft Manifest number: 0233 Signing time: Fri 22 Aug 2025 16:22:18 +0000 Manifest this update: Fri 22 Aug 2025 16:17:18 +0000 Manifest next update: Tue 26 Aug 2025 03:37:18 +0000 Files and hashes: 1: 656A72A6F38230D6A0DB097480D736B5C2FBA683.crl (hash: mtRPrq3DvxRZhDqvYzwbRZbHTao2MikpnQe4hzp+Nzw=) 2: 3130332e3138322e37322e302f32342d3234203d3e20313439343038.roa (hash: vPnPfMFVMwFeTvRaeceb22yqey+t7BHBklK6ecujm+A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.crl rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 03:37:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:e1:45:cd:34:e8:2d:8e:da:0e:e1:12:d5:a4:bc:29:2b:b2:2d:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=656A72A6F38230D6A0DB097480D736B5C2FBA683 Validity Not Before: Aug 22 16:17:18 2025 GMT Not After : Aug 26 03:37:18 2025 GMT Subject: CN=9CF633934967247D0837B1A09629C515A6A43536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3c:9b:27:88:65:0f:d3:03:ff:aa:30:9d:61: 26:dd:80:53:c1:45:d8:43:5b:d6:96:5d:7e:f2:2a: eb:a9:cb:6e:79:76:a8:16:e5:9b:01:35:e9:be:a2: 6a:88:77:e7:f2:72:9d:75:71:22:05:9a:67:c7:30: bf:34:6e:44:c9:5f:27:88:82:72:3f:53:63:4b:55: ec:7b:8c:f0:de:65:bc:f4:06:c8:c5:2d:36:cb:10: a8:38:3a:bf:4e:b6:82:de:6f:ea:96:a3:e8:57:f8: ce:25:90:0d:ef:87:76:3e:bb:b2:ef:4d:49:15:56: 56:3c:66:b7:1d:c9:77:6b:ef:7e:e4:24:ff:eb:73: f1:43:82:e3:ed:fc:d3:89:d7:25:4d:a2:31:28:ec: 47:90:81:4c:5f:28:66:50:89:13:33:e4:60:2b:21: 06:32:05:20:b0:c3:e7:30:86:eb:04:a0:42:99:5f: 3a:52:36:57:39:96:2b:4e:ce:65:90:50:e5:1e:c3: f1:a6:48:cf:f8:ed:a1:3d:86:12:9b:10:13:78:72: 67:91:05:93:32:c4:5e:3f:72:26:9d:80:db:8c:92: 5b:96:af:87:fb:c0:3f:da:aa:14:20:58:cc:63:6f: 86:65:4e:07:20:5a:6a:68:48:77:01:fc:92:5b:7b: 18:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:F6:33:93:49:67:24:7D:08:37:B1:A0:96:29:C5:15:A6:A4:35:36 X509v3 Authority Key Identifier: keyid:65:6A:72:A6:F3:82:30:D6:A0:DB:09:74:80:D7:36:B5:C2:FB:A6:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:c6:b1:30:02:42:87:98:3a:91:f1:a0:81:01:ce:98:93:ba: e7:fb:80:5b:f0:26:cb:d2:89:a7:ce:84:4b:a3:d2:76:e5:34: ec:20:5f:8e:6e:85:f7:a3:eb:8d:80:e0:b1:5f:f3:cc:10:41: ce:3a:05:03:fc:04:c4:24:19:f7:6e:af:25:55:d5:91:09:f4: 4b:c1:da:f7:ef:74:ce:e7:3e:c9:68:77:bf:7e:7e:f3:2b:46: cf:7c:d0:fd:d6:cd:28:f6:1f:5d:28:4c:19:d6:f2:ee:65:df: ce:7e:3a:ca:27:14:6f:43:d0:96:43:ab:d2:e3:59:78:4d:d5: 9f:11:ee:82:75:8e:fe:46:5b:2a:3b:72:7b:65:59:fd:4f:d5: f5:41:b9:02:c8:2d:dc:8a:48:bc:e7:06:83:24:c1:f4:25:6d: 37:09:9e:63:8a:1c:39:78:30:92:b3:c9:cf:f8:36:08:1c:7d: 2b:5f:e1:bd:0c:21:7f:d7:89:61:2a:ab:3b:95:bc:48:ad:54: d1:c3:c0:00:b9:8e:c8:89:fa:f3:99:75:4e:dd:fb:27:af:91: d3:2a:26:1c:87:84:eb:d2:ff:fe:cf:42:84:57:55:23:d1:0c: 3b:01:51:54:c1:16:d3:dd:73:19:eb:9e:b8:63:ea:e0:dc:ad: aa:26:84:a7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOeFFzTToLY7aDuES1aS8KSuyLV4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2QjVD MkZCQTY4MzAeFw0yNTA4MjIxNjE3MThaFw0yNTA4MjYwMzM3MThaMDMxMTAvBgNV BAMTKDlDRjYzMzkzNDk2NzI0N0QwODM3QjFBMDk2MjlDNTE1QTZBNDM1MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPPJsniGUP0wP/qjCdYSbdgFPB RdhDW9aWXX7yKuupy255dqgW5ZsBNem+omqId+fycp11cSIFmmfHML80bkTJXyeI gnI/U2NLVex7jPDeZbz0BsjFLTbLEKg4Or9OtoLeb+qWo+hX+M4lkA3vh3Y+u7Lv TUkVVlY8ZrcdyXdr737kJP/rc/FDguPt/NOJ1yVNojEo7EeQgUxfKGZQiRMz5GAr IQYyBSCww+cwhusEoEKZXzpSNlc5litOzmWQUOUew/GmSM/47aE9hhKbEBN4cmeR BZMyxF4/ciadgNuMkluWr4f7wD/aqhQgWMxjb4ZlTgcgWmpoSHcB/JJbexjFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnPYzk0lnJH0IN7GglinFFaakNTYwHwYDVR0j BBgwFoAUZWpypvOCMNag2wl0gNc2tcL7poMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjczNzVmOS1lOGI1LTRkOTQtODBhOC0zNWUwMmRkMGY2ZjIvMC82NTZBNzJBNkYz ODIzMEQ2QTBEQjA5NzQ4MEQ3MzZCNUMyRkJBNjgzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2QjVDMkZC QTY4My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTY3Mzc1ZjktZThiNS00ZDk0LTgw YTgtMzVlMDJkZDBmNmYyLzAvNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2 QjVDMkZCQTY4My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ3GsTACQoeYOpHxoIEBzpiTuuf7gFvwJsvS iafOhEuj0nblNOwgX45uhfej642A4LFf88wQQc46BQP8BMQkGfduryVV1ZEJ9EvB 2vfvdM7nPslod79+fvMrRs980P3WzSj2H10oTBnW8u5l385+OsonFG9D0JZDq9Lj WXhN1Z8R7oJ1jv5GWyo7cntlWf1P1fVBuQLILdyKSLznBoMkwfQlbTcJnmOKHDl4 MJKzyc/4NggcfStf4b0MIX/XiWEqqzuVvEitVNHDwAC5jsiJ+vOZdU7d+yevkdMq JhyHhOvS//7PQoRXVSPRDDsBUVTBFtPdcxnrnrhj6uDcraomhKc= -----END CERTIFICATE-----Generated at Sat Aug 23 17:42:39 2025 by rpki-client