$ rpki-client -vvf repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft File: A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft (raw, json) Hash identifier: nblDSYtgQdpGaNLqT4xf+OrMuKqTc7UuvpENAqsNL1I= Subject key identifier: A5:02:F0:C5:09:7B:C2:DC:A8:49:BE:A6:A0:EB:96:0C:46:9B:0E:FC Authority key identifier: A9:D6:63:C6:EB:CD:25:0A:A8:92:7E:A0:94:62:7C:94:15:DE:E7:FC Certificate issuer: /CN=A9D663C6EBCD250AA8927EA094627C9415DEE7FC Certificate serial: 3A90477FCAE866DD695F5F437BE7D428888E3FCE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft Manifest number: 74 Signing time: Fri 22 Aug 2025 04:51:23 +0000 Manifest this update: Fri 22 Aug 2025 04:46:23 +0000 Manifest next update: Mon 25 Aug 2025 11:09:23 +0000 Files and hashes: 1: 3136302e3139312e36352e302f32342d3234203d3e20313533313438.roa (hash: 66g0GBTdSeAme2H37nLc01yyifW6eVqeoyuhCfgsCgA=) 2: 3136302e3139312e36342e302f32342d3234203d3e20313533313438.roa (hash: UdR2VsrcQEJLqL8yqAOv5eiXRwXBi0l4fctRzRTejQo=) 3: A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl (hash: pEY/WF4baTaewKilCiik/MCxx8k3qDVI31G+QxdiaUs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 11:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:90:47:7f:ca:e8:66:dd:69:5f:5f:43:7b:e7:d4:28:88:8e:3f:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D663C6EBCD250AA8927EA094627C9415DEE7FC Validity Not Before: Aug 22 04:46:23 2025 GMT Not After : Aug 25 11:09:23 2025 GMT Subject: CN=A502F0C5097BC2DCA849BEA6A0EB960C469B0EFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:92:a9:23:e6:c3:e2:6d:87:2c:da:ec:58:93: 30:d1:f2:a5:05:91:d4:6e:98:e4:4f:d1:ab:3c:7e: ba:07:f2:e7:24:6e:9d:b7:10:23:ca:73:4e:be:a3: 73:5a:35:4d:41:ea:e0:93:0a:7f:0c:ac:5a:96:0e: e9:a3:b7:5d:24:e4:5b:5c:55:34:23:04:2d:e7:64: ee:d8:28:fb:4a:55:67:34:d2:48:6c:1c:19:ed:13: 77:c0:67:0c:8b:24:6b:20:71:ff:ad:ab:02:3e:2e: f6:ef:b7:d6:e5:50:07:5f:ef:35:80:a2:b7:12:41: 5e:e9:d2:51:0b:5e:a6:a7:c4:44:62:2d:4f:39:a3: 56:97:47:ba:ae:d2:ba:b0:c0:19:e3:d3:c0:82:58: de:69:24:ec:63:43:c4:8d:4e:82:8e:1d:e4:d7:2d: 4a:79:58:2f:4d:ef:34:07:3e:d6:fa:cd:36:6c:eb: 1f:7b:9a:f7:1f:59:8a:c6:69:85:77:ca:7a:ef:ce: ef:c3:6a:76:98:6b:97:60:87:e6:b8:38:00:1e:1b: 8b:b3:4e:2f:b5:19:3c:7d:d0:ad:43:04:ff:c0:a6: 11:20:d6:ce:66:f1:a3:6e:58:70:fd:42:d3:8a:04: e4:3e:0a:35:c1:db:dc:de:a1:f9:2a:42:f7:a5:59: 5d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:02:F0:C5:09:7B:C2:DC:A8:49:BE:A6:A0:EB:96:0C:46:9B:0E:FC X509v3 Authority Key Identifier: keyid:A9:D6:63:C6:EB:CD:25:0A:A8:92:7E:A0:94:62:7C:94:15:DE:E7:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:68:5e:78:5c:ee:ff:6e:67:86:3a:29:0f:8c:1f:9c:1e:13: 06:46:53:dc:78:12:f0:d1:58:83:63:3a:5c:01:63:c6:52:9c: 91:8e:96:cf:39:15:f7:25:23:9e:62:d0:9c:3c:91:d8:4f:af: c9:7c:73:25:4a:ba:8a:f9:b7:af:e0:81:f2:3f:0d:71:c6:cc: f1:4a:12:3c:ef:40:ee:af:a5:b5:99:5a:6c:11:bd:c2:c0:5c: 23:b2:77:cc:51:71:5c:99:94:c8:54:19:47:30:33:c7:c3:b9: 6e:69:cf:ae:9d:47:b5:32:6b:6c:e8:c9:a8:66:88:63:fe:cb: 0c:ca:72:02:0d:dd:b0:d2:2c:55:c3:2c:3a:4d:09:97:a2:e0: 49:09:a3:aa:5f:84:47:07:1d:b9:76:e9:09:52:7d:34:a0:22: d4:14:bb:23:f6:18:b4:00:53:a0:e9:59:96:0f:03:d6:fe:a5: 16:63:7c:eb:9c:f3:f6:07:11:3e:4d:48:60:4f:e1:1d:1a:36: ca:e4:3f:d3:ff:74:39:50:16:b5:e1:2f:7f:ad:1f:56:34:04: 8e:65:6e:41:7b:b8:47:13:44:9f:8f:e5:b1:e9:b7:7b:9d:f0: 65:27:97:ff:d1:ee:c6:7c:83:9b:23:2f:5d:6e:22:16:18:a9: c0:45:1e:19 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOpBHf8roZt1pX19De+fUKIiOP84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdDOTQx NURFRTdGQzAeFw0yNTA4MjIwNDQ2MjNaFw0yNTA4MjUxMTA5MjNaMDMxMTAvBgNV BAMTKEE1MDJGMEM1MDk3QkMyRENBODQ5QkVBNkEwRUI5NjBDNDY5QjBFRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCikqkj5sPibYcs2uxYkzDR8qUF kdRumORP0as8froH8uckbp23ECPKc06+o3NaNU1B6uCTCn8MrFqWDumjt10k5Ftc VTQjBC3nZO7YKPtKVWc00khsHBntE3fAZwyLJGsgcf+tqwI+Lvbvt9blUAdf7zWA orcSQV7p0lELXqanxERiLU85o1aXR7qu0rqwwBnj08CCWN5pJOxjQ8SNToKOHeTX LUp5WC9N7zQHPtb6zTZs6x97mvcfWYrGaYV3ynrvzu/DanaYa5dgh+a4OAAeG4uz Ti+1GTx90K1DBP/AphEg1s5m8aNuWHD9QtOKBOQ+CjXB29zeofkqQvelWV3DAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpQLwxQl7wtyoSb6moOuWDEabDvwwHwYDVR0j BBgwFoAUqdZjxuvNJQqokn6glGJ8lBXe5/wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODJhOWJkOS0xNjZmLTQ1M2UtYjNjMC1lNmIzZWY5MmE1NDAvMC9BOUQ2NjNDNkVC Q0QyNTBBQTg5MjdFQTA5NDYyN0M5NDE1REVFN0ZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdDOTQxNURF RTdGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjgyYTliZDktMTY2Zi00NTNlLWIz YzAtZTZiM2VmOTJhNTQwLzAvQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdD OTQxNURFRTdGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALJoXnhc7v9uZ4Y6KQ+MH5weEwZGU9x4EvDR WINjOlwBY8ZSnJGOls85FfclI55i0Jw8kdhPr8l8cyVKuor5t6/ggfI/DXHGzPFK EjzvQO6vpbWZWmwRvcLAXCOyd8xRcVyZlMhUGUcwM8fDuW5pz66dR7Uya2zoyahm iGP+ywzKcgIN3bDSLFXDLDpNCZei4EkJo6pfhEcHHbl26QlSfTSgItQUuyP2GLQA U6DpWZYPA9b+pRZjfOuc8/YHET5NSGBP4R0aNsrkP9P/dDlQFrXhL3+tH1Y0BI5l bkF7uEcTRJ+P5bHpt3ud8GUnl//R7sZ8g5sjL11uIhYYqcBFHhk= -----END CERTIFICATE-----Generated at Sat Aug 23 18:44:02 2025 by rpki-client