$ rpki-client -vvf repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft File: 957CC5B55223EC29F2E71324C678334C4348BE02.mft (raw, json) Hash identifier: vgs5ez4hJSYsNdpWvYo8jindOKER2gtCHg0Kn5oF6og= Subject key identifier: 66:D0:7B:DF:24:01:03:39:9B:77:03:B3:4D:BB:5E:42:7A:D9:59:09 Authority key identifier: 95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 Certificate issuer: /CN=957CC5B55223EC29F2E71324C678334C4348BE02 Certificate serial: 50E6C3FACC186D3E3B6ED84796D0FEB854B56325 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft Manifest number: 01BF Signing time: Sat 23 Aug 2025 12:30:52 +0000 Manifest this update: Sat 23 Aug 2025 12:25:52 +0000 Manifest next update: Wed 27 Aug 2025 00:21:52 +0000 Files and hashes: 1: 3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa (hash: gpKP80eZFgz1Xe+59VM+E5nhQuUU0t/9JV7P0fWMBTY=) 2: 957CC5B55223EC29F2E71324C678334C4348BE02.crl (hash: kbaoUeIIEi/EPJGCp88b1OPRj3Mqve85Un22JZqT3IE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 13:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e6:c3:fa:cc:18:6d:3e:3b:6e:d8:47:96:d0:fe:b8:54:b5:63:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=957CC5B55223EC29F2E71324C678334C4348BE02 Validity Not Before: Aug 23 12:25:52 2025 GMT Not After : Aug 27 00:21:52 2025 GMT Subject: CN=66D07BDF240103399B7703B34DBB5E427AD95909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3e:76:a4:5a:03:0f:fe:8d:2d:70:e3:97:b8: 53:72:4a:d3:8b:e5:87:31:a4:b5:1e:d4:53:6f:ea: 80:c4:fe:e2:41:ff:ed:f3:63:6d:27:4a:c3:2d:97: 97:14:ff:6d:4b:fa:af:e0:1c:ff:65:e2:45:17:30: 73:ff:d2:de:ab:0e:54:b2:8b:4d:dd:02:40:83:b8: f0:62:80:3f:c0:01:33:35:1e:f2:76:5d:b0:b6:68: 28:d2:44:55:cb:ad:6d:3f:81:a3:8f:b9:16:0b:af: 1c:54:5a:51:b2:de:9a:d9:c7:27:06:9e:25:38:8d: 89:44:a6:08:53:f9:df:22:59:1e:78:7d:d6:99:59: 78:5d:0d:72:ab:88:5d:89:2a:96:83:2a:b2:af:2a: 59:40:a6:96:83:d6:83:97:6a:86:45:49:8d:f6:85: 9f:dd:d7:1a:6d:f2:06:40:7a:67:94:3e:b9:c8:d4: ae:db:06:49:0e:5e:ff:af:e5:c8:41:f4:3b:6d:09: 42:8c:19:b7:72:38:06:5c:77:11:f4:9f:7a:1a:bb: 13:eb:b1:65:5b:76:0b:bf:f9:92:51:6c:21:10:f3: 53:db:26:80:7a:62:93:e4:0b:5f:04:e6:3d:df:9a: 3d:f0:8d:12:0d:5a:4f:1b:cc:55:7b:65:a2:d3:5c: ee:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:D0:7B:DF:24:01:03:39:9B:77:03:B3:4D:BB:5E:42:7A:D9:59:09 X509v3 Authority Key Identifier: keyid:95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:93:35:bd:f3:d4:aa:3e:0f:3d:38:c4:5f:8d:de:df:db:ad: 54:13:0a:c1:2b:c1:4e:46:58:aa:27:63:77:26:40:ee:51:12: af:cf:7b:82:4f:cf:e2:db:73:b2:b9:de:78:ae:1a:34:3f:bd: e3:ff:51:fe:6d:00:67:a8:96:f4:04:4b:de:eb:f7:7f:7d:ab: 53:2b:51:a7:d9:09:c2:1e:19:f9:58:58:2d:1d:80:53:b7:ee: b2:09:03:ea:f9:90:01:5a:b7:ac:22:2b:ff:f6:09:9b:20:a5: bc:5f:7b:d4:83:ce:18:f8:41:7a:b3:ac:5c:ae:57:e8:b7:44: 7c:0c:3f:75:db:51:84:f3:16:23:c2:15:3c:01:31:c3:e5:99: a9:49:26:9e:9c:5b:a0:4f:99:c0:86:4c:14:d0:86:2f:d1:35: 44:a7:e3:9c:06:df:19:1d:28:4a:93:a7:2b:f4:df:3b:0a:a1: f8:56:e0:6d:56:1e:3e:ce:2f:2a:92:6d:d0:05:3e:c1:52:1b: 31:0b:d2:52:88:6d:bb:29:04:e5:19:30:93:67:d1:42:d2:75: b5:4d:ea:0b:44:38:56:5f:44:48:86:52:09:61:2e:66:d1:40: 57:a4:2e:02:d5:5b:e0:95:78:59:d6:e0:e3:ac:59:ab:9e:d9: 76:75:a2:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUObD+swYbT47bthHltD+uFS1YyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0 MzQ4QkUwMjAeFw0yNTA4MjMxMjI1NTJaFw0yNTA4MjcwMDIxNTJaMDMxMTAvBgNV BAMTKDY2RDA3QkRGMjQwMTAzMzk5Qjc3MDNCMzREQkI1RTQyN0FEOTU5MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQPnakWgMP/o0tcOOXuFNyStOL 5YcxpLUe1FNv6oDE/uJB/+3zY20nSsMtl5cU/21L+q/gHP9l4kUXMHP/0t6rDlSy i03dAkCDuPBigD/AATM1HvJ2XbC2aCjSRFXLrW0/gaOPuRYLrxxUWlGy3prZxycG niU4jYlEpghT+d8iWR54fdaZWXhdDXKriF2JKpaDKrKvKllAppaD1oOXaoZFSY32 hZ/d1xpt8gZAemeUPrnI1K7bBkkOXv+v5chB9DttCUKMGbdyOAZcdxH0n3oauxPr sWVbdgu/+ZJRbCEQ81PbJoB6YpPkC18E5j3fmj3wjRINWk8bzFV7ZaLTXO7/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZtB73yQBAzmbdwOzTbteQnrZWQkwHwYDVR0j BBgwFoAUlXzFtVIj7Cny5xMkxngzTENIvgIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGE3OGMwNi0xZDZlLTQzYjYtYmYzMC04NjBjZWJkZGZiMzIvMC85NTdDQzVCNTUy MjNFQzI5RjJFNzEzMjRDNjc4MzM0QzQzNDhCRTAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0MzQ4 QkUwMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjBhNzhjMDYtMWQ2ZS00M2I2LWJm MzAtODYwY2ViZGRmYjMyLzAvOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMz NEM0MzQ4QkUwMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJGTNb3z1Ko+Dz04xF+N3t/brVQTCsErwU5G WKonY3cmQO5REq/Pe4JPz+Lbc7K53niuGjQ/veP/Uf5tAGeolvQES97r9399q1Mr UafZCcIeGflYWC0dgFO37rIJA+r5kAFat6wiK//2CZsgpbxfe9SDzhj4QXqzrFyu V+i3RHwMP3XbUYTzFiPCFTwBMcPlmalJJp6cW6BPmcCGTBTQhi/RNUSn45wG3xkd KEqTpyv03zsKofhW4G1WHj7OLyqSbdAFPsFSGzEL0lKIbbspBOUZMJNn0ULSdbVN 6gtEOFZfREiGUglhLmbRQFekLgLVW+CVeFnW4OOsWaue2XZ1oiE= -----END CERTIFICATE-----Generated at Sat Aug 23 14:48:36 2025 by rpki-client