$ rpki-client -vvf repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft File: 2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft (raw, json) Hash identifier: GHKSFxwhf4OUOqV07TN8pJVZBwALYaSCBVdTi16JBJk= Subject key identifier: 5C:DD:9E:CF:91:2B:53:61:67:2B:98:90:9F:AC:A1:B2:F8:EA:CE:01 Authority key identifier: 2C:FD:5B:DD:D1:DB:A6:D9:40:28:74:D6:22:3A:BD:7E:EE:E0:16:05 Certificate issuer: /CN=2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605 Certificate serial: 54992A7505720EA0C450C52795B524605D61FDAE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft Manifest number: D1 Signing time: Thu 21 Aug 2025 16:00:37 +0000 Manifest this update: Thu 21 Aug 2025 15:55:37 +0000 Manifest next update: Mon 25 Aug 2025 00:27:37 +0000 Files and hashes: 1: 32372e3132342e36362e302f32342d3234203d3e20313532303339.roa (hash: Qk1aebZH6HpsmbRtyw6Zbd7LsZDQbi5L/mrlB31+AsU=) 2: 2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl (hash: wpBDcpy4sobY7ccdoRQ/qNVr5nxifKif7wgOwU1R8xU=) 3: 32372e3132342e36372e302f32342d3234203d3e20313532303339.roa (hash: PIB1m7UZc9kcov7LjZoIh/Ol3lgnFrAZfbEkkmZBCd0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 00:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:99:2a:75:05:72:0e:a0:c4:50:c5:27:95:b5:24:60:5d:61:fd:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605 Validity Not Before: Aug 21 15:55:37 2025 GMT Not After : Aug 25 00:27:37 2025 GMT Subject: CN=5CDD9ECF912B5361672B98909FACA1B2F8EACE01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:29:da:e0:bb:21:76:1b:6d:27:05:3c:b2:90: 58:03:2b:ea:44:e4:55:56:d6:6d:86:47:81:48:c3: cf:c6:b7:84:24:51:90:5d:54:66:9a:9e:46:bc:0b: 7d:33:10:b2:1c:b2:11:b5:39:da:04:36:21:7e:4a: 82:e0:4d:28:00:02:ac:9d:e4:1b:4f:65:88:e7:85: d5:63:98:8e:1c:af:f1:bd:b3:fb:d1:d7:51:b3:79: 56:3d:3f:4e:0a:45:b3:01:46:eb:48:98:3f:fa:25: d6:d8:b7:c1:5e:0b:92:cb:dc:3b:d5:c8:87:27:08: 98:b0:40:4b:8e:55:c2:ef:d8:ad:90:04:c5:54:cd: 63:2a:f5:85:8d:7c:b0:b4:a6:e1:c9:6b:33:a4:7f: 66:a0:3c:9f:e6:36:31:b4:ef:19:dc:54:75:d7:09: 6d:6a:2b:12:30:41:05:6c:36:ce:8f:d6:91:f5:45: cc:a8:da:b9:03:09:fa:f3:65:40:12:29:51:29:60: f0:32:16:8e:e5:11:4f:b6:a9:f6:77:29:68:65:9a: b5:4d:45:c1:0d:22:e7:8a:f7:d0:a6:f5:69:9f:d4: 99:db:f2:bf:ee:e7:e4:be:27:97:36:50:a5:4e:ba: 62:67:f2:2d:8b:9c:c7:8f:b4:b8:b1:cb:02:6b:66: 59:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:DD:9E:CF:91:2B:53:61:67:2B:98:90:9F:AC:A1:B2:F8:EA:CE:01 X509v3 Authority Key Identifier: keyid:2C:FD:5B:DD:D1:DB:A6:D9:40:28:74:D6:22:3A:BD:7E:EE:E0:16:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:9b:96:a5:e5:d0:4b:8e:65:d6:56:08:cc:c3:86:eb:76:07: 5d:2e:7c:05:a9:82:d5:db:4c:3d:cf:e9:2d:74:e4:c4:22:57: 3b:99:41:b3:11:ab:6b:60:30:7d:40:73:ae:c6:02:10:da:2e: eb:55:5d:d8:b7:22:c4:f1:7b:92:60:2f:49:40:a8:be:b8:f6: a0:05:6c:3a:65:89:70:52:8c:0d:b6:45:2e:fd:6d:3a:a7:5b: d5:f9:8c:23:68:fc:4a:a8:58:35:6b:6d:c1:b1:5c:52:c2:a6: 75:7c:42:93:fb:ce:88:12:de:79:fa:e2:ff:d9:2b:84:54:bc: f1:03:e7:c6:2e:dc:d7:4b:b1:b2:ee:4b:e7:70:0b:27:e4:04: 78:7e:0d:61:54:d1:a9:57:03:79:a8:be:5d:dd:3b:fb:8b:1b: a6:30:25:95:ae:b5:1b:73:f4:e6:33:53:4a:9f:eb:57:9a:88: 2c:52:38:c2:89:37:d4:c4:57:ab:a7:9c:a3:d8:15:b4:25:36: 7d:44:4d:72:9c:2d:06:7a:1a:cd:ae:f4:c4:dd:06:ee:c0:c4: 70:85:40:56:6e:60:da:d2:f5:1c:87:86:0b:c7:df:f9:03:58: ed:63:f9:2e:de:4e:52:f7:ec:b2:e7:5d:2b:e2:db:95:c8:31: cf:35:39:90 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVJkqdQVyDqDEUMUnlbUkYF1h/a4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJEN0VF RUUwMTYwNTAeFw0yNTA4MjExNTU1MzdaFw0yNTA4MjUwMDI3MzdaMDMxMTAvBgNV BAMTKDVDREQ5RUNGOTEyQjUzNjE2NzJCOTg5MDlGQUNBMUIyRjhFQUNFMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAKdrguyF2G20nBTyykFgDK+pE 5FVW1m2GR4FIw8/Gt4QkUZBdVGaanka8C30zELIcshG1OdoENiF+SoLgTSgAAqyd 5BtPZYjnhdVjmI4cr/G9s/vR11GzeVY9P04KRbMBRutImD/6JdbYt8FeC5LL3DvV yIcnCJiwQEuOVcLv2K2QBMVUzWMq9YWNfLC0puHJazOkf2agPJ/mNjG07xncVHXX CW1qKxIwQQVsNs6P1pH1Rcyo2rkDCfrzZUASKVEpYPAyFo7lEU+2qfZ3KWhlmrVN RcENIueK99Cm9Wmf1Jnb8r/u5+S+J5c2UKVOumJn8i2LnMePtLixywJrZlltAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXN2ez5ErU2FnK5iQn6yhsvjqzgEwHwYDVR0j BBgwFoAULP1b3dHbptlAKHTWIjq9fu7gFgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjdlMGJjMC03NjFiLTRlYzMtOGY0Mi04Mjk4MWI5MWE5N2EvMC8yQ0ZENUJEREQx REJBNkQ5NDAyODc0RDYyMjNBQkQ3RUVFRTAxNjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJEN0VFRUUw MTYwNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWI3ZTBiYzAtNzYxYi00ZWMzLThm NDItODI5ODFiOTFhOTdhLzAvMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJE N0VFRUUwMTYwNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF2blqXl0EuOZdZWCMzDhut2B10ufAWpgtXb TD3P6S105MQiVzuZQbMRq2tgMH1Ac67GAhDaLutVXdi3IsTxe5JgL0lAqL649qAF bDpliXBSjA22RS79bTqnW9X5jCNo/EqoWDVrbcGxXFLCpnV8QpP7zogS3nn64v/Z K4RUvPED58Yu3NdLsbLuS+dwCyfkBHh+DWFU0alXA3movl3dO/uLG6YwJZWutRtz 9OYzU0qf61eaiCxSOMKJN9TEV6unnKPYFbQlNn1ETXKcLQZ6Gs2u9MTdBu7AxHCF QFZuYNrS9RyHhgvH3/kDWO1j+S7eTlL37LLnXSvi25XIMc81OZA= -----END CERTIFICATE-----Generated at Sat Aug 23 12:29:51 2025 by rpki-client