$ rpki-client -vvf repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft File: D1E28E396E82778793018513BD084854BE663886.mft (raw, json) Hash identifier: in04gB4m7sBufSuE1khIhQxHstrkZoCnWSEdVaT+Nec= Subject key identifier: 67:C1:F3:74:14:69:D1:05:74:00:8E:F6:8D:F6:45:BD:26:BA:F6:2E Authority key identifier: D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 Certificate issuer: /CN=D1E28E396E82778793018513BD084854BE663886 Certificate serial: 1AC46BD2115442F8268F3B426DC79083B7E79156 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft Manifest number: 0259 Signing time: Fri 22 Aug 2025 04:00:45 +0000 Manifest this update: Fri 22 Aug 2025 03:55:45 +0000 Manifest next update: Mon 25 Aug 2025 11:30:45 +0000 Files and hashes: 1: 3130332e3136392e3233302e302f32332d3234203d3e2034383030.roa (hash: wAotKcJ/dAT1Ar3MTmbAktiozrzps2/cZFRmdSxY5TY=) 2: D1E28E396E82778793018513BD084854BE663886.crl (hash: ORyJTyYOVIbGs8+xlvvxgA9IISeM7FZ9yKvW+D2/esY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 11:30:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:c4:6b:d2:11:54:42:f8:26:8f:3b:42:6d:c7:90:83:b7:e7:91:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1E28E396E82778793018513BD084854BE663886 Validity Not Before: Aug 22 03:55:45 2025 GMT Not After : Aug 25 11:30:45 2025 GMT Subject: CN=67C1F3741469D10574008EF68DF645BD26BAF62E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ce:db:ee:5c:ef:20:a9:38:5a:2d:bf:fb:ea: 34:5a:64:8c:7b:af:fe:d9:1b:9a:bf:cc:a9:34:3c: 5e:dc:28:6a:86:7a:28:95:6b:2b:88:a0:d3:18:93: 6c:5b:a2:fb:01:84:84:18:95:a9:47:6e:83:1b:34: 89:40:ec:18:61:66:65:f4:4d:54:4e:7c:02:2b:50: 73:b9:78:4f:61:90:6e:32:d1:53:99:67:55:98:5b: 65:1b:60:65:a5:31:74:0e:12:4b:4c:14:e2:73:51: 30:d6:0e:c3:e0:03:5e:bf:b4:41:45:69:0f:c8:e7: 93:ec:4e:af:a8:26:b3:58:cf:ee:6e:3c:f9:a5:9c: 13:b9:37:0e:c6:97:a1:c5:51:73:1e:9f:b1:5a:fc: 1c:9f:de:f8:3f:e1:29:ef:20:a3:f4:2d:5b:41:e0: de:30:77:91:e4:61:9b:e6:b1:04:da:ba:43:4f:48: e4:ef:09:9d:bb:f7:83:4c:65:62:66:46:05:2a:be: 0f:2c:31:5d:c8:35:51:e2:ea:0f:65:a6:89:4a:f5: a7:8d:6d:54:25:3c:94:dc:8d:70:b9:c7:d0:88:90: 51:a5:92:f3:85:bf:d7:dd:42:f4:36:20:77:ac:25: 1c:b9:06:28:29:93:5a:68:32:2c:44:10:27:f5:f4: e7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C1:F3:74:14:69:D1:05:74:00:8E:F6:8D:F6:45:BD:26:BA:F6:2E X509v3 Authority Key Identifier: keyid:D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:55:1e:aa:d9:b8:4c:1e:07:eb:80:dd:9f:22:69:cd:48:d7: eb:06:9c:41:9e:11:43:36:24:ee:08:1c:8e:13:08:ee:a8:a7: 80:4d:bc:5c:8f:d7:a2:4b:d5:9f:05:ee:31:d7:3b:1d:20:fe: f8:61:ea:bc:f5:b2:c2:6a:48:16:4c:04:51:47:06:0c:01:18: 9b:8b:95:81:83:fe:bc:3e:7b:e5:97:6a:db:fe:ab:23:4e:cb: 77:94:d6:ea:40:26:a7:f3:0d:40:5e:c4:c9:08:a8:da:0d:7f: 04:70:09:0c:f9:3c:b9:73:01:01:12:72:23:0b:e5:74:2d:90: 1f:5c:fc:d2:6d:87:9d:20:d4:c9:e1:9f:0d:01:2a:79:39:3a: 11:f5:5f:c5:e9:9d:02:92:c2:7f:fe:05:11:b8:fc:72:2d:e2: a3:2c:9f:be:b9:61:d8:e6:bd:82:85:b4:d6:41:be:c8:2a:13: 47:be:1e:89:ba:6c:ea:ec:cc:d0:b4:95:2d:40:c5:92:3d:d4: f7:9a:98:29:44:9c:ee:5a:c9:34:df:00:cd:a5:7d:e7:49:e2: 7e:fd:6b:bf:be:f6:99:20:dc:94:6f:69:89:eb:d3:eb:b0:9e: 15:9a:5b:66:fc:85:a2:86:8f:1a:e3:b6:85:b4:07:f9:09:3a: 86:5d:fd:c5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGsRr0hFUQvgmjztCbceQg7fnkVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRC RTY2Mzg4NjAeFw0yNTA4MjIwMzU1NDVaFw0yNTA4MjUxMTMwNDVaMDMxMTAvBgNV BAMTKDY3QzFGMzc0MTQ2OUQxMDU3NDAwOEVGNjhERjY0NUJEMjZCQUY2MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFztvuXO8gqThaLb/76jRaZIx7 r/7ZG5q/zKk0PF7cKGqGeiiVayuIoNMYk2xbovsBhIQYlalHboMbNIlA7BhhZmX0 TVROfAIrUHO5eE9hkG4y0VOZZ1WYW2UbYGWlMXQOEktMFOJzUTDWDsPgA16/tEFF aQ/I55PsTq+oJrNYz+5uPPmlnBO5Nw7Gl6HFUXMen7Fa/Byf3vg/4SnvIKP0LVtB 4N4wd5HkYZvmsQTaukNPSOTvCZ2794NMZWJmRgUqvg8sMV3INVHi6g9lpolK9aeN bVQlPJTcjXC5x9CIkFGlkvOFv9fdQvQ2IHesJRy5Bigpk1poMixEECf19OcvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZ8HzdBRp0QV0AI72jfZFvSa69i4wHwYDVR0j BBgwFoAU0eKOOW6Cd4eTAYUTvQhIVL5mOIYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmQ2MTEzNS03NWU0LTQ2YzYtYmRkZC1mYmE2ODM0ZGNlNDEvMC9EMUUyOEUzOTZF ODI3Nzg3OTMwMTg1MTNCRDA4NDg1NEJFNjYzODg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRCRTY2 Mzg4Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTZkNjExMzUtNzVlNC00NmM2LWJk ZGQtZmJhNjgzNGRjZTQxLzAvRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4 NTRCRTY2Mzg4Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJtVHqrZuEweB+uA3Z8iac1I1+sGnEGeEUM2 JO4IHI4TCO6op4BNvFyP16JL1Z8F7jHXOx0g/vhh6rz1ssJqSBZMBFFHBgwBGJuL lYGD/rw+e+WXatv+qyNOy3eU1upAJqfzDUBexMkIqNoNfwRwCQz5PLlzAQESciML 5XQtkB9c/NJth50g1Mnhnw0BKnk5OhH1X8XpnQKSwn/+BRG4/HIt4qMsn765Ydjm vYKFtNZBvsgqE0e+Hom6bOrszNC0lS1AxZI91PeamClEnO5ayTTfAM2lfedJ4n79 a7++9pkg3JRvaYnr0+uwnhWaW2b8haKGjxrjtoW0B/kJOoZd/cU= -----END CERTIFICATE-----Generated at Sat Aug 23 18:25:11 2025 by rpki-client